Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5a/587f7e-60cc-41a0-8869-4f8c638a72e1/1/XTu4SJFlHyA5zYGwtgkS98Dlz5Y.mft
File: XTu4SJFlHyA5zYGwtgkS98Dlz5Y.mft (raw, json)
Hash identifier: hDo6ENwkajUWe+JkkB+omP6OGxZzm2z/5yAajKjA5bI=
Subject key identifier: 30:54:9A:AC:A6:3D:94:47:1C:C6:46:C6:B8:6E:F8:67:51:58:79:46
Authority key identifier: 5D:3B:B8:48:91:65:1F:20:39:CD:81:B0:B6:09:12:F7:C0:E5:CF:96
Certificate issuer: /CN=5d3bb84891651f2039cd81b0b60912f7c0e5cf96
Certificate serial: 019A1C19D5A80572651D95B468F4D02373BD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XTu4SJFlHyA5zYGwtgkS98Dlz5Y.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5a/587f7e-60cc-41a0-8869-4f8c638a72e1/1/XTu4SJFlHyA5zYGwtgkS98Dlz5Y.mft
Manifest number: 1228
Signing time: Sat 25 Oct 2025 16:00:46 +0000
Manifest this update: Sat 25 Oct 2025 16:00:46 +0000
Manifest next update: Sun 26 Oct 2025 16:00:46 +0000
Files and hashes: 1: EOCWiGvbLbC8SrTdZuW8112GldA.roa (hash: 6TEyJTlSHuy3i9dMVFX2h1KeLM589ScTuB8gZ6GHeEg=)
2: XTu4SJFlHyA5zYGwtgkS98Dlz5Y.crl (hash: D1ZZ5t5oPJ1965c0RzPJw09DNnSdPA1lW1E8Q3KUMuE=)
3: ZSASssxXWzh67IcbvQuSjMbjXlE.roa (hash: 8NFvVB0e1Ed6PcQb0KzEDJBB77MUqbc2YSQy8ySf1Y4=)
4: iefIsjicRY6rMPB46yzGeoYmfDY.roa (hash: wYK+cODxbPgs0PQn468rpCusa1e+6M4kLS/qnuHcsvY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5a/587f7e-60cc-41a0-8869-4f8c638a72e1/1/XTu4SJFlHyA5zYGwtgkS98Dlz5Y.crl
rsync://rpki.ripe.net/repository/DEFAULT/5a/587f7e-60cc-41a0-8869-4f8c638a72e1/1/XTu4SJFlHyA5zYGwtgkS98Dlz5Y.mft
rsync://rpki.ripe.net/repository/DEFAULT/XTu4SJFlHyA5zYGwtgkS98Dlz5Y.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 26 Oct 2025 11:00:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:1c:19:d5:a8:05:72:65:1d:95:b4:68:f4:d0:23:73:bd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5d3bb84891651f2039cd81b0b60912f7c0e5cf96
Validity
Not Before: Oct 25 16:00:46 2025 GMT
Not After : Oct 26 16:00:46 2025 GMT
Subject: CN=30549aaca63d94471cc646c6b86ef86751587946
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:34:f9:6c:e7:a9:99:35:d4:b1:5d:3e:0b:90:
3c:c7:09:9b:3c:e1:b9:e3:61:36:bd:44:4b:32:fe:
95:2d:1b:06:a5:16:07:6e:e1:11:91:de:30:7f:1d:
38:ca:c1:81:f5:83:71:9c:98:ee:30:7a:46:f2:25:
3a:81:68:6a:bb:1d:16:04:79:d1:ee:08:d9:79:64:
1c:c1:68:e1:7f:e7:7b:58:05:75:b5:d8:3d:0a:e8:
8e:19:72:4e:3b:6d:5c:4f:f5:07:e8:fe:cd:88:b4:
33:56:cc:b3:4f:98:71:6b:35:86:56:f2:43:27:d7:
09:c8:95:a6:69:f7:10:b6:ae:5e:f0:77:1f:80:8c:
b2:a3:69:4f:b4:f5:c4:06:1b:0c:bc:4f:0d:53:b3:
06:dc:0a:18:25:82:2e:d6:a7:43:9c:62:55:5c:e6:
e6:f9:a4:d4:1f:4b:b7:dc:9f:7f:aa:00:5d:36:32:
a6:1d:82:19:be:48:de:00:3c:c7:0d:a9:ba:67:44:
b4:4f:28:cb:b4:05:d3:d6:89:6b:5a:9f:c1:e4:29:
6d:b5:20:41:ff:3b:25:5d:34:cc:ad:bb:cd:24:fc:
55:08:d3:9b:6c:c0:1c:fd:63:41:2c:09:fd:6c:bb:
de:e6:5d:d6:af:ff:6d:5d:1e:88:c4:e3:a2:14:f7:
49:51
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
30:54:9A:AC:A6:3D:94:47:1C:C6:46:C6:B8:6E:F8:67:51:58:79:46
X509v3 Authority Key Identifier:
keyid:5D:3B:B8:48:91:65:1F:20:39:CD:81:B0:B6:09:12:F7:C0:E5:CF:96
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XTu4SJFlHyA5zYGwtgkS98Dlz5Y.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/587f7e-60cc-41a0-8869-4f8c638a72e1/1/XTu4SJFlHyA5zYGwtgkS98Dlz5Y.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/587f7e-60cc-41a0-8869-4f8c638a72e1/1/XTu4SJFlHyA5zYGwtgkS98Dlz5Y.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
00:55:e1:9a:d2:b4:ca:e4:ca:5a:32:13:b5:dd:08:82:fc:0e:
7b:4f:c3:0e:e0:2a:78:0f:d9:fd:0c:de:57:d3:10:b4:21:85:
6e:a7:d2:a4:c5:33:cd:f7:69:e1:19:32:3f:4a:3a:8f:1c:33:
3a:07:42:1b:8e:7b:53:97:c4:d3:56:86:fe:0d:52:cd:34:07:
90:94:fe:7d:c7:fd:b9:9c:c5:41:3a:ff:55:59:5b:40:bd:47:
0a:58:4d:31:8b:45:4e:44:2f:57:04:0c:d6:08:9b:2a:78:df:
b3:6d:3b:94:ad:36:35:44:ef:61:3c:a7:0f:e0:cc:79:b3:17:
e4:e7:6b:76:ac:94:09:57:da:39:54:05:f4:0f:d7:30:b5:0b:
7b:6d:40:79:8e:45:c1:d9:86:7f:4d:04:2f:d9:f1:25:25:6a:
3b:ed:11:04:2f:f6:d9:43:aa:41:78:b6:93:68:95:7b:57:7b:
21:56:b1:a5:f3:a5:b2:b1:aa:cc:10:6c:37:51:63:dc:4f:ed:
20:06:78:b7:9b:37:e6:89:06:e3:d2:2f:5e:27:42:29:54:36:
00:91:b5:85:25:50:72:98:fe:69:f5:8d:b0:4a:5a:d9:69:2d:
3e:8e:a2:14:0f:29:e4:de:3f:bc:1e:f9:39:f4:98:55:fe:e4:
1f:4c:f7:5e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Oct 25 19:02:10 2025 by rpki-client