Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/58/42e24c-21f5-441f-b6bc-c23d7adbebdc/1/500-XZlL7NPyWMQd858fY-xWPh0.mft
File: 500-XZlL7NPyWMQd858fY-xWPh0.mft (raw, json)
Hash identifier: tEjy9jc2KDfS8bFSNCe+uAhIXkObZEeva6BU5vSLfdk=
Subject key identifier: 48:E8:B6:83:F7:FE:63:05:E8:01:1F:71:46:FF:BE:65:08:32:52:F5
Authority key identifier: E7:4D:3E:5D:99:4B:EC:D3:F2:58:C4:1D:F3:9F:1F:63:EC:56:3E:1D
Certificate issuer: /CN=e74d3e5d994becd3f258c41df39f1f63ec563e1d
Certificate serial: 019A7112F41AA6D09C46C9F07477D11B0180
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/500-XZlL7NPyWMQd858fY-xWPh0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/58/42e24c-21f5-441f-b6bc-c23d7adbebdc/1/500-XZlL7NPyWMQd858fY-xWPh0.mft
Manifest number: 10C9
Signing time: Tue 11 Nov 2025 04:00:58 +0000
Manifest this update: Tue 11 Nov 2025 04:00:58 +0000
Manifest next update: Wed 12 Nov 2025 04:00:58 +0000
Files and hashes: 1: 500-XZlL7NPyWMQd858fY-xWPh0.crl (hash: figi5hFbc2ndJAAzIRv882TUJD/gf4DPDOie4Vz87IY=)
2: BBc69UDcCnvJ9YXOkYKIegaNiDE.roa (hash: u/teCtCSqk7whi20Ul6NWhHZ26QmJCDD43T9Guz4eqc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/58/42e24c-21f5-441f-b6bc-c23d7adbebdc/1/500-XZlL7NPyWMQd858fY-xWPh0.crl
rsync://rpki.ripe.net/repository/DEFAULT/58/42e24c-21f5-441f-b6bc-c23d7adbebdc/1/500-XZlL7NPyWMQd858fY-xWPh0.mft
rsync://rpki.ripe.net/repository/DEFAULT/500-XZlL7NPyWMQd858fY-xWPh0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 12 Nov 2025 04:00:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:71:12:f4:1a:a6:d0:9c:46:c9:f0:74:77:d1:1b:01:80
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e74d3e5d994becd3f258c41df39f1f63ec563e1d
Validity
Not Before: Nov 11 04:00:58 2025 GMT
Not After : Nov 12 04:00:58 2025 GMT
Subject: CN=48e8b683f7fe6305e8011f7146ffbe65083252f5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:1a:3b:85:62:33:d1:b0:cb:7d:41:9a:69:97:
53:86:e8:30:40:68:3b:f4:18:e8:ea:3b:d0:e6:34:
c6:b8:b0:84:e6:e6:5c:c9:1a:69:85:97:51:c9:66:
43:bb:48:ba:e5:da:44:22:c6:76:be:06:4d:24:4d:
5f:40:2b:c3:6a:84:55:d4:ae:59:8c:48:1f:1b:a6:
1a:ba:ac:15:8a:56:bf:54:6d:1b:b8:fa:9e:6f:7a:
4b:57:4d:44:11:75:10:93:d8:94:86:0a:c0:12:88:
25:72:b6:f8:6e:5d:ef:d9:8d:7c:4d:de:c7:42:47:
f5:ca:6a:fb:58:30:63:ed:01:ee:2d:83:ab:4f:91:
7e:33:71:c2:8f:91:51:bf:5b:68:b7:e3:f7:63:18:
48:9a:71:7d:fa:dc:78:bf:05:20:ca:f2:b8:d1:77:
cf:15:5e:2d:4e:f1:df:3e:a5:64:9a:09:87:60:1d:
5e:02:a4:ed:64:97:8a:e8:ac:4b:87:da:c7:76:eb:
b5:55:37:68:43:2d:66:79:19:2c:14:31:3a:48:e3:
a5:c6:09:75:38:30:57:b2:d2:d0:20:72:1b:3e:65:
d9:1d:94:dc:a8:31:5c:cb:33:1d:69:9d:77:57:e3:
3b:88:94:43:fb:f0:08:20:5d:55:72:be:64:ca:3a:
87:21
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
48:E8:B6:83:F7:FE:63:05:E8:01:1F:71:46:FF:BE:65:08:32:52:F5
X509v3 Authority Key Identifier:
keyid:E7:4D:3E:5D:99:4B:EC:D3:F2:58:C4:1D:F3:9F:1F:63:EC:56:3E:1D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/500-XZlL7NPyWMQd858fY-xWPh0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/58/42e24c-21f5-441f-b6bc-c23d7adbebdc/1/500-XZlL7NPyWMQd858fY-xWPh0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/58/42e24c-21f5-441f-b6bc-c23d7adbebdc/1/500-XZlL7NPyWMQd858fY-xWPh0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
92:90:32:bd:b0:51:b4:37:b0:c2:02:31:d9:e4:ff:a7:51:13:
ee:cf:ff:fd:b9:81:ef:8a:c8:11:d6:0b:d5:d5:95:67:93:01:
88:a3:3c:f3:16:d4:53:a1:95:eb:d6:9f:44:48:94:ec:90:19:
15:53:c3:44:86:bc:77:05:60:fb:08:e8:ef:45:ce:6f:75:9b:
6d:00:99:d0:cd:a5:18:35:a6:68:c1:60:78:d4:e6:9c:3a:8e:
84:51:2e:7d:5b:ba:34:4e:db:1e:a2:2d:e3:fe:a6:ab:b2:32:
c1:e5:97:67:23:57:2a:60:25:72:70:43:72:a5:b9:35:df:4f:
23:ce:51:d3:96:f5:22:27:a1:fa:7d:89:bb:f8:0b:03:3c:1e:
a6:99:63:44:de:dd:3a:69:36:ff:c9:27:99:c9:b9:52:3b:c3:
a3:58:5f:8e:d3:3e:f2:3a:18:8d:e5:95:79:de:4a:c5:7a:5a:
2e:27:41:e5:87:c9:ca:66:eb:88:b3:b3:18:88:1d:c7:a1:4d:
4c:12:8d:1a:15:df:67:73:0f:6e:dc:7c:52:f8:db:da:94:5e:
3e:41:2a:87:1b:6c:cf:f6:b3:e8:47:97:bc:2d:a6:cd:65:96:
c4:63:73:09:7d:46:54:ac:78:e8:8b:e1:fb:58:64:41:2a:34:
37:40:67:0e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 11 11:41:00 2025 by rpki-client