Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d4/63efb8-bf24-48c2-8c50-75d9ce5b8d9c/1/XwImpwTPYg6yAA8n56kZznMJkb4.mft
File: XwImpwTPYg6yAA8n56kZznMJkb4.mft (raw, json)
Hash identifier: gNgkBEjFEKUwtf/D5QnT2rU2lj5Bcr/FkDXj4WWoAFE=
Subject key identifier: D9:70:59:63:4E:32:E5:18:E5:86:4C:99:E1:6E:A8:77:15:E7:2F:F7
Authority key identifier: 5F:02:26:A7:04:CF:62:0E:B2:00:0F:27:E7:A9:19:CE:73:09:91:BE
Certificate issuer: /CN=5f0226a704cf620eb2000f27e7a919ce730991be
Certificate serial: 019A4E8684EEE3CF75240F24EF87B357F9E7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XwImpwTPYg6yAA8n56kZznMJkb4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d4/63efb8-bf24-48c2-8c50-75d9ce5b8d9c/1/XwImpwTPYg6yAA8n56kZznMJkb4.mft
Manifest number: 0F6B
Signing time: Tue 04 Nov 2025 11:00:29 +0000
Manifest this update: Tue 04 Nov 2025 11:00:29 +0000
Manifest next update: Wed 05 Nov 2025 11:00:29 +0000
Files and hashes: 1: P2NRYwvD64-ChL8WHsL3n2VNc0o.roa (hash: ieevRAfzDccOVGuN3ZGz3jBO2k67pRtiKtsN5CR5hf4=)
2: WePWXi4BVJvCbK70G_Bl8LvCy1A.roa (hash: KcxOlT86bPrqOuZYUTgExqyOPNUmMSnB0pr0K4kluRk=)
3: XwImpwTPYg6yAA8n56kZznMJkb4.crl (hash: /o4/hPMdkTVPjg6aScg8DvfTfIdlnm337iYiGoocl0k=)
4: ZN7LHZSqu6VYidqfpIPOfCxL2L4.roa (hash: HOkUkg1LrwSaHvSseUfJQzAJzpgcTNuaZCYPqCnldN0=)
5: fm5A4Lmh3Dyoqm8phCUbdJ-SJ50.roa (hash: y1l9jzGOcVZ0GENozcALgbMdp6ZfPx8sRn42vZfb0eg=)
6: mOQsXh6W-nguYweUEP-GggtQ8co.roa (hash: BRX6qGv8sEq7HbLRmf+hKda82RdBa8GI6j+263A+qA8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d4/63efb8-bf24-48c2-8c50-75d9ce5b8d9c/1/XwImpwTPYg6yAA8n56kZznMJkb4.crl
rsync://rpki.ripe.net/repository/DEFAULT/d4/63efb8-bf24-48c2-8c50-75d9ce5b8d9c/1/XwImpwTPYg6yAA8n56kZznMJkb4.mft
rsync://rpki.ripe.net/repository/DEFAULT/XwImpwTPYg6yAA8n56kZznMJkb4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 05 Nov 2025 09:00:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:4e:86:84:ee:e3:cf:75:24:0f:24:ef:87:b3:57:f9:e7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5f0226a704cf620eb2000f27e7a919ce730991be
Validity
Not Before: Nov 4 11:00:29 2025 GMT
Not After : Nov 5 11:00:29 2025 GMT
Subject: CN=d97059634e32e518e5864c99e16ea87715e72ff7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:f7:0f:39:50:7d:e9:80:ae:85:4a:87:e8:38:
f3:97:0a:64:30:80:65:50:e2:d1:47:7f:2a:cb:7b:
69:c5:99:e1:4d:40:04:1d:5e:2c:26:b9:f7:f9:73:
84:a6:be:4f:6a:d1:fc:b9:79:ee:6e:d4:d2:5b:3d:
f1:59:ba:35:9d:1d:c5:b7:3e:ad:24:24:03:67:e6:
74:50:28:a9:7c:42:7c:db:23:e8:70:f7:85:87:e6:
ad:0c:74:15:41:fe:03:bd:86:69:15:cf:98:41:66:
84:af:49:49:93:b9:32:9c:00:23:ca:70:01:fa:fe:
a2:e3:3a:0d:a1:b6:68:a6:b9:1f:77:d0:97:eb:55:
88:5b:ad:97:36:86:09:26:5a:00:27:20:f9:5e:35:
24:ef:aa:c6:9d:11:8a:e8:0e:1a:f5:a8:da:53:c4:
7c:95:34:f5:43:98:90:ee:f6:01:da:b7:8b:1b:66:
64:57:35:b7:2c:5d:bc:19:d2:f8:1d:8d:cc:e2:57:
6a:7d:c3:15:c2:11:cd:b3:28:9e:6c:42:e3:cd:24:
1d:d6:7e:ff:56:0b:57:ac:dd:f6:76:7a:f2:d7:0d:
0e:08:6a:cd:b2:5b:f0:7e:50:f6:2c:c0:50:64:e4:
ae:30:83:ff:8d:7b:ff:27:ae:39:37:ad:6a:56:e6:
48:23
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D9:70:59:63:4E:32:E5:18:E5:86:4C:99:E1:6E:A8:77:15:E7:2F:F7
X509v3 Authority Key Identifier:
keyid:5F:02:26:A7:04:CF:62:0E:B2:00:0F:27:E7:A9:19:CE:73:09:91:BE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XwImpwTPYg6yAA8n56kZznMJkb4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d4/63efb8-bf24-48c2-8c50-75d9ce5b8d9c/1/XwImpwTPYg6yAA8n56kZznMJkb4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d4/63efb8-bf24-48c2-8c50-75d9ce5b8d9c/1/XwImpwTPYg6yAA8n56kZznMJkb4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
8a:86:1f:e4:29:97:98:6d:d5:26:8b:81:62:6c:e0:a6:96:b5:
89:ba:7f:61:dd:cc:79:9a:ed:8e:31:e6:74:27:5a:4d:5a:eb:
a6:56:fa:5b:4a:50:49:ae:2b:d6:0d:3e:6e:f2:2d:fd:2b:ba:
60:2d:39:1c:ff:51:9d:b7:3a:78:89:fe:42:43:d7:6a:e9:7d:
29:bf:33:3d:ee:b0:3e:63:48:dc:b6:78:86:8a:86:82:cf:6a:
bf:c0:f2:1e:e5:63:36:ed:de:4d:72:b6:d7:29:19:e6:42:71:
7c:96:d7:52:8b:96:a3:e1:62:d0:05:2e:71:ad:5e:12:a9:28:
9c:05:0d:f4:80:1b:ed:29:b5:fd:44:eb:04:a9:39:18:15:63:
1c:0f:5c:02:f2:8c:12:48:a8:ac:cd:0a:07:da:43:ca:4d:27:
c6:9b:03:f7:87:13:6e:cd:e6:ff:39:e7:d2:65:9c:5a:7d:34:
95:d0:50:b0:a0:af:4a:d2:ad:4e:5e:9a:61:a2:06:ac:8d:ae:
ff:9a:0f:04:4d:b5:5b:21:a9:80:92:c3:06:bb:aa:ca:36:f9:
12:9f:b1:52:fd:62:0a:e0:7a:e1:58:a8:ae:10:72:85:66:8d:
33:43:8b:fa:b0:2e:77:03:86:f1:49:bb:e4:07:6c:4c:bb:14:
3a:60:d3:d9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 4 14:46:38 2025 by rpki-client