Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4e/bb861d-330f-4a97-9f9c-66c53f2b1f02/1/XYqf18UZJuIuqKozs7iDjpPovt0.mft
File: XYqf18UZJuIuqKozs7iDjpPovt0.mft (raw, json)
Hash identifier: 3bQ5b3xFTL4ZI7q/FefGoXqWUgrl2FXhoZNJ72IT4zs=
Subject key identifier: 55:9A:9F:9F:19:7B:29:14:5E:52:B2:03:83:CC:4D:D5:5A:4A:C8:C5
Authority key identifier: 5D:8A:9F:D7:C5:19:26:E2:2E:A8:AA:33:B3:B8:83:8E:93:E8:BE:DD
Certificate issuer: /CN=5d8a9fd7c51926e22ea8aa33b3b8838e93e8bedd
Certificate serial: 0199FDDA4F7BAF1844E1B3DBCAFC0A16687D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XYqf18UZJuIuqKozs7iDjpPovt0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4e/bb861d-330f-4a97-9f9c-66c53f2b1f02/1/XYqf18UZJuIuqKozs7iDjpPovt0.mft
Manifest number: 16E5
Signing time: Sun 19 Oct 2025 19:02:46 +0000
Manifest this update: Sun 19 Oct 2025 19:02:46 +0000
Manifest next update: Mon 20 Oct 2025 19:02:46 +0000
Files and hashes: 1: 0RjgNRg0mrp-p0sUPcMzw9plAa8.roa (hash: /sIoNqXyJWt95PHx7AGb8pmEwy8qEaDKsd4+c9cdNhU=)
2: ByhvC5UK-f2zjyXJoOZ55QYyoFY.roa (hash: 7F3UrolhPGtbR/fySIsaZ7YzGq6FNxf2q9uu01GI6C0=)
3: DyR2WdJX7ABSVFzMG--Y2Rw480o.roa (hash: +lC9V9G29eZ0ubABsOu96g/K8AVuHJSib8VHpmomp9Q=)
4: HO-WF7oHezpfwwV3wUG7AErtTlE.roa (hash: 8SO7ZYvzAB17ADVUPvCZiM0fv0nIROPrrAJMFayW82A=)
5: XYqf18UZJuIuqKozs7iDjpPovt0.crl (hash: AMJBSHP+xGn2IMOMC+PMCX6h8M4mYUmuMNFqoVSkog4=)
6: xZlrXqE8pd9RbauBbqs28LHvRHA.roa (hash: 2cai0/ZfgqLeuQF0rbi62rT8qPeDCMYpSTam6ord1Vg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/4e/bb861d-330f-4a97-9f9c-66c53f2b1f02/1/XYqf18UZJuIuqKozs7iDjpPovt0.crl
rsync://rpki.ripe.net/repository/DEFAULT/4e/bb861d-330f-4a97-9f9c-66c53f2b1f02/1/XYqf18UZJuIuqKozs7iDjpPovt0.mft
rsync://rpki.ripe.net/repository/DEFAULT/XYqf18UZJuIuqKozs7iDjpPovt0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 15:00:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fd:da:4f:7b:af:18:44:e1:b3:db:ca:fc:0a:16:68:7d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5d8a9fd7c51926e22ea8aa33b3b8838e93e8bedd
Validity
Not Before: Oct 19 19:02:46 2025 GMT
Not After : Oct 20 19:02:46 2025 GMT
Subject: CN=559a9f9f197b29145e52b20383cc4dd55a4ac8c5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:97:85:d3:17:89:7f:04:1a:3f:a2:f3:a0:60:
bb:b0:89:cf:4a:86:71:32:ac:39:34:aa:75:c4:c7:
cf:83:9b:21:ae:ba:a1:4c:11:b5:9f:6e:c7:53:da:
be:dc:06:d1:fc:ab:55:6a:a9:e3:ad:40:ee:d0:a6:
90:ac:06:ae:26:2c:60:ce:7d:ee:a7:39:aa:be:9b:
65:02:a0:ea:08:1c:ef:31:84:17:01:3d:78:27:25:
fb:59:1a:f0:df:12:1a:e2:e9:5a:88:81:cf:9e:da:
0a:a9:3e:cd:01:94:83:6b:74:ce:e4:7a:41:bb:e0:
f3:7f:ff:60:7b:95:56:f6:e8:04:31:4a:56:7d:b4:
6b:d2:3e:34:97:e0:bf:4b:2b:aa:70:e4:8c:a1:01:
b3:08:d0:76:14:d1:06:31:ef:ba:e0:de:de:f0:54:
68:0d:ca:d8:97:db:5e:3b:20:9c:19:63:ce:b5:9f:
59:3e:87:45:1f:48:7e:2a:96:bf:ec:70:46:d4:73:
74:10:77:21:f4:97:08:e5:81:14:c7:74:60:10:01:
3e:1a:97:f3:b0:c1:e9:3a:01:49:af:8d:2d:53:4d:
d6:11:9a:46:03:9a:81:ed:17:22:b3:8d:82:11:01:
07:4b:1e:8e:b3:86:20:b6:7e:cb:0f:5d:43:9b:b8:
d6:cd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
55:9A:9F:9F:19:7B:29:14:5E:52:B2:03:83:CC:4D:D5:5A:4A:C8:C5
X509v3 Authority Key Identifier:
keyid:5D:8A:9F:D7:C5:19:26:E2:2E:A8:AA:33:B3:B8:83:8E:93:E8:BE:DD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XYqf18UZJuIuqKozs7iDjpPovt0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4e/bb861d-330f-4a97-9f9c-66c53f2b1f02/1/XYqf18UZJuIuqKozs7iDjpPovt0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4e/bb861d-330f-4a97-9f9c-66c53f2b1f02/1/XYqf18UZJuIuqKozs7iDjpPovt0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
2a:bc:96:4e:5c:6f:46:41:c4:69:4f:97:d7:bc:58:0e:ce:73:
e8:e0:9c:b1:9f:19:11:a2:bf:16:e8:80:5f:86:3b:af:56:af:
8a:20:72:d4:9b:5b:da:49:0b:47:81:5e:28:2e:c3:1a:32:65:
f3:1c:81:0c:c9:cb:06:ff:d2:94:ca:b9:9c:5a:b1:d2:ff:3b:
54:12:0b:8a:2e:16:05:f8:1c:f5:4f:2c:87:f1:b2:4e:b6:c3:
23:f7:02:13:e4:c0:51:fc:cf:a0:43:bc:98:bc:e0:0f:28:ae:
30:c4:07:d8:a4:7e:8a:7f:74:13:ef:1e:e2:39:44:1d:4a:7d:
92:13:52:85:cb:b0:5b:36:c1:7c:bf:4c:f5:ee:e6:46:68:0c:
2e:0e:3e:f2:96:52:ad:18:2d:c1:af:d7:12:8b:8a:92:a7:cf:
fa:d4:db:b3:0e:1a:bf:4b:23:f1:28:7d:fd:34:8e:8e:ea:d6:
40:8f:13:a9:39:29:2f:ca:22:e4:48:45:ed:7b:81:b6:cf:a6:
48:e9:3c:b2:57:ef:27:e2:df:11:56:25:15:e7:26:51:69:8a:
aa:31:63:e6:74:b2:2b:82:bb:da:73:d7:49:94:27:91:64:5a:
d3:d4:e5:04:11:44:98:31:eb:f3:7c:d5:83:07:9a:fe:89:59:
68:cd:1d:ed
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZn92k97rxhE4bPbyvwKFmh9MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDVkOGE5ZmQ3YzUxOTI2ZTIyZWE4YWEzM2IzYjg4MzhlOTNl
OGJlZGQwHhcNMjUxMDE5MTkwMjQ2WhcNMjUxMDIwMTkwMjQ2WjAzMTEwLwYDVQQD
Eyg1NTlhOWY5ZjE5N2IyOTE0NWU1MmIyMDM4M2NjNGRkNTVhNGFjOGM1MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArZeF0xeJfwQaP6LzoGC7sInPSoZx
Mqw5NKp1xMfPg5shrrqhTBG1n27HU9q+3AbR/KtVaqnjrUDu0KaQrAauJixgzn3u
pzmqvptlAqDqCBzvMYQXAT14JyX7WRrw3xIa4ulaiIHPntoKqT7NAZSDa3TO5HpB
u+Dzf/9ge5VW9ugEMUpWfbRr0j40l+C/SyuqcOSMoQGzCNB2FNEGMe+64N7e8FRo
DcrYl9teOyCcGWPOtZ9ZPodFH0h+Kpa/7HBG1HN0EHch9JcI5YEUx3RgEAE+Gpfz
sMHpOgFJr40tU03WEZpGA5qB7Rcis42CEQEHSx6Os4Ygtn7LD11Dm7jWzQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFFWan58ZeykUXlKyA4PMTdVaSsjFMB8GA1UdIwQY
MBaAFF2Kn9fFGSbiLqiqM7O4g46T6L7dMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvWFlxZjE4VVpKdUl1cUtvenM3aURqcFBvdnQwLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80ZS9iYjg2MWQtMzMwZi00YTk3LTlmOWMt
NjZjNTNmMmIxZjAyLzEvWFlxZjE4VVpKdUl1cUtvenM3aURqcFBvdnQwLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC80ZS9iYjg2MWQtMzMwZi00YTk3LTlmOWMtNjZjNTNmMmIxZjAy
LzEvWFlxZjE4VVpKdUl1cUtvenM3aURqcFBvdnQwLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAKryWTlxv
RkHEaU+X17xYDs5z6OCcsZ8ZEaK/FuiAX4Y7r1aviiBy1Jtb2kkLR4FeKC7DGjJl
8xyBDMnLBv/SlMq5nFqx0v87VBILii4WBfgc9U8sh/GyTrbDI/cCE+TAUfzPoEO8
mLzgDyiuMMQH2KR+in90E+8e4jlEHUp9khNShcuwWzbBfL9M9e7mRmgMLg4+8pZS
rRgtwa/XEouKkqfP+tTbsw4av0sj8Sh9/TSOjurWQI8TqTkpL8oi5EhF7XuBts+m
SOk8slfvJ+LfEVYlFecmUWmKqjFj5nSyK4K72nPXSZQnkWRa09TlBBFEmDHr83zV
gwea/olZaM0d7Q==
-----END CERTIFICATE-----
Generated at Mon Oct 20 00:01:28 2025 by rpki-client