Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/36/c79d13-9ea2-4eed-8dd2-cedab463ee5b/1/XYJmcuaPPaXbUO2ButuNM73M0ro.mft
File: XYJmcuaPPaXbUO2ButuNM73M0ro.mft (raw, json)
Hash identifier: goqa+vS9cpvSseFIeQGooJiUqpbcmWarNUb22S5GN94=
Subject key identifier: 39:3C:D5:AE:46:B7:AA:90:B8:C5:04:B9:EB:EE:6C:FD:0E:40:FF:94
Authority key identifier: 5D:82:66:72:E6:8F:3D:A5:DB:50:ED:81:BA:DB:8D:33:BD:CC:D2:BA
Certificate issuer: /CN=5d826672e68f3da5db50ed81badb8d33bdccd2ba
Certificate serial: 019922C3B0828B2F963AAD0F46BCF7DC3CC0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XYJmcuaPPaXbUO2ButuNM73M0ro.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/36/c79d13-9ea2-4eed-8dd2-cedab463ee5b/1/XYJmcuaPPaXbUO2ButuNM73M0ro.mft
Manifest number: 12AD
Signing time: Sun 07 Sep 2025 06:01:13 +0000
Manifest this update: Sun 07 Sep 2025 06:01:13 +0000
Manifest next update: Mon 08 Sep 2025 06:01:13 +0000
Files and hashes: 1: XYJmcuaPPaXbUO2ButuNM73M0ro.crl (hash: 2aQhx8L4Pj8fMR0zmXkwNFZUjOA9Yg/JE3/dQguJfHc=)
2: uOaT4j9EVJiz8EIOTgjvWTshz84.roa (hash: 6VQK7lQU8B+WO6nBknTZwm7r/sjint5WViRnRUFwHxU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/36/c79d13-9ea2-4eed-8dd2-cedab463ee5b/1/XYJmcuaPPaXbUO2ButuNM73M0ro.crl
rsync://rpki.ripe.net/repository/DEFAULT/36/c79d13-9ea2-4eed-8dd2-cedab463ee5b/1/XYJmcuaPPaXbUO2ButuNM73M0ro.mft
rsync://rpki.ripe.net/repository/DEFAULT/XYJmcuaPPaXbUO2ButuNM73M0ro.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 08 Sep 2025 06:01:13 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:22:c3:b0:82:8b:2f:96:3a:ad:0f:46:bc:f7:dc:3c:c0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5d826672e68f3da5db50ed81badb8d33bdccd2ba
Validity
Not Before: Sep 7 06:01:13 2025 GMT
Not After : Sep 8 06:01:13 2025 GMT
Subject: CN=393cd5ae46b7aa90b8c504b9ebee6cfd0e40ff94
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d4:cf:17:bb:d0:f8:b0:fc:64:78:f7:a7:c4:3a:
3f:4e:2a:77:f0:8c:07:70:4d:99:f6:39:a3:f0:f3:
a6:17:28:81:33:38:7b:76:2c:23:07:8c:de:a9:da:
83:4f:80:78:46:7d:39:a3:64:c2:c4:91:5f:70:73:
b0:e1:9d:a4:5c:8e:46:d9:2e:ff:c0:15:d2:c8:4e:
f3:1b:4e:5c:1d:cd:89:6f:2b:03:1d:52:1e:d4:32:
6c:d7:40:b7:a2:f0:77:74:38:11:56:76:d5:2c:d5:
58:78:74:3a:f7:5d:44:a8:ec:38:6b:7e:2d:68:d1:
55:36:f6:a4:19:81:8d:7e:f0:7c:08:70:01:1c:7f:
0d:af:8e:c2:6a:4f:74:60:cc:d2:52:62:95:c7:7f:
95:1b:40:92:ed:ae:c9:05:db:de:e2:66:e3:95:ab:
61:d9:e7:6a:de:98:af:ac:4b:14:ca:88:71:ac:e4:
93:32:d1:5f:b8:a6:7f:6d:5f:03:cc:e2:e3:b0:d0:
4f:ba:be:73:f3:6b:78:de:29:b7:d7:94:d7:05:03:
40:e9:3c:b1:bc:77:d9:47:0b:ae:80:07:9d:8b:03:
1f:da:ae:67:b9:2f:1e:5a:65:ad:ba:57:66:d2:a1:
f0:7f:74:f3:40:9e:49:3d:e2:b5:c0:f7:d7:65:2b:
f6:1f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
39:3C:D5:AE:46:B7:AA:90:B8:C5:04:B9:EB:EE:6C:FD:0E:40:FF:94
X509v3 Authority Key Identifier:
keyid:5D:82:66:72:E6:8F:3D:A5:DB:50:ED:81:BA:DB:8D:33:BD:CC:D2:BA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XYJmcuaPPaXbUO2ButuNM73M0ro.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/36/c79d13-9ea2-4eed-8dd2-cedab463ee5b/1/XYJmcuaPPaXbUO2ButuNM73M0ro.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/36/c79d13-9ea2-4eed-8dd2-cedab463ee5b/1/XYJmcuaPPaXbUO2ButuNM73M0ro.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
bc:0c:8b:70:b2:76:7e:45:f6:e9:b2:a9:2a:22:ba:8b:60:a2:
13:2f:c7:ff:6e:f5:40:5e:93:78:a3:bf:5d:96:5b:d7:20:97:
8e:c9:d9:a2:85:23:26:aa:ca:75:07:e2:d6:44:6b:1b:57:44:
b4:2a:77:8f:8a:03:68:3c:e5:1c:18:02:34:eb:fa:b9:1e:9b:
a9:b3:ae:45:fd:6d:6d:14:7b:a0:23:99:0b:d0:f8:6d:a4:ce:
14:8f:0d:b5:f0:6c:9d:12:ad:51:3c:ac:4d:dd:3f:ed:7b:c5:
61:c1:51:20:00:77:cd:ba:6b:f8:d9:2f:9f:a1:8c:b8:dd:62:
68:91:2d:25:ed:4b:9e:62:de:52:41:ad:78:73:b1:80:f6:d4:
53:75:fa:01:bd:54:74:0d:f3:2b:73:51:2f:56:38:d2:cd:4a:
60:ec:6b:48:43:19:ba:c4:7e:18:8b:48:d2:a1:c7:6b:fc:32:
03:57:36:b6:3d:82:5a:4d:c7:a1:f9:8b:32:31:8c:7f:fb:9f:
db:ba:35:5e:ad:dd:4b:96:e5:de:e0:c6:61:4c:41:b9:78:9d:
52:ad:00:f6:32:07:08:bf:03:74:6a:f4:1d:9f:12:6f:a1:e4:
c7:e0:a6:8b:97:08:40:a9:86:21:73:ff:c0:1c:3a:14:59:8a:
65:0a:a7:0a
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZkiw7CCiy+WOq0PRrz33DzAMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDVkODI2NjcyZTY4ZjNkYTVkYjUwZWQ4MWJhZGI4ZDMzYmRj
Y2QyYmEwHhcNMjUwOTA3MDYwMTEzWhcNMjUwOTA4MDYwMTEzWjAzMTEwLwYDVQQD
EygzOTNjZDVhZTQ2YjdhYTkwYjhjNTA0YjllYmVlNmNmZDBlNDBmZjk0MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA1M8Xu9D4sPxkePenxDo/Tip38IwH
cE2Z9jmj8POmFyiBMzh7diwjB4zeqdqDT4B4Rn05o2TCxJFfcHOw4Z2kXI5G2S7/
wBXSyE7zG05cHc2JbysDHVIe1DJs10C3ovB3dDgRVnbVLNVYeHQ6911EqOw4a34t
aNFVNvakGYGNfvB8CHABHH8Nr47Cak90YMzSUmKVx3+VG0CS7a7JBdve4mbjlath
2edq3pivrEsUyohxrOSTMtFfuKZ/bV8DzOLjsNBPur5z82t43im315TXBQNA6Tyx
vHfZRwuugAediwMf2q5nuS8eWmWtuldm0qHwf3TzQJ5JPeK1wPfXZSv2HwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFDk81a5Gt6qQuMUEuevubP0OQP+UMB8GA1UdIwQY
MBaAFF2CZnLmjz2l21DtgbrbjTO9zNK6MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvWFlKbWN1YVBQYVhiVU8yQnV0dU5NNzNNMHJvLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zNi9jNzlkMTMtOWVhMi00ZWVkLThkZDIt
Y2VkYWI0NjNlZTViLzEvWFlKbWN1YVBQYVhiVU8yQnV0dU5NNzNNMHJvLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8zNi9jNzlkMTMtOWVhMi00ZWVkLThkZDItY2VkYWI0NjNlZTVi
LzEvWFlKbWN1YVBQYVhiVU8yQnV0dU5NNzNNMHJvLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAvAyLcLJ2
fkX26bKpKiK6i2CiEy/H/271QF6TeKO/XZZb1yCXjsnZooUjJqrKdQfi1kRrG1dE
tCp3j4oDaDzlHBgCNOv6uR6bqbOuRf1tbRR7oCOZC9D4baTOFI8NtfBsnRKtUTys
Td0/7XvFYcFRIAB3zbpr+Nkvn6GMuN1iaJEtJe1LnmLeUkGteHOxgPbUU3X6Ab1U
dA3zK3NRL1Y40s1KYOxrSEMZusR+GItI0qHHa/wyA1c2tj2CWk3HofmLMjGMf/uf
27o1Xq3dS5bl3uDGYUxBuXidUq0A9jIHCL8DdGr0HZ8Sb6Hkx+Cmi5cIQKmGIXP/
wBw6FFmKZQqnCg==
-----END CERTIFICATE-----
Generated at Sun Sep 7 14:51:16 2025 by rpki-client