Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9d/a27a03-f645-462b-94e7-66c5ae8a36b4/1/XHkaG6CbnU01jvBare1_DoXogbY.mft
File: XHkaG6CbnU01jvBare1_DoXogbY.mft (raw, json)
Hash identifier: Z6HJAp/EgxxbQcgiRcmRQ1wdk6OAWn4pJyl2yufwxC8=
Subject key identifier: 3F:BE:AB:4C:91:97:D3:95:45:A5:00:C6:72:A9:90:20:E8:13:C3:D0
Authority key identifier: 5C:79:1A:1B:A0:9B:9D:4D:35:8E:F0:5A:AD:ED:7F:0E:85:E8:81:B6
Certificate issuer: /CN=5c791a1ba09b9d4d358ef05aaded7f0e85e881b6
Certificate serial: 0199FD6B3B1AFFD6249E36C7BF8792C49851
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XHkaG6CbnU01jvBare1_DoXogbY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9d/a27a03-f645-462b-94e7-66c5ae8a36b4/1/XHkaG6CbnU01jvBare1_DoXogbY.mft
Manifest number: 0C1F
Signing time: Sun 19 Oct 2025 17:01:26 +0000
Manifest this update: Sun 19 Oct 2025 17:01:26 +0000
Manifest next update: Mon 20 Oct 2025 17:01:26 +0000
Files and hashes: 1: XHkaG6CbnU01jvBare1_DoXogbY.crl (hash: jWsmlmPEOOb5P0MvPJCadMOrYYCwENZypNlNHM9WdqQ=)
2: _GYD1AJUDNposAkJpRDfG9xq6dk.roa (hash: afY5Qh0XccEeUiEofkFyRBQd+JnAG3mTgUzmW0se7YQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/9d/a27a03-f645-462b-94e7-66c5ae8a36b4/1/XHkaG6CbnU01jvBare1_DoXogbY.crl
rsync://rpki.ripe.net/repository/DEFAULT/9d/a27a03-f645-462b-94e7-66c5ae8a36b4/1/XHkaG6CbnU01jvBare1_DoXogbY.mft
rsync://rpki.ripe.net/repository/DEFAULT/XHkaG6CbnU01jvBare1_DoXogbY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 11:18:59 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fd:6b:3b:1a:ff:d6:24:9e:36:c7:bf:87:92:c4:98:51
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5c791a1ba09b9d4d358ef05aaded7f0e85e881b6
Validity
Not Before: Oct 19 17:01:26 2025 GMT
Not After : Oct 20 17:01:26 2025 GMT
Subject: CN=3fbeab4c9197d39545a500c672a99020e813c3d0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:3f:38:2c:af:6c:43:a9:2c:cd:f7:ff:2a:4c:
ce:c0:61:dd:7d:ab:d3:d3:02:6b:1f:62:8e:47:fa:
28:d6:44:b2:0e:03:20:13:2a:28:4d:22:67:06:e4:
55:b4:e6:16:c4:30:a4:18:dc:44:96:25:c5:9f:d5:
09:62:d7:a8:1e:93:73:ee:ef:43:a6:77:82:ea:a8:
16:53:4b:79:21:ff:04:ef:c6:60:92:18:1f:da:07:
f1:13:9d:a8:ae:dc:dd:45:c2:fa:1d:b7:83:a0:cd:
ad:40:45:1a:68:d4:bc:7c:46:1d:21:21:4d:f3:94:
d0:4a:81:5b:a7:6f:7b:b8:a1:f0:a0:e4:e9:7d:51:
4d:3f:78:53:e1:71:ea:e0:27:70:f1:76:c4:1a:90:
fa:44:d3:15:60:e4:11:c5:df:18:3a:7f:3b:c3:74:
ca:f9:b6:82:a8:0c:ee:5a:a5:00:3d:1f:1e:fc:aa:
38:ad:96:1d:eb:fb:89:c9:b4:af:7b:e1:d3:a1:ce:
6d:03:55:99:e3:ff:23:04:29:8d:cf:28:35:43:64:
4a:0e:46:ef:de:1b:35:57:c0:e3:6a:9b:c1:8b:08:
e4:c6:7e:16:0d:aa:57:f1:06:3b:f8:b9:c3:24:9a:
89:a3:57:97:9e:f3:53:54:5f:19:60:86:99:af:48:
28:db
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3F:BE:AB:4C:91:97:D3:95:45:A5:00:C6:72:A9:90:20:E8:13:C3:D0
X509v3 Authority Key Identifier:
keyid:5C:79:1A:1B:A0:9B:9D:4D:35:8E:F0:5A:AD:ED:7F:0E:85:E8:81:B6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XHkaG6CbnU01jvBare1_DoXogbY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9d/a27a03-f645-462b-94e7-66c5ae8a36b4/1/XHkaG6CbnU01jvBare1_DoXogbY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9d/a27a03-f645-462b-94e7-66c5ae8a36b4/1/XHkaG6CbnU01jvBare1_DoXogbY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
00:47:56:ae:f5:4f:47:4e:db:f1:20:45:1b:d6:20:e6:38:58:
c1:b8:1b:dd:6e:be:4d:89:d1:97:81:c5:71:98:d4:c4:a6:88:
19:08:a0:ed:5b:08:68:53:77:00:ca:e2:6f:7c:be:2e:48:4d:
fe:59:f0:bc:13:85:7c:36:38:14:51:0c:96:0c:34:75:ab:7e:
33:6f:58:1d:b0:e6:f8:41:73:ba:bc:47:91:93:fd:30:b3:07:
44:b3:4e:a3:49:fe:ae:df:12:52:55:6e:18:01:2a:c3:f7:38:
ba:57:31:38:5f:b3:6f:55:d7:b9:e3:c8:2f:f0:1a:9d:13:c4:
7d:80:20:06:ca:d1:23:f8:bb:3f:45:e1:5c:d9:0f:80:14:8e:
29:f8:9f:d6:11:fd:c4:0a:86:ad:f6:f8:65:9b:c6:06:93:09:
c9:81:d3:0c:6c:fe:a4:1f:ff:3b:ca:e0:fd:e6:57:6e:9e:4b:
ba:b2:25:5c:3d:ff:bd:a8:9d:35:32:2d:49:f5:ef:7d:b4:bf:
b2:93:38:dc:24:5d:ff:7c:05:b8:a6:68:0e:6d:b3:a5:57:96:
41:7f:25:df:bc:1a:43:b6:64:60:df:50:e8:02:62:f5:52:6e:
b3:a1:f3:fd:d3:04:a5:ab:90:a7:a6:df:2d:fe:15:0a:6c:69:
06:3b:6f:44
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZn9azsa/9YknjbHv4eSxJhRMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDVjNzkxYTFiYTA5YjlkNGQzNThlZjA1YWFkZWQ3ZjBlODVl
ODgxYjYwHhcNMjUxMDE5MTcwMTI2WhcNMjUxMDIwMTcwMTI2WjAzMTEwLwYDVQQD
EygzZmJlYWI0YzkxOTdkMzk1NDVhNTAwYzY3MmE5OTAyMGU4MTNjM2QwMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArz84LK9sQ6kszff/KkzOwGHdfavT
0wJrH2KOR/oo1kSyDgMgEyooTSJnBuRVtOYWxDCkGNxEliXFn9UJYteoHpNz7u9D
pneC6qgWU0t5If8E78Zgkhgf2gfxE52ortzdRcL6HbeDoM2tQEUaaNS8fEYdISFN
85TQSoFbp297uKHwoOTpfVFNP3hT4XHq4Cdw8XbEGpD6RNMVYOQRxd8YOn87w3TK
+baCqAzuWqUAPR8e/Ko4rZYd6/uJybSve+HToc5tA1WZ4/8jBCmNzyg1Q2RKDkbv
3hs1V8DjapvBiwjkxn4WDapX8QY7+LnDJJqJo1eXnvNTVF8ZYIaZr0go2wIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFD++q0yRl9OVRaUAxnKpkCDoE8PQMB8GA1UdIwQY
MBaAFFx5Ghugm51NNY7wWq3tfw6F6IG2MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvWEhrYUc2Q2JuVTAxanZCYXJlMV9Eb1hvZ2JZLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC85ZC9hMjdhMDMtZjY0NS00NjJiLTk0ZTct
NjZjNWFlOGEzNmI0LzEvWEhrYUc2Q2JuVTAxanZCYXJlMV9Eb1hvZ2JZLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC85ZC9hMjdhMDMtZjY0NS00NjJiLTk0ZTctNjZjNWFlOGEzNmI0
LzEvWEhrYUc2Q2JuVTAxanZCYXJlMV9Eb1hvZ2JZLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAAEdWrvVP
R07b8SBFG9Yg5jhYwbgb3W6+TYnRl4HFcZjUxKaIGQig7VsIaFN3AMrib3y+LkhN
/lnwvBOFfDY4FFEMlgw0dat+M29YHbDm+EFzurxHkZP9MLMHRLNOo0n+rt8SUlVu
GAEqw/c4ulcxOF+zb1XXuePIL/AanRPEfYAgBsrRI/i7P0XhXNkPgBSOKfif1hH9
xAqGrfb4ZZvGBpMJyYHTDGz+pB//O8rg/eZXbp5LurIlXD3/vaidNTItSfXvfbS/
spM43CRd/3wFuKZoDm2zpVeWQX8l37waQ7ZkYN9Q6AJi9VJus6Hz/dMEpauQp6bf
Lf4VCmxpBjtvRA==
-----END CERTIFICATE-----
Generated at Sun Oct 19 20:35:52 2025 by rpki-client