Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0f/57b891-a912-4c6a-8e3b-d41fcdf57598/1/XYO1pn2S_6hHbJMhqnv21KINPas.mft
File: XYO1pn2S_6hHbJMhqnv21KINPas.mft (raw, json)
Hash identifier: ArGKEVgUGgcay8RhUjBFsM82RLPD45sfNDNFDrVJehE=
Subject key identifier: DE:23:27:FF:AE:E3:85:35:FE:06:83:B5:46:57:5E:E0:B7:E4:F7:65
Authority key identifier: 5D:83:B5:A6:7D:92:FF:A8:47:6C:93:21:AA:7B:F6:D4:A2:0D:3D:AB
Certificate issuer: /CN=5d83b5a67d92ffa8476c9321aa7bf6d4a20d3dab
Certificate serial: 019A50077DAC71B127F66D25F5C2E48A3AB9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XYO1pn2S_6hHbJMhqnv21KINPas.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0f/57b891-a912-4c6a-8e3b-d41fcdf57598/1/XYO1pn2S_6hHbJMhqnv21KINPas.mft
Manifest number: 1108
Signing time: Tue 04 Nov 2025 18:00:59 +0000
Manifest this update: Tue 04 Nov 2025 18:00:59 +0000
Manifest next update: Wed 05 Nov 2025 18:00:59 +0000
Files and hashes: 1: XYO1pn2S_6hHbJMhqnv21KINPas.crl (hash: dstXAhIj3ltmwf1FevGU2eP7Hzp/rmakeTiXXLYrn4s=)
2: yQMt2r0-C951BN6h68fRFJDbCC8.roa (hash: tYqh+1wBm4KwmsyhvHbFDKO/UGyJb2eTnTj9n8iYekw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0f/57b891-a912-4c6a-8e3b-d41fcdf57598/1/XYO1pn2S_6hHbJMhqnv21KINPas.crl
rsync://rpki.ripe.net/repository/DEFAULT/0f/57b891-a912-4c6a-8e3b-d41fcdf57598/1/XYO1pn2S_6hHbJMhqnv21KINPas.mft
rsync://rpki.ripe.net/repository/DEFAULT/XYO1pn2S_6hHbJMhqnv21KINPas.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 05 Nov 2025 18:00:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:50:07:7d:ac:71:b1:27:f6:6d:25:f5:c2:e4:8a:3a:b9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5d83b5a67d92ffa8476c9321aa7bf6d4a20d3dab
Validity
Not Before: Nov 4 18:00:59 2025 GMT
Not After : Nov 5 18:00:59 2025 GMT
Subject: CN=de2327ffaee38535fe0683b546575ee0b7e4f765
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:66:94:8f:df:27:e9:f7:8a:46:1e:d4:d5:6a:
a6:8b:31:62:46:0b:6b:75:46:b2:89:02:74:1a:15:
b0:8e:bc:fc:7d:3b:de:61:d0:ba:f2:09:84:1c:74:
1a:f3:f5:66:e9:17:05:72:02:40:85:73:9d:00:1e:
4a:a7:bb:13:cf:92:6e:35:0c:58:0d:35:be:e2:7f:
b6:0f:cc:fe:17:53:0b:78:a4:28:9a:99:da:ce:b2:
88:10:6b:05:56:ab:9e:f4:01:8e:26:c3:79:81:61:
1f:bc:63:d8:5b:5c:14:a7:b1:22:c1:71:4d:b3:2d:
ed:c8:1b:ad:53:76:c2:63:e7:e6:dc:9d:9e:bf:ff:
e2:10:4f:ed:0b:26:0e:61:80:d7:74:63:97:5c:8d:
db:6e:94:78:e6:d1:aa:19:81:2f:18:64:bc:3a:53:
dd:21:fc:0d:f4:00:0f:ea:96:39:32:5f:48:e1:2d:
9e:64:db:a0:c9:1d:d5:27:7a:b9:ed:bc:5a:dd:d9:
78:97:68:ff:8c:c2:6f:21:9e:aa:0a:de:f6:57:60:
bb:b0:16:0c:cd:53:b2:2e:8b:bc:05:7f:c6:f3:23:
bb:03:91:cc:b7:d5:a3:1a:36:98:3b:a2:48:d7:62:
e9:6e:fd:8d:ea:03:9f:c7:23:7f:13:98:31:b5:6c:
fe:cd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DE:23:27:FF:AE:E3:85:35:FE:06:83:B5:46:57:5E:E0:B7:E4:F7:65
X509v3 Authority Key Identifier:
keyid:5D:83:B5:A6:7D:92:FF:A8:47:6C:93:21:AA:7B:F6:D4:A2:0D:3D:AB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XYO1pn2S_6hHbJMhqnv21KINPas.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0f/57b891-a912-4c6a-8e3b-d41fcdf57598/1/XYO1pn2S_6hHbJMhqnv21KINPas.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0f/57b891-a912-4c6a-8e3b-d41fcdf57598/1/XYO1pn2S_6hHbJMhqnv21KINPas.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
a5:b4:64:b7:33:e4:47:a8:cf:37:bf:b6:e3:7f:1e:97:47:90:
84:0c:0e:89:41:36:e7:cd:1b:b4:56:0d:b5:56:64:41:55:47:
ff:a8:f8:f6:f4:16:67:e2:d0:6b:28:35:4c:65:34:96:11:ce:
87:fe:d8:6e:10:93:13:bc:7c:a8:df:0b:fc:3a:70:f2:e3:cd:
ed:b6:93:39:c0:bd:96:b9:f6:b7:85:d2:07:97:35:f6:b2:ac:
c5:7c:29:1d:f9:b6:b8:23:28:c8:0c:dd:92:76:5c:09:45:d7:
0c:17:f3:bc:36:9d:bc:9a:be:3b:6d:01:05:cc:ea:6c:95:6b:
69:d0:00:87:75:0e:00:3a:09:44:25:e8:a2:0c:6c:ec:58:34:
76:9d:23:8e:d1:2d:df:21:98:56:1c:52:29:86:8d:3f:d6:13:
63:45:e3:82:34:d7:e0:31:44:f0:40:12:31:bc:b5:43:99:70:
64:1f:3b:98:58:a0:4e:60:95:1e:87:37:27:40:b2:68:ef:23:
ee:91:9a:bc:e2:09:e1:3b:4f:c3:2c:20:f3:f3:1d:aa:f9:6b:
6e:3c:14:e0:bd:f2:c7:20:3c:bd:8e:b6:c1:16:a3:12:78:37:
3e:e4:6b:9d:11:23:24:b4:b9:70:35:77:d7:b2:f0:6d:e6:00:
46:09:d2:e1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 4 22:17:40 2025 by rpki-client