Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/00/54debb-d0b6-44d1-8e58-8cf9e6f8ab45/1/XM97P9h86bzpn5ALZBmdYGvxYGk.mft
File: XM97P9h86bzpn5ALZBmdYGvxYGk.mft (raw, json)
Hash identifier: e1rTPhMD44KgBktwWcWOJqnAtSGU6azKmFKrx38jUY4=
Subject key identifier: 9D:D7:3B:93:8C:9A:59:C7:2A:3F:2A:2F:B6:55:D7:77:78:D4:7F:FC
Authority key identifier: 5C:CF:7B:3F:D8:7C:E9:BC:E9:9F:90:0B:64:19:9D:60:6B:F1:60:69
Certificate issuer: /CN=5ccf7b3fd87ce9bce99f900b64199d606bf16069
Certificate serial: 019A4E188661390EB024E90E1EEDBDB31733
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XM97P9h86bzpn5ALZBmdYGvxYGk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/00/54debb-d0b6-44d1-8e58-8cf9e6f8ab45/1/XM97P9h86bzpn5ALZBmdYGvxYGk.mft
Manifest number: 169F
Signing time: Tue 04 Nov 2025 09:00:21 +0000
Manifest this update: Tue 04 Nov 2025 09:00:21 +0000
Manifest next update: Wed 05 Nov 2025 09:00:21 +0000
Files and hashes: 1: KOB0vwmJ7cfgZ_1WOb_Xx7LqG6U.roa (hash: a7bo8HXeX2LyPkuCveHxDVKdqnbGHzPDqS6LymzXHUs=)
2: XM97P9h86bzpn5ALZBmdYGvxYGk.crl (hash: 3wxm8sUnPe1IG6YEPNThSoeMRh7PCaCwsdgMjcEsUzo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/00/54debb-d0b6-44d1-8e58-8cf9e6f8ab45/1/XM97P9h86bzpn5ALZBmdYGvxYGk.crl
rsync://rpki.ripe.net/repository/DEFAULT/00/54debb-d0b6-44d1-8e58-8cf9e6f8ab45/1/XM97P9h86bzpn5ALZBmdYGvxYGk.mft
rsync://rpki.ripe.net/repository/DEFAULT/XM97P9h86bzpn5ALZBmdYGvxYGk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 05 Nov 2025 09:00:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:4e:18:86:61:39:0e:b0:24:e9:0e:1e:ed:bd:b3:17:33
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5ccf7b3fd87ce9bce99f900b64199d606bf16069
Validity
Not Before: Nov 4 09:00:21 2025 GMT
Not After : Nov 5 09:00:21 2025 GMT
Subject: CN=9dd73b938c9a59c72a3f2a2fb655d77778d47ffc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:c4:f3:15:60:fc:13:42:b0:91:f0:96:ef:a4:
db:ac:b9:22:e8:20:ac:f3:75:46:93:12:0d:19:9c:
61:00:47:92:9c:2d:41:bc:02:54:a2:d7:4d:74:01:
c1:c9:32:a1:6b:02:84:53:26:62:57:0a:38:43:c0:
ec:ba:5b:5e:a1:3d:0c:84:12:e5:c6:4e:d6:32:6e:
a5:30:1f:c8:18:13:ed:d8:a0:89:e1:fa:1a:12:a0:
96:e8:65:a7:73:5c:e1:0b:8a:0d:75:44:50:82:2c:
5c:c7:98:cd:a0:f9:b8:2e:2a:e2:f7:2d:0a:a4:1d:
b5:90:bc:2a:83:3c:05:ac:ae:16:93:0a:70:fd:ca:
19:5a:ad:26:42:25:c1:94:ad:76:2b:fa:d2:5e:9d:
a6:bc:04:31:3d:3d:92:2a:6c:6d:66:ae:34:8d:5e:
88:f0:30:6d:81:00:a7:f0:da:57:c8:98:ff:76:4e:
04:46:b4:77:24:24:05:a7:3f:cb:50:f0:ba:d5:66:
6c:97:38:75:04:6a:47:f4:89:ba:24:fe:2f:c8:e9:
a7:ab:df:58:78:ed:2a:1b:40:41:86:97:da:57:29:
ad:13:f1:d0:78:5a:ab:dd:f4:cd:9e:2a:df:02:85:
7c:1e:68:0e:ef:17:f8:f3:f9:89:c2:9e:1d:b0:f7:
52:9b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9D:D7:3B:93:8C:9A:59:C7:2A:3F:2A:2F:B6:55:D7:77:78:D4:7F:FC
X509v3 Authority Key Identifier:
keyid:5C:CF:7B:3F:D8:7C:E9:BC:E9:9F:90:0B:64:19:9D:60:6B:F1:60:69
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XM97P9h86bzpn5ALZBmdYGvxYGk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/00/54debb-d0b6-44d1-8e58-8cf9e6f8ab45/1/XM97P9h86bzpn5ALZBmdYGvxYGk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/00/54debb-d0b6-44d1-8e58-8cf9e6f8ab45/1/XM97P9h86bzpn5ALZBmdYGvxYGk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
51:e2:6b:10:72:0c:1f:78:4f:e0:d6:6d:5c:52:6b:d3:84:0f:
a3:b2:0c:3d:4e:6d:01:c8:7c:c5:d9:ee:96:7a:9d:22:9c:2d:
01:23:43:7d:fa:26:8a:cd:27:e0:7d:18:47:54:3c:ce:75:58:
11:95:4c:fb:f9:45:f1:3c:ae:2f:73:ba:4a:da:89:ec:75:5c:
74:61:fb:0b:18:f0:17:8c:f0:d8:f3:e6:5a:d1:8e:14:02:7d:
5a:57:0f:3a:6d:3b:ce:e4:62:9c:97:1b:22:73:76:34:b4:31:
cf:03:96:16:6b:6e:3d:64:71:8e:7b:3d:f3:8e:a8:a1:0d:e7:
87:0d:08:88:71:f1:07:4a:43:ac:53:8d:8d:5a:4d:92:b0:fd:
7a:c9:34:a9:f1:83:6e:91:6e:44:8b:f4:51:c7:26:2d:70:2b:
43:10:7c:5a:a1:cf:ae:49:ae:4c:7e:4f:a8:82:25:0c:1f:2a:
37:15:47:f7:d8:ba:d4:b1:1b:72:7f:54:85:c9:a1:75:ee:87:
92:eb:c3:96:c4:97:94:e4:87:19:52:41:7b:5a:32:5c:dc:5f:
08:f2:4c:2b:cb:b4:3f:ee:6c:a0:d8:53:19:ce:a4:0e:43:fd:
b3:19:f5:c2:54:af:62:0f:df:4b:14:d8:30:cf:1d:6c:4c:8c:
ba:10:87:de
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 4 17:59:18 2025 by rpki-client