Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9f/02bdf0-bf29-4dae-b19b-86a5518e2d52/1/Xd5LO4LyCbcBrjQM9TuXQHjxap8.mft
File: Xd5LO4LyCbcBrjQM9TuXQHjxap8.mft (raw, json)
Hash identifier: NertgjftV45H97CSgb4JclzJyPXE2YX+tFdtjJmKK5U=
Subject key identifier: 35:D7:13:B8:FF:C9:4C:F5:16:9A:3E:F8:FD:AD:07:EA:9E:D5:4A:3B
Authority key identifier: 5D:DE:4B:3B:82:F2:09:B7:01:AE:34:0C:F5:3B:97:40:78:F1:6A:9F
Certificate issuer: /CN=5dde4b3b82f209b701ae340cf53b974078f16a9f
Certificate serial: 019929A1008B94128B9029994DC5EA4C6BE8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Xd5LO4LyCbcBrjQM9TuXQHjxap8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9f/02bdf0-bf29-4dae-b19b-86a5518e2d52/1/Xd5LO4LyCbcBrjQM9TuXQHjxap8.mft
Manifest number: 1688
Signing time: Mon 08 Sep 2025 14:00:41 +0000
Manifest this update: Mon 08 Sep 2025 14:00:41 +0000
Manifest next update: Tue 09 Sep 2025 14:00:41 +0000
Files and hashes: 1: 4SxEa8qHfL0SdS-yvynVjEWywI0.roa (hash: ed273NQ5dggxiwmHaUzsS7LYiMx/0KEG21fx026Qijc=)
2: 57zAUxjN80d98_hrUg6wNGuh-LQ.roa (hash: qIcET8+9I+XlvyugPkuqmk4yArAibC2n8LmahOzKwL0=)
3: D8TVIpbhKokDS9trBBqJHsFT1UQ.roa (hash: buVD8eTr7vS6C640rVcFTDAjpCVFYAxsjVTpolrqfNA=)
4: V-G5n9JBF2fuQBXkHR943IM1SJk.roa (hash: PktwOhATCRnu/fMCAW8Roob3cNUQ8DCkE9sG1tOGfQ0=)
5: Xd5LO4LyCbcBrjQM9TuXQHjxap8.crl (hash: nNmq36DL4YHx6cqqwoPM5oNWIKXSfXJP1wJn56gy1wk=)
6: rnTaQ1uEKUsJsa3f9-uniTuwHWo.roa (hash: 65NB0UfxYYmSvSLb5gS9zELjlvrzXWC3McdcTIR7Hxk=)
7: tIc5dJ9row9Jpwnimlce4tYbp44.roa (hash: ouwAo45RW/R/dO1EFuBCaboweb6Z3RjFTDf5e9DgnQU=)
8: xv_S9Q_lixnhLdeB2FeY6-83q40.roa (hash: fpHqpuP8WhUb/qgqx71BT4D9l/LEKw+tKbvv5QvJ1WU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/9f/02bdf0-bf29-4dae-b19b-86a5518e2d52/1/Xd5LO4LyCbcBrjQM9TuXQHjxap8.crl
rsync://rpki.ripe.net/repository/DEFAULT/9f/02bdf0-bf29-4dae-b19b-86a5518e2d52/1/Xd5LO4LyCbcBrjQM9TuXQHjxap8.mft
rsync://rpki.ripe.net/repository/DEFAULT/Xd5LO4LyCbcBrjQM9TuXQHjxap8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 09 Sep 2025 14:00:41 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:29:a1:00:8b:94:12:8b:90:29:99:4d:c5:ea:4c:6b:e8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5dde4b3b82f209b701ae340cf53b974078f16a9f
Validity
Not Before: Sep 8 14:00:41 2025 GMT
Not After : Sep 9 14:00:41 2025 GMT
Subject: CN=35d713b8ffc94cf5169a3ef8fdad07ea9ed54a3b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:db:6b:29:1e:05:3e:19:b5:e2:2d:a8:ac:89:
fc:2b:25:e3:d7:91:e6:f2:89:5c:83:e9:78:4e:1e:
26:df:1f:1c:d8:86:1b:c6:cf:8e:2b:be:72:74:95:
4a:a7:f2:75:5a:76:76:32:65:0e:06:15:ca:d9:13:
d1:51:c4:77:dc:08:d9:49:d7:b5:a2:ba:1d:8d:01:
42:93:59:25:24:57:67:33:7a:3a:dd:a7:47:0a:47:
6f:96:19:50:e7:aa:a1:92:e4:b5:a1:e3:7f:91:2b:
2a:88:e3:61:ec:d5:21:36:94:60:fa:d2:f5:13:31:
6d:56:56:52:97:32:16:47:1c:e5:cf:5b:76:9b:8c:
3f:fa:5c:48:ba:b6:92:12:03:8f:89:9f:e4:85:b5:
4e:6d:34:4a:d1:b4:30:76:99:00:3d:68:db:9f:30:
6e:3e:56:64:a0:34:d7:9f:44:be:f5:73:5b:e0:08:
93:be:2f:62:a7:f0:39:68:b4:c9:1b:7a:30:22:60:
4d:75:f9:2b:b7:9b:e5:95:e0:f7:0d:70:82:11:42:
75:d7:9b:42:83:3a:5b:16:bc:fb:7b:c4:c6:67:94:
59:a5:f5:87:d1:ad:40:ee:ab:84:45:56:a8:0e:18:
79:67:a2:db:db:3e:64:03:46:eb:f6:46:93:42:08:
08:77
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
35:D7:13:B8:FF:C9:4C:F5:16:9A:3E:F8:FD:AD:07:EA:9E:D5:4A:3B
X509v3 Authority Key Identifier:
keyid:5D:DE:4B:3B:82:F2:09:B7:01:AE:34:0C:F5:3B:97:40:78:F1:6A:9F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Xd5LO4LyCbcBrjQM9TuXQHjxap8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9f/02bdf0-bf29-4dae-b19b-86a5518e2d52/1/Xd5LO4LyCbcBrjQM9TuXQHjxap8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9f/02bdf0-bf29-4dae-b19b-86a5518e2d52/1/Xd5LO4LyCbcBrjQM9TuXQHjxap8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
54:35:a3:e8:eb:c3:90:2b:54:ba:c7:e8:4d:4c:ac:81:11:ec:
05:3c:01:c2:19:5e:03:80:8d:e6:6a:9e:f1:2f:f7:6b:32:39:
72:d0:6b:e0:73:49:b2:70:d1:37:be:f9:b1:82:d6:c9:19:e0:
3c:00:94:3f:25:d2:d8:a3:34:bb:24:28:bb:c6:84:3f:b3:60:
98:ba:da:da:89:9f:a4:99:86:67:b0:ea:37:c1:25:30:da:9e:
6c:07:ec:ef:67:85:40:42:44:98:e4:da:60:97:e8:0f:e6:86:
1b:71:5d:11:d1:b0:36:07:d5:1e:1f:9e:ae:c6:43:87:94:ac:
82:fe:cb:bf:00:e1:09:83:1d:ef:00:0c:a7:6b:58:9f:5f:17:
f5:3b:cf:22:e9:8b:1a:04:b1:a6:f9:dd:56:2b:b4:8f:38:8a:
24:7f:ee:30:ba:18:53:21:fc:b3:ff:ca:86:46:46:8c:ce:f0:
f6:cf:a1:82:fa:26:95:61:69:45:4f:88:30:bc:75:81:dd:a6:
90:2a:9f:cc:29:8d:da:49:04:0b:d2:ab:1c:8d:50:71:87:f6:
78:3c:21:a8:c4:75:b4:7f:d5:7a:f5:f6:e1:15:4e:60:03:d3:
73:9f:96:f1:02:13:a1:f7:ec:cd:c7:99:9b:a3:aa:85:92:b0:
73:87:fa:d4
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZkpoQCLlBKLkCmZTcXqTGvoMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDVkZGU0YjNiODJmMjA5YjcwMWFlMzQwY2Y1M2I5NzQwNzhm
MTZhOWYwHhcNMjUwOTA4MTQwMDQxWhcNMjUwOTA5MTQwMDQxWjAzMTEwLwYDVQQD
EygzNWQ3MTNiOGZmYzk0Y2Y1MTY5YTNlZjhmZGFkMDdlYTllZDU0YTNiMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAn9trKR4FPhm14i2orIn8KyXj15Hm
8olcg+l4Th4m3x8c2IYbxs+OK75ydJVKp/J1WnZ2MmUOBhXK2RPRUcR33AjZSde1
orodjQFCk1klJFdnM3o63adHCkdvlhlQ56qhkuS1oeN/kSsqiONh7NUhNpRg+tL1
EzFtVlZSlzIWRxzlz1t2m4w/+lxIuraSEgOPiZ/khbVObTRK0bQwdpkAPWjbnzBu
PlZkoDTXn0S+9XNb4AiTvi9ip/A5aLTJG3owImBNdfkrt5vlleD3DXCCEUJ115tC
gzpbFrz7e8TGZ5RZpfWH0a1A7quERVaoDhh5Z6Lb2z5kA0br9kaTQggIdwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFDXXE7j/yUz1Fpo++P2tB+qe1Uo7MB8GA1UdIwQY
MBaAFF3eSzuC8gm3Aa40DPU7l0B48WqfMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvWGQ1TE80THlDYmNCcmpRTTlUdVhRSGp4YXA4LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC85Zi8wMmJkZjAtYmYyOS00ZGFlLWIxOWIt
ODZhNTUxOGUyZDUyLzEvWGQ1TE80THlDYmNCcmpRTTlUdVhRSGp4YXA4Lm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC85Zi8wMmJkZjAtYmYyOS00ZGFlLWIxOWItODZhNTUxOGUyZDUy
LzEvWGQ1TE80THlDYmNCcmpRTTlUdVhRSGp4YXA4LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAVDWj6OvD
kCtUusfoTUysgRHsBTwBwhleA4CN5mqe8S/3azI5ctBr4HNJsnDRN775sYLWyRng
PACUPyXS2KM0uyQou8aEP7NgmLra2omfpJmGZ7DqN8ElMNqebAfs72eFQEJEmOTa
YJfoD+aGG3FdEdGwNgfVHh+ersZDh5Ssgv7LvwDhCYMd7wAMp2tYn18X9TvPIumL
GgSxpvndViu0jziKJH/uMLoYUyH8s//KhkZGjM7w9s+hgvomlWFpRU+IMLx1gd2m
kCqfzCmN2kkEC9KrHI1QcYf2eDwhqMR1tH/VevX24RVOYAPTc5+W8QIToffszceZ
m6OqhZKwc4f61A==
-----END CERTIFICATE-----
Generated at Mon Sep 8 20:55:55 2025 by rpki-client