Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/78/e8c2bd-98fa-4bdf-80bb-c5eee57ed2e6/1/xPLYuhsZIR-p-cDbVRVFEzECzLs.mft
File: xPLYuhsZIR-p-cDbVRVFEzECzLs.mft (raw, json)
Hash identifier: vGErd9AeXRbHKHZRanu1OG1py7hZOZrVdRrTo6HdbOk=
Subject key identifier: D8:A4:85:31:11:42:CD:F3:D9:BE:9F:77:69:ED:EF:EA:20:4D:19:21
Authority key identifier: C4:F2:D8:BA:1B:19:21:1F:A9:F9:C0:DB:55:15:45:13:31:02:CC:BB
Certificate issuer: /CN=c4f2d8ba1b19211fa9f9c0db551545133102ccbb
Certificate serial: 019A725CE25B26643651E5F43D579DF3F12D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xPLYuhsZIR-p-cDbVRVFEzECzLs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/78/e8c2bd-98fa-4bdf-80bb-c5eee57ed2e6/1/xPLYuhsZIR-p-cDbVRVFEzECzLs.mft
Manifest number: 15A9
Signing time: Tue 11 Nov 2025 10:01:21 +0000
Manifest this update: Tue 11 Nov 2025 10:01:21 +0000
Manifest next update: Wed 12 Nov 2025 10:01:21 +0000
Files and hashes: 1: 1-p8tFLtNjdsD9js8JfdcaeXLbes.roa (hash: SGKnAN0Wd2NDfYevBBpaQsdqn+ofJ6GFHE9Wy8o0+BA=)
2: xPLYuhsZIR-p-cDbVRVFEzECzLs.crl (hash: Cj1nGVonrczeZZ4qIbjGd7Yqo90GFSl2hwqKRx0rRHM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/78/e8c2bd-98fa-4bdf-80bb-c5eee57ed2e6/1/xPLYuhsZIR-p-cDbVRVFEzECzLs.crl
rsync://rpki.ripe.net/repository/DEFAULT/78/e8c2bd-98fa-4bdf-80bb-c5eee57ed2e6/1/xPLYuhsZIR-p-cDbVRVFEzECzLs.mft
rsync://rpki.ripe.net/repository/DEFAULT/xPLYuhsZIR-p-cDbVRVFEzECzLs.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 12 Nov 2025 09:00:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:72:5c:e2:5b:26:64:36:51:e5:f4:3d:57:9d:f3:f1:2d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c4f2d8ba1b19211fa9f9c0db551545133102ccbb
Validity
Not Before: Nov 11 10:01:21 2025 GMT
Not After : Nov 12 10:01:21 2025 GMT
Subject: CN=d8a485311142cdf3d9be9f7769edefea204d1921
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:96:f1:a9:4b:42:fb:b3:ee:9d:91:e4:ba:d7:
c9:33:91:c4:54:1b:e8:62:a8:49:ee:06:5f:5f:f7:
32:75:06:6c:bc:a8:72:41:a9:22:46:29:c5:c2:d0:
40:24:68:0b:19:8b:f3:b2:29:89:e9:e8:c2:a1:2b:
3d:4f:09:e3:6d:3f:99:2c:2e:1c:4a:5f:17:15:60:
1c:2a:44:56:01:4f:48:c0:03:d4:22:af:d4:b6:45:
25:a2:13:84:a8:d5:8b:12:ca:63:3d:50:2f:60:dc:
16:8d:63:35:9a:bb:4e:6f:90:66:f8:bc:68:20:82:
9a:1d:6c:0c:ea:44:20:06:45:10:9f:d1:a3:4a:36:
67:bd:62:25:a2:46:8d:a0:47:1c:f2:08:f0:c6:05:
5d:d0:5f:bc:2c:a3:c2:33:8a:53:71:0a:6d:b1:7b:
81:b9:7f:09:ee:51:97:57:78:8e:9a:e5:39:61:71:
37:bc:ae:19:f8:ed:e6:89:72:7b:48:20:3e:9e:f4:
f6:71:83:e8:97:8e:47:82:c5:15:c7:77:a8:bd:e0:
12:d6:27:4b:4e:36:45:00:39:4a:a0:89:f5:93:b3:
fe:92:b4:2c:af:fe:8a:5c:58:21:2c:ba:43:b8:c4:
aa:72:16:b7:ed:29:27:d7:78:0d:c2:a1:a5:04:b4:
b6:a9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D8:A4:85:31:11:42:CD:F3:D9:BE:9F:77:69:ED:EF:EA:20:4D:19:21
X509v3 Authority Key Identifier:
keyid:C4:F2:D8:BA:1B:19:21:1F:A9:F9:C0:DB:55:15:45:13:31:02:CC:BB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xPLYuhsZIR-p-cDbVRVFEzECzLs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/78/e8c2bd-98fa-4bdf-80bb-c5eee57ed2e6/1/xPLYuhsZIR-p-cDbVRVFEzECzLs.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/78/e8c2bd-98fa-4bdf-80bb-c5eee57ed2e6/1/xPLYuhsZIR-p-cDbVRVFEzECzLs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
20:23:c4:35:ae:8b:c2:bc:88:64:b8:c9:c5:54:8d:b7:fa:b2:
cf:2c:1a:d7:91:cb:c7:f2:dd:e4:48:39:1d:d0:23:a5:72:9f:
b2:08:93:09:aa:5a:72:76:e1:2b:c9:e8:21:e7:9c:98:9e:df:
94:a4:1c:de:99:0a:03:f0:ef:d7:24:3f:51:67:82:f3:d0:b0:
53:66:41:e3:be:e2:82:1e:90:cc:d1:42:05:0d:c2:6f:ba:3a:
86:7a:0a:69:9f:fd:bd:aa:28:d5:e5:30:63:80:4b:87:cf:98:
d9:2c:43:c1:98:f4:9e:5d:74:e6:9c:be:0f:f0:a3:7c:53:c8:
9e:47:32:1b:c8:4a:30:0e:1f:06:04:c8:39:17:2a:58:2b:cb:
de:9a:07:f3:f4:39:a9:46:4e:d2:6f:52:86:d9:c4:41:66:bb:
1a:f2:c2:35:23:cb:99:c9:5f:ce:95:62:9a:fd:9d:1a:d3:ed:
5e:13:a5:b8:72:ed:3e:e3:cf:61:fe:61:9d:0b:01:0e:ad:79:
8e:8d:c5:4f:90:db:05:d1:89:d5:c3:de:a3:6b:01:f0:be:3e:
62:1e:a5:b0:3a:99:1b:ca:14:59:75:c5:84:33:33:ca:68:24:
03:0e:68:62:7a:6e:14:e2:0f:90:78:32:6d:a4:d9:17:34:19:
b2:24:67:96
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 11 14:02:36 2025 by rpki-client