Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3b/2434f8-0566-45fc-b714-31a3ecf1bdb6/1/xaAZy1TXAKGxxQ6PkOvuKl7qV7s.mft
File: xaAZy1TXAKGxxQ6PkOvuKl7qV7s.mft (raw, json)
Hash identifier: PFS674KE3Q3T/qBIACIX6agyUrr3//pJEd5vk8Pwk3Y=
Subject key identifier: 2F:8F:F9:69:7B:AE:69:A8:FD:FD:F0:5A:40:64:25:C7:56:5D:9D:43
Authority key identifier: C5:A0:19:CB:54:D7:00:A1:B1:C5:0E:8F:90:EB:EE:2A:5E:EA:57:BB
Certificate issuer: /CN=c5a019cb54d700a1b1c50e8f90ebee2a5eea57bb
Certificate serial: 019A66222601B85144EC1AEB9B70E75EBBEC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xaAZy1TXAKGxxQ6PkOvuKl7qV7s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3b/2434f8-0566-45fc-b714-31a3ecf1bdb6/1/xaAZy1TXAKGxxQ6PkOvuKl7qV7s.mft
Manifest number: 16AC
Signing time: Sun 09 Nov 2025 01:01:45 +0000
Manifest this update: Sun 09 Nov 2025 01:01:45 +0000
Manifest next update: Mon 10 Nov 2025 01:01:45 +0000
Files and hashes: 1: kFAWzJxAiMhkm4NOvHOiD5PY66g.roa (hash: QJZEuzHLkJsVvRtJ8dcL8i0clH/1NRZmPUpPgEFazCw=)
2: xaAZy1TXAKGxxQ6PkOvuKl7qV7s.crl (hash: sH18CwGQGbxCsX5UimZ4EbR//Oa9+WrKxcZOc+/4D08=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3b/2434f8-0566-45fc-b714-31a3ecf1bdb6/1/xaAZy1TXAKGxxQ6PkOvuKl7qV7s.crl
rsync://rpki.ripe.net/repository/DEFAULT/3b/2434f8-0566-45fc-b714-31a3ecf1bdb6/1/xaAZy1TXAKGxxQ6PkOvuKl7qV7s.mft
rsync://rpki.ripe.net/repository/DEFAULT/xaAZy1TXAKGxxQ6PkOvuKl7qV7s.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 10 Nov 2025 01:01:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:66:22:26:01:b8:51:44:ec:1a:eb:9b:70:e7:5e:bb:ec
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c5a019cb54d700a1b1c50e8f90ebee2a5eea57bb
Validity
Not Before: Nov 9 01:01:45 2025 GMT
Not After : Nov 10 01:01:45 2025 GMT
Subject: CN=2f8ff9697bae69a8fdfdf05a406425c7565d9d43
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:8f:a9:e5:74:34:ce:69:7a:af:eb:c3:3f:02:
d4:22:ad:a9:55:a9:51:3e:7d:8b:cf:56:dd:69:65:
fc:ee:da:87:db:75:e9:e3:4b:d8:f3:f2:a7:94:08:
19:0b:b5:89:3f:5e:33:33:de:f1:fa:52:58:34:02:
56:12:f4:cf:78:9c:0f:42:94:01:a4:d9:49:e8:ee:
b8:8e:6a:42:fc:b6:18:86:c9:fe:b9:1d:90:d9:dd:
a9:9c:60:0a:87:37:34:77:1d:1b:22:eb:9a:80:a9:
cf:16:07:ee:90:cd:34:0a:e4:3f:41:6b:22:94:84:
98:01:ef:ac:b3:98:30:cf:80:50:d9:6c:38:66:74:
9a:a2:f9:a7:a4:2c:3c:0b:8a:88:fb:b1:25:ed:8e:
f2:fd:58:0b:fe:ed:fb:71:af:1c:2b:21:14:31:ce:
b9:d2:98:b6:99:c5:9c:22:3e:9c:13:50:c8:bb:29:
07:92:a3:19:67:e5:d9:a7:42:34:64:c3:be:3b:fe:
7d:07:22:4e:37:ed:df:42:05:44:9f:8e:0e:08:97:
78:6f:eb:07:30:45:13:e5:bb:26:85:31:8d:eb:3b:
bb:49:24:8a:df:c7:28:fa:c0:25:85:df:b4:0a:8b:
5e:2d:78:2a:87:fe:9a:9a:26:80:15:69:ca:fc:2f:
4d:8d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2F:8F:F9:69:7B:AE:69:A8:FD:FD:F0:5A:40:64:25:C7:56:5D:9D:43
X509v3 Authority Key Identifier:
keyid:C5:A0:19:CB:54:D7:00:A1:B1:C5:0E:8F:90:EB:EE:2A:5E:EA:57:BB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xaAZy1TXAKGxxQ6PkOvuKl7qV7s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3b/2434f8-0566-45fc-b714-31a3ecf1bdb6/1/xaAZy1TXAKGxxQ6PkOvuKl7qV7s.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3b/2434f8-0566-45fc-b714-31a3ecf1bdb6/1/xaAZy1TXAKGxxQ6PkOvuKl7qV7s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
49:a0:97:42:ef:60:af:dc:39:99:44:9a:34:80:d5:03:6f:10:
22:1e:e5:00:b8:c4:b2:a8:8b:8b:43:59:24:8c:6a:41:40:58:
39:26:fd:14:7a:ae:47:5f:e8:15:11:f3:42:47:44:a1:d5:c4:
36:92:bd:bb:bd:a9:16:b1:5a:89:21:92:36:39:24:ec:2d:cd:
0e:90:75:9f:14:fc:b0:73:8d:73:76:50:32:df:79:f7:c2:0e:
85:b4:28:94:f3:b3:d7:ea:9a:a1:87:68:c8:e6:4d:c4:06:26:
39:c7:cb:ce:bc:cc:c7:73:31:58:17:5a:76:0e:d2:36:ab:c3:
7c:33:c6:d7:8c:76:61:d6:19:2e:39:8e:ed:76:2d:41:96:95:
49:22:64:79:76:1d:1f:bf:34:c9:d7:2d:6d:af:47:27:62:91:
ea:eb:42:61:6a:86:d2:5f:84:4b:21:be:73:33:1a:63:59:f5:
3e:d9:49:26:51:08:60:94:8f:b6:eb:e8:f3:5f:42:e2:d8:be:
2e:0c:86:2b:08:bf:00:21:59:51:3d:48:23:da:66:51:88:2f:
08:47:0c:73:71:0e:94:2b:f6:1e:4a:8d:1f:8f:6b:38:95:41:
d5:89:e1:0c:29:8f:d4:82:28:00:a7:3e:b9:e5:74:e8:65:52:
dd:34:7b:6b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Nov 9 11:11:22 2025 by rpki-client