Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/63/d54bc0-f781-48b0-9f6d-b5f0d21053f8/1/XYLKb462haVz5dHZH48GEhqwKjc.mft
File: XYLKb462haVz5dHZH48GEhqwKjc.mft (raw, json)
Hash identifier: 7E+It1KAmc3OXZx29HJX8NdSO71+hq3/hTnREasuFHA=
Subject key identifier: 99:A0:DB:E1:11:81:CB:07:91:8C:F1:A9:A3:18:66:A1:D4:83:82:22
Authority key identifier: 5D:82:CA:6F:8E:B6:85:A5:73:E5:D1:D9:1F:8F:06:12:1A:B0:2A:37
Certificate issuer: /CN=5d82ca6f8eb685a573e5d1d91f8f06121ab02a37
Certificate serial: 019A52633B21329E7BA7FBF4B3E511DD331C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XYLKb462haVz5dHZH48GEhqwKjc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/63/d54bc0-f781-48b0-9f6d-b5f0d21053f8/1/XYLKb462haVz5dHZH48GEhqwKjc.mft
Manifest number: 1346
Signing time: Wed 05 Nov 2025 05:00:25 +0000
Manifest this update: Wed 05 Nov 2025 05:00:25 +0000
Manifest next update: Thu 06 Nov 2025 05:00:25 +0000
Files and hashes: 1: 5CQ4eO5LX17KXZ4KRK1zO2WmDio.roa (hash: elGO+kkXCWf6xUhLxKQr6fK8y3EJu/aqnItwgZKwIWc=)
2: B7NZ-u78J5mcpsov1XyIGK10cH0.roa (hash: U6kZ6B0tG819VSZmmXYNrc7xdPGbBot/5/JsXAv6Iss=)
3: OoBGTJUsN0YQ8-kRUhL79IvaFTU.roa (hash: KQ8kfmaZw2mJmdCZhrX6qjUaRt+eTM3yBnvc8ppjAws=)
4: XYLKb462haVz5dHZH48GEhqwKjc.crl (hash: YPOxQQqtxItPaoB5Hvc6gNfbbKve72B4J7xbCvwtGqg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/63/d54bc0-f781-48b0-9f6d-b5f0d21053f8/1/XYLKb462haVz5dHZH48GEhqwKjc.crl
rsync://rpki.ripe.net/repository/DEFAULT/63/d54bc0-f781-48b0-9f6d-b5f0d21053f8/1/XYLKb462haVz5dHZH48GEhqwKjc.mft
rsync://rpki.ripe.net/repository/DEFAULT/XYLKb462haVz5dHZH48GEhqwKjc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 05 Nov 2025 22:37:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:52:63:3b:21:32:9e:7b:a7:fb:f4:b3:e5:11:dd:33:1c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5d82ca6f8eb685a573e5d1d91f8f06121ab02a37
Validity
Not Before: Nov 5 05:00:25 2025 GMT
Not After : Nov 6 05:00:25 2025 GMT
Subject: CN=99a0dbe11181cb07918cf1a9a31866a1d4838222
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:12:c4:80:b8:12:d2:86:db:e2:74:8a:a1:78:
0b:2e:ba:f0:34:13:6b:75:13:c1:3c:fb:e9:35:63:
02:f1:fa:bb:38:9e:24:63:02:c2:2c:ce:f9:e4:0a:
d5:cb:19:49:d1:a7:a0:3e:b0:b2:e0:7a:14:96:15:
09:4e:73:38:f5:a6:94:90:ab:3e:e6:65:67:21:2c:
23:1f:e1:ff:7e:28:72:9c:18:4a:0f:56:ff:52:76:
67:cc:13:1a:4c:4f:98:0e:dc:6c:51:e8:3c:fd:b3:
af:0d:63:92:40:43:c4:6b:46:4c:80:7d:37:2b:4f:
82:cd:45:13:54:ab:16:d6:5e:25:f4:61:f6:a0:b2:
b7:a7:ee:e7:7d:88:4a:da:12:20:95:db:0b:72:7f:
50:82:95:93:a5:3d:36:9e:d4:22:41:22:88:35:8b:
35:7e:7f:0e:f7:8d:70:6c:46:e8:4e:5f:cb:dc:fa:
b8:d7:81:d4:be:d0:d6:08:14:ec:a9:da:fc:42:b9:
02:72:88:b5:47:9d:3b:98:94:e4:cc:18:07:1c:ed:
e9:1b:64:2d:8e:16:e5:77:66:51:9d:30:76:ed:cb:
5d:ae:a3:31:27:0b:2b:ed:a0:57:b2:63:85:a7:22:
83:95:c4:ab:07:0a:44:27:fe:0b:0c:67:4f:5c:0f:
d9:a7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
99:A0:DB:E1:11:81:CB:07:91:8C:F1:A9:A3:18:66:A1:D4:83:82:22
X509v3 Authority Key Identifier:
keyid:5D:82:CA:6F:8E:B6:85:A5:73:E5:D1:D9:1F:8F:06:12:1A:B0:2A:37
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XYLKb462haVz5dHZH48GEhqwKjc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/63/d54bc0-f781-48b0-9f6d-b5f0d21053f8/1/XYLKb462haVz5dHZH48GEhqwKjc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/63/d54bc0-f781-48b0-9f6d-b5f0d21053f8/1/XYLKb462haVz5dHZH48GEhqwKjc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
58:c7:dc:c0:63:f2:d4:a9:8f:b7:11:c3:13:b6:1d:c2:14:df:
00:4a:6e:96:50:7b:4a:c7:d0:fd:76:f9:94:72:bd:b0:1d:94:
5f:54:57:63:bf:02:47:c3:c3:bf:e8:22:67:f1:a5:73:03:b6:
cc:a5:d4:23:3f:ca:fd:79:96:92:29:a8:93:54:43:69:1e:a4:
21:e6:79:f6:bc:84:62:4c:86:89:8f:9d:12:97:f9:a3:6a:91:
41:7c:05:ec:c3:5f:ec:5f:6e:44:68:ab:b8:5d:35:20:13:13:
47:9e:02:92:04:5a:a6:2d:2c:a4:08:90:2a:c2:5a:91:ba:7a:
f4:db:d9:22:26:6b:db:c0:b9:e3:57:6d:da:f8:93:4a:22:2d:
03:0c:84:23:e4:c0:50:5d:ee:c1:de:ce:29:e9:49:b9:e3:1d:
8b:27:2b:35:7d:36:eb:89:78:a8:79:54:0a:f8:d9:b7:47:a3:
2f:c2:09:7a:a8:fc:09:4e:d2:69:b3:26:2d:46:c2:1a:69:68:
42:f4:bd:09:16:cb:26:b4:ad:43:af:e5:84:65:03:6c:bc:72:
d6:a6:3f:64:f2:ce:b0:e3:12:01:96:93:e0:24:0b:4b:7d:04:
7e:76:a8:fc:2b:81:e4:ea:9a:f3:ef:12:74:09:fb:7a:df:c9:
aa:19:65:21
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Nov 5 06:54:26 2025 by rpki-client