Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/57/862232-58d7-4c1d-b198-660411b9d167/1/XHbv8miEvwBiB9cis7AaRNK1YZk.mft
File: XHbv8miEvwBiB9cis7AaRNK1YZk.mft (raw, json)
Hash identifier: RICpgMMZpfLlTGPqag0yBQeTs9mgAjfrpSKexhoZ2FY=
Subject key identifier: 57:28:73:96:AE:EC:46:C5:DA:2A:E3:EE:E9:24:AF:ED:A3:D2:49:2C
Authority key identifier: 5C:76:EF:F2:68:84:BF:00:62:07:D7:22:B3:B0:1A:44:D2:B5:61:99
Certificate issuer: /CN=5c76eff26884bf006207d722b3b01a44d2b56199
Certificate serial: 019A71B8AC3E54D9F765DAB03BA843988F46
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XHbv8miEvwBiB9cis7AaRNK1YZk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/57/862232-58d7-4c1d-b198-660411b9d167/1/XHbv8miEvwBiB9cis7AaRNK1YZk.mft
Manifest number: 0F56
Signing time: Tue 11 Nov 2025 07:01:59 +0000
Manifest this update: Tue 11 Nov 2025 07:01:59 +0000
Manifest next update: Wed 12 Nov 2025 07:01:59 +0000
Files and hashes: 1: XHbv8miEvwBiB9cis7AaRNK1YZk.crl (hash: KQMRDhi8eXf8PwLDRJ3rS3WW/K0BEqjhF8gNQoIT070=)
2: aeqC4EE0KUZ0Hdgey5muRSCYEvc.roa (hash: aH7XcxnHv3qEq7LQXqlBVrjotePFAy5nc/77ZI52Ock=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/57/862232-58d7-4c1d-b198-660411b9d167/1/XHbv8miEvwBiB9cis7AaRNK1YZk.crl
rsync://rpki.ripe.net/repository/DEFAULT/57/862232-58d7-4c1d-b198-660411b9d167/1/XHbv8miEvwBiB9cis7AaRNK1YZk.mft
rsync://rpki.ripe.net/repository/DEFAULT/XHbv8miEvwBiB9cis7AaRNK1YZk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 12 Nov 2025 07:01:59 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:71:b8:ac:3e:54:d9:f7:65:da:b0:3b:a8:43:98:8f:46
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5c76eff26884bf006207d722b3b01a44d2b56199
Validity
Not Before: Nov 11 07:01:59 2025 GMT
Not After : Nov 12 07:01:59 2025 GMT
Subject: CN=57287396aeec46c5da2ae3eee924afeda3d2492c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:f0:37:31:87:4e:f4:8a:43:82:d1:dd:8a:26:
81:41:c3:e7:bc:c6:f7:a4:dd:6e:ac:79:d0:53:02:
9e:cf:12:ae:64:58:a8:c2:4c:40:f2:c2:3d:bd:52:
c9:65:f2:a2:2f:9d:cf:a4:16:10:60:aa:9e:0c:93:
13:dc:73:90:cf:b0:72:d8:a4:b2:4a:ee:76:d5:1c:
fa:59:07:9e:73:5a:21:ac:6b:1c:84:b8:66:09:b4:
23:99:1e:6f:04:e4:80:2f:77:2e:3a:32:87:89:26:
30:30:c6:c8:7d:dd:66:45:04:7c:54:c8:c2:e2:5c:
c9:11:24:57:f4:b7:96:c7:9e:30:c6:03:ac:8f:06:
f1:71:26:8f:3d:55:68:49:5f:a4:5d:e2:dd:e8:fe:
72:13:dd:55:7a:0a:79:c1:a5:05:77:d3:f0:20:c1:
5f:02:e3:71:ad:2c:2e:85:34:28:22:3b:82:d5:d7:
30:1a:a6:19:56:59:85:bf:a2:71:1d:6c:ff:34:26:
b5:e4:b1:86:0e:58:b6:84:79:e5:c2:ca:32:8f:a9:
bb:19:6a:d9:a6:e7:f2:2e:6a:12:69:dc:8c:5a:5d:
d6:a5:27:be:fb:ab:3c:63:f0:40:cc:f3:bd:48:d4:
d3:93:20:cd:d8:ff:78:a1:48:d1:f6:35:fb:64:b6:
7e:e7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
57:28:73:96:AE:EC:46:C5:DA:2A:E3:EE:E9:24:AF:ED:A3:D2:49:2C
X509v3 Authority Key Identifier:
keyid:5C:76:EF:F2:68:84:BF:00:62:07:D7:22:B3:B0:1A:44:D2:B5:61:99
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XHbv8miEvwBiB9cis7AaRNK1YZk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/57/862232-58d7-4c1d-b198-660411b9d167/1/XHbv8miEvwBiB9cis7AaRNK1YZk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/57/862232-58d7-4c1d-b198-660411b9d167/1/XHbv8miEvwBiB9cis7AaRNK1YZk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
5e:3f:2f:e3:98:88:7b:11:fa:a7:b0:94:94:ef:32:76:24:77:
51:97:91:16:7a:58:50:26:5a:25:3f:a7:39:37:90:d5:06:f7:
e2:52:c3:2b:bb:46:56:fa:9f:13:62:41:a2:e3:3a:c8:ef:89:
58:b8:bc:89:42:87:5f:d9:a1:44:0c:ea:2d:e7:1c:52:e0:21:
58:1d:08:41:34:3e:29:7e:ac:71:8c:3c:7d:e0:92:cb:d0:d7:
e9:d1:50:f2:61:3d:b1:28:54:05:50:48:9d:87:c8:6c:f3:40:
c1:00:f6:26:eb:0e:0b:9a:27:e7:f5:c3:3d:f7:bc:e8:81:8e:
b5:7a:bc:bc:dd:d9:c0:92:e9:f4:88:ad:2f:ba:a5:09:cd:2e:
37:6f:05:3f:c1:26:6e:dd:8f:b7:e7:90:a0:4e:ea:74:5a:05:
8f:e5:6e:89:60:e8:f7:0b:28:8b:7a:d7:84:c8:f0:82:e0:e1:
5f:13:d0:46:d0:a7:c6:d5:3c:50:ec:bb:d2:dd:5d:47:1c:3b:
82:af:8b:c2:c1:89:ea:bc:c4:9d:c8:c1:49:b9:46:ed:1a:93:
ad:89:6e:d7:d7:52:c0:70:7d:a7:82:76:ee:44:27:4c:d8:97:
6c:ae:dd:5e:91:f6:d7:b4:1f:8f:7b:08:41:a7:d2:2c:7e:e7:
d5:61:2e:22
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 11 15:16:47 2025 by rpki-client