Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3b/2434f8-0566-45fc-b714-31a3ecf1bdb6/1/xaAZy1TXAKGxxQ6PkOvuKl7qV7s.mft
File: xaAZy1TXAKGxxQ6PkOvuKl7qV7s.mft (raw, json)
Hash identifier: 4Lrc4rNJKMitDODsMBZdQzwNKaz0oGNh7yNPTqWfEh0=
Subject key identifier: 90:8D:0A:7B:28:89:E0:B7:E3:02:72:E0:94:1E:32:37:A2:0A:F9:0E
Authority key identifier: C5:A0:19:CB:54:D7:00:A1:B1:C5:0E:8F:90:EB:EE:2A:5E:EA:57:BB
Certificate issuer: /CN=c5a019cb54d700a1b1c50e8f90ebee2a5eea57bb
Certificate serial: 019A03A49C69EB06F11CC47F7F426EACEA7F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xaAZy1TXAKGxxQ6PkOvuKl7qV7s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3b/2434f8-0566-45fc-b714-31a3ecf1bdb6/1/xaAZy1TXAKGxxQ6PkOvuKl7qV7s.mft
Manifest number: 1679
Signing time: Mon 20 Oct 2025 22:01:50 +0000
Manifest this update: Mon 20 Oct 2025 22:01:50 +0000
Manifest next update: Tue 21 Oct 2025 22:01:50 +0000
Files and hashes: 1: kFAWzJxAiMhkm4NOvHOiD5PY66g.roa (hash: QJZEuzHLkJsVvRtJ8dcL8i0clH/1NRZmPUpPgEFazCw=)
2: xaAZy1TXAKGxxQ6PkOvuKl7qV7s.crl (hash: siV4+SaG16CdgqkKIouOQ8t+Iny0rI/w+KuUMLk70zo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3b/2434f8-0566-45fc-b714-31a3ecf1bdb6/1/xaAZy1TXAKGxxQ6PkOvuKl7qV7s.crl
rsync://rpki.ripe.net/repository/DEFAULT/3b/2434f8-0566-45fc-b714-31a3ecf1bdb6/1/xaAZy1TXAKGxxQ6PkOvuKl7qV7s.mft
rsync://rpki.ripe.net/repository/DEFAULT/xaAZy1TXAKGxxQ6PkOvuKl7qV7s.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 21 Oct 2025 22:00:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:03:a4:9c:69:eb:06:f1:1c:c4:7f:7f:42:6e:ac:ea:7f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c5a019cb54d700a1b1c50e8f90ebee2a5eea57bb
Validity
Not Before: Oct 20 22:01:50 2025 GMT
Not After : Oct 21 22:01:50 2025 GMT
Subject: CN=908d0a7b2889e0b7e30272e0941e3237a20af90e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ed:91:11:7a:26:c0:cc:f8:da:5f:3a:35:f0:5e:
63:29:09:b4:46:40:fe:76:5b:33:8f:90:d9:78:1c:
16:3d:3e:f9:20:08:25:66:7f:08:f9:1f:53:99:53:
64:d6:70:88:da:74:bf:e4:9d:e7:f9:cc:66:ef:8c:
71:ef:83:d2:74:af:68:32:38:6a:47:6a:6a:ab:5b:
b7:e3:0c:35:aa:a1:07:88:d5:61:8f:e2:8d:fe:8c:
de:1b:f9:fc:7b:ac:ff:bc:b8:e2:ee:65:06:bb:8d:
58:f4:05:9f:f1:d4:72:94:f4:b8:88:a7:d0:b4:04:
c2:8b:c6:a6:26:7c:21:be:ae:96:07:9e:ef:74:41:
a0:0a:ae:7e:0b:d5:cc:3e:78:61:90:fa:c2:8a:01:
6e:a2:8d:59:68:7b:41:f0:95:6e:7e:d4:7c:b1:4c:
7a:55:94:0a:cb:01:e2:bc:53:7d:4b:64:02:b6:90:
e2:da:27:ce:81:ac:56:9c:b3:fc:b1:27:a0:ff:de:
d0:8c:fd:09:d2:f7:a0:51:c5:03:25:bb:33:d6:4d:
b2:7e:3f:4f:e1:d7:07:8f:ee:a3:ec:93:88:2f:eb:
39:6d:ea:5f:1a:cb:98:0a:87:3f:f1:2c:08:e5:3a:
f0:8d:f2:8a:4a:32:74:f8:94:17:1d:3b:31:cb:28:
04:95
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
90:8D:0A:7B:28:89:E0:B7:E3:02:72:E0:94:1E:32:37:A2:0A:F9:0E
X509v3 Authority Key Identifier:
keyid:C5:A0:19:CB:54:D7:00:A1:B1:C5:0E:8F:90:EB:EE:2A:5E:EA:57:BB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xaAZy1TXAKGxxQ6PkOvuKl7qV7s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3b/2434f8-0566-45fc-b714-31a3ecf1bdb6/1/xaAZy1TXAKGxxQ6PkOvuKl7qV7s.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3b/2434f8-0566-45fc-b714-31a3ecf1bdb6/1/xaAZy1TXAKGxxQ6PkOvuKl7qV7s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
0f:17:c7:7d:21:8a:de:e9:59:3b:d6:2c:ee:61:cc:ad:9e:31:
98:59:2d:92:d3:b8:24:fc:c9:40:37:a1:96:ba:1e:72:22:c0:
f7:30:bb:70:df:7d:3b:9e:83:8f:94:70:57:17:a3:58:5b:84:
de:ff:5b:ff:e2:9a:43:c9:22:af:55:86:1a:c1:86:5d:65:db:
dd:15:b9:d8:3d:ee:8b:20:98:2d:ec:a1:2f:f9:03:23:51:20:
4c:0b:83:37:62:3a:8b:6c:e6:ff:a7:74:86:18:1f:31:19:2e:
ab:82:21:12:25:6c:28:8d:e5:ab:40:f8:f8:4e:af:c0:06:34:
d9:d5:30:52:e3:68:21:40:dd:94:c4:33:4a:6e:71:18:ee:3a:
cb:fc:7e:dc:b6:5c:79:77:c9:73:3d:b6:63:2e:00:5f:47:76:
82:e8:51:02:53:34:d9:35:67:f3:8a:64:e4:3a:42:cf:80:21:
51:e3:ed:0d:c4:28:c5:8d:76:37:07:5e:9c:cd:35:b8:6f:2c:
38:3a:86:9c:e1:dd:cf:1e:82:9e:ad:a8:a4:b9:6c:7c:b3:fc:
f7:34:73:4c:07:48:a7:48:6c:c5:c5:84:23:4a:57:b1:e4:60:
5d:86:1b:41:ad:3f:c9:d2:d9:fb:78:76:2e:cf:10:96:44:ff:
8c:31:39:ce
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZoDpJxp6wbxHMR/f0JurOp/MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGM1YTAxOWNiNTRkNzAwYTFiMWM1MGU4ZjkwZWJlZTJhNWVl
YTU3YmIwHhcNMjUxMDIwMjIwMTUwWhcNMjUxMDIxMjIwMTUwWjAzMTEwLwYDVQQD
Eyg5MDhkMGE3YjI4ODllMGI3ZTMwMjcyZTA5NDFlMzIzN2EyMGFmOTBlMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA7ZEReibAzPjaXzo18F5jKQm0RkD+
dlszj5DZeBwWPT75IAglZn8I+R9TmVNk1nCI2nS/5J3n+cxm74xx74PSdK9oMjhq
R2pqq1u34ww1qqEHiNVhj+KN/ozeG/n8e6z/vLji7mUGu41Y9AWf8dRylPS4iKfQ
tATCi8amJnwhvq6WB57vdEGgCq5+C9XMPnhhkPrCigFuoo1ZaHtB8JVuftR8sUx6
VZQKywHivFN9S2QCtpDi2ifOgaxWnLP8sSeg/97QjP0J0vegUcUDJbsz1k2yfj9P
4dcHj+6j7JOIL+s5bepfGsuYCoc/8SwI5TrwjfKKSjJ0+JQXHTsxyygElQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFJCNCnsoieC34wJy4JQeMjeiCvkOMB8GA1UdIwQY
MBaAFMWgGctU1wChscUOj5Dr7ipe6le7MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQveGFBWnkxVFhBS0d4eFE2UGtPdnVLbDdxVjdzLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zYi8yNDM0ZjgtMDU2Ni00NWZjLWI3MTQt
MzFhM2VjZjFiZGI2LzEveGFBWnkxVFhBS0d4eFE2UGtPdnVLbDdxVjdzLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8zYi8yNDM0ZjgtMDU2Ni00NWZjLWI3MTQtMzFhM2VjZjFiZGI2
LzEveGFBWnkxVFhBS0d4eFE2UGtPdnVLbDdxVjdzLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEADxfHfSGK
3ulZO9Ys7mHMrZ4xmFktktO4JPzJQDehlroeciLA9zC7cN99O56Dj5RwVxejWFuE
3v9b/+KaQ8kir1WGGsGGXWXb3RW52D3uiyCYLeyhL/kDI1EgTAuDN2I6i2zm/6d0
hhgfMRkuq4IhEiVsKI3lq0D4+E6vwAY02dUwUuNoIUDdlMQzSm5xGO46y/x+3LZc
eXfJcz22Yy4AX0d2guhRAlM02TVn84pk5DpCz4AhUePtDcQoxY12NwdenM01uG8s
ODqGnOHdzx6Cnq2opLlsfLP89zRzTAdIp0hsxcWEI0pXseRgXYYbQa0/ydLZ+3h2
Ls8QlkT/jDE5zg==
-----END CERTIFICATE-----
Generated at Tue Oct 21 02:24:39 2025 by rpki-client