Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/84/c475ab-fdd5-492f-813a-61d9a23f3411/1/xGn-PYgsk-OOi2ooajF33Bfpmsc.mft
File: xGn-PYgsk-OOi2ooajF33Bfpmsc.mft (raw, json)
Hash identifier: 8wR67TjVq4SRkqzm3NUVcVZLNcCLc3z0dP1G7hdY6QQ=
Subject key identifier: A5:EF:95:F4:96:27:23:52:D5:77:5D:BF:BF:63:51:50:72:3B:E5:C4
Authority key identifier: C4:69:FE:3D:88:2C:93:E3:8E:8B:6A:28:6A:31:77:DC:17:E9:9A:C7
Certificate issuer: /CN=c469fe3d882c93e38e8b6a286a3177dc17e99ac7
Certificate serial: 0199FE46C4948FB92C40D1FA6325F1EDF689
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xGn-PYgsk-OOi2ooajF33Bfpmsc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/84/c475ab-fdd5-492f-813a-61d9a23f3411/1/xGn-PYgsk-OOi2ooajF33Bfpmsc.mft
Manifest number: 16E5
Signing time: Sun 19 Oct 2025 21:01:14 +0000
Manifest this update: Sun 19 Oct 2025 21:01:14 +0000
Manifest next update: Mon 20 Oct 2025 21:01:14 +0000
Files and hashes: 1: EOlGjDlmQ3zjWLU87OYTWDWcCEY.roa (hash: pUBA00I+CQC2RPjmIddeqkkbXGoBJUyoSnMxqvr2Gas=)
2: VWhDL_pbFyyRh5F_p1365369fw8.roa (hash: h0UGnV1yT7TAR4sgEMb7SSbuBaNRRDcOsgJUpZU75gM=)
3: eStVA852783cSRla3cS6Sa73nTo.roa (hash: hjwJSk0hM/n7mjZhOiCDKrp/IiuwE5tJF1ttaMrAUdQ=)
4: mz6tpSTyWG1tpsywf2xFprKsdgk.roa (hash: TcXisvKqSL089bUIJMzgiUZfK9JnlvU+0pDp8FZCWe4=)
5: xGn-PYgsk-OOi2ooajF33Bfpmsc.crl (hash: BWVRImxHKzjLDV7Bc08YxvYJleipQC67a0AyEUK/M4k=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/84/c475ab-fdd5-492f-813a-61d9a23f3411/1/xGn-PYgsk-OOi2ooajF33Bfpmsc.crl
rsync://rpki.ripe.net/repository/DEFAULT/84/c475ab-fdd5-492f-813a-61d9a23f3411/1/xGn-PYgsk-OOi2ooajF33Bfpmsc.mft
rsync://rpki.ripe.net/repository/DEFAULT/xGn-PYgsk-OOi2ooajF33Bfpmsc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 20:00:59 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fe:46:c4:94:8f:b9:2c:40:d1:fa:63:25:f1:ed:f6:89
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c469fe3d882c93e38e8b6a286a3177dc17e99ac7
Validity
Not Before: Oct 19 21:01:14 2025 GMT
Not After : Oct 20 21:01:14 2025 GMT
Subject: CN=a5ef95f496272352d5775dbfbf635150723be5c4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:17:e1:81:cf:29:df:01:58:77:5b:38:83:99:
5e:0a:22:75:ee:bb:7a:bf:1c:d7:8c:2e:60:b9:b8:
a7:a1:9f:78:55:ce:f2:f8:db:71:1c:9c:ee:3f:7e:
dd:32:42:7d:0e:45:0d:06:52:b1:82:26:15:31:a7:
c3:de:42:1f:bf:9f:5c:91:60:75:af:a0:c2:ad:93:
79:06:5a:90:23:15:7e:57:6e:f2:03:3d:3b:89:ec:
46:32:d6:e2:47:f4:79:41:20:75:13:12:1c:3c:3f:
5f:35:24:0f:c7:28:23:23:d0:52:e1:22:74:c2:09:
56:c2:b6:6c:1b:25:db:9d:68:26:d5:55:81:23:94:
29:14:0f:84:76:bb:5a:01:bc:25:fe:5c:85:36:42:
5c:21:e4:45:5f:65:c6:eb:e2:44:79:bc:e7:05:4b:
e8:16:34:94:99:b5:62:d0:08:1c:5b:a8:94:13:4f:
e5:f2:f0:ce:3d:64:fd:f7:ac:63:85:e4:08:4e:75:
cf:f8:62:ff:db:66:8e:57:fc:61:f0:23:ea:13:b0:
02:01:db:56:24:d6:3d:ae:34:bb:2a:e8:4d:22:82:
74:d6:f5:29:49:ac:05:eb:f7:1e:92:0b:61:e4:4f:
68:5a:2a:d5:dc:cc:5e:33:9a:f0:94:e9:3c:70:7b:
28:fb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A5:EF:95:F4:96:27:23:52:D5:77:5D:BF:BF:63:51:50:72:3B:E5:C4
X509v3 Authority Key Identifier:
keyid:C4:69:FE:3D:88:2C:93:E3:8E:8B:6A:28:6A:31:77:DC:17:E9:9A:C7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xGn-PYgsk-OOi2ooajF33Bfpmsc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/84/c475ab-fdd5-492f-813a-61d9a23f3411/1/xGn-PYgsk-OOi2ooajF33Bfpmsc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/84/c475ab-fdd5-492f-813a-61d9a23f3411/1/xGn-PYgsk-OOi2ooajF33Bfpmsc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
97:e5:88:8d:a8:c8:d7:06:8b:6e:eb:e8:4e:26:7a:2d:bc:9c:
0f:da:7c:88:a9:94:00:4f:e8:89:f8:09:35:be:ce:5d:eb:30:
14:1c:68:d1:8e:7c:bb:51:5b:92:64:d2:b3:a3:ae:29:89:7a:
cc:d5:e0:9f:51:97:d0:25:58:eb:da:c0:41:a2:7f:52:5a:1e:
66:c3:f4:1a:79:f4:8e:a5:73:d4:17:57:0f:18:48:f3:3c:7f:
84:91:94:d9:ac:b0:70:f1:47:65:68:af:c3:dd:f1:d3:55:ae:
a2:31:0b:40:49:bd:13:d7:5a:9c:04:29:b1:9d:93:f9:85:5f:
36:23:19:09:90:cf:74:f9:93:fc:88:cb:90:db:d8:4b:d3:d1:
6a:e2:53:d7:36:33:25:a9:74:68:d5:a8:34:45:40:d8:e1:84:
a6:a0:53:14:45:32:95:c5:9d:04:ef:d8:b1:ce:2a:f7:46:48:
4d:4f:6a:84:cf:f1:45:5a:e7:dd:22:60:07:f9:94:82:32:73:
a4:7e:e0:8d:97:4f:43:7c:1b:70:c4:00:7b:66:de:22:cb:f4:
f2:da:3c:c5:c2:f3:ee:8b:75:09:e3:2d:e2:29:9b:f4:d5:1a:
33:50:67:92:0b:23:ff:e9:7d:2b:07:43:b9:94:34:41:be:78:
0d:04:af:3a
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZn+RsSUj7ksQNH6YyXx7faJMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGM0NjlmZTNkODgyYzkzZTM4ZThiNmEyODZhMzE3N2RjMTdl
OTlhYzcwHhcNMjUxMDE5MjEwMTE0WhcNMjUxMDIwMjEwMTE0WjAzMTEwLwYDVQQD
EyhhNWVmOTVmNDk2MjcyMzUyZDU3NzVkYmZiZjYzNTE1MDcyM2JlNWM0MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvRfhgc8p3wFYd1s4g5leCiJ17rt6
vxzXjC5gubinoZ94Vc7y+NtxHJzuP37dMkJ9DkUNBlKxgiYVMafD3kIfv59ckWB1
r6DCrZN5BlqQIxV+V27yAz07iexGMtbiR/R5QSB1ExIcPD9fNSQPxygjI9BS4SJ0
wglWwrZsGyXbnWgm1VWBI5QpFA+EdrtaAbwl/lyFNkJcIeRFX2XG6+JEebznBUvo
FjSUmbVi0AgcW6iUE0/l8vDOPWT996xjheQITnXP+GL/22aOV/xh8CPqE7ACAdtW
JNY9rjS7KuhNIoJ01vUpSawF6/cekgth5E9oWirV3MxeM5rwlOk8cHso+wIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFKXvlfSWJyNS1Xddv79jUVByO+XEMB8GA1UdIwQY
MBaAFMRp/j2ILJPjjotqKGoxd9wX6ZrHMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQveEduLVBZZ3NrLU9PaTJvb2FqRjMzQmZwbXNjLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84NC9jNDc1YWItZmRkNS00OTJmLTgxM2Et
NjFkOWEyM2YzNDExLzEveEduLVBZZ3NrLU9PaTJvb2FqRjMzQmZwbXNjLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC84NC9jNDc1YWItZmRkNS00OTJmLTgxM2EtNjFkOWEyM2YzNDEx
LzEveEduLVBZZ3NrLU9PaTJvb2FqRjMzQmZwbXNjLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAl+WIjajI
1waLbuvoTiZ6LbycD9p8iKmUAE/oifgJNb7OXeswFBxo0Y58u1FbkmTSs6OuKYl6
zNXgn1GX0CVY69rAQaJ/UloeZsP0Gnn0jqVz1BdXDxhI8zx/hJGU2aywcPFHZWiv
w93x01WuojELQEm9E9danAQpsZ2T+YVfNiMZCZDPdPmT/IjLkNvYS9PRauJT1zYz
Jal0aNWoNEVA2OGEpqBTFEUylcWdBO/Ysc4q90ZITU9qhM/xRVrn3SJgB/mUgjJz
pH7gjZdPQ3wbcMQAe2beIsv08to8xcLz7ot1CeMt4imb9NUaM1Bnkgsj/+l9KwdD
uZQ0Qb54DQSvOg==
-----END CERTIFICATE-----
Generated at Mon Oct 20 01:39:23 2025 by rpki-client