Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/36/c79d13-9ea2-4eed-8dd2-cedab463ee5b/1/XYJmcuaPPaXbUO2ButuNM73M0ro.mft
File: XYJmcuaPPaXbUO2ButuNM73M0ro.mft (raw, json)
Hash identifier: onqXouubzsUkHtUrYJ1P1v5b9yyxVHJeP6lpOMaqXJ8=
Subject key identifier: D0:D3:57:0F:58:58:75:D2:43:82:8B:07:A5:90:F7:DA:A8:FE:B6:1E
Authority key identifier: 5D:82:66:72:E6:8F:3D:A5:DB:50:ED:81:BA:DB:8D:33:BD:CC:D2:BA
Certificate issuer: /CN=5d826672e68f3da5db50ed81badb8d33bdccd2ba
Certificate serial: 019A2779112F966B3A8E91A193D3168ABF65
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XYJmcuaPPaXbUO2ButuNM73M0ro.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/36/c79d13-9ea2-4eed-8dd2-cedab463ee5b/1/XYJmcuaPPaXbUO2ButuNM73M0ro.mft
Manifest number: 1334
Signing time: Mon 27 Oct 2025 21:00:36 +0000
Manifest this update: Mon 27 Oct 2025 21:00:36 +0000
Manifest next update: Tue 28 Oct 2025 21:00:36 +0000
Files and hashes: 1: XYJmcuaPPaXbUO2ButuNM73M0ro.crl (hash: CO5vvfNO8pyler0djYaj4NhIT32bm/MXM3/iQlP1qo8=)
2: uOaT4j9EVJiz8EIOTgjvWTshz84.roa (hash: 6VQK7lQU8B+WO6nBknTZwm7r/sjint5WViRnRUFwHxU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/36/c79d13-9ea2-4eed-8dd2-cedab463ee5b/1/XYJmcuaPPaXbUO2ButuNM73M0ro.crl
rsync://rpki.ripe.net/repository/DEFAULT/36/c79d13-9ea2-4eed-8dd2-cedab463ee5b/1/XYJmcuaPPaXbUO2ButuNM73M0ro.mft
rsync://rpki.ripe.net/repository/DEFAULT/XYJmcuaPPaXbUO2ButuNM73M0ro.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 28 Oct 2025 21:00:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:27:79:11:2f:96:6b:3a:8e:91:a1:93:d3:16:8a:bf:65
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5d826672e68f3da5db50ed81badb8d33bdccd2ba
Validity
Not Before: Oct 27 21:00:36 2025 GMT
Not After : Oct 28 21:00:36 2025 GMT
Subject: CN=d0d3570f585875d243828b07a590f7daa8feb61e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:d1:b6:36:b3:74:d3:ed:b5:06:51:c8:64:e5:
45:63:77:a6:e1:07:78:c9:13:c8:da:42:3c:ab:cf:
05:14:d9:88:c0:1d:0a:db:8d:25:59:8f:4b:c1:2a:
24:1e:df:b0:1a:87:a5:8d:5e:e8:94:3a:98:9f:8a:
73:f1:66:20:95:70:62:c3:1b:71:d5:97:d4:38:37:
22:fa:54:09:2a:f3:fc:0a:03:d2:68:1a:ec:bf:f1:
9c:d8:c5:de:69:34:ca:84:78:62:0c:b0:ef:9f:bc:
0e:30:f7:a7:31:a9:7e:af:40:58:17:80:22:6b:40:
be:36:d5:2c:b6:ac:e1:ac:7f:d4:e4:84:f4:a8:22:
95:1c:c0:bb:39:06:2e:2b:46:b0:1a:ab:fa:a9:1d:
f8:d4:e2:4a:08:8e:d2:e7:7f:98:6d:d1:8f:d6:cc:
c6:70:1c:1c:44:b9:b0:09:1c:6e:67:e1:74:c9:81:
a4:37:5a:e8:e0:0a:b8:0b:c8:e0:e3:e0:a4:63:b9:
ee:9b:eb:d7:1c:d9:0d:3d:09:db:36:71:35:7c:fb:
a9:09:82:8c:39:a3:ae:6d:51:5b:5b:d7:05:93:5e:
e5:d0:2a:ca:f5:f2:09:11:79:30:f1:68:34:88:1e:
cc:78:bc:b2:37:87:b9:4f:81:a6:b1:15:c8:4c:e9:
37:59
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D0:D3:57:0F:58:58:75:D2:43:82:8B:07:A5:90:F7:DA:A8:FE:B6:1E
X509v3 Authority Key Identifier:
keyid:5D:82:66:72:E6:8F:3D:A5:DB:50:ED:81:BA:DB:8D:33:BD:CC:D2:BA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XYJmcuaPPaXbUO2ButuNM73M0ro.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/36/c79d13-9ea2-4eed-8dd2-cedab463ee5b/1/XYJmcuaPPaXbUO2ButuNM73M0ro.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/36/c79d13-9ea2-4eed-8dd2-cedab463ee5b/1/XYJmcuaPPaXbUO2ButuNM73M0ro.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
93:0c:f9:d8:77:a4:b6:f9:3c:cf:c8:55:28:11:73:b4:61:3e:
e5:fa:cf:da:b0:cb:37:3c:0b:bb:55:53:8e:92:2d:68:0f:99:
10:25:03:ae:57:92:aa:88:fe:c7:4e:2d:17:ab:fd:15:01:28:
c4:7b:70:f2:1a:65:3f:b0:d4:56:00:32:65:65:c1:73:54:a8:
15:f1:fd:7d:1d:d6:7e:a8:49:b1:7c:18:74:d5:ed:e6:b3:fd:
24:5a:5d:0c:bb:c8:23:2b:9d:93:60:bd:a8:92:f9:62:cb:0e:
70:1e:bc:7a:9b:e0:9b:f2:b4:77:30:12:07:76:c6:55:96:db:
b8:e6:5f:57:70:1f:2f:4c:ff:71:7d:ce:96:62:c8:a2:f7:9d:
ae:94:46:0d:a6:95:2e:f8:48:61:79:10:a6:8e:f4:04:1a:7c:
72:53:37:1c:0b:7a:f7:68:7e:04:07:1b:db:3c:c9:af:16:93:
1b:4b:dd:c2:3a:f3:49:92:c8:30:e7:84:a7:1b:0b:7d:6e:5c:
82:a7:90:ef:b6:7f:0c:48:3c:df:63:8b:6b:e3:c4:b6:1a:37:
5b:a2:af:dd:48:bb:c8:2f:d3:29:f8:40:84:e0:d6:e6:44:e2:
6f:f7:35:61:f3:ff:d9:fd:48:1a:7b:6f:45:98:9f:12:96:c0:
96:35:e8:03
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Oct 28 04:44:26 2025 by rpki-client