Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/86/9b6016-1424-4188-ae62-7d54927445f6/1/X017eQ8_STQyjhKaLd5N10qj4T4.mft
File: X017eQ8_STQyjhKaLd5N10qj4T4.mft (raw, json)
Hash identifier: qgx115GHEa3/u1IN1oAMhhXsHb0uCNUAnpHtgZNJIAQ=
Subject key identifier: 59:58:FB:A4:64:59:3A:D9:87:4D:11:79:E9:79:20:4C:CA:D9:F1:70
Authority key identifier: 5F:4D:7B:79:0F:3F:49:34:32:8E:12:9A:2D:DE:4D:D7:4A:A3:E1:3E
Certificate issuer: /CN=5f4d7b790f3f4934328e129a2dde4dd74aa3e13e
Certificate serial: 019A53084D004128A7BD818642A6E228DFE8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/X017eQ8_STQyjhKaLd5N10qj4T4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/86/9b6016-1424-4188-ae62-7d54927445f6/1/X017eQ8_STQyjhKaLd5N10qj4T4.mft
Manifest number: 018C
Signing time: Wed 05 Nov 2025 08:00:44 +0000
Manifest this update: Wed 05 Nov 2025 08:00:44 +0000
Manifest next update: Thu 06 Nov 2025 08:00:44 +0000
Files and hashes: 1: X017eQ8_STQyjhKaLd5N10qj4T4.crl (hash: NeMOyI4tOC6AFEYtm+nW6Z0M4YuR+FFvdzteFD4atrM=)
2: oF0UnfdG9SgR1YrjEvyyzHdI2NQ.roa (hash: C+won2ayhOZhVuYFZ85jDDGUEWPlmXvRmRnHCUNjIgI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/86/9b6016-1424-4188-ae62-7d54927445f6/1/X017eQ8_STQyjhKaLd5N10qj4T4.crl
rsync://rpki.ripe.net/repository/DEFAULT/86/9b6016-1424-4188-ae62-7d54927445f6/1/X017eQ8_STQyjhKaLd5N10qj4T4.mft
rsync://rpki.ripe.net/repository/DEFAULT/X017eQ8_STQyjhKaLd5N10qj4T4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 06 Nov 2025 03:00:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:53:08:4d:00:41:28:a7:bd:81:86:42:a6:e2:28:df:e8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5f4d7b790f3f4934328e129a2dde4dd74aa3e13e
Validity
Not Before: Nov 5 08:00:44 2025 GMT
Not After : Nov 6 08:00:44 2025 GMT
Subject: CN=5958fba464593ad9874d1179e979204ccad9f170
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:db:4c:65:8d:8a:1a:76:9b:22:70:38:b9:c0:32:
cc:03:26:25:3b:85:02:1c:3b:b3:1f:5b:0f:0d:64:
0b:a0:05:e4:f6:aa:5b:a5:84:f1:23:23:2f:39:a8:
aa:47:46:b7:89:91:51:07:cf:45:62:7d:fa:62:47:
c3:41:f8:a0:a2:b3:02:88:86:76:43:f6:e7:4d:5b:
be:7d:0a:00:86:03:bc:1e:7c:85:17:a0:35:02:5c:
fb:96:4b:2d:c2:99:1d:af:8c:12:7a:36:56:00:3b:
0a:62:0b:39:46:30:b1:d9:72:58:8e:ef:36:15:6c:
b3:57:42:f7:6d:80:33:ba:e1:7a:5a:ec:7c:a4:c1:
5f:08:21:e8:09:96:a7:54:1e:7d:d2:0b:9a:21:6c:
31:0a:51:5a:dc:54:2f:49:41:2f:1b:ae:fa:fa:5b:
15:06:d4:05:62:5b:fb:1b:30:54:30:5d:57:9d:a0:
94:99:a0:fd:6d:0b:2f:a7:c3:52:3b:0f:12:f1:66:
42:fe:09:5f:40:eb:fc:79:5a:57:4f:e5:4a:76:49:
b0:07:e4:1a:7a:ed:6a:d6:12:71:d1:d4:b4:fc:2c:
33:89:38:d2:55:67:ca:1a:b1:bd:32:82:c4:c0:84:
b9:c6:fd:2b:2f:ee:6f:fd:3c:7c:0b:5c:30:7b:c2:
23:a7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
59:58:FB:A4:64:59:3A:D9:87:4D:11:79:E9:79:20:4C:CA:D9:F1:70
X509v3 Authority Key Identifier:
keyid:5F:4D:7B:79:0F:3F:49:34:32:8E:12:9A:2D:DE:4D:D7:4A:A3:E1:3E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/X017eQ8_STQyjhKaLd5N10qj4T4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/86/9b6016-1424-4188-ae62-7d54927445f6/1/X017eQ8_STQyjhKaLd5N10qj4T4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/86/9b6016-1424-4188-ae62-7d54927445f6/1/X017eQ8_STQyjhKaLd5N10qj4T4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
79:d7:8f:ae:97:0e:f0:72:bd:11:5c:53:50:c1:2a:72:7e:0e:
c3:46:6c:f9:c8:72:6d:fc:00:06:7e:3c:f6:97:20:2e:78:52:
23:b8:91:61:d1:84:42:c3:f1:a1:ef:d9:50:e7:c3:29:9b:ce:
0d:b3:bf:52:4e:67:02:ad:0c:b3:5c:3c:4a:d0:37:2d:48:98:
22:24:da:19:96:58:ad:57:12:03:4e:36:2a:07:eb:fc:8e:e9:
19:bc:5d:50:22:f4:f8:e1:b4:92:7d:33:4d:cc:f8:87:c1:ad:
35:2d:3d:9c:91:33:ed:11:50:5d:b2:fc:72:3e:8b:5e:ba:7c:
54:f2:e5:e4:6c:31:84:2b:3f:e7:5d:f2:6f:37:f3:aa:8f:27:
95:2f:de:fc:ef:54:29:5f:17:40:9f:5b:7c:88:55:8c:e2:d3:
87:3e:54:6a:7b:e7:85:a5:7b:d3:b6:a8:dd:f7:4b:60:0e:86:
4f:ac:ea:30:e4:2b:64:da:42:0e:73:69:5c:3d:7c:ff:2e:8a:
fd:0a:6a:d8:02:fe:ef:a4:1e:6c:4d:14:62:43:51:e3:2f:6a:
76:d4:d1:df:49:b0:70:43:ea:ad:97:4e:05:99:28:86:c8:d5:
10:c7:06:fa:17:b2:4b:2f:8d:d7:ab:fb:a1:48:d9:36:67:fc:
ae:b5:93:cd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Nov 5 12:28:25 2025 by rpki-client