Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f7/ed5d3a-b869-4cda-9d32-250e55b9d4a9/1/xDx0Aiy78LPP_2Ax1tLeA2nJnk4.mft
File: xDx0Aiy78LPP_2Ax1tLeA2nJnk4.mft (raw, json)
Hash identifier: wvDPcz87YkjhaKk4Yx4lQf0yqWL7Rfieqya8pzi16zQ=
Subject key identifier: EA:6F:80:55:00:89:5D:FB:C7:9F:DF:6F:9A:BA:7E:5D:2F:24:65:BB
Authority key identifier: C4:3C:74:02:2C:BB:F0:B3:CF:FF:60:31:D6:D2:DE:03:69:C9:9E:4E
Certificate issuer: /CN=c43c74022cbbf0b3cfff6031d6d2de0369c99e4e
Certificate serial: 019A4EF4355F271B1A9E7A91AA076FC731D6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xDx0Aiy78LPP_2Ax1tLeA2nJnk4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f7/ed5d3a-b869-4cda-9d32-250e55b9d4a9/1/xDx0Aiy78LPP_2Ax1tLeA2nJnk4.mft
Manifest number: 08AB
Signing time: Tue 04 Nov 2025 13:00:18 +0000
Manifest this update: Tue 04 Nov 2025 13:00:18 +0000
Manifest next update: Wed 05 Nov 2025 13:00:18 +0000
Files and hashes: 1: ZYhttRWwRR-QF8jloAZFKuhooqE.roa (hash: eO0V42mhSgtEZOqn/NTkR+4pbvAmlZ4nSZ0JyynFqN4=)
2: xDx0Aiy78LPP_2Ax1tLeA2nJnk4.crl (hash: 9eKtEL8+2cd2Rn4dy7+BidiL/4tNkjlfROl30PaJCbs=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f7/ed5d3a-b869-4cda-9d32-250e55b9d4a9/1/xDx0Aiy78LPP_2Ax1tLeA2nJnk4.crl
rsync://rpki.ripe.net/repository/DEFAULT/f7/ed5d3a-b869-4cda-9d32-250e55b9d4a9/1/xDx0Aiy78LPP_2Ax1tLeA2nJnk4.mft
rsync://rpki.ripe.net/repository/DEFAULT/xDx0Aiy78LPP_2Ax1tLeA2nJnk4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 05 Nov 2025 13:00:18 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:4e:f4:35:5f:27:1b:1a:9e:7a:91:aa:07:6f:c7:31:d6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c43c74022cbbf0b3cfff6031d6d2de0369c99e4e
Validity
Not Before: Nov 4 13:00:18 2025 GMT
Not After : Nov 5 13:00:18 2025 GMT
Subject: CN=ea6f805500895dfbc79fdf6f9aba7e5d2f2465bb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:92:a4:64:99:c9:f3:07:b3:eb:bf:2f:f3:12:
37:0b:ab:ba:80:c0:18:b0:a3:b0:97:44:c0:af:a3:
b9:05:0f:ed:a0:ec:16:31:4f:20:a3:bc:07:0f:48:
3e:b1:1b:1a:ca:1a:16:f6:b6:75:1b:83:92:90:91:
da:49:d7:b6:1a:03:a8:5b:39:7a:52:c8:41:60:1d:
19:30:1d:53:ad:28:25:64:90:fc:77:29:4c:19:08:
d7:fa:8f:2d:02:71:72:96:1b:df:9b:76:01:2a:70:
65:00:37:f5:f9:b9:21:4d:b8:bf:2a:b3:4a:f5:1e:
a2:7c:a5:ad:b4:47:47:e6:9e:d7:6c:8c:e2:86:31:
bd:bc:06:3e:df:17:08:14:3d:47:a8:a5:3a:be:90:
9e:37:19:41:44:05:7c:24:d9:76:e9:39:6a:d7:6b:
9e:03:17:1d:ca:d6:df:f0:8f:31:fd:42:36:7b:d7:
44:15:79:ab:4c:92:62:e2:2b:51:a8:7b:69:49:ac:
04:56:51:a6:0f:8e:7a:c4:41:d7:83:91:86:8f:f8:
f1:77:bb:b8:93:8d:66:cf:ae:90:b4:ad:71:04:12:
4e:df:0d:73:80:7a:e7:0e:8e:8b:b4:af:39:75:8e:
04:a9:c8:84:58:b0:0f:35:5b:39:e7:94:82:29:e6:
7a:2d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EA:6F:80:55:00:89:5D:FB:C7:9F:DF:6F:9A:BA:7E:5D:2F:24:65:BB
X509v3 Authority Key Identifier:
keyid:C4:3C:74:02:2C:BB:F0:B3:CF:FF:60:31:D6:D2:DE:03:69:C9:9E:4E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xDx0Aiy78LPP_2Ax1tLeA2nJnk4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f7/ed5d3a-b869-4cda-9d32-250e55b9d4a9/1/xDx0Aiy78LPP_2Ax1tLeA2nJnk4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f7/ed5d3a-b869-4cda-9d32-250e55b9d4a9/1/xDx0Aiy78LPP_2Ax1tLeA2nJnk4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
7e:9e:9c:af:7b:2a:13:d0:e5:64:52:fe:d3:9c:e8:67:62:f1:
ba:db:a4:c1:54:e2:b2:f1:17:d6:60:08:3c:90:42:9a:82:ec:
2d:91:f1:2d:29:f5:00:00:07:a6:a0:c7:d7:c0:18:76:d6:7f:
f9:9e:02:72:d0:bf:fe:8a:3c:8c:3e:41:98:bf:77:23:de:1d:
42:94:d4:bb:d6:dc:90:8c:c6:0a:65:f2:22:56:cc:09:35:14:
e3:a3:b9:bf:e0:b2:fa:b4:78:d4:99:0c:02:41:45:81:92:61:
83:e3:8e:69:47:ec:c4:bc:c1:a3:3f:ea:04:a5:83:3d:66:d5:
35:4b:1c:0d:3e:fa:6c:28:9b:d5:85:a1:63:77:5f:6c:95:04:
fd:16:87:01:22:e7:ff:53:e5:d8:53:19:e2:0c:6e:67:a7:82:
45:c7:c8:19:c5:b5:be:04:7b:ab:65:7c:2e:e5:36:78:02:b1:
01:dd:68:a0:82:dd:fb:56:0c:60:0f:ec:56:70:77:be:81:e3:
05:b8:e5:93:12:6f:cf:ba:58:f4:3a:6f:e3:61:a4:93:1d:a6:
e6:d5:d2:f0:72:d7:24:74:db:bf:1f:61:f6:28:ae:58:0d:cb:
91:d8:35:54:c1:88:68:9a:34:70:b9:4d:09:43:49:d0:ae:87:
88:ce:5f:38
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 4 22:59:39 2025 by rpki-client