Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/11/75ad91-fcfc-4cf4-ab22-d0f9804a9f1e/1/xa0QdigFcZJWQLKu2jnMCXTAbOI.mft
File: xa0QdigFcZJWQLKu2jnMCXTAbOI.mft (raw, json)
Hash identifier: q5jmB3y+uOBnW4Mc7loFcRz4m6/LGHzsoad2heX8ZC8=
Subject key identifier: 07:12:04:B0:7D:35:8D:10:B5:41:36:E1:9C:9E:DC:68:71:63:53:5E
Authority key identifier: C5:AD:10:76:28:05:71:92:56:40:B2:AE:DA:39:CC:09:74:C0:6C:E2
Certificate issuer: /CN=c5ad1076280571925640b2aeda39cc0974c06ce2
Certificate serial: 019A71808F368FD2718C1A2B9E93CA079705
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xa0QdigFcZJWQLKu2jnMCXTAbOI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/11/75ad91-fcfc-4cf4-ab22-d0f9804a9f1e/1/xa0QdigFcZJWQLKu2jnMCXTAbOI.mft
Manifest number: B8
Signing time: Tue 11 Nov 2025 06:00:41 +0000
Manifest this update: Tue 11 Nov 2025 06:00:41 +0000
Manifest next update: Wed 12 Nov 2025 06:00:41 +0000
Files and hashes: 1: TUdbI3fTIue2IS2nP7PyiMKvzpA.roa (hash: +rF1e9gIJIKIRSdOUzoKGO5Eq8f3G2LeMwZHkFAE720=)
2: xa0QdigFcZJWQLKu2jnMCXTAbOI.crl (hash: 9+o9/hd4AOASs5JEQghqxghnUWgud3JdmFfyHmbgMJ4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/11/75ad91-fcfc-4cf4-ab22-d0f9804a9f1e/1/xa0QdigFcZJWQLKu2jnMCXTAbOI.crl
rsync://rpki.ripe.net/repository/DEFAULT/11/75ad91-fcfc-4cf4-ab22-d0f9804a9f1e/1/xa0QdigFcZJWQLKu2jnMCXTAbOI.mft
rsync://rpki.ripe.net/repository/DEFAULT/xa0QdigFcZJWQLKu2jnMCXTAbOI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 12 Nov 2025 06:00:41 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:71:80:8f:36:8f:d2:71:8c:1a:2b:9e:93:ca:07:97:05
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c5ad1076280571925640b2aeda39cc0974c06ce2
Validity
Not Before: Nov 11 06:00:41 2025 GMT
Not After : Nov 12 06:00:41 2025 GMT
Subject: CN=071204b07d358d10b54136e19c9edc687163535e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:90:f3:ed:11:36:6d:8e:9b:ea:44:28:f4:01:
6a:19:e1:65:fb:ac:71:40:d6:49:fb:76:1f:d0:7c:
83:8d:72:36:56:54:b7:90:50:e1:4a:2f:d4:56:4f:
d4:b9:ba:bf:e2:95:ee:5a:39:fe:50:fd:88:61:7e:
05:01:7e:3a:7a:f0:4a:68:82:56:a5:70:c9:5a:24:
0b:d7:a0:15:6c:2e:06:c3:0f:c0:60:bd:d9:de:c2:
c9:bb:0b:96:3f:74:12:3f:fc:cc:ac:a2:18:ac:c7:
3c:eb:99:b1:e0:61:bb:b7:1b:75:17:e5:7b:9c:21:
91:29:aa:48:4e:4a:77:5e:21:09:c0:50:95:35:e1:
d0:ab:a3:6e:9b:35:ab:80:90:e8:96:04:b4:f0:68:
52:58:45:fe:24:32:66:23:48:05:c7:77:fa:ad:45:
11:97:1d:80:cb:ac:4f:c5:a4:1b:8a:a5:18:83:ac:
7d:59:a9:7f:33:45:5e:b4:68:8c:73:8a:4f:a7:c1:
92:81:9a:37:ec:a5:51:28:a7:22:b5:2c:6c:00:00:
f2:4f:c4:d7:4f:ec:63:37:43:09:05:b8:5d:22:66:
85:f6:a2:e0:2c:51:48:70:be:52:af:62:7b:cb:d4:
92:d9:85:a8:b4:db:8e:5e:9a:23:a9:8b:d0:00:e3:
80:5b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
07:12:04:B0:7D:35:8D:10:B5:41:36:E1:9C:9E:DC:68:71:63:53:5E
X509v3 Authority Key Identifier:
keyid:C5:AD:10:76:28:05:71:92:56:40:B2:AE:DA:39:CC:09:74:C0:6C:E2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xa0QdigFcZJWQLKu2jnMCXTAbOI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/11/75ad91-fcfc-4cf4-ab22-d0f9804a9f1e/1/xa0QdigFcZJWQLKu2jnMCXTAbOI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/11/75ad91-fcfc-4cf4-ab22-d0f9804a9f1e/1/xa0QdigFcZJWQLKu2jnMCXTAbOI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
4e:16:21:8d:c5:de:4d:63:c5:31:b6:a4:8b:1c:c2:36:3c:ed:
f1:67:39:58:3a:31:a9:7d:18:79:27:ca:a8:89:ce:6c:81:bb:
82:5e:9c:54:be:bd:f3:bb:02:aa:6e:dd:78:4d:4e:38:35:8e:
e9:6b:a2:3b:5c:57:1e:e5:21:89:70:ad:cd:62:92:18:b5:19:
46:da:7e:3d:39:82:ef:dc:72:87:7d:91:30:98:ac:31:a6:47:
fc:ea:0e:e4:b4:0a:53:87:0f:92:b1:64:00:46:be:51:c3:54:
f4:82:93:f4:ac:34:52:34:7c:98:d8:b2:12:01:37:8c:71:15:
ed:d0:fa:64:b6:1b:c9:18:0e:8c:b2:c0:57:61:a9:e1:5f:1e:
17:d1:5c:cf:a2:0e:f4:59:5f:8e:81:8e:a7:40:2d:b9:44:20:
27:10:e3:17:31:1c:39:10:c9:1d:6a:c7:8f:19:1b:77:08:b6:
9c:33:95:52:61:b1:dd:97:4c:1f:2d:b1:fd:ec:9c:e1:88:34:
02:3a:8c:ec:83:a8:5a:8a:09:f8:34:8b:66:99:2b:de:0d:bb:
f2:3e:bd:91:d8:15:36:24:08:b0:24:2d:70:86:dc:ec:ff:01:
1a:09:ef:41:18:ec:86:ad:e7:17:1e:43:73:dd:b6:45:1d:5f:
ac:48:e1:37
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZpxgI82j9JxjBornpPKB5cFMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGM1YWQxMDc2MjgwNTcxOTI1NjQwYjJhZWRhMzljYzA5NzRj
MDZjZTIwHhcNMjUxMTExMDYwMDQxWhcNMjUxMTEyMDYwMDQxWjAzMTEwLwYDVQQD
EygwNzEyMDRiMDdkMzU4ZDEwYjU0MTM2ZTE5YzllZGM2ODcxNjM1MzVlMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAo5Dz7RE2bY6b6kQo9AFqGeFl+6xx
QNZJ+3Yf0HyDjXI2VlS3kFDhSi/UVk/Uubq/4pXuWjn+UP2IYX4FAX46evBKaIJW
pXDJWiQL16AVbC4Gww/AYL3Z3sLJuwuWP3QSP/zMrKIYrMc865mx4GG7txt1F+V7
nCGRKapITkp3XiEJwFCVNeHQq6NumzWrgJDolgS08GhSWEX+JDJmI0gFx3f6rUUR
lx2Ay6xPxaQbiqUYg6x9Wal/M0VetGiMc4pPp8GSgZo37KVRKKcitSxsAADyT8TX
T+xjN0MJBbhdImaF9qLgLFFIcL5Sr2J7y9SS2YWotNuOXpojqYvQAOOAWwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFAcSBLB9NY0QtUE24Zye3GhxY1NeMB8GA1UdIwQY
MBaAFMWtEHYoBXGSVkCyrto5zAl0wGziMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQveGEwUWRpZ0ZjWkpXUUxLdTJqbk1DWFRBYk9JLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xMS83NWFkOTEtZmNmYy00Y2Y0LWFiMjIt
ZDBmOTgwNGE5ZjFlLzEveGEwUWRpZ0ZjWkpXUUxLdTJqbk1DWFRBYk9JLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8xMS83NWFkOTEtZmNmYy00Y2Y0LWFiMjItZDBmOTgwNGE5ZjFl
LzEveGEwUWRpZ0ZjWkpXUUxLdTJqbk1DWFRBYk9JLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAThYhjcXe
TWPFMbakixzCNjzt8Wc5WDoxqX0YeSfKqInObIG7gl6cVL6987sCqm7deE1OODWO
6WuiO1xXHuUhiXCtzWKSGLUZRtp+PTmC79xyh32RMJisMaZH/OoO5LQKU4cPkrFk
AEa+UcNU9IKT9Kw0UjR8mNiyEgE3jHEV7dD6ZLYbyRgOjLLAV2Gp4V8eF9Fcz6IO
9FlfjoGOp0AtuUQgJxDjFzEcORDJHWrHjxkbdwi2nDOVUmGx3ZdMHy2x/eyc4Yg0
AjqM7IOoWooJ+DSLZpkr3g278j69kdgVNiQIsCQtcIbc7P8BGgnvQRjshq3nFx5D
c922RR1frEjhNw==
-----END CERTIFICATE-----
Generated at Tue Nov 11 12:37:32 2025 by rpki-client