Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ba/f3cca4-f6bf-4734-abbd-0964464c1751/1/XNN5ztzcIPCHXEsIuUtBFhs-jAM.mft
File: XNN5ztzcIPCHXEsIuUtBFhs-jAM.mft (raw, json)
Hash identifier: UEwgrKlhvuuNk4SXdva+n4Olo9oPIWY8y+6h8vthxTg=
Subject key identifier: 07:72:85:83:C2:A8:FA:18:B1:2F:4D:2A:AB:5C:7B:D0:E9:8F:B7:0F
Authority key identifier: 5C:D3:79:CE:DC:DC:20:F0:87:5C:4B:08:B9:4B:41:16:1B:3E:8C:03
Certificate issuer: /CN=5cd379cedcdc20f0875c4b08b94b41161b3e8c03
Certificate serial: 019A70A595D06F13BA78849C4C2C586F36F5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XNN5ztzcIPCHXEsIuUtBFhs-jAM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ba/f3cca4-f6bf-4734-abbd-0964464c1751/1/XNN5ztzcIPCHXEsIuUtBFhs-jAM.mft
Manifest number: 0E9B
Signing time: Tue 11 Nov 2025 02:01:31 +0000
Manifest this update: Tue 11 Nov 2025 02:01:31 +0000
Manifest next update: Wed 12 Nov 2025 02:01:31 +0000
Files and hashes: 1: 1-EeSCCOFCUoz0VplGP1Lo0h-9As.roa (hash: ZLnUsrTQcRzljBuufN+eacOU/oxAjJXf2wRzESRepgg=)
2: XNN5ztzcIPCHXEsIuUtBFhs-jAM.crl (hash: Y/PGo5qrnzTBjOzpl/ehC/DcqoHc/L2+pBkyxt15W4g=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ba/f3cca4-f6bf-4734-abbd-0964464c1751/1/XNN5ztzcIPCHXEsIuUtBFhs-jAM.crl
rsync://rpki.ripe.net/repository/DEFAULT/ba/f3cca4-f6bf-4734-abbd-0964464c1751/1/XNN5ztzcIPCHXEsIuUtBFhs-jAM.mft
rsync://rpki.ripe.net/repository/DEFAULT/XNN5ztzcIPCHXEsIuUtBFhs-jAM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 12 Nov 2025 02:01:31 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:70:a5:95:d0:6f:13:ba:78:84:9c:4c:2c:58:6f:36:f5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5cd379cedcdc20f0875c4b08b94b41161b3e8c03
Validity
Not Before: Nov 11 02:01:31 2025 GMT
Not After : Nov 12 02:01:31 2025 GMT
Subject: CN=07728583c2a8fa18b12f4d2aab5c7bd0e98fb70f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:6b:70:dc:57:3e:70:3e:e8:c7:a7:29:f7:4a:
61:aa:6f:c7:70:79:f9:60:0e:ff:fd:d1:93:ae:ac:
35:4a:97:59:27:52:5d:8c:2c:2d:3b:f6:02:7a:6e:
32:b9:02:47:80:09:14:84:28:7c:9c:c3:a9:8a:40:
94:d9:1e:f3:4c:b1:83:b4:79:60:66:7e:50:3d:b7:
39:c3:ff:18:91:c8:77:cf:3d:ec:94:27:ef:b3:8e:
52:83:98:c3:aa:23:ad:69:9a:aa:5c:52:bc:dd:c6:
73:5e:78:96:17:2e:2f:d9:21:cb:1d:f6:9e:4c:cd:
80:5a:f1:fa:55:d5:a4:9c:c0:4e:ac:0c:97:2c:cf:
00:2a:91:6c:42:18:cb:75:27:a4:1c:4a:65:53:d1:
21:0a:12:c9:a6:a2:fc:e4:f1:5e:f3:60:d0:9b:43:
78:40:e6:98:9b:31:33:5a:fa:e6:29:b3:fe:3d:08:
1c:5b:9c:35:19:84:18:0f:93:b3:a9:17:ba:d9:20:
7d:94:c5:b7:7d:e4:2b:bd:45:2c:1a:74:93:9f:b0:
0c:96:74:74:22:b0:3c:e8:cb:ff:6a:9c:1b:43:30:
5f:e8:34:dd:65:42:6b:1e:6e:0f:0c:49:7e:87:f2:
c7:f2:91:49:ff:33:dc:da:ab:4b:88:16:18:73:42:
19:85
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
07:72:85:83:C2:A8:FA:18:B1:2F:4D:2A:AB:5C:7B:D0:E9:8F:B7:0F
X509v3 Authority Key Identifier:
keyid:5C:D3:79:CE:DC:DC:20:F0:87:5C:4B:08:B9:4B:41:16:1B:3E:8C:03
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XNN5ztzcIPCHXEsIuUtBFhs-jAM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ba/f3cca4-f6bf-4734-abbd-0964464c1751/1/XNN5ztzcIPCHXEsIuUtBFhs-jAM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ba/f3cca4-f6bf-4734-abbd-0964464c1751/1/XNN5ztzcIPCHXEsIuUtBFhs-jAM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
98:c1:1c:9b:dc:ed:9f:7a:16:0c:63:a9:86:75:f1:10:3b:39:
0b:80:c5:74:6e:9a:43:a2:d6:eb:5f:64:0d:88:41:78:53:51:
94:0c:1c:f1:be:39:7f:2f:71:a1:89:f5:96:b6:f2:0f:a7:0c:
9c:4b:17:fc:12:67:aa:3f:6a:6c:b6:7b:44:66:1b:de:c7:a8:
8c:55:85:4a:8e:60:98:2c:37:38:21:2e:a9:ae:6d:23:b8:ca:
32:94:ff:08:68:6c:bf:3c:0d:bc:fd:fa:c6:8a:6f:49:5f:69:
df:bb:6c:df:6a:15:30:97:b1:06:2b:65:1d:d6:16:8a:6e:c5:
f8:33:ec:ed:86:8a:d3:74:a5:e8:23:a0:ef:cc:93:7e:7d:d0:
95:27:b5:a4:cd:e1:62:2f:a2:0b:f2:2d:84:03:cf:98:59:36:
71:eb:8e:05:28:88:01:02:6a:93:d1:6f:fb:2b:30:96:6c:1b:
65:05:a5:6b:55:ba:c5:fc:2c:20:85:ba:69:71:9a:1e:23:6b:
aa:53:47:01:70:e7:3e:1a:95:6a:af:26:91:60:30:80:df:00:
3d:7f:d5:ce:a8:20:ab:16:45:34:48:44:25:77:4d:94:57:74:
5f:32:a5:f5:4b:74:50:76:18:97:5a:02:0c:c5:1d:94:59:e6:
39:7b:7c:8b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 11 11:46:25 2025 by rpki-client