Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f7/ed5d3a-b869-4cda-9d32-250e55b9d4a9/1/xDx0Aiy78LPP_2Ax1tLeA2nJnk4.mft
File: xDx0Aiy78LPP_2Ax1tLeA2nJnk4.mft (raw, json)
Hash identifier: kHP+0jiopPowGgBdw1gYqRZBBODS8lJ1I6ulSRK8tKk=
Subject key identifier: D1:59:BD:C6:30:6D:1F:1F:74:E7:78:88:FE:17:BB:A1:E9:72:CE:D2
Authority key identifier: C4:3C:74:02:2C:BB:F0:B3:CF:FF:60:31:D6:D2:DE:03:69:C9:9E:4E
Certificate issuer: /CN=c43c74022cbbf0b3cfff6031d6d2de0369c99e4e
Certificate serial: 01992F356025F9D1E1C67D8C14912AE1C411
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xDx0Aiy78LPP_2Ax1tLeA2nJnk4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f7/ed5d3a-b869-4cda-9d32-250e55b9d4a9/1/xDx0Aiy78LPP_2Ax1tLeA2nJnk4.mft
Manifest number: 0816
Signing time: Tue 09 Sep 2025 16:00:51 +0000
Manifest this update: Tue 09 Sep 2025 16:00:51 +0000
Manifest next update: Wed 10 Sep 2025 16:00:51 +0000
Files and hashes: 1: ZYhttRWwRR-QF8jloAZFKuhooqE.roa (hash: eO0V42mhSgtEZOqn/NTkR+4pbvAmlZ4nSZ0JyynFqN4=)
2: xDx0Aiy78LPP_2Ax1tLeA2nJnk4.crl (hash: NAos5O3l1GhYIWhwNNHSCgnT6sZc7e8Rc8+bj4fbS7k=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f7/ed5d3a-b869-4cda-9d32-250e55b9d4a9/1/xDx0Aiy78LPP_2Ax1tLeA2nJnk4.crl
rsync://rpki.ripe.net/repository/DEFAULT/f7/ed5d3a-b869-4cda-9d32-250e55b9d4a9/1/xDx0Aiy78LPP_2Ax1tLeA2nJnk4.mft
rsync://rpki.ripe.net/repository/DEFAULT/xDx0Aiy78LPP_2Ax1tLeA2nJnk4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 10 Sep 2025 08:00:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:2f:35:60:25:f9:d1:e1:c6:7d:8c:14:91:2a:e1:c4:11
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c43c74022cbbf0b3cfff6031d6d2de0369c99e4e
Validity
Not Before: Sep 9 16:00:51 2025 GMT
Not After : Sep 10 16:00:51 2025 GMT
Subject: CN=d159bdc6306d1f1f74e77888fe17bba1e972ced2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:99:5a:34:d4:24:ec:2a:ac:b0:09:9e:48:e2:66:
d4:c7:9f:e2:9e:16:0b:c0:cd:96:4f:31:5a:d9:7d:
76:0b:7c:8d:48:00:77:81:1b:31:95:85:41:bd:ae:
b8:53:5d:20:30:2e:19:2c:d4:bb:5b:20:90:48:af:
0b:74:c5:7e:38:a4:99:1b:b0:78:f9:6b:dc:d7:bc:
1a:9b:d7:ec:d5:da:43:ae:22:8a:f0:ff:07:e2:54:
16:1b:f5:9c:a6:49:04:37:5f:00:96:db:1f:9f:88:
b7:b8:85:02:a5:22:bd:99:29:ef:ed:80:ed:84:d1:
15:20:be:95:7c:ab:eb:0d:a0:db:2f:d1:9d:ec:f9:
54:cb:21:22:47:ab:71:bb:34:a1:20:2c:06:4c:77:
d8:9e:6b:b7:55:61:64:fa:2c:e3:68:eb:a5:00:8b:
4d:02:26:99:c5:d5:c2:c7:2a:40:c5:5f:08:78:d4:
a9:75:25:94:72:c5:0e:b7:ce:23:c3:48:67:f6:16:
28:5c:34:b2:2a:11:7f:17:a4:4b:e6:8e:f5:f4:a5:
4b:01:72:13:96:fd:ca:eb:b2:e9:77:49:3b:09:56:
c2:32:65:8d:c3:d9:13:36:ab:2e:ac:7f:03:26:e0:
5e:04:c7:07:5d:5d:4e:92:e7:dc:7e:56:5a:7f:e1:
8f:87
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D1:59:BD:C6:30:6D:1F:1F:74:E7:78:88:FE:17:BB:A1:E9:72:CE:D2
X509v3 Authority Key Identifier:
keyid:C4:3C:74:02:2C:BB:F0:B3:CF:FF:60:31:D6:D2:DE:03:69:C9:9E:4E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xDx0Aiy78LPP_2Ax1tLeA2nJnk4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f7/ed5d3a-b869-4cda-9d32-250e55b9d4a9/1/xDx0Aiy78LPP_2Ax1tLeA2nJnk4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f7/ed5d3a-b869-4cda-9d32-250e55b9d4a9/1/xDx0Aiy78LPP_2Ax1tLeA2nJnk4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
49:7b:af:2a:9c:58:cb:f4:2c:14:71:da:71:b1:f2:a3:24:50:
34:41:0c:3e:df:04:ce:76:98:18:4b:16:ce:2e:11:6e:cc:b5:
81:72:5a:b2:8f:e7:be:f6:91:d9:4b:e9:fa:9f:4a:a9:4d:77:
65:db:7f:73:f5:2b:09:6a:06:4e:0b:b6:a1:29:71:a4:8f:be:
57:d8:3a:a7:4b:52:3d:78:30:35:f3:e9:8e:fb:52:a0:db:2d:
67:ce:52:20:55:61:a3:9c:0f:1e:09:19:78:0f:96:ee:75:fe:
8a:d1:c5:3b:d1:bb:8d:b5:6f:a0:fc:da:df:db:47:b7:96:98:
e9:5b:7b:15:d2:77:bc:2d:24:7d:77:4a:28:32:eb:11:e6:b4:
19:15:88:b2:08:22:76:5a:14:c9:29:4f:34:9c:30:b9:26:1c:
08:a8:75:b1:8f:42:f1:3e:71:3e:af:16:03:0d:9b:ec:c5:6a:
1e:e8:0b:bf:84:28:81:5b:29:c4:76:8b:c6:af:63:b6:f5:4b:
47:cd:e5:12:b9:07:22:61:c1:7f:c2:c4:6f:54:a1:cf:cf:45:
4e:81:6e:e3:5d:f5:15:6b:5c:3f:fb:e3:22:14:71:f3:9b:70:
20:6f:dd:d9:1f:12:9f:9b:32:98:d4:1f:7a:0a:cb:3c:a2:af:
d4:c8:0b:27
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZkvNWAl+dHhxn2MFJEq4cQRMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGM0M2M3NDAyMmNiYmYwYjNjZmZmNjAzMWQ2ZDJkZTAzNjlj
OTllNGUwHhcNMjUwOTA5MTYwMDUxWhcNMjUwOTEwMTYwMDUxWjAzMTEwLwYDVQQD
EyhkMTU5YmRjNjMwNmQxZjFmNzRlNzc4ODhmZTE3YmJhMWU5NzJjZWQyMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAmVo01CTsKqywCZ5I4mbUx5/inhYL
wM2WTzFa2X12C3yNSAB3gRsxlYVBva64U10gMC4ZLNS7WyCQSK8LdMV+OKSZG7B4
+Wvc17wam9fs1dpDriKK8P8H4lQWG/WcpkkEN18Altsfn4i3uIUCpSK9mSnv7YDt
hNEVIL6VfKvrDaDbL9Gd7PlUyyEiR6txuzShICwGTHfYnmu3VWFk+izjaOulAItN
AiaZxdXCxypAxV8IeNSpdSWUcsUOt84jw0hn9hYoXDSyKhF/F6RL5o719KVLAXIT
lv3K67Lpd0k7CVbCMmWNw9kTNqsurH8DJuBeBMcHXV1OkufcflZaf+GPhwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFNFZvcYwbR8fdOd4iP4Xu6Hpcs7SMB8GA1UdIwQY
MBaAFMQ8dAIsu/Czz/9gMdbS3gNpyZ5OMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQveER4MEFpeTc4TFBQXzJBeDF0TGVBMm5Kbms0LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mNy9lZDVkM2EtYjg2OS00Y2RhLTlkMzIt
MjUwZTU1YjlkNGE5LzEveER4MEFpeTc4TFBQXzJBeDF0TGVBMm5Kbms0Lm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9mNy9lZDVkM2EtYjg2OS00Y2RhLTlkMzItMjUwZTU1YjlkNGE5
LzEveER4MEFpeTc4TFBQXzJBeDF0TGVBMm5Kbms0LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEASXuvKpxY
y/QsFHHacbHyoyRQNEEMPt8EznaYGEsWzi4Rbsy1gXJaso/nvvaR2Uvp+p9KqU13
Zdt/c/UrCWoGTgu2oSlxpI++V9g6p0tSPXgwNfPpjvtSoNstZ85SIFVho5wPHgkZ
eA+W7nX+itHFO9G7jbVvoPza39tHt5aY6Vt7FdJ3vC0kfXdKKDLrEea0GRWIsggi
dloUySlPNJwwuSYcCKh1sY9C8T5xPq8WAw2b7MVqHugLv4QogVspxHaLxq9jtvVL
R83lErkHImHBf8LEb1Shz89FToFu4131FWtcP/vjIhRx85twIG/d2R8Sn5symNQf
egrLPKKv1MgLJw==
-----END CERTIFICATE-----
Generated at Tue Sep 9 18:09:56 2025 by rpki-client