Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5f/186bf2-fb88-4728-bf67-5a1e5fa73e4d/1/xsz5zpfRIy4BYvzNQ_YMTnmDHho.mft
File: xsz5zpfRIy4BYvzNQ_YMTnmDHho.mft (raw, json)
Hash identifier: L3m7kjJxkwoeQ4VOhfNSfvsL+nEv7N0s9oBxGAjtecw=
Subject key identifier: D3:42:28:A2:4D:9E:3A:F7:08:F5:AB:84:C9:8A:15:28:91:6B:97:CA
Authority key identifier: C6:CC:F9:CE:97:D1:23:2E:01:62:FC:CD:43:F6:0C:4E:79:83:1E:1A
Certificate issuer: /CN=c6ccf9ce97d1232e0162fccd43f60c4e79831e1a
Certificate serial: 019A71B8C27D7478D34141F6100E7F54F058
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xsz5zpfRIy4BYvzNQ_YMTnmDHho.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5f/186bf2-fb88-4728-bf67-5a1e5fa73e4d/1/xsz5zpfRIy4BYvzNQ_YMTnmDHho.mft
Manifest number: 0E7D
Signing time: Tue 11 Nov 2025 07:02:05 +0000
Manifest this update: Tue 11 Nov 2025 07:02:05 +0000
Manifest next update: Wed 12 Nov 2025 07:02:05 +0000
Files and hashes: 1: xsz5zpfRIy4BYvzNQ_YMTnmDHho.crl (hash: jds8YdZCQxXoWqh6C1qlu3MBKAY1cSpPLPjrtf9xtuw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5f/186bf2-fb88-4728-bf67-5a1e5fa73e4d/1/xsz5zpfRIy4BYvzNQ_YMTnmDHho.crl
rsync://rpki.ripe.net/repository/DEFAULT/5f/186bf2-fb88-4728-bf67-5a1e5fa73e4d/1/xsz5zpfRIy4BYvzNQ_YMTnmDHho.mft
rsync://rpki.ripe.net/repository/DEFAULT/xsz5zpfRIy4BYvzNQ_YMTnmDHho.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 12 Nov 2025 07:02:05 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:71:b8:c2:7d:74:78:d3:41:41:f6:10:0e:7f:54:f0:58
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c6ccf9ce97d1232e0162fccd43f60c4e79831e1a
Validity
Not Before: Nov 11 07:02:05 2025 GMT
Not After : Nov 12 07:02:05 2025 GMT
Subject: CN=d34228a24d9e3af708f5ab84c98a1528916b97ca
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:7a:a9:0a:89:50:67:4c:e2:b1:47:43:0b:bf:
a1:16:cd:47:42:f3:c4:60:fb:f1:3a:4c:97:71:4c:
07:8f:00:0d:c9:4a:dd:87:f4:c9:3a:91:7a:6d:cb:
98:90:89:95:4a:f8:7d:e5:05:a7:2a:a4:cd:f6:91:
82:30:68:4b:43:6c:76:3b:7e:3b:16:93:7a:2c:74:
ff:46:b6:63:0c:ae:50:2f:b9:13:81:1b:67:69:0f:
79:b9:f2:90:b7:90:04:bf:0c:87:2d:a6:7a:9f:69:
6a:2a:dc:fd:94:91:ee:c4:7f:c0:04:02:49:1e:50:
cd:60:6d:d2:f7:ba:27:b9:48:fb:c3:04:aa:f7:fb:
1e:5d:35:bc:03:11:82:76:26:50:e7:1b:f7:14:e8:
be:0d:31:9b:f3:3b:63:23:c9:47:4c:61:73:9a:c8:
4c:22:28:52:27:13:7f:98:e8:7b:83:76:bf:e7:db:
ff:45:10:7c:85:20:05:78:45:66:07:d6:cd:34:3d:
68:9d:49:a6:3f:62:c2:fe:e6:4f:a9:a1:8c:52:85:
1b:2d:5f:46:57:b3:4c:21:d7:55:c7:f3:eb:51:12:
67:66:77:3c:8a:1e:e9:9f:a2:de:53:4b:4e:21:1e:
0c:4f:9b:6c:6d:52:a7:02:06:04:c5:f5:62:66:45:
06:9d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D3:42:28:A2:4D:9E:3A:F7:08:F5:AB:84:C9:8A:15:28:91:6B:97:CA
X509v3 Authority Key Identifier:
keyid:C6:CC:F9:CE:97:D1:23:2E:01:62:FC:CD:43:F6:0C:4E:79:83:1E:1A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xsz5zpfRIy4BYvzNQ_YMTnmDHho.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5f/186bf2-fb88-4728-bf67-5a1e5fa73e4d/1/xsz5zpfRIy4BYvzNQ_YMTnmDHho.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5f/186bf2-fb88-4728-bf67-5a1e5fa73e4d/1/xsz5zpfRIy4BYvzNQ_YMTnmDHho.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
33:2b:c2:0c:1c:d8:94:74:a8:da:36:be:50:ae:21:a8:58:69:
0f:ba:b9:77:f4:72:0f:b0:d5:3e:11:d9:86:8d:4c:83:e3:14:
98:98:7d:95:ac:45:59:7b:b7:da:1b:c8:79:d3:af:e0:aa:ff:
98:dc:59:9b:fc:23:55:b6:ec:e2:e1:03:28:2f:ae:cd:b1:84:
7e:1f:e6:80:91:40:b3:7c:6e:e7:57:06:90:51:f1:d5:34:86:
08:e5:c8:fd:b5:33:0d:36:77:cd:f6:37:09:e6:b8:e8:59:33:
79:b0:7d:da:40:95:86:4f:57:12:df:1c:8e:da:e6:19:85:26:
38:57:0e:7b:2c:91:0b:67:81:a9:9d:6e:60:d8:e1:aa:92:c2:
7b:74:46:cb:60:1b:95:0d:e9:58:5a:fb:a6:b7:5e:38:b3:73:
27:85:1d:f8:72:5e:08:db:4f:d8:94:02:61:1c:a2:0d:79:52:
57:0d:0a:8f:ca:0f:da:33:5e:3f:5e:86:02:1d:c7:0f:b7:a6:
a5:d8:d6:cc:f7:ef:92:ec:8f:46:88:52:28:12:27:59:8d:af:
60:b9:27:8a:00:70:09:86:73:7f:5d:5a:de:5d:6c:69:87:7f:
2c:c0:77:a6:7a:e6:96:36:ad:ba:1f:53:33:ab:04:08:d2:08:
7b:df:b4:51
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 11 13:00:26 2025 by rpki-client