Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/00/54debb-d0b6-44d1-8e58-8cf9e6f8ab45/1/XM97P9h86bzpn5ALZBmdYGvxYGk.mft
File: XM97P9h86bzpn5ALZBmdYGvxYGk.mft (raw, json)
Hash identifier: 5AF/7rm5sA2/6Q+Cfr5O/uUpVpbvMRyIEthunEVs0zM=
Subject key identifier: A4:29:C1:A0:21:B3:30:6C:AC:83:E7:B1:2C:B1:B9:00:39:F9:B0:EE
Authority key identifier: 5C:CF:7B:3F:D8:7C:E9:BC:E9:9F:90:0B:64:19:9D:60:6B:F1:60:69
Certificate issuer: /CN=5ccf7b3fd87ce9bce99f900b64199d606bf16069
Certificate serial: 019A1BE2E0CFDEC00380AA0F7B63C7CFBAF9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XM97P9h86bzpn5ALZBmdYGvxYGk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/00/54debb-d0b6-44d1-8e58-8cf9e6f8ab45/1/XM97P9h86bzpn5ALZBmdYGvxYGk.mft
Manifest number: 1685
Signing time: Sat 25 Oct 2025 15:00:44 +0000
Manifest this update: Sat 25 Oct 2025 15:00:44 +0000
Manifest next update: Sun 26 Oct 2025 15:00:44 +0000
Files and hashes: 1: KOB0vwmJ7cfgZ_1WOb_Xx7LqG6U.roa (hash: a7bo8HXeX2LyPkuCveHxDVKdqnbGHzPDqS6LymzXHUs=)
2: XM97P9h86bzpn5ALZBmdYGvxYGk.crl (hash: OKU45J/eESbxEDi9rZnm9tMyWz+Kfi+XH+GxzEGeBqM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/00/54debb-d0b6-44d1-8e58-8cf9e6f8ab45/1/XM97P9h86bzpn5ALZBmdYGvxYGk.crl
rsync://rpki.ripe.net/repository/DEFAULT/00/54debb-d0b6-44d1-8e58-8cf9e6f8ab45/1/XM97P9h86bzpn5ALZBmdYGvxYGk.mft
rsync://rpki.ripe.net/repository/DEFAULT/XM97P9h86bzpn5ALZBmdYGvxYGk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 26 Oct 2025 15:00:44 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:1b:e2:e0:cf:de:c0:03:80:aa:0f:7b:63:c7:cf:ba:f9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5ccf7b3fd87ce9bce99f900b64199d606bf16069
Validity
Not Before: Oct 25 15:00:44 2025 GMT
Not After : Oct 26 15:00:44 2025 GMT
Subject: CN=a429c1a021b3306cac83e7b12cb1b90039f9b0ee
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:da:9d:0f:da:00:b5:bc:e7:55:68:5f:46:08:
a8:19:d4:2e:25:b0:42:36:3a:6a:9a:6d:08:ba:66:
0c:66:ec:40:94:6a:9e:17:5d:b5:a4:ca:87:b3:44:
b6:22:4d:d7:01:1f:e8:52:92:88:cd:c8:ab:3d:34:
68:1e:8b:76:e3:80:54:8e:34:34:28:38:5a:7a:47:
38:d9:a0:82:9d:58:2d:af:9d:17:0d:28:92:2c:60:
a1:03:c4:df:c9:a9:e7:73:71:0f:b4:98:d4:62:86:
6f:82:01:b5:c9:9c:2f:28:8c:47:38:84:7e:14:01:
3b:b5:df:54:f3:b0:1a:d2:03:cb:07:92:30:84:ca:
e5:94:0a:5c:8c:a4:12:59:83:c3:f8:d3:25:d5:a9:
d4:00:7f:86:07:a1:94:80:a7:1c:36:33:9a:36:44:
ae:39:78:cd:39:8d:5b:7a:94:99:27:3d:8a:16:96:
12:32:79:be:46:36:52:d3:7a:d3:0f:88:30:0d:b7:
41:76:e9:a5:44:d2:63:d9:5a:7d:c1:60:b7:8f:ae:
ff:2f:66:1a:59:50:d8:de:1b:e1:bd:c8:b3:5c:17:
af:71:6a:06:72:d4:6a:ae:1b:5e:c2:6e:08:07:c9:
84:8f:ea:f9:45:51:ff:d7:cd:cd:b5:7a:d5:07:5e:
31:69
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A4:29:C1:A0:21:B3:30:6C:AC:83:E7:B1:2C:B1:B9:00:39:F9:B0:EE
X509v3 Authority Key Identifier:
keyid:5C:CF:7B:3F:D8:7C:E9:BC:E9:9F:90:0B:64:19:9D:60:6B:F1:60:69
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XM97P9h86bzpn5ALZBmdYGvxYGk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/00/54debb-d0b6-44d1-8e58-8cf9e6f8ab45/1/XM97P9h86bzpn5ALZBmdYGvxYGk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/00/54debb-d0b6-44d1-8e58-8cf9e6f8ab45/1/XM97P9h86bzpn5ALZBmdYGvxYGk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
10:07:39:36:15:09:ae:5b:4f:b4:41:9b:5c:b8:12:78:4a:9a:
71:05:57:cb:27:43:3d:06:64:ea:7b:28:de:49:5e:27:b9:12:
3b:31:0b:7a:91:ae:d4:fc:68:fa:d8:86:82:ee:ed:b7:42:28:
5e:87:cf:d5:9d:3c:83:ea:e8:a3:f2:0d:be:25:f2:1f:75:d8:
7d:32:a3:9e:9a:30:d4:72:18:55:7f:97:e1:c2:df:1b:70:28:
ad:bb:69:86:89:7a:dd:d1:30:9c:86:b2:b9:d2:c1:2b:bc:45:
f6:14:31:b6:c5:94:8b:c5:f5:1a:00:c9:c6:6c:0b:bb:d2:72:
7b:ce:02:b9:b2:a8:5c:e0:33:70:72:8b:83:e0:7e:ce:34:6d:
57:cb:2f:77:13:52:53:f2:8e:e4:fc:5c:01:c2:1d:f5:36:f4:
e3:d3:36:9c:e8:17:e1:83:e1:1e:51:74:0e:f3:32:1b:25:08:
23:ce:be:54:e9:68:b1:17:e3:60:8e:a8:f4:99:ec:72:14:60:
39:4d:76:35:9b:fb:d4:39:57:8a:1b:f0:a1:e9:09:30:c1:14:
fe:0f:76:3c:2e:b7:91:85:5d:7c:3b:a1:2c:b9:09:7f:85:f7:
42:a2:87:78:18:60:df:06:e6:cb:52:ed:72:2b:2a:32:92:7b:
75:11:f4:4f
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZob4uDP3sADgKoPe2PHz7r5MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDVjY2Y3YjNmZDg3Y2U5YmNlOTlmOTAwYjY0MTk5ZDYwNmJm
MTYwNjkwHhcNMjUxMDI1MTUwMDQ0WhcNMjUxMDI2MTUwMDQ0WjAzMTEwLwYDVQQD
EyhhNDI5YzFhMDIxYjMzMDZjYWM4M2U3YjEyY2IxYjkwMDM5ZjliMGVlMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAptqdD9oAtbznVWhfRgioGdQuJbBC
Njpqmm0IumYMZuxAlGqeF121pMqHs0S2Ik3XAR/oUpKIzcirPTRoHot244BUjjQ0
KDhaekc42aCCnVgtr50XDSiSLGChA8Tfyannc3EPtJjUYoZvggG1yZwvKIxHOIR+
FAE7td9U87Aa0gPLB5IwhMrllApcjKQSWYPD+NMl1anUAH+GB6GUgKccNjOaNkSu
OXjNOY1bepSZJz2KFpYSMnm+RjZS03rTD4gwDbdBdumlRNJj2Vp9wWC3j67/L2Ya
WVDY3hvhvcizXBevcWoGctRqrhtewm4IB8mEj+r5RVH/183NtXrVB14xaQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFKQpwaAhszBsrIPnsSyxuQA5+bDuMB8GA1UdIwQY
MBaAFFzPez/YfOm86Z+QC2QZnWBr8WBpMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvWE05N1A5aDg2YnpwbjVBTFpCbWRZR3Z4WUdrLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wMC81NGRlYmItZDBiNi00NGQxLThlNTgt
OGNmOWU2ZjhhYjQ1LzEvWE05N1A5aDg2YnpwbjVBTFpCbWRZR3Z4WUdrLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8wMC81NGRlYmItZDBiNi00NGQxLThlNTgtOGNmOWU2ZjhhYjQ1
LzEvWE05N1A5aDg2YnpwbjVBTFpCbWRZR3Z4WUdrLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAEAc5NhUJ
rltPtEGbXLgSeEqacQVXyydDPQZk6nso3kleJ7kSOzELepGu1Pxo+tiGgu7tt0Io
XofP1Z08g+roo/INviXyH3XYfTKjnpow1HIYVX+X4cLfG3Aorbtphol63dEwnIay
udLBK7xF9hQxtsWUi8X1GgDJxmwLu9Jye84CubKoXOAzcHKLg+B+zjRtV8svdxNS
U/KO5PxcAcId9Tb049M2nOgX4YPhHlF0DvMyGyUII86+VOlosRfjYI6o9JnschRg
OU12NZv71DlXihvwoekJMMEU/g92PC63kYVdfDuhLLkJf4X3QqKHeBhg3wbmy1Lt
cisqMpJ7dRH0Tw==
-----END CERTIFICATE-----
Generated at Sat Oct 25 22:05:10 2025 by rpki-client