Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4a/ca8125-5477-4222-b055-bbeb4550d9e6/1/XLtvfRHev55LqLH2nDg7j8PErhI.mft
File: XLtvfRHev55LqLH2nDg7j8PErhI.mft (raw, json)
Hash identifier: qwixq36E5XAsd7A1ourlgVDjGlyDyrsys466fF4rsnU=
Subject key identifier: 8A:5C:8C:15:F2:92:EC:BB:B2:98:1A:81:99:6E:D6:10:10:70:20:AB
Authority key identifier: 5C:BB:6F:7D:11:DE:BF:9E:4B:A8:B1:F6:9C:38:3B:8F:C3:C4:AE:12
Certificate issuer: /CN=5cbb6f7d11debf9e4ba8b1f69c383b8fc3c4ae12
Certificate serial: 019A500703990832829245674444194F7226
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XLtvfRHev55LqLH2nDg7j8PErhI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4a/ca8125-5477-4222-b055-bbeb4550d9e6/1/XLtvfRHev55LqLH2nDg7j8PErhI.mft
Manifest number: 0B33
Signing time: Tue 04 Nov 2025 18:00:28 +0000
Manifest this update: Tue 04 Nov 2025 18:00:28 +0000
Manifest next update: Wed 05 Nov 2025 18:00:28 +0000
Files and hashes: 1: GeKBRab06m2Sa_WEDlm2vrbqt80.roa (hash: rshNYrEYAk6Ccd9rs6FmkxFoBRIeaz8vJy7lI8MW13k=)
2: XLtvfRHev55LqLH2nDg7j8PErhI.crl (hash: fJCd8c+rQpn+WZmpI1p43slSFZwSEknerUNIyX8MZrg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/4a/ca8125-5477-4222-b055-bbeb4550d9e6/1/XLtvfRHev55LqLH2nDg7j8PErhI.crl
rsync://rpki.ripe.net/repository/DEFAULT/4a/ca8125-5477-4222-b055-bbeb4550d9e6/1/XLtvfRHev55LqLH2nDg7j8PErhI.mft
rsync://rpki.ripe.net/repository/DEFAULT/XLtvfRHev55LqLH2nDg7j8PErhI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 05 Nov 2025 16:49:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:50:07:03:99:08:32:82:92:45:67:44:44:19:4f:72:26
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5cbb6f7d11debf9e4ba8b1f69c383b8fc3c4ae12
Validity
Not Before: Nov 4 18:00:28 2025 GMT
Not After : Nov 5 18:00:28 2025 GMT
Subject: CN=8a5c8c15f292ecbbb2981a81996ed610107020ab
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:f1:b9:f8:49:82:c2:c0:47:21:69:f5:21:05:
eb:e4:c7:83:04:8a:16:80:ec:11:b8:14:1f:5a:2c:
55:34:43:c1:ee:73:53:ec:a0:c0:2a:de:b6:0f:88:
36:b6:be:69:da:64:d1:96:50:ef:79:c0:fe:b5:ce:
dd:99:fa:79:a5:4b:61:c2:3a:d8:50:9b:89:bb:15:
ab:a5:85:86:92:90:4a:1d:43:17:6b:ff:72:ab:aa:
55:a3:f1:5b:44:8f:7b:c0:44:94:fe:be:2d:79:50:
44:db:03:fd:11:1d:8e:0d:6d:67:b3:96:c6:d4:17:
af:b5:de:0c:fb:0a:4e:11:38:ba:14:57:c9:a0:c9:
62:63:e5:38:8e:a3:a5:bc:e2:1d:f3:ac:99:05:b9:
f9:2e:f1:79:d6:cf:35:36:f7:3f:4b:a3:72:a0:43:
c6:f0:aa:8a:dc:1d:2d:e7:93:9c:36:d1:67:7d:df:
4a:30:5f:20:ea:d9:44:93:6e:f8:28:00:91:1f:96:
99:5f:40:3e:62:7a:9a:3a:8e:4a:3c:22:e7:2a:01:
78:75:90:c2:df:84:3f:af:ed:fb:e8:85:ae:7b:5e:
47:42:e8:5c:b2:37:b4:17:ee:c1:82:ae:9b:34:86:
b4:c6:4e:90:64:02:76:a5:38:62:35:92:73:5f:76:
d9:71
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8A:5C:8C:15:F2:92:EC:BB:B2:98:1A:81:99:6E:D6:10:10:70:20:AB
X509v3 Authority Key Identifier:
keyid:5C:BB:6F:7D:11:DE:BF:9E:4B:A8:B1:F6:9C:38:3B:8F:C3:C4:AE:12
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XLtvfRHev55LqLH2nDg7j8PErhI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4a/ca8125-5477-4222-b055-bbeb4550d9e6/1/XLtvfRHev55LqLH2nDg7j8PErhI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4a/ca8125-5477-4222-b055-bbeb4550d9e6/1/XLtvfRHev55LqLH2nDg7j8PErhI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
6b:a3:18:18:94:93:d6:9f:d1:86:88:ca:a1:fe:0e:e0:2e:df:
65:bb:39:17:7f:5b:d8:a4:33:0c:8f:ef:78:cb:ec:70:8a:c1:
b9:5e:42:b0:33:d6:24:8d:44:c2:00:77:e5:65:74:bc:0a:01:
f6:b3:ca:ad:cf:3a:28:94:0c:94:3e:62:df:7f:63:aa:8e:54:
58:8a:13:45:a0:e5:54:3f:ca:8f:f1:8a:9b:e7:4c:69:67:1c:
a5:ac:fd:20:28:3d:5b:da:05:0a:f5:0c:3e:0e:65:4c:f8:3c:
c4:fb:77:72:87:7e:c8:e3:78:6e:08:ee:46:32:4a:d5:a6:f1:
4a:db:d9:75:52:32:14:fa:8b:c2:6d:65:d8:33:06:14:6f:f7:
f6:32:b0:bd:be:4f:33:82:02:89:20:1d:7f:06:f2:80:f9:63:
9d:3e:f3:c4:a7:dd:75:d9:a1:16:2c:83:d6:f3:22:e4:0e:79:
d1:46:28:35:d8:d3:ac:cf:9a:38:40:db:04:56:87:7e:cc:15:
14:af:a4:c8:59:7f:70:84:a3:3d:b5:63:31:6c:ff:56:39:d5:
4e:6f:27:05:e0:f8:10:f4:a4:dc:d9:c0:3a:04:0d:1c:3b:8c:
35:98:fc:8d:79:42:ae:10:3f:69:33:c0:61:82:87:dc:44:3a:
45:aa:ea:6c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 4 20:22:33 2025 by rpki-client