Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/20/95e060-fa2a-4057-9578-b0898fbb1cab/1/xHKa8T09FW9BGXaxduVU-mcddvc.mft
File: xHKa8T09FW9BGXaxduVU-mcddvc.mft (raw, json)
Hash identifier: WP5hNEWWA2ZKm01zJKWDWiinXrIx11ecx6NP3MbSL4o=
Subject key identifier: 1E:BA:E9:6B:0C:EF:7C:E3:64:C4:DC:F4:A4:FE:A0:2E:D8:19:1F:0B
Authority key identifier: C4:72:9A:F1:3D:3D:15:6F:41:19:76:B1:76:E5:54:FA:67:1D:76:F7
Certificate issuer: /CN=c4729af13d3d156f411976b176e554fa671d76f7
Certificate serial: 019A50E2F2E91C1444738D73D92ABCB4B5E7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xHKa8T09FW9BGXaxduVU-mcddvc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/20/95e060-fa2a-4057-9578-b0898fbb1cab/1/xHKa8T09FW9BGXaxduVU-mcddvc.mft
Manifest number: 1452
Signing time: Tue 04 Nov 2025 22:00:41 +0000
Manifest this update: Tue 04 Nov 2025 22:00:41 +0000
Manifest next update: Wed 05 Nov 2025 22:00:41 +0000
Files and hashes: 1: qFZMGyq85ztg5ytAQ7RbzglxnGU.roa (hash: kMRZIxRuZxVhg2DxKXhubRuKlbKba7EMDPUaAyexKng=)
2: xHKa8T09FW9BGXaxduVU-mcddvc.crl (hash: cj5mRCSeqHWbjmH0NcbJgC5Fk4+9WRT/w/XGamIKHtQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/20/95e060-fa2a-4057-9578-b0898fbb1cab/1/xHKa8T09FW9BGXaxduVU-mcddvc.crl
rsync://rpki.ripe.net/repository/DEFAULT/20/95e060-fa2a-4057-9578-b0898fbb1cab/1/xHKa8T09FW9BGXaxduVU-mcddvc.mft
rsync://rpki.ripe.net/repository/DEFAULT/xHKa8T09FW9BGXaxduVU-mcddvc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 05 Nov 2025 22:00:41 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:50:e2:f2:e9:1c:14:44:73:8d:73:d9:2a:bc:b4:b5:e7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c4729af13d3d156f411976b176e554fa671d76f7
Validity
Not Before: Nov 4 22:00:41 2025 GMT
Not After : Nov 5 22:00:41 2025 GMT
Subject: CN=1ebae96b0cef7ce364c4dcf4a4fea02ed8191f0b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d1:04:eb:3c:31:28:e1:b5:76:15:84:86:1d:04:
56:dd:f2:b7:63:2a:ca:a5:bd:61:17:bb:8e:81:9e:
eb:2f:35:62:41:d7:de:56:bb:85:e5:50:44:30:4c:
91:f3:bf:06:83:59:07:45:16:33:9c:52:a5:5d:bf:
ce:b0:53:87:a4:21:8b:ab:5b:fc:cf:3a:be:63:79:
24:4a:68:a9:13:98:da:97:34:0c:52:b7:fc:06:19:
ec:a3:8b:43:a0:62:0e:8a:50:15:ad:a2:1a:1a:d0:
2b:d0:f6:97:99:fd:72:3f:d2:08:98:be:a6:29:7b:
d0:1a:e8:fd:93:fe:4d:81:77:35:42:89:88:74:81:
90:b7:d1:2b:84:8f:38:4b:ae:d0:49:66:02:a4:9a:
5a:b1:82:04:50:63:59:46:70:0b:b2:c0:00:37:0d:
c4:46:c4:fd:ac:7d:d8:32:d4:15:30:67:14:7f:9e:
c8:d0:bb:0f:dd:a1:f5:b0:3e:86:da:1e:3c:87:a5:
03:7f:37:dc:7d:6a:f5:b8:f8:31:28:0d:cd:ea:62:
89:81:2b:f1:70:65:16:6d:2b:e6:bf:9b:c3:c5:b0:
a0:a1:7b:69:e6:8a:6d:e9:63:8f:63:56:27:61:aa:
0d:17:b8:dd:d9:bd:42:73:92:8a:24:9b:54:c7:79:
1a:33
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1E:BA:E9:6B:0C:EF:7C:E3:64:C4:DC:F4:A4:FE:A0:2E:D8:19:1F:0B
X509v3 Authority Key Identifier:
keyid:C4:72:9A:F1:3D:3D:15:6F:41:19:76:B1:76:E5:54:FA:67:1D:76:F7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xHKa8T09FW9BGXaxduVU-mcddvc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/20/95e060-fa2a-4057-9578-b0898fbb1cab/1/xHKa8T09FW9BGXaxduVU-mcddvc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/20/95e060-fa2a-4057-9578-b0898fbb1cab/1/xHKa8T09FW9BGXaxduVU-mcddvc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
2c:db:55:24:2b:ab:c1:20:b8:c3:52:2b:42:8f:f9:d8:36:01:
8c:8f:3a:13:7a:ba:c7:2e:13:0f:b2:f9:59:0f:b1:01:53:51:
98:5e:d0:1e:ca:a3:d8:c6:21:39:71:3c:ef:e4:8e:0c:c8:ca:
11:9a:c6:44:6c:56:b1:2f:d1:b9:25:6a:b1:c2:0a:9c:a0:81:
18:12:4c:1b:ab:db:cf:7f:8c:c8:5a:88:f0:fe:9d:f9:24:9e:
40:4b:cb:20:cf:c6:5a:a6:51:3f:b8:c9:b2:40:73:5f:60:26:
87:77:85:55:d8:73:58:4d:95:2a:97:8c:41:fc:a9:40:83:55:
c4:09:36:e6:1d:03:d3:7b:cd:b5:2d:e8:5b:65:d0:8a:9c:75:
99:15:cb:3e:4a:86:f3:0e:f1:40:d7:72:10:c5:34:03:4c:3b:
b9:f5:21:df:ac:e5:49:e0:a7:83:9d:66:95:5a:77:c4:7e:ab:
aa:60:4a:2e:61:34:3b:66:13:28:00:f3:72:b7:1a:46:dd:56:
88:cf:9d:7c:a4:0f:e4:17:0c:54:eb:64:81:68:c8:e3:5c:ef:
e8:a4:32:ef:db:a5:ce:91:3b:40:7e:93:10:e8:47:42:3c:20:
a8:7f:bd:21:18:1c:dc:2d:e3:5e:7c:1b:26:e9:e9:c5:dc:c9:
5c:52:4a:3a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Nov 5 04:53:48 2025 by rpki-client