Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/71/bb2b75-bc02-4a6b-98d6-d84e6d3af975/1/xTtM8KdHHwAPilagSbFjlnzDvZk.mft
File: xTtM8KdHHwAPilagSbFjlnzDvZk.mft (raw, json)
Hash identifier: 4sLfRLc0PaT1rpOhs8amoOfNiyU1X5YFvouWnAc72oU=
Subject key identifier: 2E:34:1B:1A:DC:B3:85:9A:D9:08:AE:CB:7C:1C:FC:F9:A4:E2:9A:02
Authority key identifier: C5:3B:4C:F0:A7:47:1F:00:0F:8A:56:A0:49:B1:63:96:7C:C3:BD:99
Certificate issuer: /CN=c53b4cf0a7471f000f8a56a049b163967cc3bd99
Certificate serial: 019A7149DC54782B094361A0509F94C65A49
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xTtM8KdHHwAPilagSbFjlnzDvZk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/71/bb2b75-bc02-4a6b-98d6-d84e6d3af975/1/xTtM8KdHHwAPilagSbFjlnzDvZk.mft
Manifest number: 163D
Signing time: Tue 11 Nov 2025 05:00:56 +0000
Manifest this update: Tue 11 Nov 2025 05:00:56 +0000
Manifest next update: Wed 12 Nov 2025 05:00:56 +0000
Files and hashes: 1: 602Z4NiRUVoUbtoD2a1_hKZKM5w.roa (hash: 3NgwOwVM6/UTanDsySZE3RJFx37z0Ri4EFGUt0jIqTA=)
2: xTtM8KdHHwAPilagSbFjlnzDvZk.crl (hash: 1+JT0rv8CnTU9aq0lTgIkKmrwPBVrerEvTbJpZInKl0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/71/bb2b75-bc02-4a6b-98d6-d84e6d3af975/1/xTtM8KdHHwAPilagSbFjlnzDvZk.crl
rsync://rpki.ripe.net/repository/DEFAULT/71/bb2b75-bc02-4a6b-98d6-d84e6d3af975/1/xTtM8KdHHwAPilagSbFjlnzDvZk.mft
rsync://rpki.ripe.net/repository/DEFAULT/xTtM8KdHHwAPilagSbFjlnzDvZk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 12 Nov 2025 05:00:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:71:49:dc:54:78:2b:09:43:61:a0:50:9f:94:c6:5a:49
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c53b4cf0a7471f000f8a56a049b163967cc3bd99
Validity
Not Before: Nov 11 05:00:56 2025 GMT
Not After : Nov 12 05:00:56 2025 GMT
Subject: CN=2e341b1adcb3859ad908aecb7c1cfcf9a4e29a02
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:eb:91:28:3e:03:bd:61:31:0e:d9:20:10:bc:dd:
bd:19:f6:f3:fa:95:8d:05:c0:d9:8b:34:7e:64:ed:
c8:a0:45:f7:48:bd:e9:48:6b:78:37:2e:14:c9:86:
96:6b:0f:0a:b3:1c:e0:0c:3d:2b:b3:a6:0c:fe:51:
c6:ff:0f:75:be:56:23:4c:f4:57:39:87:df:da:c2:
17:a4:3f:d3:00:be:e6:a1:70:1c:77:b8:80:e0:52:
60:74:4d:27:25:25:16:36:00:1b:6c:f5:81:92:e8:
e2:14:7a:e0:0a:e5:d8:ea:4a:8d:da:8f:ee:d4:01:
f4:c8:1f:82:28:2f:f7:36:7b:22:6d:47:b3:d1:88:
e2:42:b6:d3:0d:cc:7a:dd:ae:72:01:ba:11:e1:0e:
b5:7f:0d:43:7e:33:12:e2:a4:f9:a2:0a:f5:22:c8:
cb:d8:74:b2:12:49:a9:e7:e3:7c:02:65:0a:98:af:
f2:4c:90:be:46:c6:d0:81:26:1b:89:b8:05:81:b8:
1a:81:98:64:f1:d7:38:02:9b:4d:f0:05:04:04:08:
f8:b9:d5:a9:2b:53:4f:e6:91:8f:07:3f:dd:ea:9d:
bc:ba:36:61:04:e0:fc:7c:c0:5f:0a:23:c4:5d:05:
52:a3:e1:96:29:29:31:5f:2d:96:cd:47:c1:f0:e9:
6f:f3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2E:34:1B:1A:DC:B3:85:9A:D9:08:AE:CB:7C:1C:FC:F9:A4:E2:9A:02
X509v3 Authority Key Identifier:
keyid:C5:3B:4C:F0:A7:47:1F:00:0F:8A:56:A0:49:B1:63:96:7C:C3:BD:99
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xTtM8KdHHwAPilagSbFjlnzDvZk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/71/bb2b75-bc02-4a6b-98d6-d84e6d3af975/1/xTtM8KdHHwAPilagSbFjlnzDvZk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/71/bb2b75-bc02-4a6b-98d6-d84e6d3af975/1/xTtM8KdHHwAPilagSbFjlnzDvZk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
4f:02:1b:e4:06:9f:cd:04:6c:c4:82:82:e2:a7:a0:cf:e4:8a:
11:c3:d1:30:23:fc:7b:07:09:44:2c:f1:8e:a9:b0:2c:ce:ff:
6e:e8:ab:be:ac:b4:f8:54:cc:e3:a5:f2:33:f6:49:44:cd:71:
fe:7c:fd:2b:ea:58:5f:bd:91:5a:0e:28:73:82:62:48:89:df:
f0:e8:1a:ea:11:d9:29:00:bd:6d:a7:a1:94:3f:83:59:0f:b6:
d1:eb:4b:8a:64:9f:49:77:80:cc:ab:1f:53:36:8a:a3:48:5f:
34:f0:93:40:ec:04:f4:6c:f4:80:a0:ec:d2:d9:c9:68:fc:95:
94:66:16:8e:32:50:ac:7b:49:14:41:38:15:ae:5e:77:46:79:
eb:9c:39:5f:7a:e3:b6:3d:6e:59:7a:31:a9:19:b3:03:d1:68:
8d:71:f2:d5:39:86:0b:dd:7b:43:8c:ce:80:1a:93:d0:22:90:
fb:7d:87:24:a5:75:2b:8e:2c:38:1c:0a:eb:e4:aa:4b:15:3d:
9a:f3:2a:39:41:ea:a1:77:c7:72:98:e8:83:52:c3:fb:c8:70:
80:6b:2f:58:a0:dc:6a:c6:3c:41:ae:c6:6d:98:79:89:3c:7e:
73:39:b8:b3:e8:5c:c5:ad:64:99:19:ba:3f:e4:19:ae:74:28:
48:ab:03:ee
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 11 14:05:30 2025 by rpki-client