Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f5/16fdee-d397-41fd-888f-51de4964a913/1/xhjwP5h0NwZTqjoCb2cHwuDnR2Q.mft
File: xhjwP5h0NwZTqjoCb2cHwuDnR2Q.mft (raw, json)
Hash identifier: sO2FbwNWq3jnLIQTGF8fRLm1VagZZNr6VHK3rqK4TpA=
Subject key identifier: 81:F7:CC:AA:59:21:1C:45:59:0C:79:B6:E2:76:88:1A:0D:0B:40:C9
Authority key identifier: C6:18:F0:3F:98:74:37:06:53:AA:3A:02:6F:67:07:C2:E0:E7:47:64
Certificate issuer: /CN=c618f03f9874370653aa3a026f6707c2e0e74764
Certificate serial: 019A4DE1CE91D5DB45ACBED45701CFA29C42
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xhjwP5h0NwZTqjoCb2cHwuDnR2Q.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f5/16fdee-d397-41fd-888f-51de4964a913/1/xhjwP5h0NwZTqjoCb2cHwuDnR2Q.mft
Manifest number: 07F1
Signing time: Tue 04 Nov 2025 08:00:35 +0000
Manifest this update: Tue 04 Nov 2025 08:00:35 +0000
Manifest next update: Wed 05 Nov 2025 08:00:35 +0000
Files and hashes: 1: xhjwP5h0NwZTqjoCb2cHwuDnR2Q.crl (hash: MtIDCfp/75bD/YzyLfLUl/9t6mgrb5C5I0rw5LoNdM8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f5/16fdee-d397-41fd-888f-51de4964a913/1/xhjwP5h0NwZTqjoCb2cHwuDnR2Q.crl
rsync://rpki.ripe.net/repository/DEFAULT/f5/16fdee-d397-41fd-888f-51de4964a913/1/xhjwP5h0NwZTqjoCb2cHwuDnR2Q.mft
rsync://rpki.ripe.net/repository/DEFAULT/xhjwP5h0NwZTqjoCb2cHwuDnR2Q.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 05 Nov 2025 08:00:35 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:4d:e1:ce:91:d5:db:45:ac:be:d4:57:01:cf:a2:9c:42
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c618f03f9874370653aa3a026f6707c2e0e74764
Validity
Not Before: Nov 4 08:00:35 2025 GMT
Not After : Nov 5 08:00:35 2025 GMT
Subject: CN=81f7ccaa59211c45590c79b6e276881a0d0b40c9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:00:8d:08:de:b0:2d:d1:4f:88:3a:2b:87:0c:
b9:c6:71:dc:7e:45:b9:2b:fb:4e:5a:a2:f7:b9:d4:
aa:ad:2d:f5:2c:79:d1:e4:3d:2f:52:16:1c:8e:9a:
25:e8:38:51:85:ef:9b:34:49:cf:b1:b1:09:99:53:
b8:e8:cc:08:a5:cd:db:80:68:01:54:54:f1:e2:ae:
98:28:08:ef:4b:f1:a5:9b:8f:22:da:16:98:17:73:
13:f3:5c:b1:6b:99:bd:52:cd:df:1a:a6:27:3d:5b:
3c:d6:56:94:8f:f2:2d:97:09:41:0b:90:54:f2:2c:
8e:40:2c:23:e0:09:bc:80:2d:4b:d1:76:40:36:4d:
79:06:2b:d3:29:25:b9:33:a4:fe:59:f2:e0:0e:b0:
71:03:04:83:ab:55:a3:1e:e8:b4:73:91:d3:a2:f9:
e9:0b:be:48:f3:7c:d1:e4:3d:c0:ba:be:82:2f:72:
1d:7e:0e:20:43:44:b2:a4:1c:5b:43:63:86:e8:01:
4c:5a:4d:9d:b1:58:59:be:72:9d:67:35:a2:ab:98:
72:a7:07:c2:31:2c:6e:4d:52:e2:d5:b8:2b:02:69:
82:b0:75:b0:86:88:96:e2:2d:7e:d9:1e:45:97:8e:
26:c1:8a:2f:72:47:44:8c:ac:bf:f3:7b:fc:2d:40:
77:29
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
81:F7:CC:AA:59:21:1C:45:59:0C:79:B6:E2:76:88:1A:0D:0B:40:C9
X509v3 Authority Key Identifier:
keyid:C6:18:F0:3F:98:74:37:06:53:AA:3A:02:6F:67:07:C2:E0:E7:47:64
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xhjwP5h0NwZTqjoCb2cHwuDnR2Q.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f5/16fdee-d397-41fd-888f-51de4964a913/1/xhjwP5h0NwZTqjoCb2cHwuDnR2Q.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f5/16fdee-d397-41fd-888f-51de4964a913/1/xhjwP5h0NwZTqjoCb2cHwuDnR2Q.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
44:7d:75:49:af:e1:f6:9d:b3:11:ec:4c:83:bb:d1:5e:50:13:
fa:44:a0:38:ce:a4:ce:eb:36:37:21:5c:46:da:98:1a:ac:50:
d4:5c:6d:57:03:8e:78:5c:1c:12:01:57:a7:0c:2f:f1:ed:0d:
27:78:8c:f4:6f:7a:aa:50:45:cb:41:cd:e9:0e:55:36:ef:ce:
13:47:98:d8:3d:b4:45:19:24:fc:f9:ef:1a:47:33:7a:51:28:
99:67:dd:bb:e3:48:81:5c:b7:0a:e9:56:80:f8:9c:6b:03:b3:
8f:4e:7f:69:fc:e5:0a:e9:2a:e4:ca:71:2f:19:57:97:2d:5a:
a3:43:4e:cc:9b:58:f9:46:e4:bb:d5:c2:8f:9b:0a:09:f2:b0:
0b:3b:76:28:1b:45:2c:42:d5:0f:a6:a7:8e:5b:6d:75:f5:59:
41:e6:fa:40:f8:ba:cd:2a:ee:e7:6b:2d:23:14:08:b9:02:4c:
07:aa:97:bf:7f:54:d3:d7:e7:85:40:e4:6e:a4:be:47:01:b6:
ca:3c:83:49:94:3c:e4:84:ca:d8:07:06:69:cd:8b:0d:e1:9f:
a4:48:d9:d0:6e:24:fa:3e:66:3d:ac:a2:2c:77:6a:b4:91:3c:
37:71:54:61:a4:a0:34:1d:76:82:cf:14:1c:ae:13:37:94:58:
de:a5:a6:92
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 4 10:56:10 2025 by rpki-client