Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/17/70bfd7-711d-4ad9-82f7-2f3c0032e446/1/X06OdhPaoX6FqhB4yOwlXPGNQio.mft
File: X06OdhPaoX6FqhB4yOwlXPGNQio.mft (raw, json)
Hash identifier: E7N6ZOswQ3EDk8JletSSlz54T7SRj7SnTt04uqO2N5A=
Subject key identifier: 56:E8:30:95:6E:37:2A:74:01:A1:E1:97:84:0B:DB:EC:69:F1:C6:C6
Authority key identifier: 5F:4E:8E:76:13:DA:A1:7E:85:AA:10:78:C8:EC:25:5C:F1:8D:42:2A
Certificate issuer: /CN=5f4e8e7613daa17e85aa1078c8ec255cf18d422a
Certificate serial: 019A4EF4AD0D65A5DF1D8E45F141A43E8B51
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/X06OdhPaoX6FqhB4yOwlXPGNQio.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/17/70bfd7-711d-4ad9-82f7-2f3c0032e446/1/X06OdhPaoX6FqhB4yOwlXPGNQio.mft
Manifest number: 0E38
Signing time: Tue 04 Nov 2025 13:00:49 +0000
Manifest this update: Tue 04 Nov 2025 13:00:49 +0000
Manifest next update: Wed 05 Nov 2025 13:00:49 +0000
Files and hashes: 1: X06OdhPaoX6FqhB4yOwlXPGNQio.crl (hash: k/Mt7Rc3hwHLSw/iRwW2Kn2mJuQ13ujT57eTw+PvSvM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/17/70bfd7-711d-4ad9-82f7-2f3c0032e446/1/X06OdhPaoX6FqhB4yOwlXPGNQio.crl
rsync://rpki.ripe.net/repository/DEFAULT/17/70bfd7-711d-4ad9-82f7-2f3c0032e446/1/X06OdhPaoX6FqhB4yOwlXPGNQio.mft
rsync://rpki.ripe.net/repository/DEFAULT/X06OdhPaoX6FqhB4yOwlXPGNQio.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 05 Nov 2025 09:00:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:4e:f4:ad:0d:65:a5:df:1d:8e:45:f1:41:a4:3e:8b:51
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5f4e8e7613daa17e85aa1078c8ec255cf18d422a
Validity
Not Before: Nov 4 13:00:49 2025 GMT
Not After : Nov 5 13:00:49 2025 GMT
Subject: CN=56e830956e372a7401a1e197840bdbec69f1c6c6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8e:94:7c:70:75:f6:c3:e1:10:b8:f9:a2:41:9e:
f5:49:0d:d9:9b:a0:5c:85:ea:41:7a:c2:5d:ef:4f:
f5:1a:bc:b1:46:f2:10:dd:57:b9:6a:32:22:d9:79:
5b:eb:6a:3f:8e:50:c1:af:51:04:f5:00:8b:3e:cd:
62:84:53:2c:f5:0e:50:b8:25:55:a2:fd:c8:87:7a:
45:46:ad:09:16:41:2e:32:2f:d8:ce:76:3f:41:99:
16:4a:9d:a4:c8:31:7c:e2:c0:95:99:98:92:08:b7:
71:0f:86:d6:5b:e7:cd:55:54:8a:5c:4b:b8:1e:bd:
47:0f:d7:9f:4c:86:6a:24:cb:2d:34:f8:0a:40:b9:
8d:5d:f4:a5:b6:f3:1a:0c:9b:d9:77:04:fe:37:2f:
a1:db:9e:a5:ec:17:12:21:92:cf:a2:09:18:e1:8c:
0f:92:67:63:c2:6c:f1:30:20:b3:e9:2d:64:70:a4:
b4:a9:85:3d:b7:a0:3e:f0:d5:fa:b5:7e:0d:db:5e:
24:98:66:8b:08:cb:95:ea:c5:bb:15:5a:92:bd:82:
9e:55:f1:b8:eb:2a:76:0b:70:7c:40:ff:7a:86:a5:
62:9b:ec:63:cf:f1:6f:1a:0a:06:68:b6:71:59:8b:
bf:25:f6:8e:df:26:60:b2:36:63:97:60:4c:3d:b9:
b8:93
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
56:E8:30:95:6E:37:2A:74:01:A1:E1:97:84:0B:DB:EC:69:F1:C6:C6
X509v3 Authority Key Identifier:
keyid:5F:4E:8E:76:13:DA:A1:7E:85:AA:10:78:C8:EC:25:5C:F1:8D:42:2A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/X06OdhPaoX6FqhB4yOwlXPGNQio.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/17/70bfd7-711d-4ad9-82f7-2f3c0032e446/1/X06OdhPaoX6FqhB4yOwlXPGNQio.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/17/70bfd7-711d-4ad9-82f7-2f3c0032e446/1/X06OdhPaoX6FqhB4yOwlXPGNQio.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
15:08:8e:25:5a:20:7a:86:bf:02:7e:04:67:7b:8f:29:5b:b2:
a7:a0:55:20:24:e6:fa:c5:52:66:ba:19:75:b4:fa:ae:85:15:
c2:02:3e:5d:33:e3:1d:51:af:ff:a8:c5:20:b7:9a:4d:a2:b9:
0c:8a:10:a0:fc:c6:d9:43:33:7d:5b:cf:89:ff:12:d8:61:d7:
42:10:79:2f:e7:74:3a:42:e3:40:1b:61:64:b1:52:0d:8a:e6:
29:83:03:82:22:d8:85:7b:52:ef:65:75:29:52:3c:6b:d8:f3:
bf:91:8e:b1:a4:8d:dc:09:c4:ab:73:c3:61:1a:60:96:bd:69:
21:31:c6:5a:67:24:03:79:45:8e:90:78:55:8a:37:76:fb:40:
37:c1:5e:2f:e7:78:67:cd:27:8e:d8:3a:27:26:bc:d5:a4:cc:
3f:06:ef:f8:4b:9f:e8:12:e5:37:90:8a:59:3b:95:2f:72:8a:
23:46:e3:c8:05:8d:e4:43:ac:af:82:40:6f:d7:71:3f:0f:69:
5d:30:ec:ca:c9:8c:fd:7e:76:5c:3b:35:67:86:d5:1a:40:10:
cf:40:50:a1:57:92:03:eb:b8:07:d4:5b:07:1d:f4:79:69:a9:
9e:3d:b1:ca:7f:7b:7b:22:99:b6:89:1e:99:62:e4:3a:a2:2b:
98:b9:99:ae
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 4 14:20:27 2025 by rpki-client