Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cb/cbe005-2689-4379-9a7e-a50e32de0823/1/xIzPWOSy4trdSoSDPAZ87iuXRek.mft
File: xIzPWOSy4trdSoSDPAZ87iuXRek.mft (raw, json)
Hash identifier: cRGykpSeqzu0ikd0rbdn7LyLAZ/AyGwJCG51nXE3kho=
Subject key identifier: 95:2F:C0:8B:E6:F5:32:BE:5E:F1:1D:B1:ED:A3:B6:2E:B1:48:8F:C6
Authority key identifier: C4:8C:CF:58:E4:B2:E2:DA:DD:4A:84:83:3C:06:7C:EE:2B:97:45:E9
Certificate issuer: /CN=c48ccf58e4b2e2dadd4a84833c067cee2b9745e9
Certificate serial: 019A503DD832FE64F9E9C32F521464882297
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xIzPWOSy4trdSoSDPAZ87iuXRek.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cb/cbe005-2689-4379-9a7e-a50e32de0823/1/xIzPWOSy4trdSoSDPAZ87iuXRek.mft
Manifest number: 093D
Signing time: Tue 04 Nov 2025 19:00:21 +0000
Manifest this update: Tue 04 Nov 2025 19:00:21 +0000
Manifest next update: Wed 05 Nov 2025 19:00:21 +0000
Files and hashes: 1: xIzPWOSy4trdSoSDPAZ87iuXRek.crl (hash: 89eSo3oWejDH5poP8xhjkKl4x4330kJ4evdMuogdD1g=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/cb/cbe005-2689-4379-9a7e-a50e32de0823/1/xIzPWOSy4trdSoSDPAZ87iuXRek.crl
rsync://rpki.ripe.net/repository/DEFAULT/cb/cbe005-2689-4379-9a7e-a50e32de0823/1/xIzPWOSy4trdSoSDPAZ87iuXRek.mft
rsync://rpki.ripe.net/repository/DEFAULT/xIzPWOSy4trdSoSDPAZ87iuXRek.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 05 Nov 2025 16:49:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:50:3d:d8:32:fe:64:f9:e9:c3:2f:52:14:64:88:22:97
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c48ccf58e4b2e2dadd4a84833c067cee2b9745e9
Validity
Not Before: Nov 4 19:00:21 2025 GMT
Not After : Nov 5 19:00:21 2025 GMT
Subject: CN=952fc08be6f532be5ef11db1eda3b62eb1488fc6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e0:13:02:13:19:3e:8c:50:a7:3f:ce:0b:3d:39:
b7:8a:10:6b:6c:ce:8c:50:20:c0:25:71:13:d1:41:
de:a4:d0:86:85:36:29:3a:ea:6b:f8:d7:46:af:c5:
fa:ea:ce:e9:62:31:90:f1:d7:d2:ec:f8:ed:76:34:
d6:3e:6e:00:2f:a1:c0:bd:e0:1b:22:ec:3a:1c:a1:
8e:d6:9d:d3:d1:7f:e9:03:10:cd:f1:be:1a:7b:1b:
8a:a0:37:94:55:09:7e:34:01:7d:68:f8:5b:bf:54:
7f:25:f9:1d:a3:22:43:a7:0c:8c:78:ae:af:79:e9:
4d:26:84:eb:0a:d2:b3:b1:fa:5b:bf:cf:52:45:de:
6c:dc:00:d8:0e:24:67:9a:ce:ef:79:5f:04:43:ce:
7c:c1:88:9c:dd:4f:c2:17:c8:7c:a2:44:63:4c:be:
14:ac:ca:3b:e4:4e:d2:5a:78:2e:f0:21:68:4a:af:
3b:6e:c6:2a:96:45:8a:55:45:72:7d:e7:fd:2d:63:
2f:62:e5:6b:3d:9e:cb:12:12:05:86:c7:6e:e3:e5:
2c:0a:c1:a9:d2:8b:ca:42:8b:75:64:2b:97:70:d6:
c1:f5:ad:99:f4:7a:ca:db:f9:9c:88:7d:86:14:aa:
bb:5b:fb:a0:a0:c1:0f:04:9b:91:42:b5:14:53:be:
db:9d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
95:2F:C0:8B:E6:F5:32:BE:5E:F1:1D:B1:ED:A3:B6:2E:B1:48:8F:C6
X509v3 Authority Key Identifier:
keyid:C4:8C:CF:58:E4:B2:E2:DA:DD:4A:84:83:3C:06:7C:EE:2B:97:45:E9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xIzPWOSy4trdSoSDPAZ87iuXRek.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cb/cbe005-2689-4379-9a7e-a50e32de0823/1/xIzPWOSy4trdSoSDPAZ87iuXRek.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/cb/cbe005-2689-4379-9a7e-a50e32de0823/1/xIzPWOSy4trdSoSDPAZ87iuXRek.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
62:2f:4b:94:7f:77:9a:6c:90:99:b0:a4:a7:5d:9d:91:df:d1:
77:83:56:25:18:d3:78:5c:c5:2e:10:f4:be:ad:1c:39:f3:cd:
db:9c:26:18:84:7b:30:8e:e1:dc:c5:01:07:7c:b2:db:0a:eb:
04:87:fb:2f:b5:b8:c9:43:14:39:b8:c3:f5:0d:0c:a9:29:0d:
15:cb:ee:6f:ef:54:a4:14:2c:66:b9:84:7e:02:39:6f:ed:62:
26:db:9b:2b:c6:16:ce:f4:2a:de:29:b7:3f:c0:4b:51:67:1d:
e6:7c:67:f2:6f:8b:c2:05:a0:28:b0:df:3a:d1:a8:13:0b:47:
61:c4:64:31:b6:72:de:be:49:cb:52:ed:cd:78:74:ee:0e:62:
48:88:05:3b:1a:48:0d:51:e1:ee:66:74:f9:bd:d9:b8:84:77:
27:78:04:cd:93:7c:52:bf:25:c7:73:f9:2e:8d:f0:3d:74:ac:
aa:b3:a7:c0:8c:8d:a6:f6:22:09:3a:ee:02:e4:8d:4a:ca:c4:
87:84:8f:53:39:65:61:1f:22:dc:fa:25:ad:24:48:ad:89:41:
6a:44:75:93:1f:20:7e:d3:09:d0:06:6a:c8:82:5a:31:29:2e:
4e:09:c8:26:93:ff:4d:be:2f:d7:e5:33:7a:35:5b:6a:46:15:
ef:ef:27:98
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 4 21:07:55 2025 by rpki-client