Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6c/f787a9-5763-4c36-8c73-341f5173fcf7/1/XQwn-FWB4ue94MmPvVS-HUlnBRc.mft
File: XQwn-FWB4ue94MmPvVS-HUlnBRc.mft (raw, json)
Hash identifier: 9Gwcv5ZKlpEbIjrPlw3U157BEt1tf38vlidH6tdc/qU=
Subject key identifier: 5D:9A:FA:BB:75:86:CC:94:47:7A:A7:6D:5E:2E:47:C8:A1:C3:A7:2B
Authority key identifier: 5D:0C:27:F8:55:81:E2:E7:BD:E0:C9:8F:BD:54:BE:1D:49:67:05:17
Certificate issuer: /CN=5d0c27f85581e2e7bde0c98fbd54be1d49670517
Certificate serial: 0199FCFD5E272F8C77E3323E3FF00CF57E76
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XQwn-FWB4ue94MmPvVS-HUlnBRc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6c/f787a9-5763-4c36-8c73-341f5173fcf7/1/XQwn-FWB4ue94MmPvVS-HUlnBRc.mft
Manifest number: 16E3
Signing time: Sun 19 Oct 2025 15:01:27 +0000
Manifest this update: Sun 19 Oct 2025 15:01:27 +0000
Manifest next update: Mon 20 Oct 2025 15:01:27 +0000
Files and hashes: 1: 5lc5ZmxcIf_S-qtTdxwVFYdfw74.roa (hash: nWQ6LzHmMcNUWFVJjD8F6A2IBDinnQ/3GkZ+tOcMhcc=)
2: XQwn-FWB4ue94MmPvVS-HUlnBRc.crl (hash: MHHw9Qqhve6d4sr1CYlndMKav4MQYMeYoDCoysxGJw0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/6c/f787a9-5763-4c36-8c73-341f5173fcf7/1/XQwn-FWB4ue94MmPvVS-HUlnBRc.crl
rsync://rpki.ripe.net/repository/DEFAULT/6c/f787a9-5763-4c36-8c73-341f5173fcf7/1/XQwn-FWB4ue94MmPvVS-HUlnBRc.mft
rsync://rpki.ripe.net/repository/DEFAULT/XQwn-FWB4ue94MmPvVS-HUlnBRc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 11:18:59 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fc:fd:5e:27:2f:8c:77:e3:32:3e:3f:f0:0c:f5:7e:76
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5d0c27f85581e2e7bde0c98fbd54be1d49670517
Validity
Not Before: Oct 19 15:01:27 2025 GMT
Not After : Oct 20 15:01:27 2025 GMT
Subject: CN=5d9afabb7586cc94477aa76d5e2e47c8a1c3a72b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8f:76:4d:32:e4:7e:a3:31:2a:d1:73:95:fe:38:
ef:88:56:e3:bc:d0:f6:e8:c7:88:5c:8c:7d:7a:2c:
7e:fe:0d:4f:86:70:da:19:5d:50:ad:ae:38:6d:d0:
52:ab:88:bb:59:b1:5e:e2:2c:f0:7f:47:53:3e:25:
4a:58:79:ed:b6:f2:ef:f3:a0:cd:50:16:54:29:86:
65:d7:28:1e:69:d9:9d:80:c4:52:71:a2:55:d5:c1:
72:8b:df:42:19:3b:13:20:d2:30:18:9d:5b:df:b2:
1a:ca:04:49:c0:6e:93:b0:52:4b:9b:32:e4:ab:4e:
28:f4:ed:67:92:bc:f9:15:bc:c9:bc:ff:03:dc:00:
65:c7:78:0b:9e:55:ca:54:04:66:83:d6:c8:93:51:
ac:5e:b3:d0:93:a0:ed:97:b3:49:a3:f8:60:59:d0:
b6:38:46:7a:12:89:72:64:6b:16:3b:68:81:d0:43:
2c:f8:bd:b6:30:63:f0:7e:0a:60:26:c6:63:80:5b:
f2:0b:63:ff:6e:1b:96:3d:51:7a:c2:30:90:29:d3:
83:2b:9c:91:4e:c4:f2:bb:a9:24:b5:dd:a1:27:32:
a2:05:11:04:37:e0:80:78:2b:6d:44:3c:d8:a6:6c:
de:f0:ba:07:b6:47:ef:97:de:9c:44:a6:6a:2f:75:
28:65
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5D:9A:FA:BB:75:86:CC:94:47:7A:A7:6D:5E:2E:47:C8:A1:C3:A7:2B
X509v3 Authority Key Identifier:
keyid:5D:0C:27:F8:55:81:E2:E7:BD:E0:C9:8F:BD:54:BE:1D:49:67:05:17
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XQwn-FWB4ue94MmPvVS-HUlnBRc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6c/f787a9-5763-4c36-8c73-341f5173fcf7/1/XQwn-FWB4ue94MmPvVS-HUlnBRc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6c/f787a9-5763-4c36-8c73-341f5173fcf7/1/XQwn-FWB4ue94MmPvVS-HUlnBRc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
74:ec:53:12:e6:45:de:ef:12:03:64:0f:3e:ab:24:70:76:d3:
30:cf:a9:e6:41:0c:13:83:1a:19:ed:11:ae:cf:55:20:d9:78:
aa:b9:82:fd:49:24:5c:49:6f:f9:91:d1:a0:ec:78:07:7f:35:
46:4f:e6:27:47:83:43:7a:a5:1f:5d:71:b1:f7:2c:53:1d:b9:
11:f8:70:fb:93:f4:5c:4d:4a:cb:20:a5:b8:77:0b:3f:eb:6b:
3f:74:19:51:63:a5:77:c8:b9:49:9e:f9:63:a0:01:fc:9c:b0:
b3:2d:ed:8c:c2:4f:df:b8:e8:92:57:75:2a:80:5e:a6:ef:f4:
b4:e4:68:21:50:88:19:a6:62:12:69:9b:5a:a1:ee:00:1c:19:
b3:bd:71:e1:60:bf:02:1d:9b:05:4b:1c:55:9c:ac:87:07:e1:
82:12:22:1b:4e:51:1f:af:5f:33:b5:cb:b1:06:1b:d2:0c:65:
bf:27:70:65:b6:50:bf:8d:75:70:2a:2a:dc:e5:d6:6c:6d:11:
48:06:1e:87:b6:c8:fe:31:86:ac:70:94:bf:5d:9c:b4:cb:d2:
b9:23:89:3e:b3:e6:9b:a9:e3:86:3d:a2:5b:3d:f3:3c:01:97:
52:90:f9:7b:e9:57:6c:c0:8b:c6:d6:f3:87:c3:ef:48:d3:c5:
00:5d:13:ba
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZn8/V4nL4x34zI+P/AM9X52MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDVkMGMyN2Y4NTU4MWUyZTdiZGUwYzk4ZmJkNTRiZTFkNDk2
NzA1MTcwHhcNMjUxMDE5MTUwMTI3WhcNMjUxMDIwMTUwMTI3WjAzMTEwLwYDVQQD
Eyg1ZDlhZmFiYjc1ODZjYzk0NDc3YWE3NmQ1ZTJlNDdjOGExYzNhNzJiMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAj3ZNMuR+ozEq0XOV/jjviFbjvND2
6MeIXIx9eix+/g1PhnDaGV1Qra44bdBSq4i7WbFe4izwf0dTPiVKWHnttvLv86DN
UBZUKYZl1ygeadmdgMRScaJV1cFyi99CGTsTINIwGJ1b37IaygRJwG6TsFJLmzLk
q04o9O1nkrz5FbzJvP8D3ABlx3gLnlXKVARmg9bIk1GsXrPQk6Dtl7NJo/hgWdC2
OEZ6EolyZGsWO2iB0EMs+L22MGPwfgpgJsZjgFvyC2P/bhuWPVF6wjCQKdODK5yR
TsTyu6kktd2hJzKiBREEN+CAeCttRDzYpmze8LoHtkfvl96cRKZqL3UoZQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFF2a+rt1hsyUR3qnbV4uR8ihw6crMB8GA1UdIwQY
MBaAFF0MJ/hVgeLnveDJj71Uvh1JZwUXMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvWFF3bi1GV0I0dWU5NE1tUHZWUy1IVWxuQlJjLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82Yy9mNzg3YTktNTc2My00YzM2LThjNzMt
MzQxZjUxNzNmY2Y3LzEvWFF3bi1GV0I0dWU5NE1tUHZWUy1IVWxuQlJjLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC82Yy9mNzg3YTktNTc2My00YzM2LThjNzMtMzQxZjUxNzNmY2Y3
LzEvWFF3bi1GV0I0dWU5NE1tUHZWUy1IVWxuQlJjLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAdOxTEuZF
3u8SA2QPPqskcHbTMM+p5kEME4MaGe0Rrs9VINl4qrmC/UkkXElv+ZHRoOx4B381
Rk/mJ0eDQ3qlH11xsfcsUx25Efhw+5P0XE1KyyCluHcLP+trP3QZUWOld8i5SZ75
Y6AB/Jywsy3tjMJP37jokld1KoBepu/0tORoIVCIGaZiEmmbWqHuABwZs71x4WC/
Ah2bBUscVZyshwfhghIiG05RH69fM7XLsQYb0gxlvydwZbZQv411cCoq3OXWbG0R
SAYeh7bI/jGGrHCUv12ctMvSuSOJPrPmm6njhj2iWz3zPAGXUpD5e+lXbMCLxtbz
h8PvSNPFAF0Tug==
-----END CERTIFICATE-----
Generated at Sun Oct 19 17:26:04 2025 by rpki-client