Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1f/50c205-2189-4734-9648-486a8cdddbe8/1/XO56utwc1TZH4rILdg1aXHqxp8w.mft
File: XO56utwc1TZH4rILdg1aXHqxp8w.mft (raw, json)
Hash identifier: eZ0qBikxBUfZbd5muKQrgKBHaZRbOqj1tYmBrO5lQFI=
Subject key identifier: FB:82:2D:3E:B4:5E:EA:A6:1B:F2:FC:FF:33:02:41:D3:D0:11:A7:66
Authority key identifier: 5C:EE:7A:BA:DC:1C:D5:36:47:E2:B2:0B:76:0D:5A:5C:7A:B1:A7:CC
Certificate issuer: /CN=5cee7abadc1cd53647e2b20b760d5a5c7ab1a7cc
Certificate serial: 019A7293D00CDBDEB2CEF0C5590583358DA3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XO56utwc1TZH4rILdg1aXHqxp8w.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1f/50c205-2189-4734-9648-486a8cdddbe8/1/XO56utwc1TZH4rILdg1aXHqxp8w.mft
Manifest number: 020C
Signing time: Tue 11 Nov 2025 11:01:20 +0000
Manifest this update: Tue 11 Nov 2025 11:01:20 +0000
Manifest next update: Wed 12 Nov 2025 11:01:20 +0000
Files and hashes: 1: XO56utwc1TZH4rILdg1aXHqxp8w.crl (hash: 6QSMGEgn7ZQ1YCDDgu7KI3MMm9Eac42BEvb5/iYAU30=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/1f/50c205-2189-4734-9648-486a8cdddbe8/1/XO56utwc1TZH4rILdg1aXHqxp8w.crl
rsync://rpki.ripe.net/repository/DEFAULT/1f/50c205-2189-4734-9648-486a8cdddbe8/1/XO56utwc1TZH4rILdg1aXHqxp8w.mft
rsync://rpki.ripe.net/repository/DEFAULT/XO56utwc1TZH4rILdg1aXHqxp8w.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 12 Nov 2025 09:00:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:72:93:d0:0c:db:de:b2:ce:f0:c5:59:05:83:35:8d:a3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5cee7abadc1cd53647e2b20b760d5a5c7ab1a7cc
Validity
Not Before: Nov 11 11:01:20 2025 GMT
Not After : Nov 12 11:01:20 2025 GMT
Subject: CN=fb822d3eb45eeaa61bf2fcff330241d3d011a766
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:aa:ac:be:91:74:f4:f2:ff:04:fd:36:60:80:
2a:7a:35:77:74:77:a5:66:92:b8:42:63:ae:25:28:
0b:f3:d7:12:68:2c:1f:eb:6d:5c:e4:d8:6b:67:9a:
70:bf:f5:fb:aa:f6:8d:f7:4f:75:d1:87:37:ba:e2:
43:0a:b6:9b:37:20:f1:ee:5b:30:44:16:03:13:ea:
36:75:89:c8:99:fb:19:38:ad:81:8d:54:06:f2:0e:
bb:bf:a7:99:6c:7c:83:25:b3:77:d2:48:21:a3:e3:
cc:80:6f:5a:25:9f:26:32:9d:43:6b:ca:c6:72:23:
c9:3d:30:81:97:00:a0:3d:13:b9:c9:1e:7b:a2:35:
e3:71:87:a0:84:42:ef:83:ee:98:0e:80:5a:a3:e7:
dc:d3:82:e7:9e:f1:45:ce:39:d2:77:8a:57:87:4a:
80:e4:96:e8:a4:5d:d6:66:35:76:52:1b:92:3c:f1:
6b:49:aa:51:4f:b9:7d:e7:b8:0c:8c:e1:de:3e:b6:
6c:78:35:3a:9a:21:b1:56:56:4e:7d:e5:8b:0e:ec:
d9:d1:e2:60:2b:a5:23:19:5c:53:16:d7:b9:00:af:
bc:34:7b:d3:66:e3:4f:4e:31:32:46:25:d6:13:fd:
e2:54:86:71:52:b5:d4:96:63:07:56:0c:7a:bf:a5:
ad:6b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FB:82:2D:3E:B4:5E:EA:A6:1B:F2:FC:FF:33:02:41:D3:D0:11:A7:66
X509v3 Authority Key Identifier:
keyid:5C:EE:7A:BA:DC:1C:D5:36:47:E2:B2:0B:76:0D:5A:5C:7A:B1:A7:CC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XO56utwc1TZH4rILdg1aXHqxp8w.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1f/50c205-2189-4734-9648-486a8cdddbe8/1/XO56utwc1TZH4rILdg1aXHqxp8w.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1f/50c205-2189-4734-9648-486a8cdddbe8/1/XO56utwc1TZH4rILdg1aXHqxp8w.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
18:d9:3f:dc:ef:c3:dd:ad:fc:1a:1f:1a:ab:ce:7a:11:79:67:
31:f4:8c:97:fb:88:0c:93:72:5c:d5:4b:f2:9b:3c:b7:8e:56:
e0:16:6d:01:8d:bc:a1:aa:f1:a6:3a:e9:74:29:01:99:d0:c9:
0c:ba:90:fa:45:70:b0:7f:1c:2e:b6:10:57:a1:02:85:0e:e6:
22:2b:35:44:30:b1:05:c5:8b:6b:f2:7f:97:77:96:db:9e:0d:
cd:a5:b0:8c:78:c5:ef:46:e6:85:0a:59:10:52:7f:c9:fd:f6:
fb:4d:17:0a:8f:47:32:a0:eb:e4:48:12:d9:8b:90:18:cc:55:
8c:09:9b:18:64:24:50:0d:cb:1b:5d:5a:7b:9f:15:95:18:aa:
da:31:00:74:d4:20:78:22:09:98:ee:46:a6:4d:5a:e7:d9:cf:
2e:1c:80:e0:58:db:c1:e2:dc:9d:43:9c:b1:99:87:0f:df:b8:
39:d7:e5:7b:01:01:4d:3e:0c:e0:7d:a6:10:38:5d:b9:f1:e5:
94:6b:64:88:03:e4:f1:ec:ab:bd:ef:ad:44:a6:ed:9c:9e:fe:
22:68:f0:71:b7:f1:99:73:1a:0a:1d:0c:86:d0:35:8b:66:45:
ce:f8:0c:41:48:a6:2f:9b:d5:5b:f3:5c:ae:31:3b:6d:28:1e:
16:63:fd:4b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 11 15:39:29 2025 by rpki-client