Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f5/3804c2-0e44-4be3-9037-4617ca376083/1/xT8K2ur7QMdyRZ6Tk1T2vkU_FY8.mft
File: xT8K2ur7QMdyRZ6Tk1T2vkU_FY8.mft (raw, json)
Hash identifier: nbqBMOaU7s6q9dTxld0dWhg37T+CvOqZsC7t2nBGUoU=
Subject key identifier: F3:92:EE:5D:97:E8:D6:BF:42:91:9B:E0:B9:F8:40:E7:24:FD:2F:CB
Authority key identifier: C5:3F:0A:DA:EA:FB:40:C7:72:45:9E:93:93:54:F6:BE:45:3F:15:8F
Certificate issuer: /CN=c53f0adaeafb40c772459e939354f6be453f158f
Certificate serial: 019A714A10865E8CBCF987EC06FAB66E7D41
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xT8K2ur7QMdyRZ6Tk1T2vkU_FY8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f5/3804c2-0e44-4be3-9037-4617ca376083/1/xT8K2ur7QMdyRZ6Tk1T2vkU_FY8.mft
Manifest number: 0332
Signing time: Tue 11 Nov 2025 05:01:10 +0000
Manifest this update: Tue 11 Nov 2025 05:01:10 +0000
Manifest next update: Wed 12 Nov 2025 05:01:10 +0000
Files and hashes: 1: duv4en-kEZVnVXOXNGPZW_Jyrcw.roa (hash: /NQGSNT25LxwGXN6iIBj1hB3qklD/ePBBcZOp63AVyY=)
2: vCCb_HMH6KGFfsqbXQ0TIng1tfU.roa (hash: Twx8fVXaunI4+UsiQLUlLfwUCYQ1G7itZPYouG+NOxY=)
3: xT8K2ur7QMdyRZ6Tk1T2vkU_FY8.crl (hash: ynVmNclRCiozmHvftFB9ej5zOsiyozgEBtZz7LTgY50=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f5/3804c2-0e44-4be3-9037-4617ca376083/1/xT8K2ur7QMdyRZ6Tk1T2vkU_FY8.crl
rsync://rpki.ripe.net/repository/DEFAULT/f5/3804c2-0e44-4be3-9037-4617ca376083/1/xT8K2ur7QMdyRZ6Tk1T2vkU_FY8.mft
rsync://rpki.ripe.net/repository/DEFAULT/xT8K2ur7QMdyRZ6Tk1T2vkU_FY8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 12 Nov 2025 05:01:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:71:4a:10:86:5e:8c:bc:f9:87:ec:06:fa:b6:6e:7d:41
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c53f0adaeafb40c772459e939354f6be453f158f
Validity
Not Before: Nov 11 05:01:10 2025 GMT
Not After : Nov 12 05:01:10 2025 GMT
Subject: CN=f392ee5d97e8d6bf42919be0b9f840e724fd2fcb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:f6:ca:d4:95:80:7c:10:76:0e:8c:32:03:5d:
7a:b1:57:09:c2:ba:fe:51:9a:50:df:98:c0:b4:0c:
00:43:a8:b2:5c:b4:fa:55:cd:c8:b3:35:c7:0b:7b:
cd:13:c3:bc:32:91:19:93:2d:c6:e5:4b:18:25:87:
65:68:97:30:41:44:49:24:3f:55:57:2b:7b:78:a7:
0e:ce:bc:f5:63:78:11:24:c0:f5:60:f2:e1:af:8c:
c3:3e:87:d8:2e:f3:33:54:1d:70:10:02:e7:2e:1e:
78:ed:2a:32:64:2a:6f:57:ea:2f:9b:d3:d0:dc:39:
14:41:de:dc:8c:f9:b6:c7:4f:30:92:34:c2:61:0b:
0b:f5:89:b3:6d:49:99:bd:ca:18:c7:3f:64:b1:cd:
aa:be:78:07:b8:c7:36:d1:90:cb:fb:10:ee:b0:7e:
ba:7f:5f:f3:0c:e4:39:0a:01:b9:c7:08:25:1a:94:
8f:56:e6:94:c0:3f:00:2e:77:83:da:e5:75:9c:a1:
e4:e4:4a:0d:c8:d2:6c:94:d4:e7:93:0a:4e:62:38:
54:55:a1:a0:c8:8d:7b:73:12:41:1f:42:85:a2:3d:
14:36:87:c7:85:17:6d:d0:83:3f:87:2d:af:e8:73:
9a:48:e4:9e:eb:b8:ab:81:93:0e:03:86:e1:13:7b:
19:a7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F3:92:EE:5D:97:E8:D6:BF:42:91:9B:E0:B9:F8:40:E7:24:FD:2F:CB
X509v3 Authority Key Identifier:
keyid:C5:3F:0A:DA:EA:FB:40:C7:72:45:9E:93:93:54:F6:BE:45:3F:15:8F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xT8K2ur7QMdyRZ6Tk1T2vkU_FY8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f5/3804c2-0e44-4be3-9037-4617ca376083/1/xT8K2ur7QMdyRZ6Tk1T2vkU_FY8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f5/3804c2-0e44-4be3-9037-4617ca376083/1/xT8K2ur7QMdyRZ6Tk1T2vkU_FY8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
74:17:97:cb:16:10:1c:4a:39:a9:e1:23:54:6c:7f:dd:5d:bb:
05:e8:d7:4f:a7:68:f0:5a:a0:5b:1c:a3:a0:f9:46:7b:fc:eb:
4a:a4:d6:f2:05:a7:de:92:72:17:be:56:48:8c:3c:17:da:ef:
f6:b8:67:3d:b2:1c:b8:67:5f:51:9c:75:01:9e:be:53:ef:b8:
7d:d7:e9:01:a5:fc:d4:64:06:22:46:71:20:50:85:04:36:fa:
0b:1c:6a:9c:7e:60:f4:5a:04:67:27:43:6a:b4:92:07:c6:dd:
a6:3c:d3:41:ff:3e:52:13:91:5f:ed:56:04:76:3f:40:e3:14:
a2:e5:1f:c8:25:88:7c:d5:77:c7:0e:fb:a2:6d:1c:e7:8a:ac:
9b:7d:8d:a6:b5:85:2c:d8:14:5e:ca:c4:0d:0c:07:c8:ab:b9:
67:45:72:3c:bc:00:aa:19:01:76:9d:63:1e:7a:ce:de:86:e5:
08:0b:63:ad:ed:b4:8a:c2:8f:0c:4b:83:83:26:f6:4a:3e:bc:
65:a4:fe:0e:e2:fd:02:9e:21:02:27:f3:73:38:3b:a5:fc:f7:
a2:63:4b:45:28:98:cf:94:91:3b:f8:d6:b9:a5:64:f2:c4:5f:
23:37:c6:42:88:ce:48:57:3e:94:6a:d5:b9:83:fb:64:3c:88:
e2:e4:05:66
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZpxShCGXoy8+YfsBvq2bn1BMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGM1M2YwYWRhZWFmYjQwYzc3MjQ1OWU5MzkzNTRmNmJlNDUz
ZjE1OGYwHhcNMjUxMTExMDUwMTEwWhcNMjUxMTEyMDUwMTEwWjAzMTEwLwYDVQQD
EyhmMzkyZWU1ZDk3ZThkNmJmNDI5MTliZTBiOWY4NDBlNzI0ZmQyZmNiMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwvbK1JWAfBB2DowyA116sVcJwrr+
UZpQ35jAtAwAQ6iyXLT6Vc3IszXHC3vNE8O8MpEZky3G5UsYJYdlaJcwQURJJD9V
Vyt7eKcOzrz1Y3gRJMD1YPLhr4zDPofYLvMzVB1wEALnLh547SoyZCpvV+ovm9PQ
3DkUQd7cjPm2x08wkjTCYQsL9YmzbUmZvcoYxz9ksc2qvngHuMc20ZDL+xDusH66
f1/zDOQ5CgG5xwglGpSPVuaUwD8ALneD2uV1nKHk5EoNyNJslNTnkwpOYjhUVaGg
yI17cxJBH0KFoj0UNofHhRdt0IM/hy2v6HOaSOSe67irgZMOA4bhE3sZpwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFPOS7l2X6Na/QpGb4Ln4QOck/S/LMB8GA1UdIwQY
MBaAFMU/Ctrq+0DHckWek5NU9r5FPxWPMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQveFQ4SzJ1cjdRTWR5Ulo2VGsxVDJ2a1VfRlk4LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mNS8zODA0YzItMGU0NC00YmUzLTkwMzct
NDYxN2NhMzc2MDgzLzEveFQ4SzJ1cjdRTWR5Ulo2VGsxVDJ2a1VfRlk4Lm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9mNS8zODA0YzItMGU0NC00YmUzLTkwMzctNDYxN2NhMzc2MDgz
LzEveFQ4SzJ1cjdRTWR5Ulo2VGsxVDJ2a1VfRlk4LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAdBeXyxYQ
HEo5qeEjVGx/3V27BejXT6do8FqgWxyjoPlGe/zrSqTW8gWn3pJyF75WSIw8F9rv
9rhnPbIcuGdfUZx1AZ6+U++4fdfpAaX81GQGIkZxIFCFBDb6CxxqnH5g9FoEZydD
arSSB8bdpjzTQf8+UhORX+1WBHY/QOMUouUfyCWIfNV3xw77om0c54qsm32NprWF
LNgUXsrEDQwHyKu5Z0VyPLwAqhkBdp1jHnrO3oblCAtjre20isKPDEuDgyb2Sj68
ZaT+DuL9Ap4hAifzczg7pfz3omNLRSiYz5SRO/jWuaVk8sRfIzfGQojOSFc+lGrV
uYP7ZDyI4uQFZg==
-----END CERTIFICATE-----
Generated at Tue Nov 11 11:35:05 2025 by rpki-client