Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/13/525707-1a12-4138-ae46-9f7e8a6122a3/1/x4tS3f0L5WHUEMqIRvx5fiKYs8w.mft
File: x4tS3f0L5WHUEMqIRvx5fiKYs8w.mft (raw, json)
Hash identifier: yUzDZsEsDbV8lIXVsOBuVT5isnSsvyjNKawczbpfckQ=
Subject key identifier: 65:0F:8A:DF:D3:B4:C7:25:27:3F:37:AD:86:0D:92:D0:A5:79:5E:5C
Authority key identifier: C7:8B:52:DD:FD:0B:E5:61:D4:10:CA:88:46:FC:79:7E:22:98:B3:CC
Certificate issuer: /CN=c78b52ddfd0be561d410ca8846fc797e2298b3cc
Certificate serial: 019A72261E9DC7533C09778AFF4C31E45509
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/x4tS3f0L5WHUEMqIRvx5fiKYs8w.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/13/525707-1a12-4138-ae46-9f7e8a6122a3/1/x4tS3f0L5WHUEMqIRvx5fiKYs8w.mft
Manifest number: 13FD
Signing time: Tue 11 Nov 2025 09:01:32 +0000
Manifest this update: Tue 11 Nov 2025 09:01:32 +0000
Manifest next update: Wed 12 Nov 2025 09:01:32 +0000
Files and hashes: 1: MnEhxi_woQM3cXv5W6rDC8mvyKY.roa (hash: kYcuDCyVLUhxBSbVQtzSrwd5iX/KUoxvsuaVTI7bR60=)
2: x4tS3f0L5WHUEMqIRvx5fiKYs8w.crl (hash: viTHr0y1aAZPGv1gNbGyKg6Q8GkEyzArieyub/OWr70=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/13/525707-1a12-4138-ae46-9f7e8a6122a3/1/x4tS3f0L5WHUEMqIRvx5fiKYs8w.crl
rsync://rpki.ripe.net/repository/DEFAULT/13/525707-1a12-4138-ae46-9f7e8a6122a3/1/x4tS3f0L5WHUEMqIRvx5fiKYs8w.mft
rsync://rpki.ripe.net/repository/DEFAULT/x4tS3f0L5WHUEMqIRvx5fiKYs8w.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 12 Nov 2025 09:00:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:72:26:1e:9d:c7:53:3c:09:77:8a:ff:4c:31:e4:55:09
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c78b52ddfd0be561d410ca8846fc797e2298b3cc
Validity
Not Before: Nov 11 09:01:32 2025 GMT
Not After : Nov 12 09:01:32 2025 GMT
Subject: CN=650f8adfd3b4c725273f37ad860d92d0a5795e5c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8d:b9:d4:cd:16:2d:d4:47:06:e3:19:e7:9c:6f:
82:de:c9:7e:20:93:6d:2b:f6:ed:56:f8:95:f3:56:
c4:b4:3a:38:6b:cb:df:9e:68:8a:9e:95:86:33:2c:
86:e6:9c:42:e6:1d:45:d5:fe:ce:a5:2e:ea:10:fd:
6e:e5:20:15:7a:a9:fc:e2:17:02:d6:46:ed:31:81:
7d:f8:c3:af:db:c8:d9:ad:ff:51:92:43:30:93:38:
63:6d:95:14:58:e2:a0:42:c1:70:14:49:f7:fc:37:
3c:13:ca:ed:25:0f:c7:77:83:4c:c4:b4:39:82:ba:
74:e2:fa:85:da:3c:98:9f:60:87:1c:32:f7:f9:c1:
32:da:1e:d3:20:2b:42:50:d0:79:94:4a:97:59:65:
84:27:f7:0c:60:d6:03:29:d2:9a:49:2e:80:40:84:
ed:ca:03:ad:22:2e:51:91:78:73:0e:04:2d:11:b5:
ba:8a:7a:91:b9:54:bc:71:8c:e4:a2:4c:92:6d:7d:
1e:72:9d:f1:b4:d0:0e:f9:ee:a0:85:66:5d:ce:41:
6d:86:0a:6b:b5:da:a2:09:d1:d5:44:e6:bb:0b:f7:
1a:49:45:c3:04:02:39:ef:54:db:1b:59:b4:07:0b:
cf:0e:a8:c4:75:23:55:87:04:99:21:b0:44:29:4d:
51:f1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
65:0F:8A:DF:D3:B4:C7:25:27:3F:37:AD:86:0D:92:D0:A5:79:5E:5C
X509v3 Authority Key Identifier:
keyid:C7:8B:52:DD:FD:0B:E5:61:D4:10:CA:88:46:FC:79:7E:22:98:B3:CC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/x4tS3f0L5WHUEMqIRvx5fiKYs8w.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/13/525707-1a12-4138-ae46-9f7e8a6122a3/1/x4tS3f0L5WHUEMqIRvx5fiKYs8w.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/13/525707-1a12-4138-ae46-9f7e8a6122a3/1/x4tS3f0L5WHUEMqIRvx5fiKYs8w.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
59:c7:da:3d:b4:b9:2b:63:47:cf:0d:01:be:0f:30:13:9e:8f:
3a:64:79:18:b9:a4:6d:eb:fb:14:69:db:e4:fc:22:f0:c2:39:
6e:8a:89:29:37:fb:b1:8d:f1:5c:3f:37:8d:36:72:84:4b:c4:
83:bb:29:3a:37:8b:84:d2:43:2e:56:3f:e1:65:92:c6:41:48:
7a:6d:8f:9b:6b:df:b6:6b:c9:53:57:18:ba:80:11:b6:a4:17:
f8:80:94:eb:86:15:5f:7c:37:e6:b0:54:20:41:34:78:09:64:
5b:b1:99:ca:4c:ac:8e:4a:b8:58:9c:4b:cd:35:f2:22:bf:f3:
85:6a:5d:5c:07:b5:e1:ff:c0:b5:2f:5b:80:a2:2b:aa:ce:cd:
98:7b:00:98:d9:1d:72:1e:6d:38:d7:72:9c:84:fa:59:a1:7b:
6d:61:38:5b:3a:5b:ca:a7:40:c3:5a:ab:a8:c8:cc:cd:f6:bd:
a2:72:cf:08:45:bc:0c:77:81:c5:5c:4c:40:a8:ee:ea:2d:cd:
70:bc:28:27:49:77:24:09:36:77:49:91:85:57:82:63:d6:14:
3f:80:97:8e:3f:e4:f7:34:f0:1c:1f:ea:e0:71:1a:74:9b:6f:
70:c3:05:b8:7d:e5:15:4a:e0:c6:29:da:d8:83:fb:36:a0:f2:
06:82:e9:ed
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 11 12:47:30 2025 by rpki-client