Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/25/3c524e-12b8-4dcc-8f10-30df62429df0/1/X7qw05-2l5_k09JIOgG908k77O8.mft
File: X7qw05-2l5_k09JIOgG908k77O8.mft (raw, json)
Hash identifier: yL4leLR02F9EWC51X9zaoI7tqLgjRvlHECG6Pqg8/Gw=
Subject key identifier: 65:27:76:F1:DB:7F:9B:6C:7A:9D:D4:34:72:4F:57:6A:53:AF:BA:D8
Authority key identifier: 5F:BA:B0:D3:9F:B6:97:9F:E4:D3:D2:48:3A:01:BD:D3:C9:3B:EC:EF
Certificate issuer: /CN=5fbab0d39fb6979fe4d3d2483a01bdd3c93becef
Certificate serial: 019A19F428B2BCAC7B593CA52602D7BC40E3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/X7qw05-2l5_k09JIOgG908k77O8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/25/3c524e-12b8-4dcc-8f10-30df62429df0/1/X7qw05-2l5_k09JIOgG908k77O8.mft
Manifest number: 0C01
Signing time: Sat 25 Oct 2025 06:00:22 +0000
Manifest this update: Sat 25 Oct 2025 06:00:22 +0000
Manifest next update: Sun 26 Oct 2025 06:00:22 +0000
Files and hashes: 1: X7qw05-2l5_k09JIOgG908k77O8.crl (hash: O+1pptzxmK4ubpo9hWAnqrFMHVpAhz1U2J43C5EZiRY=)
2: vKqft3GpUgOOXSf2VjTKls-pWMw.roa (hash: 5Tvu15lYIVA9/K7Qk9i7l4tCbiMQ02zrBkIoUMRXadY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/25/3c524e-12b8-4dcc-8f10-30df62429df0/1/X7qw05-2l5_k09JIOgG908k77O8.crl
rsync://rpki.ripe.net/repository/DEFAULT/25/3c524e-12b8-4dcc-8f10-30df62429df0/1/X7qw05-2l5_k09JIOgG908k77O8.mft
rsync://rpki.ripe.net/repository/DEFAULT/X7qw05-2l5_k09JIOgG908k77O8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 26 Oct 2025 00:00:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:19:f4:28:b2:bc:ac:7b:59:3c:a5:26:02:d7:bc:40:e3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5fbab0d39fb6979fe4d3d2483a01bdd3c93becef
Validity
Not Before: Oct 25 06:00:22 2025 GMT
Not After : Oct 26 06:00:22 2025 GMT
Subject: CN=652776f1db7f9b6c7a9dd434724f576a53afbad8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9a:5c:de:57:e9:18:62:76:af:04:11:a1:1c:31:
0e:86:59:fd:45:b7:98:a5:ef:91:83:8f:42:50:c2:
c0:2d:98:b8:06:c7:3e:9c:91:6c:ac:45:a9:02:85:
e1:96:57:41:21:47:3b:6c:08:9f:bc:38:22:3f:61:
5a:5b:96:8b:76:e8:da:14:df:29:57:58:84:42:a7:
0d:35:ac:63:55:a0:5f:7a:be:0b:5a:7d:30:97:69:
95:5c:65:01:25:b0:60:92:7d:2c:b8:2c:b4:34:db:
9c:c7:68:08:5a:76:93:fd:15:ba:2e:98:e6:9c:65:
36:81:e9:28:87:26:ec:92:b8:b5:61:6d:12:06:cc:
d8:74:ac:cd:50:7f:d2:70:0e:20:3f:ed:81:8d:65:
c8:54:66:cc:d0:b2:cc:b3:d3:d5:36:f3:74:c0:b8:
87:a8:b7:9e:9d:36:93:df:18:8e:e7:6e:af:62:e9:
a8:e6:dc:a6:6b:4a:71:5f:4c:d8:bc:6d:22:9a:e4:
23:12:a1:bf:0e:1c:55:ba:bb:1d:29:96:68:6d:8c:
b9:6b:0c:4a:4e:42:6c:8f:42:f7:0b:d3:f0:8f:f5:
27:14:c7:f2:27:e4:fd:29:cd:d6:39:62:18:82:26:
4d:5d:a8:8f:be:cb:d9:4d:eb:37:f2:c8:6f:20:a7:
bd:e9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
65:27:76:F1:DB:7F:9B:6C:7A:9D:D4:34:72:4F:57:6A:53:AF:BA:D8
X509v3 Authority Key Identifier:
keyid:5F:BA:B0:D3:9F:B6:97:9F:E4:D3:D2:48:3A:01:BD:D3:C9:3B:EC:EF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/X7qw05-2l5_k09JIOgG908k77O8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/25/3c524e-12b8-4dcc-8f10-30df62429df0/1/X7qw05-2l5_k09JIOgG908k77O8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/25/3c524e-12b8-4dcc-8f10-30df62429df0/1/X7qw05-2l5_k09JIOgG908k77O8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
7d:64:50:2b:37:9d:a5:2c:b6:f9:9a:0b:52:a0:4e:ab:6f:2b:
c2:30:5d:eb:26:4a:4e:6e:f7:a3:dd:2d:7a:59:fe:89:1a:17:
c5:cd:84:e6:b4:d0:bd:ea:87:ab:d5:56:8c:0a:ef:c2:c0:8b:
77:72:37:b8:b9:4c:bc:ad:2b:f3:2a:1f:50:f5:73:51:0c:53:
a7:ad:cf:66:3c:b4:ed:9d:1f:d7:4a:fc:95:9b:c4:ce:16:e6:
39:b6:6c:5e:1d:fb:b9:f0:6d:48:50:50:3c:e4:48:7d:97:51:
92:52:ed:b3:73:ae:49:7c:88:b3:d6:aa:63:ed:eb:2c:9f:c4:
8f:a9:23:e5:6e:95:2c:fe:d4:cc:ba:00:b1:47:34:69:00:8d:
85:57:1d:4c:a9:76:49:fb:d4:53:b3:b3:c0:0d:3b:24:c7:4c:
7d:84:84:ce:41:f1:0b:db:41:04:04:3f:92:ce:d6:94:40:7a:
85:c5:53:ed:5d:2a:4d:e8:6d:9f:9e:2a:5c:23:ed:42:78:a1:
f7:98:ff:22:eb:19:bb:12:dc:56:3c:90:eb:99:c3:71:be:12:
c2:63:2a:73:c3:ef:47:80:89:a0:33:a4:8c:2f:bc:84:27:35:
ca:7e:25:7c:38:19:3f:e5:a5:eb:45:bc:e5:65:a8:f9:a3:96:
75:74:d6:ca
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Oct 25 08:15:40 2025 by rpki-client