Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0b/4e414f-0a76-4fe9-8b7b-135a93982931/1/XbomMhShFwVRmA7pFxn42Ixia14.mft
File: XbomMhShFwVRmA7pFxn42Ixia14.mft (raw, json)
Hash identifier: 5uTpG3pQQjeh1wB3FzfzjQLPO+/lNopD8E8pkhzaCDA=
Subject key identifier: 35:30:FB:23:6C:02:93:54:B0:88:9A:16:FC:75:7C:DC:97:FB:41:0E
Authority key identifier: 5D:BA:26:32:14:A1:17:05:51:98:0E:E9:17:19:F8:D8:8C:62:6B:5E
Certificate issuer: /CN=5dba263214a1170551980ee91719f8d88c626b5e
Certificate serial: 019A53ACB097D2D35D5C9B27596B9FC5A963
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XbomMhShFwVRmA7pFxn42Ixia14.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0b/4e414f-0a76-4fe9-8b7b-135a93982931/1/XbomMhShFwVRmA7pFxn42Ixia14.mft
Manifest number: 127A
Signing time: Wed 05 Nov 2025 11:00:17 +0000
Manifest this update: Wed 05 Nov 2025 11:00:17 +0000
Manifest next update: Thu 06 Nov 2025 11:00:17 +0000
Files and hashes: 1: XbomMhShFwVRmA7pFxn42Ixia14.crl (hash: 8oy1J3+zaqcG3laeGkqojQCBwJEQc2YfHth1CM5UDpU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0b/4e414f-0a76-4fe9-8b7b-135a93982931/1/XbomMhShFwVRmA7pFxn42Ixia14.crl
rsync://rpki.ripe.net/repository/DEFAULT/0b/4e414f-0a76-4fe9-8b7b-135a93982931/1/XbomMhShFwVRmA7pFxn42Ixia14.mft
rsync://rpki.ripe.net/repository/DEFAULT/XbomMhShFwVRmA7pFxn42Ixia14.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 06 Nov 2025 11:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:53:ac:b0:97:d2:d3:5d:5c:9b:27:59:6b:9f:c5:a9:63
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5dba263214a1170551980ee91719f8d88c626b5e
Validity
Not Before: Nov 5 11:00:17 2025 GMT
Not After : Nov 6 11:00:17 2025 GMT
Subject: CN=3530fb236c029354b0889a16fc757cdc97fb410e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:9b:53:1d:53:7d:af:f5:af:bb:da:2d:38:c1:
71:44:a0:7a:98:d9:50:65:d3:53:3b:23:5e:3a:ac:
e4:6a:c7:a1:93:00:e6:ea:8b:f8:81:c0:fb:79:d7:
75:1d:b1:7f:5b:79:dc:54:ca:01:5f:72:c4:fc:07:
e8:3d:99:6d:13:2b:80:45:14:44:90:14:0c:db:5f:
59:7a:4e:db:a8:1b:fc:59:1e:9a:5b:f5:00:12:e0:
77:49:50:42:b0:a1:1a:2b:2d:7c:a3:92:9f:c7:e4:
59:48:48:86:1f:c6:80:f6:71:c6:bc:13:fd:6e:1c:
2f:b7:d4:1a:58:09:0c:ee:b5:9f:f3:eb:ec:f7:a6:
35:4b:c3:59:df:d6:c7:8e:1f:58:e1:7b:d3:ea:5e:
d2:04:a6:a2:c6:50:ec:e8:a0:8d:4d:51:25:f1:a7:
b3:da:cf:79:bf:50:39:5d:f0:a6:50:db:17:8a:6b:
ba:19:49:ea:b7:18:a3:de:70:11:3d:ea:64:5e:9e:
a0:ed:42:39:02:ff:13:bb:44:f5:ad:32:81:dc:ba:
30:c7:53:a3:b7:e3:f0:2b:a6:32:22:a3:5d:c9:7d:
8c:d1:e3:e1:57:d3:11:61:9e:cb:37:95:bc:2b:42:
de:e1:b8:1b:ee:29:b7:63:84:83:92:63:84:15:db:
b9:81
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
35:30:FB:23:6C:02:93:54:B0:88:9A:16:FC:75:7C:DC:97:FB:41:0E
X509v3 Authority Key Identifier:
keyid:5D:BA:26:32:14:A1:17:05:51:98:0E:E9:17:19:F8:D8:8C:62:6B:5E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XbomMhShFwVRmA7pFxn42Ixia14.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0b/4e414f-0a76-4fe9-8b7b-135a93982931/1/XbomMhShFwVRmA7pFxn42Ixia14.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0b/4e414f-0a76-4fe9-8b7b-135a93982931/1/XbomMhShFwVRmA7pFxn42Ixia14.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
56:53:fe:55:29:7a:d3:79:05:65:be:4b:d4:53:c3:d8:23:01:
95:73:79:3f:74:44:bf:7b:c5:a0:88:69:36:85:c0:28:18:2f:
40:8b:ca:89:43:24:c8:5e:33:77:31:3d:b7:73:7f:40:59:60:
08:bb:97:21:5c:b0:c3:ed:d8:a2:02:6e:44:88:af:a8:2e:b9:
22:40:8c:5a:f9:5b:38:03:39:e4:08:ee:6a:4a:c6:d7:3d:16:
2b:37:07:c7:ed:8e:02:6a:4e:13:24:f7:39:34:6c:16:5b:34:
8d:69:25:54:09:8d:66:41:8a:14:1a:78:25:9d:9d:6b:2a:a0:
ec:a9:74:73:78:32:c9:7f:a7:7a:59:89:9b:44:4b:9f:4a:fe:
09:89:8e:29:de:9d:4f:eb:cc:fc:68:d8:9b:32:31:e7:fd:67:
7f:3b:92:04:74:b2:68:24:0e:25:af:a3:67:88:e8:20:32:b0:
b9:52:ea:90:b9:42:91:fc:53:a5:67:f4:5c:46:5b:99:cc:89:
44:d5:e8:92:d5:e2:ee:35:28:90:a2:ce:27:f8:16:e9:36:b6:
f1:f3:0c:47:a7:2a:5f:88:f3:5a:e5:52:8c:22:bf:6a:0e:89:
8f:9b:87:80:03:b4:b3:c1:96:24:de:ad:cd:52:00:65:5c:5d:
e5:44:20:d8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Nov 5 18:07:19 2025 by rpki-client