Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a5/e4c435-e6cd-4da0-9e32-a44224fac3ff/1/XBEKKwrrN_DJMqlr279-82whGXw.mft
File: XBEKKwrrN_DJMqlr279-82whGXw.mft (raw, json)
Hash identifier: GoSOCjKMT2plYM1cN2gq0dnm0Va9EfuUdp7NgMJvSBE=
Subject key identifier: E3:16:F8:D6:8A:A1:3D:68:1C:25:99:44:02:D7:2B:56:82:B4:E6:90
Authority key identifier: 5C:11:0A:2B:0A:EB:37:F0:C9:32:A9:6B:DB:BF:7E:F3:6C:21:19:7C
Certificate issuer: /CN=5c110a2b0aeb37f0c932a96bdbbf7ef36c21197c
Certificate serial: 01993123E98BE10DEF77AFDD8289BFF3536E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XBEKKwrrN_DJMqlr279-82whGXw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a5/e4c435-e6cd-4da0-9e32-a44224fac3ff/1/XBEKKwrrN_DJMqlr279-82whGXw.mft
Manifest number: 11E5
Signing time: Wed 10 Sep 2025 01:01:01 +0000
Manifest this update: Wed 10 Sep 2025 01:01:01 +0000
Manifest next update: Thu 11 Sep 2025 01:01:01 +0000
Files and hashes: 1: XBEKKwrrN_DJMqlr279-82whGXw.crl (hash: bAJMlJpeRYmSleEFHzf5NVE9N/mgJJ5e5BkpbfhrLRA=)
2: kzlWeerWBpLQJUvq-zvqgpRgYGk.roa (hash: nVND6/0jbck+9wjQsXvYtJIdnT8gV1/CUuZluisEp4g=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a5/e4c435-e6cd-4da0-9e32-a44224fac3ff/1/XBEKKwrrN_DJMqlr279-82whGXw.crl
rsync://rpki.ripe.net/repository/DEFAULT/a5/e4c435-e6cd-4da0-9e32-a44224fac3ff/1/XBEKKwrrN_DJMqlr279-82whGXw.mft
rsync://rpki.ripe.net/repository/DEFAULT/XBEKKwrrN_DJMqlr279-82whGXw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 10 Sep 2025 21:45:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:31:23:e9:8b:e1:0d:ef:77:af:dd:82:89:bf:f3:53:6e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5c110a2b0aeb37f0c932a96bdbbf7ef36c21197c
Validity
Not Before: Sep 10 01:01:01 2025 GMT
Not After : Sep 11 01:01:01 2025 GMT
Subject: CN=e316f8d68aa13d681c25994402d72b5682b4e690
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9a:bd:f1:65:76:3a:bb:3b:28:5a:aa:ae:ae:24:
38:40:d8:c5:6d:56:72:3c:3b:b1:1c:ff:54:8e:d2:
6e:d1:94:80:25:c0:11:a6:84:54:f7:c3:03:7f:d3:
b5:92:d2:25:2e:32:12:f1:eb:bd:81:bc:9e:05:4a:
d5:e3:e3:06:20:03:82:bb:cc:e0:42:08:44:57:52:
22:46:44:6e:28:60:46:45:f6:a1:a1:b7:84:29:47:
35:69:6c:33:68:79:80:b6:c8:af:08:da:30:39:ad:
5b:25:77:e1:b8:dd:f4:02:2b:1f:0b:36:a7:1f:0d:
0e:4a:4e:b7:72:5c:fd:a2:67:dc:89:41:c3:82:04:
47:b0:4e:d4:2d:f7:5c:63:b0:f8:23:50:45:cb:bd:
73:ba:a9:57:e6:23:73:6e:dc:53:8d:98:b7:62:7f:
9f:07:c0:11:17:b2:dc:00:eb:95:6c:de:47:9c:b7:
e7:53:ec:b8:60:5b:64:2f:3f:b9:f8:4f:f5:a7:f7:
d5:bc:28:d3:ba:47:1c:13:4c:f8:df:37:1b:f7:5f:
ce:22:0c:7a:9e:a1:5b:51:4f:d1:ab:1b:96:14:28:
eb:db:67:af:f9:86:ec:bd:ed:da:46:75:69:69:3f:
fe:58:8f:96:7b:b2:89:b5:95:33:63:df:f2:34:6d:
f0:b5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E3:16:F8:D6:8A:A1:3D:68:1C:25:99:44:02:D7:2B:56:82:B4:E6:90
X509v3 Authority Key Identifier:
keyid:5C:11:0A:2B:0A:EB:37:F0:C9:32:A9:6B:DB:BF:7E:F3:6C:21:19:7C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XBEKKwrrN_DJMqlr279-82whGXw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a5/e4c435-e6cd-4da0-9e32-a44224fac3ff/1/XBEKKwrrN_DJMqlr279-82whGXw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a5/e4c435-e6cd-4da0-9e32-a44224fac3ff/1/XBEKKwrrN_DJMqlr279-82whGXw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
ae:16:cd:44:fb:1f:e7:26:74:ec:9b:ef:5e:f3:7a:a8:e0:ca:
c4:be:8f:69:dc:30:3c:55:43:d1:28:b1:e0:8d:1e:2d:da:19:
64:61:6e:c9:d6:09:df:8c:3d:34:56:31:a4:ae:a3:82:c3:dc:
51:a7:b6:31:a0:ae:36:10:7f:fa:e7:8e:b6:a7:65:2d:3b:19:
43:28:a6:44:f4:ea:73:6c:7c:74:67:10:7b:cf:b4:e4:7f:33:
06:b4:bf:29:55:77:20:56:40:bd:4c:6a:5d:9e:4c:00:97:22:
0a:00:6c:37:3d:4e:a2:12:6d:58:9c:7c:78:40:27:4e:18:cf:
aa:dc:db:44:d6:a3:f4:24:c4:70:6a:ec:e5:2a:d9:da:85:3e:
de:08:fc:63:ae:e6:c4:a5:f0:c0:4f:f1:d6:23:aa:26:2e:6d:
ee:83:7f:17:69:34:cf:01:69:ec:26:c7:f5:9d:62:3a:26:0d:
64:2b:6f:6c:32:8f:ee:54:53:ce:08:a1:ed:b9:76:71:b1:35:
16:56:b6:80:75:57:2c:03:cd:6f:f8:b3:e3:3d:5e:ae:50:10:
17:bc:30:d6:38:57:60:c9:09:f2:21:a8:d6:f4:f6:7d:a7:19:
7a:09:f0:54:a3:e1:8b:33:2e:05:93:9c:c1:10:a0:85:88:1e:
35:48:bf:a6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Sep 10 03:38:11 2025 by rpki-client