Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/24/0977ee-b98d-4a3e-b3af-67c76320186a/1/XEwop1rJaVHcOEAKgPnvOqryqss.mft
File: XEwop1rJaVHcOEAKgPnvOqryqss.mft (raw, json)
Hash identifier: /PJidFf4XTXtiggpkiYliHM029OmT30VPhbiz9k6mgQ=
Subject key identifier: 0C:97:52:07:8E:0C:34:E7:06:06:DA:2E:85:80:9D:EF:7E:BF:7D:8F
Authority key identifier: 5C:4C:28:A7:5A:C9:69:51:DC:38:40:0A:80:F9:EF:3A:AA:F2:AA:CB
Certificate issuer: /CN=5c4c28a75ac96951dc38400a80f9ef3aaaf2aacb
Certificate serial: 019A25C17BC4E3C2F02EE3F28C0E1CA1BB06
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XEwop1rJaVHcOEAKgPnvOqryqss.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/24/0977ee-b98d-4a3e-b3af-67c76320186a/1/XEwop1rJaVHcOEAKgPnvOqryqss.mft
Manifest number: 16F8
Signing time: Mon 27 Oct 2025 13:00:28 +0000
Manifest this update: Mon 27 Oct 2025 13:00:28 +0000
Manifest next update: Tue 28 Oct 2025 13:00:28 +0000
Files and hashes: 1: XEwop1rJaVHcOEAKgPnvOqryqss.crl (hash: Jx54Vo9a1JPAX2bDKHj8e+JNQe2GTAujiJklLWefmVA=)
2: eIbScniidhxgoW_2gLpLbnftECI.roa (hash: 0LV2/9XqX9EVzrNxsg5Sc4fQTUKSwMZdzfQWJW36Pqk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/24/0977ee-b98d-4a3e-b3af-67c76320186a/1/XEwop1rJaVHcOEAKgPnvOqryqss.crl
rsync://rpki.ripe.net/repository/DEFAULT/24/0977ee-b98d-4a3e-b3af-67c76320186a/1/XEwop1rJaVHcOEAKgPnvOqryqss.mft
rsync://rpki.ripe.net/repository/DEFAULT/XEwop1rJaVHcOEAKgPnvOqryqss.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 28 Oct 2025 13:00:28 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:25:c1:7b:c4:e3:c2:f0:2e:e3:f2:8c:0e:1c:a1:bb:06
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5c4c28a75ac96951dc38400a80f9ef3aaaf2aacb
Validity
Not Before: Oct 27 13:00:28 2025 GMT
Not After : Oct 28 13:00:28 2025 GMT
Subject: CN=0c9752078e0c34e70606da2e85809def7ebf7d8f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:c0:69:40:d1:ad:cb:b2:34:1f:0f:f5:31:7a:
a7:fc:d5:cc:f4:68:fa:12:2e:54:e6:ef:58:6f:4f:
d3:0b:15:b6:17:e1:bb:87:ab:c4:18:df:9e:49:ac:
f7:ec:56:9b:7c:74:04:07:95:70:84:d1:d6:4e:7b:
b7:e5:97:b4:16:96:ff:ed:29:e4:e0:72:17:4d:7e:
ea:ab:11:7b:bf:ab:14:e4:5f:68:55:e0:34:90:21:
6d:2e:87:2d:cc:15:2d:94:21:da:44:1f:28:68:ea:
b2:cf:dc:c0:da:91:f0:1e:a4:ef:0b:d3:42:9f:68:
dd:10:cf:ff:a2:f0:b7:b1:ee:3a:6b:58:b5:75:30:
21:40:a3:30:a0:f3:ff:dc:af:4f:ff:33:b1:4d:17:
99:a0:84:a9:b5:0a:30:09:64:30:27:83:0f:a7:4f:
9a:52:c9:c6:52:c0:10:4c:22:e2:8a:1e:a3:eb:ec:
2e:fc:e8:dd:a6:9b:58:09:21:19:f7:a4:e3:5f:e1:
f7:bd:b7:1f:8e:8d:2e:1a:39:7b:de:50:fd:45:42:
99:92:5b:21:dd:dd:4c:3b:e3:ff:1b:af:de:e2:80:
82:be:b6:f2:f2:3a:03:2e:ad:d8:7e:91:24:56:22:
73:3d:15:51:5f:52:3d:09:e1:89:41:91:e6:2b:b3:
f9:bd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0C:97:52:07:8E:0C:34:E7:06:06:DA:2E:85:80:9D:EF:7E:BF:7D:8F
X509v3 Authority Key Identifier:
keyid:5C:4C:28:A7:5A:C9:69:51:DC:38:40:0A:80:F9:EF:3A:AA:F2:AA:CB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XEwop1rJaVHcOEAKgPnvOqryqss.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/24/0977ee-b98d-4a3e-b3af-67c76320186a/1/XEwop1rJaVHcOEAKgPnvOqryqss.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/24/0977ee-b98d-4a3e-b3af-67c76320186a/1/XEwop1rJaVHcOEAKgPnvOqryqss.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
2f:68:e7:64:e7:dc:56:1a:7b:e9:c1:94:08:3f:d0:f0:f0:43:
ed:7c:f9:bf:28:4b:2f:68:a1:2a:50:24:ee:72:fc:0a:28:6e:
da:62:28:1b:75:2d:0a:39:65:67:c5:12:e7:e3:39:ed:eb:1e:
7d:bb:66:aa:90:f8:a4:19:c2:70:15:5e:5d:73:1f:87:e6:d6:
03:3f:d0:78:be:06:a2:e3:01:30:8d:f9:f6:eb:00:0d:5c:78:
c1:a6:07:55:e7:c0:53:a3:f9:57:87:4a:b5:c1:b0:6d:3c:10:
a6:3b:79:63:60:63:ca:8b:ee:46:48:75:fd:af:c2:20:8c:fa:
fb:4b:fc:fa:bb:33:1e:52:ba:9d:a0:8e:1a:63:1a:cc:c8:4d:
19:2d:cc:1f:30:3f:4e:d0:d0:c9:7b:33:e5:f5:b9:d4:8a:22:
bb:9c:cb:ab:b7:9c:28:63:45:5a:c6:48:72:46:5e:3e:a0:c3:
fd:c2:ae:2a:23:77:bc:78:d0:0d:e8:b8:d0:96:39:e9:88:c2:
6e:5b:f3:3c:65:a1:9e:8d:83:07:17:d0:59:42:93:e5:0a:c2:
8f:dc:39:b4:8c:3c:e3:3f:19:b6:a1:08:85:8c:8b:a1:72:d2:
90:79:63:b8:dc:60:fe:6f:72:e0:69:19:fd:74:8d:51:d1:da:
fa:b7:94:6a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Oct 27 17:32:51 2025 by rpki-client