Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/73/4e3cc2-1a33-495a-999f-d7a684a57b19/1/xypST5sbOAHb18iaFgrsB2tX5yk.mft
File: xypST5sbOAHb18iaFgrsB2tX5yk.mft (raw, json)
Hash identifier: E6MJSfN8jaRJnwR0Hk1jUF8GqYpE+k6dqalgvRsWjHI=
Subject key identifier: 69:76:6A:98:63:D0:B8:F8:7D:05:6E:0E:56:39:1A:62:0A:38:9A:96
Authority key identifier: C7:2A:52:4F:9B:1B:38:01:DB:D7:C8:9A:16:0A:EC:07:6B:57:E7:29
Certificate issuer: /CN=c72a524f9b1b3801dbd7c89a160aec076b57e729
Certificate serial: 019A0ECBE9498EF18680533BCC77EDD8E344
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xypST5sbOAHb18iaFgrsB2tX5yk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/73/4e3cc2-1a33-495a-999f-d7a684a57b19/1/xypST5sbOAHb18iaFgrsB2tX5yk.mft
Manifest number: 0F52
Signing time: Thu 23 Oct 2025 02:00:35 +0000
Manifest this update: Thu 23 Oct 2025 02:00:35 +0000
Manifest next update: Fri 24 Oct 2025 02:00:35 +0000
Files and hashes: 1: B5IPw2to02EUzOiZAkDMZAMJU40.roa (hash: SqPGfdHaKQmJHjb0Md5WPKQZqfqDkbS8MZiJDiQQgE0=)
2: QhPm8U1brOIqGs2lZ2LGdcxBiLA.roa (hash: b6IzZ0v53J6OJOZBPLixdFrIPoMrdc5UH4inFHWFRvM=)
3: kYBNVlP4IkeOs0bTiFV8wc5LMQs.roa (hash: g3QlMNFCFIgPt5yC/cat7+5gVwDPl1ap/dvIpROnsyw=)
4: xypST5sbOAHb18iaFgrsB2tX5yk.crl (hash: Ucd7nE3xQOhQn1VVAAHw48JtkSywI2ZSzruUWB2Ut1Q=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/73/4e3cc2-1a33-495a-999f-d7a684a57b19/1/xypST5sbOAHb18iaFgrsB2tX5yk.crl
rsync://rpki.ripe.net/repository/DEFAULT/73/4e3cc2-1a33-495a-999f-d7a684a57b19/1/xypST5sbOAHb18iaFgrsB2tX5yk.mft
rsync://rpki.ripe.net/repository/DEFAULT/xypST5sbOAHb18iaFgrsB2tX5yk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 23 Oct 2025 22:00:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:0e:cb:e9:49:8e:f1:86:80:53:3b:cc:77:ed:d8:e3:44
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c72a524f9b1b3801dbd7c89a160aec076b57e729
Validity
Not Before: Oct 23 02:00:35 2025 GMT
Not After : Oct 24 02:00:35 2025 GMT
Subject: CN=69766a9863d0b8f87d056e0e56391a620a389a96
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:03:21:ca:90:35:33:a6:9b:00:7c:46:62:10:
30:13:2f:c2:a1:54:b2:9c:e1:b1:b6:2f:09:6f:8f:
17:46:4b:78:dc:99:43:7e:06:9b:41:82:7a:46:8f:
4f:bc:2b:09:aa:0f:01:86:f3:2c:d8:b4:5e:ee:67:
da:e9:d4:18:f3:11:b1:a8:9c:1e:9d:e3:ff:00:ac:
76:a6:5a:c1:b3:00:69:e7:b5:fd:bb:e9:56:b3:43:
f6:ef:f2:95:41:96:b3:e5:ab:46:30:cb:a5:b9:e9:
8f:43:0a:8e:21:2b:48:7d:86:1a:9c:a0:f0:5c:36:
c3:84:5a:33:24:e3:8d:d4:ad:3e:af:46:ed:d0:80:
d0:47:ba:43:0d:0b:c8:0d:1b:0d:98:0d:70:9c:24:
a6:01:54:79:76:ad:28:fb:f6:63:be:48:07:be:6a:
53:fa:4b:01:c7:c4:83:1a:9c:80:7d:5b:80:08:d8:
05:a6:08:8c:37:32:86:d6:f6:44:d8:ea:03:2b:9d:
69:25:6c:6d:a4:8c:55:76:d1:03:c4:3b:d0:de:64:
0b:46:a8:06:29:f9:5b:d3:d2:31:8e:b0:db:ef:7f:
c6:aa:10:86:38:ea:2e:6f:07:9b:5c:35:78:22:22:
7c:80:4c:bd:4f:82:a3:55:74:32:c0:64:bb:02:9d:
38:b5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
69:76:6A:98:63:D0:B8:F8:7D:05:6E:0E:56:39:1A:62:0A:38:9A:96
X509v3 Authority Key Identifier:
keyid:C7:2A:52:4F:9B:1B:38:01:DB:D7:C8:9A:16:0A:EC:07:6B:57:E7:29
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xypST5sbOAHb18iaFgrsB2tX5yk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/73/4e3cc2-1a33-495a-999f-d7a684a57b19/1/xypST5sbOAHb18iaFgrsB2tX5yk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/73/4e3cc2-1a33-495a-999f-d7a684a57b19/1/xypST5sbOAHb18iaFgrsB2tX5yk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
4c:7e:42:ef:af:8c:a8:56:8a:64:2d:22:0f:ab:96:8d:e2:85:
94:25:6f:6e:97:b3:1c:2d:ca:0e:c9:5a:d2:b4:cc:ca:c6:7b:
1c:91:3e:1f:e4:ba:7b:ef:15:ff:73:a4:fc:ba:2d:b5:e3:56:
f3:81:72:1e:fc:21:a3:08:a1:52:d9:1f:f0:2f:8d:a8:b4:2c:
bc:5e:ec:c4:fa:74:dc:70:28:38:09:d3:8e:5a:e4:25:e1:c4:
5c:26:9c:13:41:e8:3e:57:1e:20:8e:a1:16:6a:c8:d6:a5:32:
38:e9:6f:a3:70:92:41:1a:62:02:be:c5:18:29:83:0a:a5:8e:
76:ea:82:f3:47:fe:77:3b:fd:99:26:6c:6c:78:d1:ae:01:4c:
6b:1d:a2:9e:18:cb:68:2f:da:12:58:0b:c3:c8:47:1d:54:c2:
96:85:72:90:26:21:56:3b:20:8b:d9:50:6d:78:0d:22:70:b6:
6a:aa:2f:3c:c3:eb:83:45:91:2a:d8:a2:37:9d:45:0f:d3:f3:
83:54:0e:cc:2f:bb:83:53:de:27:60:46:2a:f3:9c:04:df:40:
85:68:84:fb:29:7a:2b:84:f3:64:e6:43:12:c2:ea:2a:f4:b5:
44:80:8d:1d:a1:e0:35:3f:97:2e:fb:bc:1b:f6:27:a9:f0:a0:
a2:dc:3d:e6
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZoOy+lJjvGGgFM7zHft2ONEMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGM3MmE1MjRmOWIxYjM4MDFkYmQ3Yzg5YTE2MGFlYzA3NmI1
N2U3MjkwHhcNMjUxMDIzMDIwMDM1WhcNMjUxMDI0MDIwMDM1WjAzMTEwLwYDVQQD
Eyg2OTc2NmE5ODYzZDBiOGY4N2QwNTZlMGU1NjM5MWE2MjBhMzg5YTk2MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAogMhypA1M6abAHxGYhAwEy/CoVSy
nOGxti8Jb48XRkt43JlDfgabQYJ6Ro9PvCsJqg8BhvMs2LRe7mfa6dQY8xGxqJwe
neP/AKx2plrBswBp57X9u+lWs0P27/KVQZaz5atGMMuluemPQwqOIStIfYYanKDw
XDbDhFozJOON1K0+r0bt0IDQR7pDDQvIDRsNmA1wnCSmAVR5dq0o+/ZjvkgHvmpT
+ksBx8SDGpyAfVuACNgFpgiMNzKG1vZE2OoDK51pJWxtpIxVdtEDxDvQ3mQLRqgG
Kflb09IxjrDb73/GqhCGOOoubwebXDV4IiJ8gEy9T4KjVXQywGS7Ap04tQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFGl2aphj0Lj4fQVuDlY5GmIKOJqWMB8GA1UdIwQY
MBaAFMcqUk+bGzgB29fImhYK7AdrV+cpMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQveHlwU1Q1c2JPQUhiMThpYUZncnNCMnRYNXlrLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83My80ZTNjYzItMWEzMy00OTVhLTk5OWYt
ZDdhNjg0YTU3YjE5LzEveHlwU1Q1c2JPQUhiMThpYUZncnNCMnRYNXlrLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC83My80ZTNjYzItMWEzMy00OTVhLTk5OWYtZDdhNjg0YTU3YjE5
LzEveHlwU1Q1c2JPQUhiMThpYUZncnNCMnRYNXlrLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEATH5C76+M
qFaKZC0iD6uWjeKFlCVvbpezHC3KDsla0rTMysZ7HJE+H+S6e+8V/3Ok/LotteNW
84FyHvwhowihUtkf8C+NqLQsvF7sxPp03HAoOAnTjlrkJeHEXCacE0HoPlceII6h
FmrI1qUyOOlvo3CSQRpiAr7FGCmDCqWOduqC80f+dzv9mSZsbHjRrgFMax2inhjL
aC/aElgLw8hHHVTCloVykCYhVjsgi9lQbXgNInC2aqovPMPrg0WRKtiiN51FD9Pz
g1QOzC+7g1PeJ2BGKvOcBN9AhWiE+yl6K4TzZOZDEsLqKvS1RICNHaHgNT+XLvu8
G/YnqfCgotw95g==
-----END CERTIFICATE-----
Generated at Thu Oct 23 07:05:50 2025 by rpki-client