Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/37/056677-1a4a-48a6-a92d-6b3b867bd232/1/xjvnU3RnjbOgSfaj7yr6tw1Pbyc.mft
File: xjvnU3RnjbOgSfaj7yr6tw1Pbyc.mft (raw, json)
Hash identifier: 0yhbEdFcMZ243VQGBtB88l9xtrEFGNwnEpBsqUPEf0Y=
Subject key identifier: 35:5C:EC:B6:AE:48:B1:01:CC:C9:63:12:0A:D3:33:DA:57:91:CE:51
Authority key identifier: C6:3B:E7:53:74:67:8D:B3:A0:49:F6:A3:EF:2A:FA:B7:0D:4F:6F:27
Certificate issuer: /CN=c63be75374678db3a049f6a3ef2afab70d4f6f27
Certificate serial: 0199FCC6217F645E8D3E0E9DC824571F8C02
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xjvnU3RnjbOgSfaj7yr6tw1Pbyc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/37/056677-1a4a-48a6-a92d-6b3b867bd232/1/xjvnU3RnjbOgSfaj7yr6tw1Pbyc.mft
Manifest number: 064E
Signing time: Sun 19 Oct 2025 14:01:07 +0000
Manifest this update: Sun 19 Oct 2025 14:01:07 +0000
Manifest next update: Mon 20 Oct 2025 14:01:07 +0000
Files and hashes: 1: e-ekxZnIJuci57HrEPz7zGue28s.roa (hash: 8H4l0N/E0NCOJoBHvZIBH7Jz+P9G/e+mdO0E4zzVLoo=)
2: xjvnU3RnjbOgSfaj7yr6tw1Pbyc.crl (hash: wsXWsFkpF0Bf/qji+06+bZuqTxGOZc7/RlAwZXMoGGQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/37/056677-1a4a-48a6-a92d-6b3b867bd232/1/xjvnU3RnjbOgSfaj7yr6tw1Pbyc.crl
rsync://rpki.ripe.net/repository/DEFAULT/37/056677-1a4a-48a6-a92d-6b3b867bd232/1/xjvnU3RnjbOgSfaj7yr6tw1Pbyc.mft
rsync://rpki.ripe.net/repository/DEFAULT/xjvnU3RnjbOgSfaj7yr6tw1Pbyc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 11:18:59 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fc:c6:21:7f:64:5e:8d:3e:0e:9d:c8:24:57:1f:8c:02
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c63be75374678db3a049f6a3ef2afab70d4f6f27
Validity
Not Before: Oct 19 14:01:07 2025 GMT
Not After : Oct 20 14:01:07 2025 GMT
Subject: CN=355cecb6ae48b101ccc963120ad333da5791ce51
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8f:f4:a2:e8:7f:89:0c:eb:0b:28:f4:bb:ca:35:
46:cc:1e:83:c5:b9:ba:02:9c:c1:f5:c3:65:20:b5:
e1:e8:77:63:68:b5:3a:a2:70:ce:3b:99:e4:aa:a4:
4e:7e:9c:a1:70:b4:81:c0:f8:7f:93:32:c2:b6:df:
b4:bd:31:03:53:e1:4b:0b:dc:6b:37:d6:0d:b4:e3:
3a:00:a4:a7:d3:57:56:6a:61:5c:8d:7a:7e:23:b1:
8b:76:f5:3e:e3:0c:06:07:ce:24:ce:a3:63:26:ac:
9a:9b:93:a8:d9:fe:16:45:ee:05:95:ec:a4:56:38:
38:79:d4:10:67:e6:98:ba:09:ac:01:d8:75:41:22:
da:66:e5:dd:7b:0e:38:90:c4:e7:2d:9e:80:1b:a4:
bb:31:17:fe:76:5f:b2:b3:83:c1:fc:55:4a:7b:a0:
14:ac:81:75:01:a2:82:46:47:e4:e4:85:f5:c6:a8:
7a:19:c3:69:fe:cd:a3:03:64:8d:4f:a6:1f:b5:fa:
3f:78:fb:31:35:14:60:62:e9:0a:77:57:70:e4:2c:
dc:d1:9d:77:06:33:ea:ec:54:18:08:85:da:4d:3a:
0d:d1:ad:33:cb:bb:22:9a:56:6c:9c:3a:ae:f6:e6:
b4:42:83:5b:f0:25:b4:fb:55:9b:9f:90:60:9f:c0:
1a:99
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
35:5C:EC:B6:AE:48:B1:01:CC:C9:63:12:0A:D3:33:DA:57:91:CE:51
X509v3 Authority Key Identifier:
keyid:C6:3B:E7:53:74:67:8D:B3:A0:49:F6:A3:EF:2A:FA:B7:0D:4F:6F:27
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xjvnU3RnjbOgSfaj7yr6tw1Pbyc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/37/056677-1a4a-48a6-a92d-6b3b867bd232/1/xjvnU3RnjbOgSfaj7yr6tw1Pbyc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/37/056677-1a4a-48a6-a92d-6b3b867bd232/1/xjvnU3RnjbOgSfaj7yr6tw1Pbyc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
58:bb:13:43:1f:04:f2:60:3a:f0:6e:49:61:b0:99:ff:a5:4a:
15:b0:7c:bf:23:ff:59:e5:71:03:ec:eb:f0:f4:d4:af:b5:d6:
c4:fa:05:70:08:be:71:26:7d:9b:f8:09:09:36:bc:28:99:22:
73:e6:36:fe:43:ef:32:ba:2a:2a:e0:0d:96:1f:b3:a7:ed:f7:
d2:80:23:1e:10:0a:01:d1:f1:cb:27:ee:89:e9:b2:0b:a2:f1:
28:8c:8d:40:60:ed:1b:8d:f3:dd:a9:44:b1:8c:21:d7:2a:8d:
3a:34:bf:93:55:58:55:38:48:4c:8f:b9:c4:2d:f3:f3:62:6d:
2b:50:87:24:7f:1a:8e:b8:e8:22:9f:b1:b7:29:68:0c:fe:44:
2e:7b:57:bc:7a:f1:45:09:42:74:81:23:02:9a:7d:7e:8d:21:
76:ef:5c:1b:d6:8f:c8:09:e2:58:25:dd:33:e5:e7:f5:25:01:
03:63:66:ee:6e:97:ad:47:54:29:52:97:bd:62:88:54:72:dd:
a7:1e:4b:cb:0c:e6:70:7f:bd:06:f6:a4:9b:b5:88:71:ae:2a:
62:2a:99:3b:d1:04:a5:7d:4b:01:71:a7:91:74:83:8f:04:b9:
6a:72:f9:77:c6:0b:76:02:70:1e:55:a5:d2:cf:04:47:4b:b9:
70:4b:3e:d0
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZn8xiF/ZF6NPg6dyCRXH4wCMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGM2M2JlNzUzNzQ2NzhkYjNhMDQ5ZjZhM2VmMmFmYWI3MGQ0
ZjZmMjcwHhcNMjUxMDE5MTQwMTA3WhcNMjUxMDIwMTQwMTA3WjAzMTEwLwYDVQQD
EygzNTVjZWNiNmFlNDhiMTAxY2NjOTYzMTIwYWQzMzNkYTU3OTFjZTUxMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAj/Si6H+JDOsLKPS7yjVGzB6Dxbm6
ApzB9cNlILXh6HdjaLU6onDOO5nkqqROfpyhcLSBwPh/kzLCtt+0vTEDU+FLC9xr
N9YNtOM6AKSn01dWamFcjXp+I7GLdvU+4wwGB84kzqNjJqyam5Oo2f4WRe4Fleyk
Vjg4edQQZ+aYugmsAdh1QSLaZuXdew44kMTnLZ6AG6S7MRf+dl+ys4PB/FVKe6AU
rIF1AaKCRkfk5IX1xqh6GcNp/s2jA2SNT6Yftfo/ePsxNRRgYukKd1dw5Czc0Z13
BjPq7FQYCIXaTToN0a0zy7simlZsnDqu9ua0QoNb8CW0+1Wbn5Bgn8AamQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFDVc7LauSLEBzMljEgrTM9pXkc5RMB8GA1UdIwQY
MBaAFMY751N0Z42zoEn2o+8q+rcNT28nMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQveGp2blUzUm5qYk9nU2Zhajd5cjZ0dzFQYnljLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zNy8wNTY2NzctMWE0YS00OGE2LWE5MmQt
NmIzYjg2N2JkMjMyLzEveGp2blUzUm5qYk9nU2Zhajd5cjZ0dzFQYnljLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8zNy8wNTY2NzctMWE0YS00OGE2LWE5MmQtNmIzYjg2N2JkMjMy
LzEveGp2blUzUm5qYk9nU2Zhajd5cjZ0dzFQYnljLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAWLsTQx8E
8mA68G5JYbCZ/6VKFbB8vyP/WeVxA+zr8PTUr7XWxPoFcAi+cSZ9m/gJCTa8KJki
c+Y2/kPvMroqKuANlh+zp+330oAjHhAKAdHxyyfuiemyC6LxKIyNQGDtG43z3alE
sYwh1yqNOjS/k1VYVThITI+5xC3z82JtK1CHJH8ajrjoIp+xtyloDP5ELntXvHrx
RQlCdIEjApp9fo0hdu9cG9aPyAniWCXdM+Xn9SUBA2Nm7m6XrUdUKVKXvWKIVHLd
px5LywzmcH+9Bvakm7WIca4qYiqZO9EEpX1LAXGnkXSDjwS5anL5d8YLdgJwHlWl
0s8ER0u5cEs+0A==
-----END CERTIFICATE-----
Generated at Sun Oct 19 20:49:53 2025 by rpki-client