Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6e/dafef8-e227-42d3-807f-be810a050944/1/XaWsO7omBTjDM-bIYPI2ASyYZ10.mft
File: XaWsO7omBTjDM-bIYPI2ASyYZ10.mft (raw, json)
Hash identifier: dxTQo2Es0gUaFsJIGn1VAsh8dUzTncHRJiXOIw4IDoc=
Subject key identifier: 03:61:DA:84:A4:F1:20:6F:7B:FA:E2:44:98:C1:DB:64:1E:A3:9C:16
Authority key identifier: 5D:A5:AC:3B:BA:26:05:38:C3:33:E6:C8:60:F2:36:01:2C:98:67:5D
Certificate issuer: /CN=5da5ac3bba260538c333e6c860f236012c98675d
Certificate serial: 019A20D21475C4BB44EEE74829C2EC0DF0DB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XaWsO7omBTjDM-bIYPI2ASyYZ10.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6e/dafef8-e227-42d3-807f-be810a050944/1/XaWsO7omBTjDM-bIYPI2ASyYZ10.mft
Manifest number: 114F
Signing time: Sun 26 Oct 2025 14:00:29 +0000
Manifest this update: Sun 26 Oct 2025 14:00:29 +0000
Manifest next update: Mon 27 Oct 2025 14:00:29 +0000
Files and hashes: 1: XaWsO7omBTjDM-bIYPI2ASyYZ10.crl (hash: 74yEZuv2rOMDeuyTD0JerIWgathkgHdnCzYQMcSbC7U=)
2: wqBO6BWlzfH_2H8niSBLpjOhxuU.roa (hash: 5SSaQkHwuEWAOjr3+WUmjpF1re5YywGBgiTcg/L5BcI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/6e/dafef8-e227-42d3-807f-be810a050944/1/XaWsO7omBTjDM-bIYPI2ASyYZ10.crl
rsync://rpki.ripe.net/repository/DEFAULT/6e/dafef8-e227-42d3-807f-be810a050944/1/XaWsO7omBTjDM-bIYPI2ASyYZ10.mft
rsync://rpki.ripe.net/repository/DEFAULT/XaWsO7omBTjDM-bIYPI2ASyYZ10.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 27 Oct 2025 12:00:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:20:d2:14:75:c4:bb:44:ee:e7:48:29:c2:ec:0d:f0:db
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5da5ac3bba260538c333e6c860f236012c98675d
Validity
Not Before: Oct 26 14:00:29 2025 GMT
Not After : Oct 27 14:00:29 2025 GMT
Subject: CN=0361da84a4f1206f7bfae24498c1db641ea39c16
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:94:b5:49:b7:74:e7:4f:8e:c8:ec:0a:b9:29:04:
d8:3b:07:a1:19:ed:ff:5a:48:d5:80:33:c5:a6:87:
91:30:9b:d3:53:c4:d4:46:ac:02:07:af:36:22:d9:
de:aa:85:7f:f9:a0:a1:2b:90:2b:78:ae:b2:7f:25:
96:78:45:3d:43:40:ef:9d:89:8e:a1:dd:41:48:b2:
db:15:72:0e:44:e8:e8:f6:3b:ae:1c:73:5e:22:58:
b4:39:75:46:d0:02:64:37:53:a2:ae:a2:5b:fe:48:
c9:1b:ca:62:3d:7a:f4:6d:a3:8a:6f:4a:28:bc:25:
de:d3:1d:50:d7:4b:33:c7:0f:b8:74:62:3a:81:17:
91:bb:5b:5b:a8:ae:70:66:a4:34:03:1f:c8:d3:b5:
14:3d:dc:a7:8f:53:00:6f:50:11:d6:5c:04:b2:e0:
65:91:80:d1:c6:2d:da:46:62:3b:3e:44:5c:0d:68:
57:df:16:d1:bd:5e:1c:d3:af:72:12:fa:47:85:fe:
ab:52:59:b6:43:26:b3:e4:ca:8b:73:48:aa:e1:1e:
ae:74:20:a2:b2:af:bc:93:9a:58:51:1f:1e:ed:67:
3c:5f:55:82:64:ad:a6:10:47:54:93:4c:b4:7d:98:
d0:6e:f0:7d:5f:12:2f:b7:ba:42:98:60:3e:5e:d9:
28:71
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
03:61:DA:84:A4:F1:20:6F:7B:FA:E2:44:98:C1:DB:64:1E:A3:9C:16
X509v3 Authority Key Identifier:
keyid:5D:A5:AC:3B:BA:26:05:38:C3:33:E6:C8:60:F2:36:01:2C:98:67:5D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XaWsO7omBTjDM-bIYPI2ASyYZ10.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6e/dafef8-e227-42d3-807f-be810a050944/1/XaWsO7omBTjDM-bIYPI2ASyYZ10.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6e/dafef8-e227-42d3-807f-be810a050944/1/XaWsO7omBTjDM-bIYPI2ASyYZ10.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
76:c7:ad:a4:7b:ec:fb:39:1d:6e:3b:9a:78:00:a7:a8:e1:c0:
a3:4b:7d:0b:f7:e1:a4:0a:1d:03:0f:f7:ea:41:dd:3e:9b:17:
8b:65:f2:be:ce:46:15:c7:32:a2:54:8b:81:16:c5:b2:11:e4:
34:22:fc:ae:77:73:5d:9d:11:a5:79:e2:3f:de:39:ed:d6:e6:
52:25:d0:0e:2d:62:be:47:5e:04:e2:75:a0:99:37:e1:86:e0:
65:41:1c:d6:7e:35:99:83:3b:c2:43:36:81:55:09:5d:0b:dc:
4a:75:a8:87:c5:5b:6a:34:ae:fe:ba:c0:02:29:82:89:b3:76:
ce:ed:02:f6:fc:60:b6:c0:3d:1e:b5:94:db:9f:27:1b:1a:43:
00:db:b0:92:48:2f:b9:aa:0d:48:85:9a:66:23:9a:dc:bf:26:
10:71:c0:32:9b:b5:05:50:93:98:8f:cf:34:c9:fc:3f:ad:f4:
74:b3:56:7f:d9:f0:f5:3b:e4:b2:da:ce:be:e8:71:fc:b4:90:
d8:18:03:b7:1a:24:d3:17:19:47:53:81:30:c9:b5:eb:ea:08:
c9:62:8d:ba:8e:da:15:15:98:70:65:43:ba:1b:88:c4:bc:fe:
52:15:ab:79:d5:a7:fb:27:97:32:5e:04:b2:f5:13:c4:e1:02:
cf:08:54:b4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 26 20:43:35 2025 by rpki-client