Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2d/448c85-a966-4df2-98e4-a5a5ad06eb43/1/Xpub7Y-NPVebsFUuT8S4GYaGHmQ.mft
File: Xpub7Y-NPVebsFUuT8S4GYaGHmQ.mft (raw, json)
Hash identifier: j2usrpX6t6IIt3pwsJ5goyyy22yPZ6fytLntJSvKWGw=
Subject key identifier: 6D:13:17:6B:84:E5:3E:06:1F:56:09:92:61:05:E3:E9:E9:76:E3:B4
Authority key identifier: 5E:9B:9B:ED:8F:8D:3D:57:9B:B0:55:2E:4F:C4:B8:19:86:86:1E:64
Certificate issuer: /CN=5e9b9bed8f8d3d579bb0552e4fc4b81986861e64
Certificate serial: 019A4E4F50261FF467F48857600D20E30971
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Xpub7Y-NPVebsFUuT8S4GYaGHmQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2d/448c85-a966-4df2-98e4-a5a5ad06eb43/1/Xpub7Y-NPVebsFUuT8S4GYaGHmQ.mft
Manifest number: 11CA
Signing time: Tue 04 Nov 2025 10:00:11 +0000
Manifest this update: Tue 04 Nov 2025 10:00:11 +0000
Manifest next update: Wed 05 Nov 2025 10:00:11 +0000
Files and hashes: 1: QtZsqFLqtrL8olVDp6VSmjVajiQ.roa (hash: YhuUvItgnCDVt791lrn/5FAJLBN1QJhZrza7GAVkh44=)
2: Xpub7Y-NPVebsFUuT8S4GYaGHmQ.crl (hash: yEQQysR9yPrhyRjGqez4AwHEP8vckNj246VD638QgJ0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2d/448c85-a966-4df2-98e4-a5a5ad06eb43/1/Xpub7Y-NPVebsFUuT8S4GYaGHmQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/2d/448c85-a966-4df2-98e4-a5a5ad06eb43/1/Xpub7Y-NPVebsFUuT8S4GYaGHmQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/Xpub7Y-NPVebsFUuT8S4GYaGHmQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 05 Nov 2025 09:00:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:4e:4f:50:26:1f:f4:67:f4:88:57:60:0d:20:e3:09:71
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5e9b9bed8f8d3d579bb0552e4fc4b81986861e64
Validity
Not Before: Nov 4 10:00:11 2025 GMT
Not After : Nov 5 10:00:11 2025 GMT
Subject: CN=6d13176b84e53e061f5609926105e3e9e976e3b4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:03:25:76:0a:f3:b8:2c:e3:f9:b0:b0:8c:30:
8e:10:6e:b7:0d:c3:e8:37:a1:12:36:c1:f5:75:9b:
6a:43:35:c8:ae:b8:d4:15:93:f1:42:44:07:74:80:
3e:d8:38:91:b7:28:6e:ce:18:ff:94:1b:47:bb:89:
d3:3e:44:c5:b7:fa:ad:2e:db:9d:93:5c:ac:28:bf:
0c:05:9c:8a:e9:c0:60:29:28:27:b3:59:98:e6:5c:
6e:f5:44:de:71:79:44:80:fe:85:46:22:cb:75:aa:
28:4c:d9:5e:6c:3a:e6:e3:52:22:97:63:c8:3d:6e:
24:09:da:3b:98:bb:3a:18:ba:95:e3:22:09:22:f3:
d0:b2:09:96:9c:97:d5:ea:77:57:de:44:ea:86:19:
3f:4e:11:39:39:5b:4f:39:bf:46:97:82:05:fb:31:
30:a8:08:6e:61:08:c3:c1:15:36:9d:9c:a8:a5:4a:
c5:93:b5:51:95:a3:ed:81:8b:35:2c:65:03:ed:c7:
92:a6:c6:6b:c1:42:10:14:b5:24:25:95:2e:0a:7e:
e9:fd:8b:18:6f:12:99:08:72:4c:c1:5a:df:4c:7d:
29:9e:ee:d2:69:04:52:65:8d:b2:45:77:16:4f:b5:
a6:8a:d6:16:02:65:19:fc:21:2b:2b:c9:78:57:6d:
cb:8b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6D:13:17:6B:84:E5:3E:06:1F:56:09:92:61:05:E3:E9:E9:76:E3:B4
X509v3 Authority Key Identifier:
keyid:5E:9B:9B:ED:8F:8D:3D:57:9B:B0:55:2E:4F:C4:B8:19:86:86:1E:64
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Xpub7Y-NPVebsFUuT8S4GYaGHmQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2d/448c85-a966-4df2-98e4-a5a5ad06eb43/1/Xpub7Y-NPVebsFUuT8S4GYaGHmQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2d/448c85-a966-4df2-98e4-a5a5ad06eb43/1/Xpub7Y-NPVebsFUuT8S4GYaGHmQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
ae:5a:a9:20:67:22:c8:2b:1f:47:27:9b:6e:f5:27:17:49:da:
e0:2a:82:2b:75:d8:8f:de:3f:64:34:02:58:d1:56:e5:12:bb:
03:0f:a6:9d:99:7e:1e:87:1b:0a:6a:da:b6:ed:90:24:e5:d6:
f3:41:f7:bb:71:b2:77:fa:b4:89:b1:47:5c:6f:db:d3:df:94:
07:bd:3e:e0:78:93:ca:45:ca:bd:40:21:90:5e:3c:d7:2d:7b:
86:39:06:7c:7e:6d:3f:3d:f8:99:2e:25:91:9c:73:72:c4:f1:
21:79:89:ed:14:62:96:84:6b:f4:c3:47:20:12:c6:7f:6f:fd:
f6:de:a4:3c:64:ba:68:99:5b:00:41:5e:fe:b4:3f:ce:84:1a:
e0:cd:98:70:19:da:8e:b0:c4:e0:d5:b9:82:0a:b9:e2:a1:4e:
b5:4b:f1:af:ab:cc:c4:87:2f:e8:02:d1:8a:e2:fd:1c:fd:9b:
ba:9b:67:64:8a:82:2d:ca:08:c9:e4:10:07:ce:21:58:ae:4d:
1a:30:0e:f0:ad:05:cf:ca:a1:a9:22:39:1a:98:d5:e5:67:d0:
17:2c:f5:43:d4:fe:06:02:e4:54:b0:1b:58:66:ed:59:21:36:
81:39:1d:58:48:1b:29:ae:06:7a:98:63:f8:ca:27:6f:68:62:
44:ca:d3:37
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 4 14:46:51 2025 by rpki-client