Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3b/2434f8-0566-45fc-b714-31a3ecf1bdb6/1/xaAZy1TXAKGxxQ6PkOvuKl7qV7s.mft
File: xaAZy1TXAKGxxQ6PkOvuKl7qV7s.mft (raw, json)
Hash identifier: utHZnsasWhhsUbYwR0DevgpLjX3wU+KE5JwOY3zs2Sc=
Subject key identifier: 48:43:69:C9:BB:6F:26:2D:02:46:83:2B:D5:64:41:65:AA:5D:A7:A7
Authority key identifier: C5:A0:19:CB:54:D7:00:A1:B1:C5:0E:8F:90:EB:EE:2A:5E:EA:57:BB
Certificate issuer: /CN=c5a019cb54d700a1b1c50e8f90ebee2a5eea57bb
Certificate serial: 019A64338790FE5BFAD5E8BAB065BC836302
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xaAZy1TXAKGxxQ6PkOvuKl7qV7s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3b/2434f8-0566-45fc-b714-31a3ecf1bdb6/1/xaAZy1TXAKGxxQ6PkOvuKl7qV7s.mft
Manifest number: 16AB
Signing time: Sat 08 Nov 2025 16:01:29 +0000
Manifest this update: Sat 08 Nov 2025 16:01:29 +0000
Manifest next update: Sun 09 Nov 2025 16:01:29 +0000
Files and hashes: 1: kFAWzJxAiMhkm4NOvHOiD5PY66g.roa (hash: QJZEuzHLkJsVvRtJ8dcL8i0clH/1NRZmPUpPgEFazCw=)
2: xaAZy1TXAKGxxQ6PkOvuKl7qV7s.crl (hash: yZ60qGysnwzVC58tddBZ0ZgqnUfJrLBEe4yYQy5vtxA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3b/2434f8-0566-45fc-b714-31a3ecf1bdb6/1/xaAZy1TXAKGxxQ6PkOvuKl7qV7s.crl
rsync://rpki.ripe.net/repository/DEFAULT/3b/2434f8-0566-45fc-b714-31a3ecf1bdb6/1/xaAZy1TXAKGxxQ6PkOvuKl7qV7s.mft
rsync://rpki.ripe.net/repository/DEFAULT/xaAZy1TXAKGxxQ6PkOvuKl7qV7s.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 09 Nov 2025 11:00:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:64:33:87:90:fe:5b:fa:d5:e8:ba:b0:65:bc:83:63:02
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c5a019cb54d700a1b1c50e8f90ebee2a5eea57bb
Validity
Not Before: Nov 8 16:01:29 2025 GMT
Not After : Nov 9 16:01:29 2025 GMT
Subject: CN=484369c9bb6f262d0246832bd5644165aa5da7a7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:70:90:f1:9b:18:1a:80:08:87:c5:ce:90:77:
1f:c3:e1:60:79:33:95:03:ac:4f:c4:2f:e7:c9:59:
3b:99:a9:f2:a8:11:2e:a9:19:64:ca:9b:c5:dd:48:
9f:91:4d:9a:ae:9f:fa:94:bd:70:12:f6:fd:0e:01:
15:9e:7d:9e:27:0d:10:21:bf:00:8c:73:d3:a5:19:
91:a1:63:3a:ef:4a:52:a0:fc:ef:01:f3:e0:e7:15:
b2:33:f5:e5:6a:38:6c:67:ff:e9:5b:ff:ba:45:19:
fb:67:92:97:93:3f:cb:01:f8:50:eb:47:06:1f:e9:
c6:c7:e5:6f:83:6a:96:54:17:55:e9:1d:04:00:ed:
df:d3:4c:10:b0:46:a5:e3:39:d1:73:ae:bf:47:51:
c7:5a:a6:e4:93:60:1f:19:da:da:c6:53:d5:9d:cb:
c8:b4:d1:03:45:0d:e6:67:11:ef:c5:fd:0a:33:11:
31:ac:d4:f7:e8:d5:7e:a0:75:ea:24:1c:bc:98:86:
2e:14:de:be:47:ed:a9:bf:8c:87:78:29:f4:ea:0f:
55:1c:d3:58:b4:45:db:60:70:5c:df:b3:c1:48:86:
48:4e:e2:39:b4:9d:c9:72:e2:45:e5:26:5c:79:19:
db:7a:a1:67:7b:6c:74:7c:e2:1c:45:56:8b:dc:55:
ad:fb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
48:43:69:C9:BB:6F:26:2D:02:46:83:2B:D5:64:41:65:AA:5D:A7:A7
X509v3 Authority Key Identifier:
keyid:C5:A0:19:CB:54:D7:00:A1:B1:C5:0E:8F:90:EB:EE:2A:5E:EA:57:BB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xaAZy1TXAKGxxQ6PkOvuKl7qV7s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3b/2434f8-0566-45fc-b714-31a3ecf1bdb6/1/xaAZy1TXAKGxxQ6PkOvuKl7qV7s.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3b/2434f8-0566-45fc-b714-31a3ecf1bdb6/1/xaAZy1TXAKGxxQ6PkOvuKl7qV7s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
85:1b:ef:08:0b:ae:8c:84:03:9a:d3:fb:0c:52:eb:57:4e:9d:
95:8d:cc:b7:75:8d:80:0b:10:26:41:95:05:b9:27:f0:e9:b6:
ca:5b:ff:70:9c:78:74:38:16:5b:8e:56:21:b4:55:ff:a8:e1:
df:0f:82:57:f5:f3:13:b7:7b:bb:b2:e0:df:53:e9:b4:5a:b9:
e6:f2:f2:7b:97:05:86:d1:14:a9:57:c8:3f:bc:de:c2:b0:4f:
d2:9c:14:de:c7:ca:ef:84:44:3c:65:fc:25:da:fa:7b:82:fa:
2a:87:65:71:e5:ec:69:9d:6e:43:67:db:2c:f8:f1:29:a4:ae:
2c:54:be:d3:48:bb:10:a1:d1:e1:b8:eb:e3:67:db:c9:9e:ad:
2e:d2:23:72:19:79:62:25:fe:27:6c:65:a7:3f:48:13:03:05:
9a:ef:f4:e1:f9:80:61:39:69:84:a2:19:a2:7b:ce:e2:60:f7:
91:4a:30:81:63:af:fd:dc:d5:e5:95:d8:09:63:4b:2e:80:f4:
b5:d0:36:ca:15:4a:8f:21:1b:42:4a:2d:db:43:10:66:54:b2:
ee:64:b6:4f:12:38:0d:2c:ca:91:fc:05:6c:67:b5:de:f5:5a:
d8:18:ca:2f:87:09:85:c4:f5:3d:24:d9:92:b6:16:69:f7:14:
ad:1b:01:86
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Nov 8 18:43:21 2025 by rpki-client