Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fb/5d6c15-a588-41dc-a6a2-f89977a45b60/1/xWYvmAINpON9UO07swICd08pLXo.mft
File: xWYvmAINpON9UO07swICd08pLXo.mft (raw, json)
Hash identifier: B0Y5a4ktfEikbhUUqHc0avjqGge44FTkKuHvc1dp5fY=
Subject key identifier: 75:2B:B0:9B:C9:0D:1B:5E:35:34:89:7B:E6:0D:4A:B4:7C:DD:12:57
Authority key identifier: C5:66:2F:98:02:0D:A4:E3:7D:50:ED:3B:B3:02:02:77:4F:29:2D:7A
Certificate issuer: /CN=c5662f98020da4e37d50ed3bb30202774f292d7a
Certificate serial: 019A533EE1F8D45BB968ABA91BC468A79C26
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xWYvmAINpON9UO07swICd08pLXo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fb/5d6c15-a588-41dc-a6a2-f89977a45b60/1/xWYvmAINpON9UO07swICd08pLXo.mft
Manifest number: 0361
Signing time: Wed 05 Nov 2025 09:00:21 +0000
Manifest this update: Wed 05 Nov 2025 09:00:21 +0000
Manifest next update: Thu 06 Nov 2025 09:00:21 +0000
Files and hashes: 1: k3mYd88nhjXgIJYUkD0IW4wB334.roa (hash: ES4bfd/D7kl4HbO8JFVGRKGNEndi7/c5Oef8CAe6LiM=)
2: xWYvmAINpON9UO07swICd08pLXo.crl (hash: v0JF2br5wOirVvXcCH+Szu/w9A2hshRnD6/0BsdGs44=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/fb/5d6c15-a588-41dc-a6a2-f89977a45b60/1/xWYvmAINpON9UO07swICd08pLXo.crl
rsync://rpki.ripe.net/repository/DEFAULT/fb/5d6c15-a588-41dc-a6a2-f89977a45b60/1/xWYvmAINpON9UO07swICd08pLXo.mft
rsync://rpki.ripe.net/repository/DEFAULT/xWYvmAINpON9UO07swICd08pLXo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 06 Nov 2025 03:00:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:53:3e:e1:f8:d4:5b:b9:68:ab:a9:1b:c4:68:a7:9c:26
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c5662f98020da4e37d50ed3bb30202774f292d7a
Validity
Not Before: Nov 5 09:00:21 2025 GMT
Not After : Nov 6 09:00:21 2025 GMT
Subject: CN=752bb09bc90d1b5e3534897be60d4ab47cdd1257
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:b1:d8:46:f2:24:5b:ef:ef:0d:cf:ca:ec:cd:
5b:a3:76:3c:c0:1f:ff:8d:fa:9c:b2:39:61:90:ab:
d3:7e:a1:14:be:82:96:9a:2c:5b:4a:51:b2:f0:05:
8c:90:d6:c5:a7:3c:e1:f0:85:f5:6e:99:93:59:af:
d5:af:f0:0a:cf:0f:ec:01:a9:a8:89:50:52:72:76:
3c:0d:a4:37:da:fd:cf:d6:d5:5a:7b:fd:5c:6e:5c:
ee:61:af:ff:11:94:70:58:da:ad:f7:14:fe:fb:65:
61:16:7d:eb:e4:fd:f5:3a:b5:e5:af:73:1f:30:84:
03:25:ed:de:5a:f1:17:02:b1:99:9f:fa:37:d3:7b:
02:42:a0:bc:39:ce:78:c8:13:73:1d:4a:4e:11:54:
97:5b:24:df:69:13:ce:f5:03:b8:90:d6:d0:b5:82:
a1:9c:15:e0:2d:98:fb:c0:14:02:6c:11:6f:3e:d0:
ee:4e:93:2b:c7:9a:02:ab:5e:4e:cd:29:15:07:98:
ad:da:45:00:c7:2e:12:1d:9c:ff:cd:68:13:dc:87:
cf:79:45:bf:8f:b7:71:e8:e7:c4:36:67:3e:df:f5:
a9:12:af:08:a2:43:ec:a4:7e:78:de:5d:0f:29:60:
f7:3a:5b:6c:1f:02:04:11:dc:f7:88:30:2d:4a:6d:
e1:ad
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
75:2B:B0:9B:C9:0D:1B:5E:35:34:89:7B:E6:0D:4A:B4:7C:DD:12:57
X509v3 Authority Key Identifier:
keyid:C5:66:2F:98:02:0D:A4:E3:7D:50:ED:3B:B3:02:02:77:4F:29:2D:7A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xWYvmAINpON9UO07swICd08pLXo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fb/5d6c15-a588-41dc-a6a2-f89977a45b60/1/xWYvmAINpON9UO07swICd08pLXo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fb/5d6c15-a588-41dc-a6a2-f89977a45b60/1/xWYvmAINpON9UO07swICd08pLXo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
77:2e:20:de:cf:4a:98:00:35:fb:87:31:b6:91:58:20:c9:75:
4f:3f:13:32:e1:80:44:86:d0:c8:e2:2b:72:7b:92:60:f7:ac:
90:a5:a1:b6:58:7b:04:35:b3:2e:4a:6d:d4:d4:20:84:63:05:
63:99:ed:6d:0b:05:16:52:b7:44:96:bb:c0:d9:5b:a1:9b:fa:
d8:ee:93:36:e1:c0:14:c0:21:4c:a3:97:79:9b:7b:40:35:01:
10:b1:33:bb:14:41:b4:52:c6:d6:9d:1d:fd:86:79:b4:d1:58:
f8:56:5c:08:2a:6f:62:21:32:e9:50:ac:90:cb:49:7d:50:66:
7f:41:49:4a:9f:29:22:a2:65:7f:ff:20:5c:cf:1a:9c:aa:96:
09:3c:0d:ec:1d:b9:08:cc:7e:a1:77:ed:b8:30:5a:fb:51:ea:
c6:86:da:47:4a:41:9c:c9:21:a0:14:a2:14:e6:78:39:45:0c:
27:70:ae:a9:90:1c:3c:a7:5a:64:f8:5d:3d:0e:a0:70:55:33:
87:1b:d4:ed:0c:dd:ca:ab:9f:87:78:17:8b:71:f0:22:d6:c9:
fe:d6:49:e6:3e:4e:4f:c6:99:49:4f:7f:c1:94:48:c9:1d:55:
93:e4:36:69:dd:9d:45:a8:48:5a:cb:0d:2f:7e:81:68:1a:5b:
0d:00:b3:9f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Nov 5 13:22:31 2025 by rpki-client