Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a5/e4c435-e6cd-4da0-9e32-a44224fac3ff/1/XBEKKwrrN_DJMqlr279-82whGXw.mft
File: XBEKKwrrN_DJMqlr279-82whGXw.mft (raw, json)
Hash identifier: dtp95CYUYJq4vNVQq+u3s99rlre6O8Op5rUJUcFOYPM=
Subject key identifier: 03:BB:C7:2F:F9:11:49:72:88:2F:A8:81:4E:D3:31:94:3B:4D:B9:DA
Authority key identifier: 5C:11:0A:2B:0A:EB:37:F0:C9:32:A9:6B:DB:BF:7E:F3:6C:21:19:7C
Certificate issuer: /CN=5c110a2b0aeb37f0c932a96bdbbf7ef36c21197c
Certificate serial: 019A2A43BB04443DCBB540A1EE78AC48BA6B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XBEKKwrrN_DJMqlr279-82whGXw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a5/e4c435-e6cd-4da0-9e32-a44224fac3ff/1/XBEKKwrrN_DJMqlr279-82whGXw.mft
Manifest number: 1266
Signing time: Tue 28 Oct 2025 10:01:12 +0000
Manifest this update: Tue 28 Oct 2025 10:01:12 +0000
Manifest next update: Wed 29 Oct 2025 10:01:12 +0000
Files and hashes: 1: XBEKKwrrN_DJMqlr279-82whGXw.crl (hash: PxbDLYMXmIZApSswzjxE9hBvX3bC4uHzU++dAKeNnfs=)
2: kzlWeerWBpLQJUvq-zvqgpRgYGk.roa (hash: nVND6/0jbck+9wjQsXvYtJIdnT8gV1/CUuZluisEp4g=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a5/e4c435-e6cd-4da0-9e32-a44224fac3ff/1/XBEKKwrrN_DJMqlr279-82whGXw.crl
rsync://rpki.ripe.net/repository/DEFAULT/a5/e4c435-e6cd-4da0-9e32-a44224fac3ff/1/XBEKKwrrN_DJMqlr279-82whGXw.mft
rsync://rpki.ripe.net/repository/DEFAULT/XBEKKwrrN_DJMqlr279-82whGXw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 29 Oct 2025 09:00:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:2a:43:bb:04:44:3d:cb:b5:40:a1:ee:78:ac:48:ba:6b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5c110a2b0aeb37f0c932a96bdbbf7ef36c21197c
Validity
Not Before: Oct 28 10:01:12 2025 GMT
Not After : Oct 29 10:01:12 2025 GMT
Subject: CN=03bbc72ff9114972882fa8814ed331943b4db9da
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:9b:a9:f1:c3:bc:9d:c7:1f:2a:cb:17:4b:ad:
88:d6:f7:42:38:c3:09:3e:86:9c:eb:bf:fc:64:e4:
db:34:d7:e4:0c:50:16:67:bf:8b:d7:12:e8:9c:9f:
2b:ea:01:be:77:1f:85:17:85:cc:50:46:d6:76:55:
57:1f:8f:ac:00:18:c6:7a:0c:5a:47:08:a0:7b:82:
b1:cd:6b:ee:70:b6:3b:41:3d:fd:f6:df:07:b2:4f:
66:a6:f6:63:94:3f:07:88:f2:09:94:0f:10:fa:1a:
71:28:7c:e4:12:fc:53:d5:2e:71:e6:95:a8:b9:c3:
53:02:8a:ff:05:c5:4a:62:f9:92:a9:c5:a3:2d:37:
92:8b:9e:51:33:1f:84:30:aa:8d:65:ab:2e:2d:1a:
9e:74:9c:68:70:70:06:a9:0b:2a:7e:9e:10:74:e0:
96:9f:a8:b3:39:60:40:28:2e:be:8a:7f:e0:b1:ee:
70:2f:ab:28:47:04:6a:e6:72:a0:aa:29:35:c8:43:
49:e0:5f:49:53:2f:80:4c:c7:3d:52:35:7b:8d:11:
9b:1f:c9:7e:f1:03:e9:8a:a4:90:1b:77:d4:a9:04:
6e:b8:12:d5:65:8a:72:31:76:dc:5d:a7:e1:ae:30:
fe:24:5d:24:c6:b9:eb:b8:d9:bd:ec:2f:4f:e7:8b:
a0:d7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
03:BB:C7:2F:F9:11:49:72:88:2F:A8:81:4E:D3:31:94:3B:4D:B9:DA
X509v3 Authority Key Identifier:
keyid:5C:11:0A:2B:0A:EB:37:F0:C9:32:A9:6B:DB:BF:7E:F3:6C:21:19:7C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XBEKKwrrN_DJMqlr279-82whGXw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a5/e4c435-e6cd-4da0-9e32-a44224fac3ff/1/XBEKKwrrN_DJMqlr279-82whGXw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a5/e4c435-e6cd-4da0-9e32-a44224fac3ff/1/XBEKKwrrN_DJMqlr279-82whGXw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
2e:ad:24:f9:d6:f0:97:10:7d:75:58:43:c2:a3:b3:56:a6:d7:
c8:a1:6a:ff:a9:ad:4e:62:d2:20:8f:c4:e4:b8:0a:db:52:a8:
16:c0:fa:30:8a:48:3b:6e:82:c2:64:d8:c7:47:ee:a3:7f:01:
be:a5:fb:52:64:d7:2e:3c:22:04:b4:d8:80:a3:cc:ce:5e:c8:
00:c4:dd:57:29:a3:ec:33:f7:93:f1:a8:8d:8b:74:a1:bb:e3:
24:17:41:5e:db:65:8b:a4:0e:f4:01:26:2e:dd:5d:f4:f3:99:
09:2d:2e:56:4e:84:2d:58:73:f4:c1:26:91:6a:c3:65:a6:9b:
26:fd:a9:86:e4:95:c9:6b:ed:98:06:85:10:77:94:ca:8e:32:
21:b9:bf:65:91:1a:7c:1e:97:54:15:c6:e1:ef:d1:f0:98:89:
42:4f:5e:ac:87:8f:c7:ef:14:d1:79:44:b2:f3:a8:7b:82:00:
72:e7:0f:69:19:7e:f6:b7:b5:ad:04:a1:3b:a1:0c:ae:1c:99:
9e:0f:ba:7d:a2:e8:89:1e:82:30:fa:cd:b9:69:27:54:b4:d8:
13:df:09:1e:ec:c5:18:06:78:79:b6:1b:ed:15:6d:6c:c1:d1:
26:76:c2:e9:19:64:87:8d:a1:74:e2:91:fd:b9:9b:34:6c:3a:
f1:24:42:f0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Oct 28 14:19:01 2025 by rpki-client