Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/56/161d2f-ec87-4718-9364-fa2c15371726/1/XyoTPsL-YGe1ZJboGdW_tORHH5Q.mft
File: XyoTPsL-YGe1ZJboGdW_tORHH5Q.mft (raw, json)
Hash identifier: ux5yRWTemZXqQ1dGZstwKijP1BDAliEcpurIRXBlkJw=
Subject key identifier: A0:7F:BE:F2:AE:A3:E4:A3:78:CC:60:FA:AD:12:63:1A:5E:E4:7A:EE
Authority key identifier: 5F:2A:13:3E:C2:FE:60:67:B5:64:96:E8:19:D5:BF:B4:E4:47:1F:94
Certificate issuer: /CN=5f2a133ec2fe6067b56496e819d5bfb4e4471f94
Certificate serial: 019A7112EE8D8CCE9DFB32B575D2FAFBD9DB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XyoTPsL-YGe1ZJboGdW_tORHH5Q.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/56/161d2f-ec87-4718-9364-fa2c15371726/1/XyoTPsL-YGe1ZJboGdW_tORHH5Q.mft
Manifest number: 092F
Signing time: Tue 11 Nov 2025 04:00:57 +0000
Manifest this update: Tue 11 Nov 2025 04:00:57 +0000
Manifest next update: Wed 12 Nov 2025 04:00:57 +0000
Files and hashes: 1: XyoTPsL-YGe1ZJboGdW_tORHH5Q.crl (hash: q2alhnVbUi0VNBu3PndPfJzUBGSm6GeBANwKhldlAPc=)
2: zw3OOzLu7F0rCvVUhFlHNjK6_48.roa (hash: EC4+NtSiW4UmHKtwZdLsHrR4X7fUOJDCpzkjNoARw5k=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/56/161d2f-ec87-4718-9364-fa2c15371726/1/XyoTPsL-YGe1ZJboGdW_tORHH5Q.crl
rsync://rpki.ripe.net/repository/DEFAULT/56/161d2f-ec87-4718-9364-fa2c15371726/1/XyoTPsL-YGe1ZJboGdW_tORHH5Q.mft
rsync://rpki.ripe.net/repository/DEFAULT/XyoTPsL-YGe1ZJboGdW_tORHH5Q.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 12 Nov 2025 04:00:57 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:71:12:ee:8d:8c:ce:9d:fb:32:b5:75:d2:fa:fb:d9:db
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5f2a133ec2fe6067b56496e819d5bfb4e4471f94
Validity
Not Before: Nov 11 04:00:57 2025 GMT
Not After : Nov 12 04:00:57 2025 GMT
Subject: CN=a07fbef2aea3e4a378cc60faad12631a5ee47aee
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:70:a4:2a:61:71:fd:00:b5:a0:11:f2:3f:ca:
d6:d6:09:e1:b9:16:7e:92:7a:32:ca:d1:33:be:4e:
f9:ef:56:cd:ab:e7:90:1b:da:9d:67:56:1e:c5:f5:
1a:50:40:9a:7c:0b:15:c5:73:c2:7c:6a:99:eb:7a:
8e:76:fc:56:82:87:33:e8:96:90:e0:c4:d1:67:bf:
4b:c0:77:3e:12:42:29:0b:34:f5:2f:f4:52:b0:19:
4e:11:90:ce:13:a4:9e:fa:67:c3:d6:36:66:71:80:
d6:08:ac:29:5c:bb:69:9e:10:b8:49:06:03:be:ab:
e2:96:38:d9:c3:e3:61:02:ec:2e:97:64:3f:ed:4e:
c3:68:a8:f7:9b:fe:79:82:c4:a5:c2:5b:3b:44:74:
89:23:27:4b:35:5f:d8:0e:4f:56:79:a4:2b:c2:43:
ac:74:74:b0:ac:4d:62:b3:49:10:1a:7f:be:8d:b0:
84:76:ac:98:60:d7:a1:ef:b2:33:25:cc:d2:e2:12:
bf:a7:8b:8d:72:2b:67:a3:e2:63:c3:d8:0b:18:65:
fe:b3:60:9a:39:65:e8:e2:a1:fd:54:8f:d7:d5:15:
b1:31:93:84:d5:63:57:de:6a:e8:11:c9:04:6d:7a:
2f:08:20:4f:3e:ce:a0:2b:67:c1:d4:8a:93:f0:f9:
73:f5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A0:7F:BE:F2:AE:A3:E4:A3:78:CC:60:FA:AD:12:63:1A:5E:E4:7A:EE
X509v3 Authority Key Identifier:
keyid:5F:2A:13:3E:C2:FE:60:67:B5:64:96:E8:19:D5:BF:B4:E4:47:1F:94
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XyoTPsL-YGe1ZJboGdW_tORHH5Q.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/56/161d2f-ec87-4718-9364-fa2c15371726/1/XyoTPsL-YGe1ZJboGdW_tORHH5Q.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/56/161d2f-ec87-4718-9364-fa2c15371726/1/XyoTPsL-YGe1ZJboGdW_tORHH5Q.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
46:78:8d:ad:03:2f:2f:b4:11:8c:8c:8a:8f:9e:5e:35:d3:f0:
40:ab:b1:20:69:92:ed:2b:16:fa:01:31:c7:8f:fb:12:68:48:
8d:1d:94:e9:bc:04:72:95:ae:15:d5:19:f4:87:b7:4a:b6:67:
e9:d8:d8:48:2d:01:49:47:e3:f0:40:ad:fc:be:a6:d6:be:d4:
d8:3f:9d:d2:7a:c9:fc:94:c6:ab:63:a1:1d:62:f8:79:19:81:
27:79:c5:70:47:2e:fb:2d:4d:b0:6d:33:b0:99:9f:2f:8a:8c:
b9:f9:17:6a:45:de:82:a0:4d:f4:29:fb:59:bc:99:df:c7:f4:
4d:86:fb:aa:76:4c:49:ed:37:80:5f:39:77:26:09:b3:b3:7e:
38:a1:8a:78:4a:cd:3a:9a:51:45:e9:09:44:22:b4:e8:fc:23:
8f:dd:95:16:b7:13:7b:67:fa:0a:3a:0b:64:9d:26:5b:32:94:
78:9f:64:af:3f:74:9c:83:30:d8:fa:5b:52:76:ef:4b:d1:d1:
42:a4:c3:60:96:a7:72:a3:c1:a8:5c:87:47:c1:f9:1d:65:cf:
6f:d5:e0:26:82:64:f2:2d:a2:ad:4a:02:f5:78:8a:97:b3:08:
3f:14:50:3f:80:0c:19:92:9b:67:29:91:e5:56:a8:5e:c0:56:
8f:d1:8b:20
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 11 11:33:49 2025 by rpki-client