Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/72/acd7e3-9c76-4ff6-b5ae-ee80a2d2952d/1/XYHR_0WxVHwAqEtG75nsot-9Rbw.mft
File: XYHR_0WxVHwAqEtG75nsot-9Rbw.mft (raw, json)
Hash identifier: QUilCQfjidKWYuHYzjC5sqrOachWVIg/zlUrNySKC34=
Subject key identifier: 9E:4D:85:FB:EA:12:8D:99:05:DE:0A:F7:D1:C1:7F:6E:DA:CA:B2:00
Authority key identifier: 5D:81:D1:FF:45:B1:54:7C:00:A8:4B:46:EF:99:EC:A2:DF:BD:45:BC
Certificate issuer: /CN=5d81d1ff45b1547c00a84b46ef99eca2dfbd45bc
Certificate serial: 0199FCC62A005EC6B72259D7AB16C1C01091
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XYHR_0WxVHwAqEtG75nsot-9Rbw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/72/acd7e3-9c76-4ff6-b5ae-ee80a2d2952d/1/XYHR_0WxVHwAqEtG75nsot-9Rbw.mft
Manifest number: 16E5
Signing time: Sun 19 Oct 2025 14:01:09 +0000
Manifest this update: Sun 19 Oct 2025 14:01:09 +0000
Manifest next update: Mon 20 Oct 2025 14:01:09 +0000
Files and hashes: 1: C-JYvDSVCc5Zd_4Sd7FiFR4ridU.roa (hash: Fud1edK7T1C6PqdOPqDnlVWq4JxXY+eiVXIDYHC1t50=)
2: XYHR_0WxVHwAqEtG75nsot-9Rbw.crl (hash: VU1gfM1aFPfTQwuZIwj2hJmkrEmxaSg1RLX2/PVmbMU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/72/acd7e3-9c76-4ff6-b5ae-ee80a2d2952d/1/XYHR_0WxVHwAqEtG75nsot-9Rbw.crl
rsync://rpki.ripe.net/repository/DEFAULT/72/acd7e3-9c76-4ff6-b5ae-ee80a2d2952d/1/XYHR_0WxVHwAqEtG75nsot-9Rbw.mft
rsync://rpki.ripe.net/repository/DEFAULT/XYHR_0WxVHwAqEtG75nsot-9Rbw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 11:18:59 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fc:c6:2a:00:5e:c6:b7:22:59:d7:ab:16:c1:c0:10:91
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5d81d1ff45b1547c00a84b46ef99eca2dfbd45bc
Validity
Not Before: Oct 19 14:01:09 2025 GMT
Not After : Oct 20 14:01:09 2025 GMT
Subject: CN=9e4d85fbea128d9905de0af7d1c17f6edacab200
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:0c:3a:24:fa:ea:c4:ed:80:89:2f:58:6d:9f:
b2:75:41:bb:8a:d2:e6:f5:8f:40:c2:28:92:64:8a:
25:3d:8c:2f:ee:69:2e:85:a8:c8:59:c9:c9:87:55:
9c:5f:4f:78:0f:c0:78:ce:b4:d5:3f:40:21:62:db:
86:84:8d:55:60:ce:29:ee:fe:6f:95:50:37:ff:a3:
51:f0:9e:f2:25:80:22:0d:6d:40:89:f0:fa:0f:d8:
2e:e9:be:83:a0:49:c6:43:84:2f:17:7b:63:b2:09:
45:a3:a9:ce:11:4e:1f:4f:3f:ca:36:14:e9:c8:13:
9e:1f:16:b5:0b:0d:3e:74:df:0f:2d:60:43:f0:a0:
94:f1:26:ab:66:c1:3e:27:71:15:e8:12:d6:6d:e7:
54:2c:32:78:45:d1:07:19:56:74:ee:9e:a6:81:a7:
b4:a8:f0:71:19:5a:b3:cc:f2:d4:61:9c:3c:ec:8b:
07:50:b1:56:37:12:55:3a:d0:e6:20:86:95:4f:5c:
cb:b1:82:53:fa:5d:6d:31:81:81:75:14:cb:56:d5:
5c:a4:84:84:4b:d8:1e:37:cf:ab:58:22:c3:82:52:
dc:b9:bb:c1:ed:bf:31:38:4f:74:d0:5a:c7:4a:04:
c6:8a:e2:74:8e:16:84:04:b3:38:ea:64:57:5c:ae:
97:89
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9E:4D:85:FB:EA:12:8D:99:05:DE:0A:F7:D1:C1:7F:6E:DA:CA:B2:00
X509v3 Authority Key Identifier:
keyid:5D:81:D1:FF:45:B1:54:7C:00:A8:4B:46:EF:99:EC:A2:DF:BD:45:BC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XYHR_0WxVHwAqEtG75nsot-9Rbw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/72/acd7e3-9c76-4ff6-b5ae-ee80a2d2952d/1/XYHR_0WxVHwAqEtG75nsot-9Rbw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/72/acd7e3-9c76-4ff6-b5ae-ee80a2d2952d/1/XYHR_0WxVHwAqEtG75nsot-9Rbw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
85:2c:a0:b4:1f:76:8b:cf:3d:d4:dc:c9:1f:c2:55:63:1c:4e:
c3:65:b8:8d:fa:d5:96:0b:e0:a7:ad:92:6c:d5:58:6c:40:d1:
7e:43:38:dc:cf:5b:d6:58:6b:61:01:06:dd:38:c5:1b:9e:60:
60:d4:81:8d:d5:3a:21:94:32:04:a0:58:79:aa:c8:40:95:b0:
46:cf:82:9f:2b:ce:2e:c2:be:37:98:ef:fc:f0:26:7d:f5:3b:
86:1c:47:7b:61:57:53:09:66:51:0f:6f:33:ed:73:83:99:f1:
23:49:ef:ef:17:ab:49:15:49:b6:65:a1:29:5b:3f:fd:3e:70:
ec:3b:b7:18:c5:b4:6a:45:95:ea:02:12:f6:7a:e1:b3:f7:80:
6e:3e:bd:c5:e5:48:08:c5:93:8d:8a:4b:d2:0d:2f:cf:ad:ea:
1e:66:47:1c:52:77:fb:2f:5b:36:e3:09:c4:f9:12:60:e7:8d:
1e:e8:1f:d8:6a:23:38:d6:66:99:27:53:ab:c2:9e:8e:56:99:
f6:03:4a:b0:17:40:02:bb:19:d1:d2:8a:fb:a4:2b:47:cc:68:
28:8d:b7:d3:fc:92:3d:a0:24:40:5f:1c:7e:0a:04:06:c3:8b:
31:aa:63:15:67:b1:d9:27:c8:91:de:15:61:c0:a0:f0:97:f0:
32:94:55:06
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZn8xioAXsa3IlnXqxbBwBCRMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDVkODFkMWZmNDViMTU0N2MwMGE4NGI0NmVmOTllY2EyZGZi
ZDQ1YmMwHhcNMjUxMDE5MTQwMTA5WhcNMjUxMDIwMTQwMTA5WjAzMTEwLwYDVQQD
Eyg5ZTRkODVmYmVhMTI4ZDk5MDVkZTBhZjdkMWMxN2Y2ZWRhY2FiMjAwMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAuQw6JPrqxO2AiS9YbZ+ydUG7itLm
9Y9AwiiSZIolPYwv7mkuhajIWcnJh1WcX094D8B4zrTVP0AhYtuGhI1VYM4p7v5v
lVA3/6NR8J7yJYAiDW1AifD6D9gu6b6DoEnGQ4QvF3tjsglFo6nOEU4fTz/KNhTp
yBOeHxa1Cw0+dN8PLWBD8KCU8SarZsE+J3EV6BLWbedULDJ4RdEHGVZ07p6mgae0
qPBxGVqzzPLUYZw87IsHULFWNxJVOtDmIIaVT1zLsYJT+l1tMYGBdRTLVtVcpISE
S9geN8+rWCLDglLcubvB7b8xOE900FrHSgTGiuJ0jhaEBLM46mRXXK6XiQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFJ5NhfvqEo2ZBd4K99HBf27ayrIAMB8GA1UdIwQY
MBaAFF2B0f9FsVR8AKhLRu+Z7KLfvUW8MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvWFlIUl8wV3hWSHdBcUV0Rzc1bnNvdC05UmJ3LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83Mi9hY2Q3ZTMtOWM3Ni00ZmY2LWI1YWUt
ZWU4MGEyZDI5NTJkLzEvWFlIUl8wV3hWSHdBcUV0Rzc1bnNvdC05UmJ3Lm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC83Mi9hY2Q3ZTMtOWM3Ni00ZmY2LWI1YWUtZWU4MGEyZDI5NTJk
LzEvWFlIUl8wV3hWSHdBcUV0Rzc1bnNvdC05UmJ3LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAhSygtB92
i8891NzJH8JVYxxOw2W4jfrVlgvgp62SbNVYbEDRfkM43M9b1lhrYQEG3TjFG55g
YNSBjdU6IZQyBKBYearIQJWwRs+CnyvOLsK+N5jv/PAmffU7hhxHe2FXUwlmUQ9v
M+1zg5nxI0nv7xerSRVJtmWhKVs//T5w7Du3GMW0akWV6gIS9nrhs/eAbj69xeVI
CMWTjYpL0g0vz63qHmZHHFJ3+y9bNuMJxPkSYOeNHugf2GojONZmmSdTq8KejlaZ
9gNKsBdAArsZ0dKK+6QrR8xoKI230/ySPaAkQF8cfgoEBsOLMapjFWex2SfIkd4V
YcCg8JfwMpRVBg==
-----END CERTIFICATE-----
Generated at Sun Oct 19 20:40:51 2025 by rpki-client