Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/65/bc4c53-0db5-4f11-84f6-f55fcdf97846/1/XiZI8SkNRHG821C4K-TtkyADCU0.mft
File: XiZI8SkNRHG821C4K-TtkyADCU0.mft (raw, json)
Hash identifier: hOVHQKO0Vv3qcG1oOIAdU3Uv124wgJCrDuhkL5uKg1g=
Subject key identifier: 96:93:5F:09:8F:44:C9:FA:E8:26:7F:74:9F:9B:47:0A:EC:55:50:08
Authority key identifier: 5E:26:48:F1:29:0D:44:71:BC:DB:50:B8:2B:E4:ED:93:20:03:09:4D
Certificate issuer: /CN=5e2648f1290d4471bcdb50b82be4ed932003094d
Certificate serial: 019A1D9A82A250B037181406076DB4BA5B8C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XiZI8SkNRHG821C4K-TtkyADCU0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/65/bc4c53-0db5-4f11-84f6-f55fcdf97846/1/XiZI8SkNRHG821C4K-TtkyADCU0.mft
Manifest number: 1685
Signing time: Sat 25 Oct 2025 23:00:56 +0000
Manifest this update: Sat 25 Oct 2025 23:00:56 +0000
Manifest next update: Sun 26 Oct 2025 23:00:56 +0000
Files and hashes: 1: BECHjRO1sNTrECspSOXRaHeMWRM.roa (hash: CUP2bSCGR2R7pQJIeBFSspVhJwtI4r06AoqaZ9LnrhQ=)
2: XiZI8SkNRHG821C4K-TtkyADCU0.crl (hash: zui8x0bHpa623B7DkH+cgy4cSqGF2FtR69bsFgI3FEQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/65/bc4c53-0db5-4f11-84f6-f55fcdf97846/1/XiZI8SkNRHG821C4K-TtkyADCU0.crl
rsync://rpki.ripe.net/repository/DEFAULT/65/bc4c53-0db5-4f11-84f6-f55fcdf97846/1/XiZI8SkNRHG821C4K-TtkyADCU0.mft
rsync://rpki.ripe.net/repository/DEFAULT/XiZI8SkNRHG821C4K-TtkyADCU0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 26 Oct 2025 23:00:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:1d:9a:82:a2:50:b0:37:18:14:06:07:6d:b4:ba:5b:8c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5e2648f1290d4471bcdb50b82be4ed932003094d
Validity
Not Before: Oct 25 23:00:56 2025 GMT
Not After : Oct 26 23:00:56 2025 GMT
Subject: CN=96935f098f44c9fae8267f749f9b470aec555008
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:11:6f:5d:dc:0f:fa:5a:fb:4a:0f:56:b7:fb:
b1:c3:e9:e8:11:2f:89:ea:c3:e4:a7:c6:66:82:18:
fd:22:6e:0c:b5:92:e6:fa:d1:4b:a6:b3:b4:98:5a:
3b:c7:0d:36:fd:5a:34:cf:9b:c6:44:ef:90:ce:25:
7b:dd:d4:50:36:93:55:30:47:e1:3c:2a:44:b5:4d:
60:b1:82:56:4c:ef:29:ed:ca:f8:22:5d:5f:94:1f:
76:1b:59:c9:1e:ef:70:b8:74:9f:d5:db:72:f6:e4:
78:cc:9a:aa:50:eb:c1:06:46:1b:51:4c:1d:02:a6:
55:4d:99:4e:82:8a:6b:de:aa:ca:46:ad:d5:74:ee:
bf:89:36:1c:80:2e:48:11:c5:08:4f:d4:3c:14:f7:
f7:b7:1b:a6:06:ab:36:a4:2a:f2:b4:22:f1:16:e7:
9d:94:c3:01:6a:50:12:c1:62:2a:c8:af:8d:20:b8:
13:f8:bf:79:86:19:7d:5f:20:aa:bd:13:09:c4:77:
ff:96:4b:2c:26:ba:e6:5a:8a:a1:11:7b:d6:97:79:
1c:d1:ae:8c:97:58:90:b2:ee:bd:c3:96:14:f5:94:
12:79:02:c4:80:b8:62:2e:9a:28:d0:37:76:09:73:
4f:fa:b0:9f:28:25:3d:25:dc:e8:87:d9:df:f9:d3:
15:b1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
96:93:5F:09:8F:44:C9:FA:E8:26:7F:74:9F:9B:47:0A:EC:55:50:08
X509v3 Authority Key Identifier:
keyid:5E:26:48:F1:29:0D:44:71:BC:DB:50:B8:2B:E4:ED:93:20:03:09:4D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XiZI8SkNRHG821C4K-TtkyADCU0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/65/bc4c53-0db5-4f11-84f6-f55fcdf97846/1/XiZI8SkNRHG821C4K-TtkyADCU0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/65/bc4c53-0db5-4f11-84f6-f55fcdf97846/1/XiZI8SkNRHG821C4K-TtkyADCU0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
20:be:3e:0d:c5:0b:fe:8d:16:d8:46:d2:e6:2e:ed:57:eb:fa:
80:3b:4c:6b:1b:bc:c4:b4:4b:4f:33:d5:c5:ff:30:77:9b:de:
1f:33:a8:b1:5f:38:2c:ce:34:e2:0f:df:49:70:b5:1f:ec:d7:
02:89:bb:a8:ee:5d:cf:27:24:a8:55:4f:07:41:8c:00:93:c8:
b7:ef:25:cb:5c:5d:72:0c:33:e3:23:76:76:95:70:c9:e1:6b:
63:e3:e5:2f:7f:2e:86:9e:70:c9:b4:90:52:a5:71:eb:c0:b4:
ca:12:a9:5c:c3:5e:24:b3:34:af:ad:cc:cf:2d:fd:c7:1b:9e:
d3:d7:18:20:37:cc:f2:50:41:86:83:46:06:f0:df:15:17:a2:
f6:a9:e7:dc:db:d6:e2:6f:f0:74:d7:d5:6c:dd:f2:41:94:60:
4a:f3:9f:69:52:98:1d:a8:a4:d3:a5:68:e7:40:2e:b6:ab:8d:
53:be:d6:e5:d0:23:76:d0:b2:4e:a4:f5:b3:65:19:ec:cc:ed:
0a:25:5e:06:fa:32:da:53:09:02:68:a6:ff:b5:94:ba:24:68:
49:1f:8c:bf:a3:48:12:0a:bb:ca:d6:a6:aa:c6:83:df:53:dc:
10:0e:40:2f:20:ab:c9:dd:38:ce:ca:d2:14:21:17:af:c6:59:
91:9b:78:58
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZodmoKiULA3GBQGB220uluMMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDVlMjY0OGYxMjkwZDQ0NzFiY2RiNTBiODJiZTRlZDkzMjAw
MzA5NGQwHhcNMjUxMDI1MjMwMDU2WhcNMjUxMDI2MjMwMDU2WjAzMTEwLwYDVQQD
Eyg5NjkzNWYwOThmNDRjOWZhZTgyNjdmNzQ5ZjliNDcwYWVjNTU1MDA4MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvBFvXdwP+lr7Sg9Wt/uxw+noES+J
6sPkp8Zmghj9Im4MtZLm+tFLprO0mFo7xw02/Vo0z5vGRO+QziV73dRQNpNVMEfh
PCpEtU1gsYJWTO8p7cr4Il1flB92G1nJHu9wuHSf1dty9uR4zJqqUOvBBkYbUUwd
AqZVTZlOgopr3qrKRq3VdO6/iTYcgC5IEcUIT9Q8FPf3txumBqs2pCrytCLxFued
lMMBalASwWIqyK+NILgT+L95hhl9XyCqvRMJxHf/lkssJrrmWoqhEXvWl3kc0a6M
l1iQsu69w5YU9ZQSeQLEgLhiLpoo0Dd2CXNP+rCfKCU9Jdzoh9nf+dMVsQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFJaTXwmPRMn66CZ/dJ+bRwrsVVAIMB8GA1UdIwQY
MBaAFF4mSPEpDURxvNtQuCvk7ZMgAwlNMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvWGlaSThTa05SSEc4MjFDNEstVHRreUFEQ1UwLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82NS9iYzRjNTMtMGRiNS00ZjExLTg0ZjYt
ZjU1ZmNkZjk3ODQ2LzEvWGlaSThTa05SSEc4MjFDNEstVHRreUFEQ1UwLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC82NS9iYzRjNTMtMGRiNS00ZjExLTg0ZjYtZjU1ZmNkZjk3ODQ2
LzEvWGlaSThTa05SSEc4MjFDNEstVHRreUFEQ1UwLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAIL4+DcUL
/o0W2EbS5i7tV+v6gDtMaxu8xLRLTzPVxf8wd5veHzOosV84LM404g/fSXC1H+zX
Aom7qO5dzyckqFVPB0GMAJPIt+8ly1xdcgwz4yN2dpVwyeFrY+PlL38uhp5wybSQ
UqVx68C0yhKpXMNeJLM0r63Mzy39xxue09cYIDfM8lBBhoNGBvDfFRei9qnn3NvW
4m/wdNfVbN3yQZRgSvOfaVKYHaik06Vo50AutquNU77W5dAjdtCyTqT1s2UZ7Mzt
CiVeBvoy2lMJAmim/7WUuiRoSR+Mv6NIEgq7ytamqsaD31PcEA5ALyCryd04zsrS
FCEXr8ZZkZt4WA==
-----END CERTIFICATE-----
Generated at Sun Oct 26 08:02:03 2025 by rpki-client