Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d3/247eef-f71a-421f-bb86-26729d894ef7/1/XOMWuo-zBWfOy8cnBR02QA4lH8c.mft
File: XOMWuo-zBWfOy8cnBR02QA4lH8c.mft (raw, json)
Hash identifier: H2TpG2uRsvjVTr90WFErS4pbebEJFKc5oovzo9+fcPo=
Subject key identifier: B0:0E:59:2C:65:58:D9:E7:5A:E1:10:A4:78:FA:EA:0B:E6:C2:0F:D7
Authority key identifier: 5C:E3:16:BA:8F:B3:05:67:CE:CB:C7:27:05:1D:36:40:0E:25:1F:C7
Certificate issuer: /CN=5ce316ba8fb30567cecbc727051d36400e251fc7
Certificate serial: 019A4DAA8300F491D44BCB77D4D565FA8069
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XOMWuo-zBWfOy8cnBR02QA4lH8c.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d3/247eef-f71a-421f-bb86-26729d894ef7/1/XOMWuo-zBWfOy8cnBR02QA4lH8c.mft
Manifest number: 04E4
Signing time: Tue 04 Nov 2025 07:00:11 +0000
Manifest this update: Tue 04 Nov 2025 07:00:11 +0000
Manifest next update: Wed 05 Nov 2025 07:00:11 +0000
Files and hashes: 1: XOMWuo-zBWfOy8cnBR02QA4lH8c.crl (hash: 6TgEs7V9cIjvCnaew/1S9WgnLbUR3Kwl3QeyFJqTSPs=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d3/247eef-f71a-421f-bb86-26729d894ef7/1/XOMWuo-zBWfOy8cnBR02QA4lH8c.crl
rsync://rpki.ripe.net/repository/DEFAULT/d3/247eef-f71a-421f-bb86-26729d894ef7/1/XOMWuo-zBWfOy8cnBR02QA4lH8c.mft
rsync://rpki.ripe.net/repository/DEFAULT/XOMWuo-zBWfOy8cnBR02QA4lH8c.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 05 Nov 2025 07:00:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:4d:aa:83:00:f4:91:d4:4b:cb:77:d4:d5:65:fa:80:69
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5ce316ba8fb30567cecbc727051d36400e251fc7
Validity
Not Before: Nov 4 07:00:11 2025 GMT
Not After : Nov 5 07:00:11 2025 GMT
Subject: CN=b00e592c6558d9e75ae110a478faea0be6c20fd7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ee:19:81:d6:92:64:24:bc:4e:de:2c:77:3e:5e:
9e:8f:45:71:04:f7:32:26:4a:1b:97:ae:59:3c:93:
4c:d5:c5:45:da:dd:04:e4:fa:95:59:89:af:54:d7:
63:95:03:11:3d:dd:af:db:0d:b4:5f:aa:c6:3a:2a:
b9:8a:36:5e:2e:ca:d0:5a:7f:e2:9e:f2:af:dc:53:
c4:a0:d5:9f:d1:a9:ae:61:6e:24:b5:c0:cd:3f:0f:
4d:fc:a9:9c:89:89:a3:6d:99:fc:06:ed:af:2c:bf:
e4:bc:09:db:91:cb:28:ce:49:79:c3:c7:b4:ce:50:
48:1c:e2:2f:ab:6e:6b:c7:3f:8d:4a:1b:46:51:22:
43:3c:b6:a8:50:a7:eb:75:e0:35:07:e8:aa:9d:d5:
ff:2b:a9:4c:e0:84:f7:8e:d0:11:9a:d0:36:4e:f4:
66:72:ff:24:86:a4:4d:af:f1:d1:fd:e2:0e:d7:0f:
5a:8f:d2:6b:4a:02:5a:cc:95:ca:a4:28:93:86:0f:
1d:8a:49:01:b9:de:8b:5a:dc:1a:b7:b8:34:e9:74:
39:93:fa:9b:0f:83:41:04:45:bb:40:69:20:9b:08:
fc:5d:7a:4e:d6:6b:74:e4:79:10:35:74:c6:91:ec:
92:da:fd:d6:85:35:9b:50:ca:67:a5:ef:8b:02:4d:
c8:2d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B0:0E:59:2C:65:58:D9:E7:5A:E1:10:A4:78:FA:EA:0B:E6:C2:0F:D7
X509v3 Authority Key Identifier:
keyid:5C:E3:16:BA:8F:B3:05:67:CE:CB:C7:27:05:1D:36:40:0E:25:1F:C7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XOMWuo-zBWfOy8cnBR02QA4lH8c.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/247eef-f71a-421f-bb86-26729d894ef7/1/XOMWuo-zBWfOy8cnBR02QA4lH8c.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/247eef-f71a-421f-bb86-26729d894ef7/1/XOMWuo-zBWfOy8cnBR02QA4lH8c.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
6b:e9:e8:97:f6:ef:3b:64:85:ff:0d:00:26:e5:76:eb:96:be:
77:04:01:68:75:ab:10:92:92:b0:fb:4e:7a:59:2d:69:45:79:
f7:5a:e9:eb:6d:36:34:de:aa:60:c4:0e:e5:c1:ec:e8:77:e8:
26:ff:aa:08:92:61:6f:d2:ef:f0:85:90:9b:7e:25:67:b8:32:
14:b7:72:f5:8a:f8:53:e8:47:6d:26:97:d5:8a:02:9e:07:69:
83:9e:a8:a7:1e:28:06:63:24:5f:e4:e3:77:b3:37:a2:3b:ce:
53:8f:19:8b:fe:69:31:05:0e:67:3d:04:48:0f:c3:a0:2c:41:
3e:97:29:99:24:79:10:44:69:c0:77:9d:14:26:af:bd:fa:cf:
0f:9a:b3:ae:a9:32:da:cc:25:01:f5:a2:85:fe:07:13:71:e7:
2f:05:76:48:ec:6f:6b:57:d2:53:ee:ba:2f:d2:53:52:27:0b:
74:6c:e8:9c:ab:d0:17:fa:94:73:ac:a3:10:18:64:0e:ec:fd:
c6:d9:07:fa:67:1b:1a:26:2e:2b:f2:63:12:14:50:85:e5:cf:
7c:1f:f3:88:a9:10:32:90:5d:68:0a:f9:44:f3:21:94:85:f3:
da:dd:ed:96:32:b0:d0:e1:be:4c:6d:fc:92:bb:34:53:34:64:
3e:d5:92:93
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 4 14:42:07 2025 by rpki-client