Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/52/f5c96a-b70f-419e-826f-15398ba5b0e7/1/XGiieXadGT3z-XgdK6TB2Sd7T9Y.mft
File: XGiieXadGT3z-XgdK6TB2Sd7T9Y.mft (raw, json)
Hash identifier: fROASYQCjylppALKL41VUl3iaiGtkjA9o3sRMhkrElw=
Subject key identifier: 1C:A3:15:D7:F3:F2:41:82:6E:E5:C0:4B:A5:60:03:C7:03:D0:ED:21
Authority key identifier: 5C:68:A2:79:76:9D:19:3D:F3:F9:78:1D:2B:A4:C1:D9:27:7B:4F:D6
Certificate issuer: /CN=5c68a279769d193df3f9781d2ba4c1d9277b4fd6
Certificate serial: 019A1FBF65064B12EB1FC4F137AF0A0C346F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XGiieXadGT3z-XgdK6TB2Sd7T9Y.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/52/f5c96a-b70f-419e-826f-15398ba5b0e7/1/XGiieXadGT3z-XgdK6TB2Sd7T9Y.mft
Manifest number: 0524
Signing time: Sun 26 Oct 2025 09:00:28 +0000
Manifest this update: Sun 26 Oct 2025 09:00:28 +0000
Manifest next update: Mon 27 Oct 2025 09:00:28 +0000
Files and hashes: 1: FFFlJ1ntZuYfKnoxbFz369bHbCY.roa (hash: OzHlJ3L/Uq51e4UIV4xO7NIltGOZNXtcjik1Syg/eD0=)
2: XGiieXadGT3z-XgdK6TB2Sd7T9Y.crl (hash: WQekdOmjuZnWH4dmRsdiYGaodrpXLBi5FWh7vKNmjg0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/52/f5c96a-b70f-419e-826f-15398ba5b0e7/1/XGiieXadGT3z-XgdK6TB2Sd7T9Y.crl
rsync://rpki.ripe.net/repository/DEFAULT/52/f5c96a-b70f-419e-826f-15398ba5b0e7/1/XGiieXadGT3z-XgdK6TB2Sd7T9Y.mft
rsync://rpki.ripe.net/repository/DEFAULT/XGiieXadGT3z-XgdK6TB2Sd7T9Y.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 27 Oct 2025 03:42:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:1f:bf:65:06:4b:12:eb:1f:c4:f1:37:af:0a:0c:34:6f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5c68a279769d193df3f9781d2ba4c1d9277b4fd6
Validity
Not Before: Oct 26 09:00:28 2025 GMT
Not After : Oct 27 09:00:28 2025 GMT
Subject: CN=1ca315d7f3f241826ee5c04ba56003c703d0ed21
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:da:aa:5a:28:37:9e:ae:e6:62:dd:e9:3f:27:
cf:be:16:7f:69:8a:35:2c:b9:81:e8:e8:85:5c:08:
89:4b:bd:54:4a:e9:98:05:ba:d9:53:fa:3b:30:24:
58:e3:0e:2b:2b:e2:24:bf:b7:97:c8:80:d6:5b:35:
16:e7:8f:2c:8e:70:be:86:2c:73:bd:b1:a0:74:c5:
42:d8:62:dc:92:22:aa:9a:4e:6f:cd:35:5d:24:ef:
50:90:ec:02:24:18:25:d9:43:4a:2c:1d:aa:eb:48:
3d:b2:0d:04:4a:64:ea:d3:fb:37:8a:37:90:1b:29:
e8:93:67:65:14:e1:8a:83:3b:4f:ea:47:65:26:11:
67:51:a1:54:b6:af:8c:fc:ed:bc:41:b1:b4:65:49:
5c:18:6a:38:12:8b:db:b1:b4:97:a4:25:c3:a9:1a:
3e:83:c0:45:61:c6:35:f4:e0:12:e5:19:b6:88:61:
05:48:96:4e:9e:d0:ea:dc:aa:57:99:6e:9c:03:70:
eb:80:55:db:6a:00:1c:86:7d:d5:50:2c:15:a4:bc:
f0:be:d4:75:51:05:c6:9b:7d:d8:ab:1d:93:54:fd:
24:ac:38:6c:8e:f9:85:f4:60:ee:5f:9c:9d:13:b8:
d5:a5:ab:24:4b:66:ac:d4:11:73:26:69:e0:a6:a8:
68:f1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1C:A3:15:D7:F3:F2:41:82:6E:E5:C0:4B:A5:60:03:C7:03:D0:ED:21
X509v3 Authority Key Identifier:
keyid:5C:68:A2:79:76:9D:19:3D:F3:F9:78:1D:2B:A4:C1:D9:27:7B:4F:D6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XGiieXadGT3z-XgdK6TB2Sd7T9Y.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/52/f5c96a-b70f-419e-826f-15398ba5b0e7/1/XGiieXadGT3z-XgdK6TB2Sd7T9Y.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/52/f5c96a-b70f-419e-826f-15398ba5b0e7/1/XGiieXadGT3z-XgdK6TB2Sd7T9Y.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
30:63:27:a9:84:50:c9:d7:7f:d5:e9:6b:85:c8:f4:77:c6:bc:
af:75:f6:b8:e5:95:7e:68:20:5c:87:e9:d8:b0:6e:97:56:e5:
bc:47:17:ab:25:c7:4d:1b:41:a1:c9:12:b3:ec:52:37:f3:3c:
31:3c:9e:70:66:f1:50:14:e5:b3:1f:17:58:3b:63:4e:cc:e2:
39:fb:e6:da:4f:e2:68:21:5e:9c:d8:2e:67:96:e1:75:4d:05:
3d:80:b8:96:56:6d:22:25:c8:a7:81:91:3a:13:b8:37:fc:65:
02:1e:f1:81:fa:fb:c9:3a:cf:81:ed:1d:4a:37:47:f5:9a:5c:
7f:ab:52:e6:a1:4a:2b:88:db:22:bf:90:41:f7:3f:ca:78:4f:
be:32:1b:c6:b9:2b:d4:7a:f1:09:07:82:a0:d7:b7:92:38:bd:
9e:b7:ee:50:2c:0a:ce:4f:73:21:70:d2:71:de:0b:94:14:84:
67:87:4b:3f:6e:aa:83:cc:52:f3:f6:ec:33:7a:53:8b:af:09:
a8:d7:43:08:3d:31:18:e7:da:2f:b3:16:11:e4:26:28:8e:47:
d3:2b:40:61:d4:9b:28:b1:e5:8b:ad:bb:3a:c6:1c:0a:8f:32:
39:ab:eb:dc:8d:4b:66:74:1e:17:ec:02:4d:ea:94:e5:36:f2:
ed:89:55:77
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZofv2UGSxLrH8TxN68KDDRvMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDVjNjhhMjc5NzY5ZDE5M2RmM2Y5NzgxZDJiYTRjMWQ5Mjc3
YjRmZDYwHhcNMjUxMDI2MDkwMDI4WhcNMjUxMDI3MDkwMDI4WjAzMTEwLwYDVQQD
EygxY2EzMTVkN2YzZjI0MTgyNmVlNWMwNGJhNTYwMDNjNzAzZDBlZDIxMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAodqqWig3nq7mYt3pPyfPvhZ/aYo1
LLmB6OiFXAiJS71USumYBbrZU/o7MCRY4w4rK+Ikv7eXyIDWWzUW548sjnC+hixz
vbGgdMVC2GLckiKqmk5vzTVdJO9QkOwCJBgl2UNKLB2q60g9sg0ESmTq0/s3ijeQ
Gynok2dlFOGKgztP6kdlJhFnUaFUtq+M/O28QbG0ZUlcGGo4EovbsbSXpCXDqRo+
g8BFYcY19OAS5Rm2iGEFSJZOntDq3KpXmW6cA3DrgFXbagAchn3VUCwVpLzwvtR1
UQXGm33Yqx2TVP0krDhsjvmF9GDuX5ydE7jVpaskS2as1BFzJmngpqho8QIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFByjFdfz8kGCbuXAS6VgA8cD0O0hMB8GA1UdIwQY
MBaAFFxoonl2nRk98/l4HSukwdkne0/WMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvWEdpaWVYYWRHVDN6LVhnZEs2VEIyU2Q3VDlZLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81Mi9mNWM5NmEtYjcwZi00MTllLTgyNmYt
MTUzOThiYTViMGU3LzEvWEdpaWVYYWRHVDN6LVhnZEs2VEIyU2Q3VDlZLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC81Mi9mNWM5NmEtYjcwZi00MTllLTgyNmYtMTUzOThiYTViMGU3
LzEvWEdpaWVYYWRHVDN6LVhnZEs2VEIyU2Q3VDlZLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAMGMnqYRQ
ydd/1elrhcj0d8a8r3X2uOWVfmggXIfp2LBul1blvEcXqyXHTRtBockSs+xSN/M8
MTyecGbxUBTlsx8XWDtjTsziOfvm2k/iaCFenNguZ5bhdU0FPYC4llZtIiXIp4GR
OhO4N/xlAh7xgfr7yTrPge0dSjdH9Zpcf6tS5qFKK4jbIr+QQfc/ynhPvjIbxrkr
1HrxCQeCoNe3kji9nrfuUCwKzk9zIXDScd4LlBSEZ4dLP26qg8xS8/bsM3pTi68J
qNdDCD0xGOfaL7MWEeQmKI5H0ytAYdSbKLHli627OsYcCo8yOavr3I1LZnQeF+wC
TeqU5Tby7YlVdw==
-----END CERTIFICATE-----
Generated at Sun Oct 26 12:24:05 2025 by rpki-client