Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a2/13f5f1-45b6-4bc1-b5a5-521fa41dfc96/1/1-XAEnLp_Oa7tMdZTE8e5U_P9oTU.mft
File: 1-XAEnLp_Oa7tMdZTE8e5U_P9oTU.mft (raw, json)
Hash identifier: CB5FVXS2pJi9MHl4rvySoW4eKi44h1lFgTYVnn85lYA=
Subject key identifier: 26:91:AC:28:D8:24:D9:18:E9:42:E2:0D:9A:C8:CA:15:90:D2:73:AA
Authority key identifier: F9:70:04:9C:BA:7F:39:AE:ED:31:D6:53:13:C7:B9:53:F3:FD:A1:35
Certificate issuer: /CN=f970049cba7f39aeed31d65313c7b953f3fda135
Certificate serial: 019A1E3EDB303F5FD1D34712A1A45AE912A7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1-XAEnLp_Oa7tMdZTE8e5U_P9oTU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a2/13f5f1-45b6-4bc1-b5a5-521fa41dfc96/1/1-XAEnLp_Oa7tMdZTE8e5U_P9oTU.mft
Manifest number: 1522
Signing time: Sun 26 Oct 2025 02:00:27 +0000
Manifest this update: Sun 26 Oct 2025 02:00:27 +0000
Manifest next update: Mon 27 Oct 2025 02:00:27 +0000
Files and hashes: 1: 1-XAEnLp_Oa7tMdZTE8e5U_P9oTU.crl (hash: uzX6Zw3PkXF+GDcJr2/iNlYXH9VwZ8Fh6dtjtJfEvAQ=)
2: CNq9H2OXEp4278EAIur7EjhdgiM.roa (hash: ezaoiiM4UlLTR0sbj1Fr7oZom9N7jm9fEV33MK67n/k=)
3: avwTDwXgj-XueUI8wn-hyOkB-tU.roa (hash: IktCfn+eBAhnVRfOZR4afgek+KYNeXmLk7tpJfljPc4=)
4: ei-lhbSyA6LHM30pnoTc676sVOk.roa (hash: BJvZcqOLIL3sVAhna5EPTZoiTPtvfxYPfeKNrqGIDHA=)
5: leLbvZk-ZLOHTx35H1teEVZvq_w.roa (hash: CF/SxDg4bOjmx2R5usAUeBgqRx+iarFbP3We+RdFgrY=)
6: uF3Ipp-IOmC2QxpujNdolHkmlLw.roa (hash: hlYEypQIjtWjQMSDZuN9bDWHcqbDbwOnFZm/mrxdTfU=)
7: vTpbvCLw317pUWZPp8_hDkh88VE.roa (hash: Xc88zcdf1KorCO6RA2gqcBm66DJNRYMneNP18O1Fg04=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a2/13f5f1-45b6-4bc1-b5a5-521fa41dfc96/1/1-XAEnLp_Oa7tMdZTE8e5U_P9oTU.crl
rsync://rpki.ripe.net/repository/DEFAULT/a2/13f5f1-45b6-4bc1-b5a5-521fa41dfc96/1/1-XAEnLp_Oa7tMdZTE8e5U_P9oTU.mft
rsync://rpki.ripe.net/repository/DEFAULT/1-XAEnLp_Oa7tMdZTE8e5U_P9oTU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 26 Oct 2025 19:59:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:1e:3e:db:30:3f:5f:d1:d3:47:12:a1:a4:5a:e9:12:a7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f970049cba7f39aeed31d65313c7b953f3fda135
Validity
Not Before: Oct 26 02:00:27 2025 GMT
Not After : Oct 27 02:00:27 2025 GMT
Subject: CN=2691ac28d824d918e942e20d9ac8ca1590d273aa
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:6f:7d:5d:9e:59:89:b5:e5:f5:19:20:c9:0a:
36:72:d3:0c:3a:d5:83:9e:1c:c7:6a:13:ca:e1:93:
28:ee:d0:26:dc:c1:1b:30:02:7f:78:ef:35:29:e3:
3d:e1:81:84:62:08:61:6b:ba:82:e9:37:28:52:9b:
bb:bf:fd:8e:ce:c0:b0:47:d3:d4:18:b3:2d:9b:d7:
99:af:c1:2a:dc:47:b3:a3:a7:a6:e9:d9:1f:94:82:
68:37:72:8a:41:87:e4:30:ba:df:46:d8:c8:77:e2:
2e:51:68:c4:d0:71:cc:b1:bd:e4:cd:50:29:df:93:
af:05:0c:52:ff:17:e7:75:d6:18:da:d3:27:5a:f2:
60:c0:c4:ae:5f:ea:a6:0c:42:0c:ff:bc:db:89:96:
85:03:27:9a:75:df:01:5b:7c:38:f3:b4:e8:3d:0f:
d5:11:ac:8a:25:ef:43:77:5e:93:be:95:e7:7c:5b:
63:a1:37:22:b3:4f:4f:4d:b3:e1:18:52:61:05:b4:
b9:17:df:f5:2e:05:c4:50:b3:cc:f8:1f:71:fa:7d:
b8:04:58:17:93:54:8f:3a:bf:33:cb:36:1a:4e:71:
75:44:15:77:95:1a:4d:14:7f:5f:15:f5:cd:77:fe:
1e:5a:ce:28:94:a8:03:a9:0c:c3:49:00:c1:a1:f2:
2b:c5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
26:91:AC:28:D8:24:D9:18:E9:42:E2:0D:9A:C8:CA:15:90:D2:73:AA
X509v3 Authority Key Identifier:
keyid:F9:70:04:9C:BA:7F:39:AE:ED:31:D6:53:13:C7:B9:53:F3:FD:A1:35
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1-XAEnLp_Oa7tMdZTE8e5U_P9oTU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a2/13f5f1-45b6-4bc1-b5a5-521fa41dfc96/1/1-XAEnLp_Oa7tMdZTE8e5U_P9oTU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a2/13f5f1-45b6-4bc1-b5a5-521fa41dfc96/1/1-XAEnLp_Oa7tMdZTE8e5U_P9oTU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
1a:9a:2d:56:4e:31:af:82:69:e6:2c:27:6c:f6:2a:4d:b7:57:
b7:97:ab:48:7c:eb:fd:81:0c:bd:5b:cc:04:88:88:ba:b3:0b:
cd:ae:8d:3b:22:c8:8f:3e:d2:2a:bb:69:1f:d2:59:0b:7c:66:
ee:1b:eb:67:bd:c1:13:3c:a7:88:a2:08:84:40:de:b2:7b:58:
12:47:f4:fd:54:a8:94:e8:53:1a:bc:cc:88:b6:7a:f6:bc:90:
42:e1:b5:b7:2f:03:34:69:db:ca:3f:15:9a:00:8c:4e:20:19:
6b:8d:3d:48:ae:99:1d:cc:c2:5c:65:74:05:90:86:4d:47:27:
08:5c:35:e1:8a:75:0d:33:8b:ab:0a:4f:f6:b8:b8:0d:12:c3:
59:53:22:17:00:f7:1e:68:e4:47:db:e6:66:7a:6d:57:dc:d4:
99:58:0f:30:94:6b:0b:58:8d:fb:49:22:4e:7e:1c:90:90:bc:
31:64:69:42:78:1d:fd:12:ca:2d:40:3b:ab:2f:4f:d2:1f:21:
80:8a:8c:cf:d8:ed:3c:b8:d2:24:32:4f:08:df:5d:65:82:1a:
79:a5:1a:56:db:81:5c:f8:22:c6:fd:6c:6c:0d:4f:d1:9a:78:
63:ab:55:a7:8e:6e:ef:a4:06:05:85:6d:5a:e2:f2:27:e5:9e:
e3:ca:27:2d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 26 04:13:47 2025 by rpki-client