Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/95/13dc38-2e75-4b07-bef0-e1ea453c5257/1/XfnoVvBJXISQ1RJOjPuvCNcN-xc.mft
File: XfnoVvBJXISQ1RJOjPuvCNcN-xc.mft (raw, json)
Hash identifier: 4wGzjJRsGa5rfurFG2I5IlpQvIOSMzpo6xutKHA/lX8=
Subject key identifier: 58:9B:FD:2E:1D:AD:45:BC:B9:7C:8A:F6:24:2E:B4:8B:87:55:64:08
Authority key identifier: 5D:F9:E8:56:F0:49:5C:84:90:D5:12:4E:8C:FB:AF:08:D7:0D:FB:17
Certificate issuer: /CN=5df9e856f0495c8490d5124e8cfbaf08d70dfb17
Certificate serial: 019A209ADD5E586DFAB15101C3F884EFB2FE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XfnoVvBJXISQ1RJOjPuvCNcN-xc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/95/13dc38-2e75-4b07-bef0-e1ea453c5257/1/XfnoVvBJXISQ1RJOjPuvCNcN-xc.mft
Manifest number: 02D2
Signing time: Sun 26 Oct 2025 13:00:10 +0000
Manifest this update: Sun 26 Oct 2025 13:00:10 +0000
Manifest next update: Mon 27 Oct 2025 13:00:10 +0000
Files and hashes: 1: X7HkSzc73grEKj4u4ebonuY_N3k.roa (hash: OyEQG3xPXjnpnin1BNjI7sPjB8DI9jWlTT019Ki3K7k=)
2: XfnoVvBJXISQ1RJOjPuvCNcN-xc.crl (hash: tTCPXDVcSToxw3W9GtqhwgCse43KwbGLwiywT9o4NFE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/95/13dc38-2e75-4b07-bef0-e1ea453c5257/1/XfnoVvBJXISQ1RJOjPuvCNcN-xc.crl
rsync://rpki.ripe.net/repository/DEFAULT/95/13dc38-2e75-4b07-bef0-e1ea453c5257/1/XfnoVvBJXISQ1RJOjPuvCNcN-xc.mft
rsync://rpki.ripe.net/repository/DEFAULT/XfnoVvBJXISQ1RJOjPuvCNcN-xc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 27 Oct 2025 12:00:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:20:9a:dd:5e:58:6d:fa:b1:51:01:c3:f8:84:ef:b2:fe
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5df9e856f0495c8490d5124e8cfbaf08d70dfb17
Validity
Not Before: Oct 26 13:00:10 2025 GMT
Not After : Oct 27 13:00:10 2025 GMT
Subject: CN=589bfd2e1dad45bcb97c8af6242eb48b87556408
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:f5:a5:42:74:0d:50:1b:ff:f0:50:c4:22:d7:
f6:47:54:22:f0:1c:9a:bf:15:e9:f0:04:97:bf:10:
1e:5e:18:f4:5d:b7:5f:b2:e9:4b:27:1b:49:ad:be:
0c:8c:90:29:41:95:e2:d3:fa:44:c3:7e:8e:b7:12:
fb:53:75:e1:39:72:96:6e:0b:98:d0:dc:cd:7e:40:
40:a0:82:c0:90:cd:61:28:9d:bb:a9:da:99:8a:43:
de:49:17:1a:1b:d2:06:d4:2d:73:85:d8:dd:21:70:
c5:87:39:f4:28:17:16:75:4c:99:f1:51:a8:49:3d:
04:74:ff:7b:40:0e:c3:92:07:91:57:9a:01:d3:d1:
c3:95:4f:ca:2e:62:a7:11:38:cd:2f:c6:f3:1e:5e:
c2:de:3d:10:ee:e4:58:64:2e:c7:cf:23:9f:5a:ce:
51:3c:29:c7:2d:77:87:cb:ca:89:8a:bb:bb:ea:7c:
74:ba:90:e4:b3:34:df:99:99:55:9f:b3:45:28:2b:
be:c5:37:d1:f3:15:81:06:b7:58:07:37:ac:f1:b2:
f1:c9:4d:4b:1f:52:6e:eb:9a:2f:dc:28:a6:e9:00:
b7:eb:be:93:48:93:cf:3b:94:b2:f8:bf:e3:ba:94:
1d:9a:a5:37:d2:98:2e:55:74:ea:d2:48:86:c4:33:
bf:15
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
58:9B:FD:2E:1D:AD:45:BC:B9:7C:8A:F6:24:2E:B4:8B:87:55:64:08
X509v3 Authority Key Identifier:
keyid:5D:F9:E8:56:F0:49:5C:84:90:D5:12:4E:8C:FB:AF:08:D7:0D:FB:17
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XfnoVvBJXISQ1RJOjPuvCNcN-xc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/95/13dc38-2e75-4b07-bef0-e1ea453c5257/1/XfnoVvBJXISQ1RJOjPuvCNcN-xc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/95/13dc38-2e75-4b07-bef0-e1ea453c5257/1/XfnoVvBJXISQ1RJOjPuvCNcN-xc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
42:c2:c8:a3:a2:9f:a6:02:aa:29:f4:a5:49:8c:30:72:48:04:
e7:b0:f5:96:4e:84:8a:31:0e:2d:0e:7b:58:c1:cb:e8:a2:34:
e1:d0:06:65:07:3d:61:1e:48:85:ff:a4:6c:24:50:55:da:b5:
ac:58:1f:58:08:eb:c2:94:09:b0:61:a0:ab:51:26:8b:f6:ea:
a6:c4:c1:08:f0:91:a0:92:26:e7:c7:a7:c7:32:60:79:b9:1b:
1a:5e:a6:ac:5b:af:9d:d7:de:67:30:1f:c2:93:0d:07:94:b4:
b3:74:55:a4:8d:5c:a9:06:a3:c4:56:a0:3e:b8:8f:62:a9:44:
a6:2d:bc:d7:23:b4:ec:aa:8d:29:85:8e:d5:15:4f:93:fe:54:
38:ef:f6:19:72:9a:da:3b:64:29:b1:27:1b:c3:69:12:c8:10:
3b:57:93:2f:dc:7d:c5:e6:dc:0c:84:4c:93:ce:c0:e9:a6:3b:
0b:cc:9b:61:a7:0d:27:b8:9a:c2:54:b0:bb:9a:05:91:6c:6c:
7b:d1:f2:a9:fd:72:02:c6:ea:40:8a:ff:7f:8a:e7:16:bf:f1:
22:38:1e:fc:45:45:f0:f7:a2:1e:76:cf:66:15:39:a1:8f:cc:
5b:5c:ef:13:1f:a2:d5:d4:c0:f7:5d:f4:96:23:54:32:1b:48:
5e:69:cc:8c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 26 19:06:23 2025 by rpki-client