Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/95/13dc38-2e75-4b07-bef0-e1ea453c5257/1/XfnoVvBJXISQ1RJOjPuvCNcN-xc.mft
File: XfnoVvBJXISQ1RJOjPuvCNcN-xc.mft (raw, json)
Hash identifier: zQhZ0WirPWLz0mvwOuDn8WXYj385acq19C/QocsXEVQ=
Subject key identifier: 92:CE:FD:66:4A:F8:59:15:0D:3D:C7:EA:D8:1D:ED:A7:1C:55:21:DC
Authority key identifier: 5D:F9:E8:56:F0:49:5C:84:90:D5:12:4E:8C:FB:AF:08:D7:0D:FB:17
Certificate issuer: /CN=5df9e856f0495c8490d5124e8cfbaf08d70dfb17
Certificate serial: 0199350089212DDD1936884727B3EC1A3296
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XfnoVvBJXISQ1RJOjPuvCNcN-xc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/95/13dc38-2e75-4b07-bef0-e1ea453c5257/1/XfnoVvBJXISQ1RJOjPuvCNcN-xc.mft
Manifest number: 0258
Signing time: Wed 10 Sep 2025 19:00:51 +0000
Manifest this update: Wed 10 Sep 2025 19:00:51 +0000
Manifest next update: Thu 11 Sep 2025 19:00:51 +0000
Files and hashes: 1: X7HkSzc73grEKj4u4ebonuY_N3k.roa (hash: OyEQG3xPXjnpnin1BNjI7sPjB8DI9jWlTT019Ki3K7k=)
2: XfnoVvBJXISQ1RJOjPuvCNcN-xc.crl (hash: bix+Uk4RTo7elkWZQqkRrdbS1KmToD5sXxWqMGCoHQw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/95/13dc38-2e75-4b07-bef0-e1ea453c5257/1/XfnoVvBJXISQ1RJOjPuvCNcN-xc.crl
rsync://rpki.ripe.net/repository/DEFAULT/95/13dc38-2e75-4b07-bef0-e1ea453c5257/1/XfnoVvBJXISQ1RJOjPuvCNcN-xc.mft
rsync://rpki.ripe.net/repository/DEFAULT/XfnoVvBJXISQ1RJOjPuvCNcN-xc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 11 Sep 2025 19:00:51 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:35:00:89:21:2d:dd:19:36:88:47:27:b3:ec:1a:32:96
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5df9e856f0495c8490d5124e8cfbaf08d70dfb17
Validity
Not Before: Sep 10 19:00:51 2025 GMT
Not After : Sep 11 19:00:51 2025 GMT
Subject: CN=92cefd664af859150d3dc7ead81deda71c5521dc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:fc:20:42:30:92:63:f8:22:8c:b8:56:b2:f8:21:
61:ed:cc:47:c9:72:e6:bf:7c:80:eb:cc:e8:26:8c:
97:62:9b:8e:7c:1b:62:24:c1:f5:62:c3:25:6e:3a:
5a:a7:ac:f7:a6:ba:27:cf:ea:2f:8c:e6:8e:c6:0c:
c1:34:a9:8c:5f:89:15:b4:6b:7c:f7:5b:51:f8:7a:
22:ec:ba:bd:51:54:9d:8d:39:45:5c:b0:b2:59:7b:
ae:aa:d8:2b:a6:22:e1:6f:79:73:0a:78:7b:5e:6c:
09:46:17:ec:62:30:b1:13:e2:55:91:66:3e:4b:12:
5f:68:3f:5a:c4:c5:27:7b:4f:77:fa:9a:a4:9e:20:
50:4c:04:98:f6:d6:5b:d6:78:b0:56:85:c0:74:f3:
89:62:84:69:61:fc:b9:4a:d7:39:2e:83:6a:90:5a:
77:a9:2e:29:01:58:ef:09:db:e6:cf:4a:4a:8f:a0:
d0:5f:fa:cb:62:80:d5:76:09:35:e5:9d:84:eb:e9:
40:23:11:6a:d4:84:22:1d:1e:fa:d2:cf:10:f6:c5:
67:be:5f:8c:c6:9a:1f:d5:19:b7:16:b4:5d:6c:f2:
34:9a:b6:d0:ea:58:b7:ef:10:a9:76:59:fe:63:2c:
a0:fb:ed:52:5c:d5:59:6a:36:0c:98:9b:ca:dd:04:
fa:ef
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
92:CE:FD:66:4A:F8:59:15:0D:3D:C7:EA:D8:1D:ED:A7:1C:55:21:DC
X509v3 Authority Key Identifier:
keyid:5D:F9:E8:56:F0:49:5C:84:90:D5:12:4E:8C:FB:AF:08:D7:0D:FB:17
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XfnoVvBJXISQ1RJOjPuvCNcN-xc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/95/13dc38-2e75-4b07-bef0-e1ea453c5257/1/XfnoVvBJXISQ1RJOjPuvCNcN-xc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/95/13dc38-2e75-4b07-bef0-e1ea453c5257/1/XfnoVvBJXISQ1RJOjPuvCNcN-xc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
54:99:60:33:61:8f:d7:45:be:b0:58:81:43:f3:43:01:c5:ad:
f2:87:e5:8c:77:4d:e9:ea:99:cc:07:3e:e6:9b:36:3b:95:9a:
c2:9a:f7:ec:8b:65:e3:73:34:d9:54:c2:85:6c:5d:c8:76:1f:
0b:fd:10:b6:94:66:51:f8:a3:42:41:12:69:4a:36:f4:21:3b:
55:0c:69:5d:0a:6a:57:eb:ba:41:e7:26:de:66:ad:62:3a:95:
5a:51:46:2e:87:6f:ac:bb:74:3f:b0:a9:a4:b9:a2:ca:1a:2b:
b3:3d:42:74:a0:24:25:a0:0c:c6:56:fb:6e:8f:cf:ca:c1:30:
39:5c:71:6d:7c:ce:4d:c6:3c:27:5d:54:94:86:81:56:6c:72:
b1:6b:4f:a7:58:b3:4c:42:bb:39:ae:b7:16:59:79:4b:0a:52:
1d:b5:b7:0c:ee:50:44:fc:de:46:48:f5:f7:07:9c:d7:3e:25:
5a:fc:c7:72:f8:ec:22:5b:a9:a3:80:d6:65:a2:71:31:84:32:
51:61:9a:3f:3c:17:a2:cf:f7:4f:e6:03:c0:9b:fa:95:34:98:
3d:61:3d:84:32:9e:c1:07:ab:51:33:92:16:58:ab:b8:ad:26:
b6:61:00:aa:0c:f0:b5:78:3c:54:8e:fd:63:5b:0e:9e:c0:46:
dc:e9:33:4f
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZk1AIkhLd0ZNohHJ7PsGjKWMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDVkZjllODU2ZjA0OTVjODQ5MGQ1MTI0ZThjZmJhZjA4ZDcw
ZGZiMTcwHhcNMjUwOTEwMTkwMDUxWhcNMjUwOTExMTkwMDUxWjAzMTEwLwYDVQQD
Eyg5MmNlZmQ2NjRhZjg1OTE1MGQzZGM3ZWFkODFkZWRhNzFjNTUyMWRjMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA/CBCMJJj+CKMuFay+CFh7cxHyXLm
v3yA68zoJoyXYpuOfBtiJMH1YsMlbjpap6z3pronz+ovjOaOxgzBNKmMX4kVtGt8
91tR+Hoi7Lq9UVSdjTlFXLCyWXuuqtgrpiLhb3lzCnh7XmwJRhfsYjCxE+JVkWY+
SxJfaD9axMUne093+pqkniBQTASY9tZb1niwVoXAdPOJYoRpYfy5Stc5LoNqkFp3
qS4pAVjvCdvmz0pKj6DQX/rLYoDVdgk15Z2E6+lAIxFq1IQiHR760s8Q9sVnvl+M
xpof1Rm3FrRdbPI0mrbQ6li37xCpdln+Yyyg++1SXNVZajYMmJvK3QT67wIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFJLO/WZK+FkVDT3H6tgd7accVSHcMB8GA1UdIwQY
MBaAFF356FbwSVyEkNUSToz7rwjXDfsXMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvWGZub1Z2QkpYSVNRMVJKT2pQdXZDTmNOLXhjLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC85NS8xM2RjMzgtMmU3NS00YjA3LWJlZjAt
ZTFlYTQ1M2M1MjU3LzEvWGZub1Z2QkpYSVNRMVJKT2pQdXZDTmNOLXhjLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC85NS8xM2RjMzgtMmU3NS00YjA3LWJlZjAtZTFlYTQ1M2M1MjU3
LzEvWGZub1Z2QkpYSVNRMVJKT2pQdXZDTmNOLXhjLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAVJlgM2GP
10W+sFiBQ/NDAcWt8ofljHdN6eqZzAc+5ps2O5Wawpr37Itl43M02VTChWxdyHYf
C/0QtpRmUfijQkESaUo29CE7VQxpXQpqV+u6Qecm3matYjqVWlFGLodvrLt0P7Cp
pLmiyhorsz1CdKAkJaAMxlb7bo/PysEwOVxxbXzOTcY8J11UlIaBVmxysWtPp1iz
TEK7Oa63Fll5SwpSHbW3DO5QRPzeRkj19wec1z4lWvzHcvjsIlupo4DWZaJxMYQy
UWGaPzwXos/3T+YDwJv6lTSYPWE9hDKewQerUTOSFliruK0mtmEAqgzwtXg8VI79
Y1sOnsBG3OkzTw==
-----END CERTIFICATE-----
Generated at Thu Sep 11 01:43:03 2025 by rpki-client