Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5f/908a62-f4e0-4985-9e34-12053ade9faf/1/xT4qugUV7JDRCREGD88pI2123d8.mft
File: xT4qugUV7JDRCREGD88pI2123d8.mft (raw, json)
Hash identifier: LLNXI1c+53nsrSM6EL2iO9o7UfwZo0SLDdcyDOhSDiA=
Subject key identifier: 87:55:C1:78:38:2C:3E:A5:99:7A:4C:2D:A6:82:80:6F:90:69:D4:A5
Authority key identifier: C5:3E:2A:BA:05:15:EC:90:D1:09:11:06:0F:CF:29:23:6D:76:DD:DF
Certificate issuer: /CN=c53e2aba0515ec90d10911060fcf29236d76dddf
Certificate serial: 019921E7D3D56500D3F8C43ECB4336791A4C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xT4qugUV7JDRCREGD88pI2123d8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5f/908a62-f4e0-4985-9e34-12053ade9faf/1/xT4qugUV7JDRCREGD88pI2123d8.mft
Manifest number: 0E27
Signing time: Sun 07 Sep 2025 02:01:05 +0000
Manifest this update: Sun 07 Sep 2025 02:01:05 +0000
Manifest next update: Mon 08 Sep 2025 02:01:05 +0000
Files and hashes: 1: f0yhahkLcuZ1yoHAyLMFgYV-0C4.roa (hash: o3wGDB8+TAGkWavLVm8YXjs+gVitRLdf6b5WKa02EC8=)
2: xT4qugUV7JDRCREGD88pI2123d8.crl (hash: vGGenew99AjgKhhP5xHReJ1AFHU6CQeENjUeV1QoTSk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5f/908a62-f4e0-4985-9e34-12053ade9faf/1/xT4qugUV7JDRCREGD88pI2123d8.crl
rsync://rpki.ripe.net/repository/DEFAULT/5f/908a62-f4e0-4985-9e34-12053ade9faf/1/xT4qugUV7JDRCREGD88pI2123d8.mft
rsync://rpki.ripe.net/repository/DEFAULT/xT4qugUV7JDRCREGD88pI2123d8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 08 Sep 2025 02:01:05 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:21:e7:d3:d5:65:00:d3:f8:c4:3e:cb:43:36:79:1a:4c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c53e2aba0515ec90d10911060fcf29236d76dddf
Validity
Not Before: Sep 7 02:01:05 2025 GMT
Not After : Sep 8 02:01:05 2025 GMT
Subject: CN=8755c178382c3ea5997a4c2da682806f9069d4a5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:82:bd:dd:2e:f7:04:2b:42:e1:83:92:77:63:
e5:0f:c5:65:16:00:ba:e6:8f:e7:d9:3a:96:ea:98:
95:d9:ad:a0:fa:64:08:f9:b6:b2:58:fc:7e:78:6e:
2b:12:df:ea:e1:23:07:dd:00:23:c7:cf:e1:8a:7b:
dd:1b:14:d8:f9:27:0c:a7:51:4c:1d:4b:84:fb:0e:
28:e7:ec:69:92:c5:27:cc:78:69:94:3c:0b:f8:86:
e1:25:d4:a8:83:59:6b:bb:a2:e4:b8:4f:25:a8:fe:
7f:44:65:16:cd:59:26:dc:60:f2:7d:da:84:d5:17:
7c:9e:12:b7:ac:98:4e:20:a9:17:9d:49:77:95:e2:
4f:fb:0b:ac:27:ce:50:71:50:c8:3c:15:41:64:0b:
fc:f4:7a:83:ab:8d:ea:8d:86:84:3c:88:ff:9d:61:
dd:c2:17:b7:cd:8a:60:87:be:99:f0:9c:0c:ec:21:
ff:5e:83:97:43:79:76:42:71:3b:ec:57:f8:ad:69:
f0:79:9d:eb:5e:65:f0:6d:97:ac:70:a2:64:27:35:
52:76:2e:d1:73:27:0c:82:49:d4:1f:ef:d9:d9:22:
d6:0c:7f:14:19:74:5e:bf:50:82:b6:97:40:d0:96:
25:4f:09:68:b1:10:03:8b:12:0d:44:05:d8:f6:ef:
cc:d9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
87:55:C1:78:38:2C:3E:A5:99:7A:4C:2D:A6:82:80:6F:90:69:D4:A5
X509v3 Authority Key Identifier:
keyid:C5:3E:2A:BA:05:15:EC:90:D1:09:11:06:0F:CF:29:23:6D:76:DD:DF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xT4qugUV7JDRCREGD88pI2123d8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5f/908a62-f4e0-4985-9e34-12053ade9faf/1/xT4qugUV7JDRCREGD88pI2123d8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5f/908a62-f4e0-4985-9e34-12053ade9faf/1/xT4qugUV7JDRCREGD88pI2123d8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
3e:14:3b:f6:8a:fb:dd:8c:8a:b0:80:71:be:80:78:c5:a1:49:
b5:5b:58:83:7e:64:0b:1d:65:1a:c1:a5:71:61:29:67:56:d3:
39:bd:c5:06:6d:ec:bd:2a:e0:83:01:e3:c3:47:26:fe:8a:50:
29:96:f7:3b:34:bf:b8:f5:29:ef:b4:93:9f:44:fe:3d:92:b5:
08:87:ef:b6:95:3e:a8:e3:c5:0d:1d:80:b5:73:80:4b:38:7d:
71:cc:1a:c9:7f:42:60:1d:c2:18:60:95:8a:0a:44:3d:77:70:
9d:6e:40:3b:08:71:bd:4e:6c:3f:e1:f3:fa:1e:46:ec:2d:45:
61:36:23:1f:8d:5b:62:82:f6:77:8a:e2:43:e0:b8:46:04:89:
6d:92:59:a5:4f:5e:42:bc:13:74:77:49:53:ce:20:10:37:72:
7e:33:f6:6a:57:18:92:7d:b8:2b:3a:8b:7d:23:eb:70:98:5f:
42:76:19:de:b8:10:11:39:5a:f3:a0:24:a5:c5:62:59:52:d2:
1e:f8:49:59:30:bc:e8:a8:69:9d:84:37:3b:e3:e7:1c:8d:ff:
f8:eb:38:85:43:ba:d2:c4:27:0b:35:7e:78:87:e1:a8:ea:13:
5e:b2:eb:7b:ce:ee:53:3f:91:9a:3d:02:f9:d8:1c:34:90:4c:
49:d4:b9:e0
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZkh59PVZQDT+MQ+y0M2eRpMMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGM1M2UyYWJhMDUxNWVjOTBkMTA5MTEwNjBmY2YyOTIzNmQ3
NmRkZGYwHhcNMjUwOTA3MDIwMTA1WhcNMjUwOTA4MDIwMTA1WjAzMTEwLwYDVQQD
Eyg4NzU1YzE3ODM4MmMzZWE1OTk3YTRjMmRhNjgyODA2ZjkwNjlkNGE1MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAx4K93S73BCtC4YOSd2PlD8VlFgC6
5o/n2TqW6piV2a2g+mQI+bayWPx+eG4rEt/q4SMH3QAjx8/hinvdGxTY+ScMp1FM
HUuE+w4o5+xpksUnzHhplDwL+IbhJdSog1lru6LkuE8lqP5/RGUWzVkm3GDyfdqE
1Rd8nhK3rJhOIKkXnUl3leJP+wusJ85QcVDIPBVBZAv89HqDq43qjYaEPIj/nWHd
whe3zYpgh76Z8JwM7CH/XoOXQ3l2QnE77Ff4rWnweZ3rXmXwbZescKJkJzVSdi7R
cycMgknUH+/Z2SLWDH8UGXRev1CCtpdA0JYlTwlosRADixINRAXY9u/M2QIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFIdVwXg4LD6lmXpMLaaCgG+QadSlMB8GA1UdIwQY
MBaAFMU+KroFFeyQ0QkRBg/PKSNtdt3fMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQveFQ0cXVnVVY3SkRSQ1JFR0Q4OHBJMjEyM2Q4LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81Zi85MDhhNjItZjRlMC00OTg1LTllMzQt
MTIwNTNhZGU5ZmFmLzEveFQ0cXVnVVY3SkRSQ1JFR0Q4OHBJMjEyM2Q4Lm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC81Zi85MDhhNjItZjRlMC00OTg1LTllMzQtMTIwNTNhZGU5ZmFm
LzEveFQ0cXVnVVY3SkRSQ1JFR0Q4OHBJMjEyM2Q4LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAPhQ79or7
3YyKsIBxvoB4xaFJtVtYg35kCx1lGsGlcWEpZ1bTOb3FBm3svSrggwHjw0cm/opQ
KZb3OzS/uPUp77STn0T+PZK1CIfvtpU+qOPFDR2AtXOASzh9ccwayX9CYB3CGGCV
igpEPXdwnW5AOwhxvU5sP+Hz+h5G7C1FYTYjH41bYoL2d4riQ+C4RgSJbZJZpU9e
QrwTdHdJU84gEDdyfjP2alcYkn24KzqLfSPrcJhfQnYZ3rgQETla86AkpcViWVLS
HvhJWTC86KhpnYQ3O+PnHI3/+Os4hUO60sQnCzV+eIfhqOoTXrLre87uUz+Rmj0C
+dgcNJBMSdS54A==
-----END CERTIFICATE-----
Generated at Sun Sep 7 12:25:14 2025 by rpki-client