Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2a/a282cd-ee30-49c3-9c9e-471db7eb719e/1/xdXOafzPDGu44rJmfh44-5QPPSY.mft
File: xdXOafzPDGu44rJmfh44-5QPPSY.mft (raw, json)
Hash identifier: NhF8ZvoCCkSH0TwFKpVtniaw+BpfPubSURlWWt8Fruo=
Subject key identifier: 59:80:AD:94:AC:2B:81:C3:AB:5B:14:C6:76:7A:3B:EA:D9:B5:A7:2A
Authority key identifier: C5:D5:CE:69:FC:CF:0C:6B:B8:E2:B2:66:7E:1E:38:FB:94:0F:3D:26
Certificate issuer: /CN=c5d5ce69fccf0c6bb8e2b2667e1e38fb940f3d26
Certificate serial: 019A714A22C02D833DD03558BA646F9AE5C5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xdXOafzPDGu44rJmfh44-5QPPSY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2a/a282cd-ee30-49c3-9c9e-471db7eb719e/1/xdXOafzPDGu44rJmfh44-5QPPSY.mft
Manifest number: 0B8A
Signing time: Tue 11 Nov 2025 05:01:15 +0000
Manifest this update: Tue 11 Nov 2025 05:01:15 +0000
Manifest next update: Wed 12 Nov 2025 05:01:15 +0000
Files and hashes: 1: 6dkBUwL-mhaODMyRqo4g1V5Aqm0.roa (hash: Qmi5vwRBC8G/em6HsgOnkDIH/4egeMg5iAbwYtXG1+s=)
2: xdXOafzPDGu44rJmfh44-5QPPSY.crl (hash: doxJOz2UxgHgbvPNYiyNc7S/w4zlnpj+yeyIHTwGiNI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2a/a282cd-ee30-49c3-9c9e-471db7eb719e/1/xdXOafzPDGu44rJmfh44-5QPPSY.crl
rsync://rpki.ripe.net/repository/DEFAULT/2a/a282cd-ee30-49c3-9c9e-471db7eb719e/1/xdXOafzPDGu44rJmfh44-5QPPSY.mft
rsync://rpki.ripe.net/repository/DEFAULT/xdXOafzPDGu44rJmfh44-5QPPSY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 12 Nov 2025 05:01:15 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:71:4a:22:c0:2d:83:3d:d0:35:58:ba:64:6f:9a:e5:c5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c5d5ce69fccf0c6bb8e2b2667e1e38fb940f3d26
Validity
Not Before: Nov 11 05:01:15 2025 GMT
Not After : Nov 12 05:01:15 2025 GMT
Subject: CN=5980ad94ac2b81c3ab5b14c6767a3bead9b5a72a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ce:48:7e:48:6e:14:76:89:88:9c:34:12:2f:cb:
24:20:b8:13:df:4f:be:93:b4:be:f5:d3:17:e0:d3:
fd:30:9f:1e:3c:62:5a:a8:7c:2f:e6:58:db:c1:92:
04:aa:a6:76:88:07:96:2b:c6:71:8b:85:b1:eb:06:
f2:d1:be:3c:bd:50:fd:81:48:a8:11:c7:41:32:32:
d9:4a:93:bb:57:87:4f:6f:68:a2:41:8f:99:9b:1e:
09:ac:ae:38:d3:7d:dd:f3:21:b4:d7:e9:52:f6:57:
c2:60:71:6b:ed:ce:97:0d:f7:e6:3c:45:84:0a:96:
7f:51:97:34:45:9b:24:80:f4:8b:f7:02:32:f3:6f:
69:39:0e:5d:e0:62:0f:ed:7c:e0:20:6d:7e:1a:44:
38:e4:5c:d2:7f:7a:e3:f1:83:fd:18:1c:49:47:a2:
cf:ae:bb:2e:48:af:99:b6:a0:41:0b:d1:ee:e4:17:
e2:39:d2:7e:6b:dc:b6:9d:f4:bf:05:79:c8:c8:23:
c8:6a:06:8f:d5:0c:a5:cf:4f:a2:81:ba:db:a9:4f:
f2:3b:47:df:74:24:e0:47:76:13:9e:aa:f4:41:15:
fd:03:26:39:37:0e:ea:62:f8:4b:4e:9e:fc:6f:53:
11:f5:2e:8b:61:ab:a4:19:e1:56:a9:9e:5e:d9:5e:
4a:47
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
59:80:AD:94:AC:2B:81:C3:AB:5B:14:C6:76:7A:3B:EA:D9:B5:A7:2A
X509v3 Authority Key Identifier:
keyid:C5:D5:CE:69:FC:CF:0C:6B:B8:E2:B2:66:7E:1E:38:FB:94:0F:3D:26
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xdXOafzPDGu44rJmfh44-5QPPSY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2a/a282cd-ee30-49c3-9c9e-471db7eb719e/1/xdXOafzPDGu44rJmfh44-5QPPSY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2a/a282cd-ee30-49c3-9c9e-471db7eb719e/1/xdXOafzPDGu44rJmfh44-5QPPSY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
70:31:9b:6a:b8:7f:b8:d8:00:a8:5f:8e:c7:39:0b:73:8d:fa:
30:86:0d:fb:01:13:b3:78:8b:ef:90:15:25:47:bb:7a:7a:77:
f4:48:40:c9:6b:25:d6:65:77:dd:0f:4c:e0:de:87:17:96:ee:
16:d5:69:bf:7e:c0:4a:c8:82:f7:66:cd:8d:82:0a:a9:ab:75:
98:2a:50:24:0f:82:07:f7:a8:69:cf:93:a2:62:3a:d8:3b:b2:
56:14:48:00:6d:c2:a0:14:59:e0:6c:06:64:5a:24:fb:00:86:
7c:5a:03:df:46:1f:91:0c:2b:ca:d1:e3:08:a0:ef:cd:d6:87:
cc:21:ad:5b:59:94:9f:e8:3f:9e:e3:76:ed:8d:aa:61:f5:23:
11:ee:fb:a5:7a:bd:6b:07:75:d7:fe:47:f4:22:fb:60:c3:52:
ea:db:09:0c:af:c1:d0:42:b1:ca:1f:a3:c3:ca:6f:e1:19:6e:
e4:40:9b:c4:30:29:96:00:36:ee:e5:ef:30:9d:bd:dc:d0:1e:
e5:89:26:d6:ca:d5:79:e2:e2:6e:80:77:84:7b:81:85:01:1d:
d3:76:82:ee:bf:90:84:65:30:7f:6b:21:e6:e7:eb:ff:a9:85:
7c:5b:d5:39:5e:84:b0:f7:6d:a7:f3:fe:c2:95:f6:4f:14:f7:
9f:64:dc:39
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 11 13:14:19 2025 by rpki-client