Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2e/9f54a6-933f-47de-8726-eddf527e8f2d/1/xcSzrlnZgfJQzIfatZeFSr7XowA.mft
File: xcSzrlnZgfJQzIfatZeFSr7XowA.mft (raw, json)
Hash identifier: jdxRydE05JtRkwN3XfMoPUOzexnaq4lzdvZZaysDi58=
Subject key identifier: B2:48:C9:F6:3A:A9:A0:D5:8A:F1:85:76:43:BA:AB:9E:F9:16:CA:FA
Authority key identifier: C5:C4:B3:AE:59:D9:81:F2:50:CC:87:DA:B5:97:85:4A:BE:D7:A3:00
Certificate issuer: /CN=c5c4b3ae59d981f250cc87dab597854abed7a300
Certificate serial: 019A210937D5A02CC7B745E46C49C68824A6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xcSzrlnZgfJQzIfatZeFSr7XowA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2e/9f54a6-933f-47de-8726-eddf527e8f2d/1/xcSzrlnZgfJQzIfatZeFSr7XowA.mft
Manifest number: 060E
Signing time: Sun 26 Oct 2025 15:00:43 +0000
Manifest this update: Sun 26 Oct 2025 15:00:43 +0000
Manifest next update: Mon 27 Oct 2025 15:00:43 +0000
Files and hashes: 1: tSYSYm63yj3qobuZYMSr1LAsH4E.roa (hash: e9vbUkUz5x9f5ya8J4QgHE0l9ibgPIgGHQ86whMQdU8=)
2: xcSzrlnZgfJQzIfatZeFSr7XowA.crl (hash: 9+QgXUVHnknEeDP2C9dn85NfDN/tAQFOLNbAby53tfA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2e/9f54a6-933f-47de-8726-eddf527e8f2d/1/xcSzrlnZgfJQzIfatZeFSr7XowA.crl
rsync://rpki.ripe.net/repository/DEFAULT/2e/9f54a6-933f-47de-8726-eddf527e8f2d/1/xcSzrlnZgfJQzIfatZeFSr7XowA.mft
rsync://rpki.ripe.net/repository/DEFAULT/xcSzrlnZgfJQzIfatZeFSr7XowA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 27 Oct 2025 15:00:43 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:21:09:37:d5:a0:2c:c7:b7:45:e4:6c:49:c6:88:24:a6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c5c4b3ae59d981f250cc87dab597854abed7a300
Validity
Not Before: Oct 26 15:00:43 2025 GMT
Not After : Oct 27 15:00:43 2025 GMT
Subject: CN=b248c9f63aa9a0d58af1857643baab9ef916cafa
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dc:a1:bc:42:ef:c4:79:21:5b:6b:6e:2d:b4:ec:
80:68:1b:2c:3c:de:af:61:6e:bc:d6:8e:68:3d:e2:
41:28:d2:d2:e1:ef:00:9e:49:95:49:a8:8b:bf:9b:
65:5c:0e:6f:8e:4a:3a:11:bb:8d:60:cd:7f:7e:86:
15:0c:68:34:86:4d:12:d1:0b:6b:c8:fd:76:c8:fa:
cf:f4:79:07:3c:5e:67:f3:e1:fc:36:85:02:a8:0d:
69:3c:c8:8d:51:be:2f:ad:35:a1:7b:bb:df:46:ae:
b3:fd:d7:41:af:90:46:8e:7f:60:ef:40:1a:c4:33:
59:af:a7:65:7d:51:22:0e:5d:7b:54:c8:78:67:08:
5a:31:b2:93:23:7d:68:ff:c9:f1:f0:4d:03:9b:c2:
e3:fe:4c:64:cb:e5:d4:20:ee:bf:fe:9f:c5:89:eb:
a5:18:85:3a:a9:32:c5:3b:0d:5a:09:ac:1f:49:f6:
2a:3c:85:85:2e:50:f1:fc:1c:5a:90:77:85:28:1b:
f7:54:8f:ee:97:23:d2:71:dc:76:72:dc:cd:84:98:
e9:85:da:e9:55:90:6b:22:40:17:4b:9a:7e:a6:f0:
67:97:35:c7:d9:fc:41:c2:b4:04:07:aa:13:e4:6b:
56:e3:4a:b8:b4:a3:6c:26:2b:1d:11:ea:70:8a:da:
b2:cd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B2:48:C9:F6:3A:A9:A0:D5:8A:F1:85:76:43:BA:AB:9E:F9:16:CA:FA
X509v3 Authority Key Identifier:
keyid:C5:C4:B3:AE:59:D9:81:F2:50:CC:87:DA:B5:97:85:4A:BE:D7:A3:00
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xcSzrlnZgfJQzIfatZeFSr7XowA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2e/9f54a6-933f-47de-8726-eddf527e8f2d/1/xcSzrlnZgfJQzIfatZeFSr7XowA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2e/9f54a6-933f-47de-8726-eddf527e8f2d/1/xcSzrlnZgfJQzIfatZeFSr7XowA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
07:63:40:9f:eb:f5:c1:92:53:d2:a7:ef:2e:d1:91:48:ff:0a:
85:2b:71:07:cc:c3:f6:f2:aa:34:07:4d:8c:06:87:cc:82:96:
8e:9f:3a:01:5e:f5:c6:13:aa:82:6c:97:0c:44:87:7b:09:48:
62:84:bf:70:e5:fc:5e:e4:d2:97:6c:0c:3a:60:b8:b4:32:8a:
67:7c:2b:68:f1:4c:05:5a:25:f9:45:8b:ba:e1:53:8b:81:80:
86:6d:99:ac:a7:9f:4e:3d:5a:31:a8:db:e0:a5:5e:a7:ad:6a:
e1:de:73:4a:74:d6:21:47:b7:4b:91:13:cf:c5:c8:85:0b:f0:
49:f4:9d:d6:5c:7e:a4:e0:cd:e1:88:9e:68:d4:62:4e:9c:6d:
dc:a3:91:79:68:40:53:f1:99:7b:43:f4:b5:5c:2a:51:b2:23:
e0:36:77:bc:83:09:18:e6:5d:15:77:da:20:b6:16:25:4c:c2:
c0:43:da:12:c8:5b:47:5f:78:a3:69:9d:84:ee:f9:68:44:9a:
13:4c:f6:d3:c0:72:d7:20:89:65:5c:73:68:6f:e8:56:b5:a2:
a1:bc:a4:dc:ab:84:8d:b7:2b:bf:b7:0e:89:1f:b0:a7:12:e3:
31:46:f0:dc:be:9e:4a:22:b5:93:cf:f5:9e:42:18:94:61:f7:
4e:d7:ab:d6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Oct 27 01:35:38 2025 by rpki-client