Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/58/42e24c-21f5-441f-b6bc-c23d7adbebdc/1/500-XZlL7NPyWMQd858fY-xWPh0.mft
File: 500-XZlL7NPyWMQd858fY-xWPh0.mft (raw, json)
Hash identifier: p0gan3mfRioVM2buEw3//9Lh/0cjzYBdgmMekZOgduI=
Subject key identifier: 51:F9:23:09:7F:96:11:87:5D:3B:F1:2C:BA:14:0C:16:15:4E:EE:0D
Authority key identifier: E7:4D:3E:5D:99:4B:EC:D3:F2:58:C4:1D:F3:9F:1F:63:EC:56:3E:1D
Certificate issuer: /CN=e74d3e5d994becd3f258c41df39f1f63ec563e1d
Certificate serial: 019A4E4F9951741990211D99A4AC6CEB67BB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/500-XZlL7NPyWMQd858fY-xWPh0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/58/42e24c-21f5-441f-b6bc-c23d7adbebdc/1/500-XZlL7NPyWMQd858fY-xWPh0.mft
Manifest number: 10B7
Signing time: Tue 04 Nov 2025 10:00:30 +0000
Manifest this update: Tue 04 Nov 2025 10:00:30 +0000
Manifest next update: Wed 05 Nov 2025 10:00:30 +0000
Files and hashes: 1: 500-XZlL7NPyWMQd858fY-xWPh0.crl (hash: +E8b1x/R0VlmJPzdxckHUleGZdpLOEmKJsAl3aU896Q=)
2: BBc69UDcCnvJ9YXOkYKIegaNiDE.roa (hash: u/teCtCSqk7whi20Ul6NWhHZ26QmJCDD43T9Guz4eqc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/58/42e24c-21f5-441f-b6bc-c23d7adbebdc/1/500-XZlL7NPyWMQd858fY-xWPh0.crl
rsync://rpki.ripe.net/repository/DEFAULT/58/42e24c-21f5-441f-b6bc-c23d7adbebdc/1/500-XZlL7NPyWMQd858fY-xWPh0.mft
rsync://rpki.ripe.net/repository/DEFAULT/500-XZlL7NPyWMQd858fY-xWPh0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 05 Nov 2025 09:00:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:4e:4f:99:51:74:19:90:21:1d:99:a4:ac:6c:eb:67:bb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e74d3e5d994becd3f258c41df39f1f63ec563e1d
Validity
Not Before: Nov 4 10:00:30 2025 GMT
Not After : Nov 5 10:00:30 2025 GMT
Subject: CN=51f923097f9611875d3bf12cba140c16154eee0d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:3a:7d:db:27:99:fe:36:02:da:4a:62:fa:c9:
e6:f8:f8:55:e9:12:83:6a:9c:38:96:49:9c:e0:6e:
a8:29:39:2b:b5:01:c7:0e:6f:24:92:02:be:ff:26:
9a:12:f7:30:3d:36:ba:d4:a8:59:6c:71:a0:68:b6:
f0:e8:9c:3c:84:fa:ca:99:6a:fc:f4:0b:7c:e8:68:
6d:0b:89:f6:74:a7:25:7b:e8:c8:71:e3:01:24:1f:
9a:d9:97:76:cf:06:6c:9d:f9:d1:61:da:8f:7e:09:
b7:35:a4:0b:7b:b0:4d:c5:34:85:bf:59:0b:ec:d3:
fa:04:18:c7:68:9a:7c:4e:b1:65:16:a0:9e:52:2f:
b5:9b:01:49:9b:41:4b:81:57:ea:69:53:2b:db:42:
48:b7:4b:3d:22:d2:e7:bd:29:47:42:31:bb:35:48:
1a:76:f1:be:85:d4:45:3c:4d:a8:9e:ae:af:7a:f0:
6e:c6:76:36:9e:7d:f4:39:a6:83:c3:63:3f:3c:c9:
f3:d0:25:46:1f:a9:a1:15:e0:32:05:d1:7a:85:0c:
f4:f3:5f:16:2e:c2:23:c5:ef:75:dc:9f:25:36:8c:
83:c0:55:a4:b9:6e:9a:dc:e6:90:04:2f:a5:d7:54:
28:6e:14:6e:18:04:b0:74:fe:b2:03:c7:eb:9c:d8:
91:cb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
51:F9:23:09:7F:96:11:87:5D:3B:F1:2C:BA:14:0C:16:15:4E:EE:0D
X509v3 Authority Key Identifier:
keyid:E7:4D:3E:5D:99:4B:EC:D3:F2:58:C4:1D:F3:9F:1F:63:EC:56:3E:1D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/500-XZlL7NPyWMQd858fY-xWPh0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/58/42e24c-21f5-441f-b6bc-c23d7adbebdc/1/500-XZlL7NPyWMQd858fY-xWPh0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/58/42e24c-21f5-441f-b6bc-c23d7adbebdc/1/500-XZlL7NPyWMQd858fY-xWPh0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
40:f2:8e:43:11:30:b4:0a:b1:ba:76:9c:55:04:35:91:14:17:
cc:3c:e4:d0:cd:aa:8d:91:f2:d7:c6:10:46:e4:0e:e3:f5:f7:
3e:ab:06:7a:98:b6:78:b8:35:bd:fa:93:af:59:1c:e1:49:e1:
62:3d:fe:9d:b0:53:25:9b:6f:00:76:67:59:8a:1d:39:2c:88:
bd:66:38:1a:eb:70:b6:ac:38:56:05:4d:62:d7:e4:d4:df:48:
a9:1d:67:8b:0d:4b:de:70:63:9c:26:5a:b7:6f:4d:b6:00:e9:
2e:53:65:49:75:b3:6d:97:80:78:a7:a3:be:8f:7d:fa:b7:61:
64:94:3b:a2:38:e1:f8:b7:6a:12:31:04:2a:b7:77:e9:d0:63:
3a:16:ac:24:7c:3b:06:e8:65:93:49:61:6c:c0:41:8c:60:02:
5d:6a:5a:6a:c1:aa:6f:24:b1:0c:0e:f0:fa:66:2d:49:aa:16:
35:88:be:c8:25:a9:44:0e:a7:ff:e4:02:d8:50:e6:88:ba:64:
00:99:d4:34:52:2b:b3:23:20:44:4c:de:e1:41:bf:71:f2:14:
26:ab:bf:a8:e3:0d:b5:09:92:9f:0f:fa:be:54:e1:31:0e:0a:
48:0d:a1:32:5f:69:58:96:d4:5f:c6:37:73:20:49:1c:a3:8c:
d3:b8:b4:6a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 4 17:57:45 2025 by rpki-client