Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6d/2b059a-325d-4385-811f-17e1a2569568/1/xP-TUFfDvbrb30nzQ1YsXjABYEQ.mft
File: xP-TUFfDvbrb30nzQ1YsXjABYEQ.mft (raw, json)
Hash identifier: 6G8QnjYX5u3CqxqK3QxePHGH3Zfgt7c2nxT7ewrMie0=
Subject key identifier: C3:38:FA:35:89:7C:D1:00:81:56:7E:6B:78:7B:50:FC:75:32:4F:40
Authority key identifier: C4:FF:93:50:57:C3:BD:BA:DB:DF:49:F3:43:56:2C:5E:30:01:60:44
Certificate issuer: /CN=c4ff935057c3bdbadbdf49f343562c5e30016044
Certificate serial: 0199FCFD305D8D3292A741E36E7475F7EAD4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xP-TUFfDvbrb30nzQ1YsXjABYEQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6d/2b059a-325d-4385-811f-17e1a2569568/1/xP-TUFfDvbrb30nzQ1YsXjABYEQ.mft
Manifest number: 16E6
Signing time: Sun 19 Oct 2025 15:01:15 +0000
Manifest this update: Sun 19 Oct 2025 15:01:15 +0000
Manifest next update: Mon 20 Oct 2025 15:01:15 +0000
Files and hashes: 1: nEhO-4IOflDc16smasjo46yXDrU.roa (hash: TGudjeK9/qruL2a7Ja97DNoAnaGXmeBxOzedTAd1+AI=)
2: xP-TUFfDvbrb30nzQ1YsXjABYEQ.crl (hash: jRp2mnO+/Ns4Q4eN8/Qg26KmuA+48/OaTK7OBy4FBt0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/6d/2b059a-325d-4385-811f-17e1a2569568/1/xP-TUFfDvbrb30nzQ1YsXjABYEQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/6d/2b059a-325d-4385-811f-17e1a2569568/1/xP-TUFfDvbrb30nzQ1YsXjABYEQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/xP-TUFfDvbrb30nzQ1YsXjABYEQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 11:18:59 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fc:fd:30:5d:8d:32:92:a7:41:e3:6e:74:75:f7:ea:d4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c4ff935057c3bdbadbdf49f343562c5e30016044
Validity
Not Before: Oct 19 15:01:15 2025 GMT
Not After : Oct 20 15:01:15 2025 GMT
Subject: CN=c338fa35897cd10081567e6b787b50fc75324f40
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d3:c4:e1:c3:f0:29:8e:e9:3f:a2:03:c5:2e:4c:
63:0c:81:d5:de:d4:d4:a3:fb:30:13:e0:1f:5c:6b:
34:dd:85:f1:5f:7c:2c:4e:ff:a3:c5:1e:53:34:64:
ba:de:5e:49:e5:84:f3:9e:1b:0a:4d:0c:42:71:a5:
0c:ad:78:28:8b:3b:d5:13:fc:70:52:4b:7a:d6:8e:
5e:68:da:6d:7a:b4:4b:9d:f0:a4:85:a6:a2:e7:4b:
79:57:b8:d7:d4:45:84:1d:64:a3:d3:3a:d9:e4:9c:
fc:15:77:1e:50:00:4b:c6:eb:4b:41:00:62:77:77:
4f:f9:72:92:3d:21:2f:19:59:35:d6:b2:03:5d:03:
ec:b0:4a:ae:14:70:e8:58:c3:f8:4c:82:fe:fd:ba:
48:95:e5:b1:a5:ea:f7:6e:8f:8c:62:49:1d:44:30:
03:19:60:56:9b:5d:37:06:00:32:8c:c7:37:2f:d6:
f9:d9:a9:29:a1:92:38:be:34:48:8d:2e:d8:9c:53:
e8:cc:58:66:cf:d9:58:f1:a9:cb:ec:3b:04:ff:d3:
5e:42:07:41:68:94:70:03:44:6d:77:21:4c:d0:52:
d3:47:88:cc:ac:99:96:56:c7:0b:8e:34:e3:5e:62:
1b:91:7b:73:7c:9b:48:33:26:3a:e8:dd:67:60:f3:
c8:e1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C3:38:FA:35:89:7C:D1:00:81:56:7E:6B:78:7B:50:FC:75:32:4F:40
X509v3 Authority Key Identifier:
keyid:C4:FF:93:50:57:C3:BD:BA:DB:DF:49:F3:43:56:2C:5E:30:01:60:44
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xP-TUFfDvbrb30nzQ1YsXjABYEQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6d/2b059a-325d-4385-811f-17e1a2569568/1/xP-TUFfDvbrb30nzQ1YsXjABYEQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6d/2b059a-325d-4385-811f-17e1a2569568/1/xP-TUFfDvbrb30nzQ1YsXjABYEQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
99:32:18:1c:19:30:6c:bc:36:32:ea:f0:09:da:fc:a5:e6:4b:
13:cc:5e:a1:74:2c:64:11:99:28:55:bf:69:bc:c5:4b:5b:fe:
f2:04:c8:d7:17:1e:29:3a:0d:c6:d5:99:45:4b:87:c8:56:1f:
ac:1c:df:ca:02:58:b5:85:e3:7c:4a:f9:da:0f:52:de:6c:7d:
b1:65:91:97:99:07:1f:d4:78:de:80:93:39:f5:05:d2:5e:56:
3c:4c:dc:cf:f2:61:78:28:04:01:5d:ab:4b:ed:f9:f8:3b:1a:
c3:6c:c4:b6:31:60:ff:db:30:61:28:67:c2:ff:e3:d7:fd:04:
44:b0:a7:65:78:f2:38:6e:e9:2a:af:d0:75:71:c6:35:e9:27:
34:df:15:c1:a3:e5:95:b8:6c:d4:bb:63:fb:c7:ee:26:00:43:
95:23:72:92:60:1a:44:7e:6e:a9:92:e1:88:c9:d3:65:12:f9:
8a:cd:9d:73:3d:3d:91:57:fa:29:d5:90:bc:6e:ff:2c:51:4b:
44:ac:a7:cb:de:19:e8:24:f2:61:b2:5f:cf:9a:7d:2c:0d:cd:
eb:df:8c:4a:5c:1a:79:fd:71:50:62:11:fa:27:17:03:55:77:
c7:f6:ac:3f:7f:ea:2d:90:37:24:40:18:cc:73:f1:2e:33:07:
6a:85:fa:b5
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZn8/TBdjTKSp0HjbnR19+rUMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGM0ZmY5MzUwNTdjM2JkYmFkYmRmNDlmMzQzNTYyYzVlMzAw
MTYwNDQwHhcNMjUxMDE5MTUwMTE1WhcNMjUxMDIwMTUwMTE1WjAzMTEwLwYDVQQD
EyhjMzM4ZmEzNTg5N2NkMTAwODE1NjdlNmI3ODdiNTBmYzc1MzI0ZjQwMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA08Thw/Apjuk/ogPFLkxjDIHV3tTU
o/swE+AfXGs03YXxX3wsTv+jxR5TNGS63l5J5YTznhsKTQxCcaUMrXgoizvVE/xw
Ukt61o5eaNpterRLnfCkhaai50t5V7jX1EWEHWSj0zrZ5Jz8FXceUABLxutLQQBi
d3dP+XKSPSEvGVk11rIDXQPssEquFHDoWMP4TIL+/bpIleWxper3bo+MYkkdRDAD
GWBWm103BgAyjMc3L9b52akpoZI4vjRIjS7YnFPozFhmz9lY8anL7DsE/9NeQgdB
aJRwA0RtdyFM0FLTR4jMrJmWVscLjjTjXmIbkXtzfJtIMyY66N1nYPPI4QIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFMM4+jWJfNEAgVZ+a3h7UPx1Mk9AMB8GA1UdIwQY
MBaAFMT/k1BXw726299J80NWLF4wAWBEMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQveFAtVFVGZkR2YnJiMzBuelExWXNYakFCWUVRLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82ZC8yYjA1OWEtMzI1ZC00Mzg1LTgxMWYt
MTdlMWEyNTY5NTY4LzEveFAtVFVGZkR2YnJiMzBuelExWXNYakFCWUVRLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC82ZC8yYjA1OWEtMzI1ZC00Mzg1LTgxMWYtMTdlMWEyNTY5NTY4
LzEveFAtVFVGZkR2YnJiMzBuelExWXNYakFCWUVRLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAmTIYHBkw
bLw2MurwCdr8peZLE8xeoXQsZBGZKFW/abzFS1v+8gTI1xceKToNxtWZRUuHyFYf
rBzfygJYtYXjfEr52g9S3mx9sWWRl5kHH9R43oCTOfUF0l5WPEzcz/JheCgEAV2r
S+35+Dsaw2zEtjFg/9swYShnwv/j1/0ERLCnZXjyOG7pKq/QdXHGNeknNN8VwaPl
lbhs1Ltj+8fuJgBDlSNykmAaRH5uqZLhiMnTZRL5is2dcz09kVf6KdWQvG7/LFFL
RKyny94Z6CTyYbJfz5p9LA3N69+MSlwaef1xUGIR+icXA1V3x/asP3/qLZA3JEAY
zHPxLjMHaoX6tQ==
-----END CERTIFICATE-----
Generated at Sun Oct 19 18:18:33 2025 by rpki-client