Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0f/57b891-a912-4c6a-8e3b-d41fcdf57598/1/XYO1pn2S_6hHbJMhqnv21KINPas.mft
File: XYO1pn2S_6hHbJMhqnv21KINPas.mft (raw, json)
Hash identifier: XTHuXEVYfykSDjwRS1Ruc3sSkJvcIasN1gQYIwviqgI=
Subject key identifier: 1D:4E:F4:B2:D2:A0:5B:D4:40:55:9A:48:DD:78:6A:18:07:29:5A:65
Authority key identifier: 5D:83:B5:A6:7D:92:FF:A8:47:6C:93:21:AA:7B:F6:D4:A2:0D:3D:AB
Certificate issuer: /CN=5d83b5a67d92ffa8476c9321aa7bf6d4a20d3dab
Certificate serial: 019922C33B03FA0FA2B25731C4D6165467D1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XYO1pn2S_6hHbJMhqnv21KINPas.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0f/57b891-a912-4c6a-8e3b-d41fcdf57598/1/XYO1pn2S_6hHbJMhqnv21KINPas.mft
Manifest number: 106C
Signing time: Sun 07 Sep 2025 06:00:43 +0000
Manifest this update: Sun 07 Sep 2025 06:00:43 +0000
Manifest next update: Mon 08 Sep 2025 06:00:43 +0000
Files and hashes: 1: XYO1pn2S_6hHbJMhqnv21KINPas.crl (hash: WQmmaiF/X+xEDienyfoyDzirSFvlsw5qVzhpOf50/cY=)
2: yQMt2r0-C951BN6h68fRFJDbCC8.roa (hash: tYqh+1wBm4KwmsyhvHbFDKO/UGyJb2eTnTj9n8iYekw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0f/57b891-a912-4c6a-8e3b-d41fcdf57598/1/XYO1pn2S_6hHbJMhqnv21KINPas.crl
rsync://rpki.ripe.net/repository/DEFAULT/0f/57b891-a912-4c6a-8e3b-d41fcdf57598/1/XYO1pn2S_6hHbJMhqnv21KINPas.mft
rsync://rpki.ripe.net/repository/DEFAULT/XYO1pn2S_6hHbJMhqnv21KINPas.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 08 Sep 2025 05:00:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:22:c3:3b:03:fa:0f:a2:b2:57:31:c4:d6:16:54:67:d1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5d83b5a67d92ffa8476c9321aa7bf6d4a20d3dab
Validity
Not Before: Sep 7 06:00:43 2025 GMT
Not After : Sep 8 06:00:43 2025 GMT
Subject: CN=1d4ef4b2d2a05bd440559a48dd786a1807295a65
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9d:bc:a1:4f:7d:ec:96:c4:e5:a4:77:9e:92:e7:
59:06:f1:98:1d:6d:67:18:17:cd:50:70:39:56:ef:
30:1d:c3:bb:3b:1d:ef:2e:3f:21:f1:b6:88:93:9d:
31:a3:cb:a4:9a:e4:42:c9:2b:f9:3e:70:03:e9:fa:
38:a0:b1:89:9b:7d:ee:5a:68:89:b7:b2:68:a7:7f:
da:fc:4c:6b:22:32:d8:8a:c3:7e:45:fe:29:16:59:
d6:1f:ac:24:65:3b:c5:a4:d7:71:13:74:8e:df:53:
25:25:f1:79:76:f3:40:05:2a:69:54:ec:52:7d:89:
54:57:fe:aa:f7:5e:a5:e0:2a:de:95:09:08:3a:b4:
56:96:c4:1b:55:5c:65:d9:0a:67:c3:ac:eb:24:4c:
73:39:db:25:a3:b9:a4:75:a4:0d:ed:31:ee:b8:36:
3a:83:1b:e2:e6:ec:d0:dd:95:c8:5e:ff:97:87:c5:
66:ee:3b:5c:c2:e5:75:19:e3:03:43:37:e7:a5:a7:
76:87:4d:82:85:56:4f:53:4d:57:7a:df:c8:9a:78:
58:19:7b:7d:7b:27:f8:2f:08:e2:d5:73:e8:0d:cd:
6f:52:a0:a3:32:e2:d2:9b:d7:bc:7b:4b:1a:b3:50:
ea:0b:3a:a2:62:b7:db:10:db:d8:dc:69:9c:bf:a3:
84:c3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1D:4E:F4:B2:D2:A0:5B:D4:40:55:9A:48:DD:78:6A:18:07:29:5A:65
X509v3 Authority Key Identifier:
keyid:5D:83:B5:A6:7D:92:FF:A8:47:6C:93:21:AA:7B:F6:D4:A2:0D:3D:AB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XYO1pn2S_6hHbJMhqnv21KINPas.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0f/57b891-a912-4c6a-8e3b-d41fcdf57598/1/XYO1pn2S_6hHbJMhqnv21KINPas.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0f/57b891-a912-4c6a-8e3b-d41fcdf57598/1/XYO1pn2S_6hHbJMhqnv21KINPas.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
00:fb:44:f7:49:3c:f8:21:d8:de:ef:3d:0d:ab:a1:66:2d:bd:
10:62:42:f1:c0:68:c3:71:3d:3e:f3:bc:1e:00:d2:05:91:4d:
20:fc:9e:ef:b7:f6:5b:b5:fd:71:05:06:6d:a0:06:f2:0d:90:
fe:f9:f7:02:0c:06:27:5f:12:3e:4d:8d:26:81:9b:20:1a:ab:
f8:fe:7f:4a:b6:57:1a:6a:af:d0:08:d4:fe:7f:18:c9:a8:68:
98:66:d7:2c:e8:fb:33:83:d3:f6:c2:1d:17:5d:d9:70:d7:8d:
cc:a5:94:cf:cc:12:88:e6:ff:2c:09:64:14:9c:b1:80:3d:ae:
3d:8e:6e:5b:3e:ad:28:e7:08:86:7e:2c:c8:fc:66:5a:b7:17:
8e:93:d1:0f:14:c7:89:4e:1c:75:a3:04:50:b4:ca:21:49:37:
a5:04:66:fc:1a:06:8e:64:1d:09:82:6e:0c:52:7a:6d:73:b0:
da:07:17:a6:da:d4:3d:e1:90:b6:24:91:9d:91:76:67:0a:f6:
ff:5c:6b:62:9c:ef:5a:f8:85:df:24:da:21:56:d9:0c:7c:ae:
e6:d7:94:fb:b5:d3:79:7e:27:2c:71:8f:2b:94:ab:a5:5e:0b:
bd:57:7d:fa:93:b5:d6:b4:95:dc:d2:8b:94:67:64:b9:a9:69:
f5:37:f5:3e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Sep 7 11:16:19 2025 by rpki-client