Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a0/a6d42c-cfd7-4ed5-9f83-5ae93ec8fb11/1/X90ejCOU0Y6HbC1XAW5-2JgFpmc.mft
File: X90ejCOU0Y6HbC1XAW5-2JgFpmc.mft (raw, json)
Hash identifier: nZqJMsqc3t9TA4jwpEpLvjHqhPm8rJ2a+Oz9+DZ+h/E=
Subject key identifier: 28:90:BF:79:4C:71:DF:05:AD:C4:D7:C8:DA:85:AC:DF:09:F7:B7:1B
Authority key identifier: 5F:DD:1E:8C:23:94:D1:8E:87:6C:2D:57:01:6E:7E:D8:98:05:A6:67
Certificate issuer: /CN=5fdd1e8c2394d18e876c2d57016e7ed89805a667
Certificate serial: 019A006C26AEA650F0EA189E9C3D4834C32F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/X90ejCOU0Y6HbC1XAW5-2JgFpmc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a0/a6d42c-cfd7-4ed5-9f83-5ae93ec8fb11/1/X90ejCOU0Y6HbC1XAW5-2JgFpmc.mft
Manifest number: 0EA4
Signing time: Mon 20 Oct 2025 07:01:19 +0000
Manifest this update: Mon 20 Oct 2025 07:01:19 +0000
Manifest next update: Tue 21 Oct 2025 07:01:19 +0000
Files and hashes: 1: X90ejCOU0Y6HbC1XAW5-2JgFpmc.crl (hash: rDiiD8SQGIa3gqtPuZcCYVkVcXPUWuZPWR58wRpmJwI=)
2: d0esey8AL3oqWdpXKQi0WyV7ktQ.roa (hash: J4cOoBAYf62aaAeG5Hi7u+/pYelZ41GqNxwzMAQ75xY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a0/a6d42c-cfd7-4ed5-9f83-5ae93ec8fb11/1/X90ejCOU0Y6HbC1XAW5-2JgFpmc.crl
rsync://rpki.ripe.net/repository/DEFAULT/a0/a6d42c-cfd7-4ed5-9f83-5ae93ec8fb11/1/X90ejCOU0Y6HbC1XAW5-2JgFpmc.mft
rsync://rpki.ripe.net/repository/DEFAULT/X90ejCOU0Y6HbC1XAW5-2JgFpmc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 21 Oct 2025 00:00:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:00:6c:26:ae:a6:50:f0:ea:18:9e:9c:3d:48:34:c3:2f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5fdd1e8c2394d18e876c2d57016e7ed89805a667
Validity
Not Before: Oct 20 07:01:19 2025 GMT
Not After : Oct 21 07:01:19 2025 GMT
Subject: CN=2890bf794c71df05adc4d7c8da85acdf09f7b71b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:9c:bd:05:34:f7:18:5e:7c:ba:00:62:2e:88:
7f:b1:40:a5:32:da:5d:44:4f:c2:50:be:44:70:d0:
c7:b1:90:4d:a1:5a:b3:5f:bb:81:f5:4e:99:0d:a3:
60:8d:be:4b:03:c4:f5:74:50:14:b5:67:6d:24:bf:
8b:80:43:3c:72:f7:79:d7:1d:10:74:fd:a0:5b:b6:
8a:62:1e:7b:a7:d1:26:62:46:f6:16:a5:91:cc:69:
39:08:0c:45:0c:29:7c:89:ae:8d:1e:50:a6:44:4c:
9e:45:8a:2f:cf:21:94:e6:a8:82:76:38:23:8a:92:
3b:ac:81:0b:f1:af:f7:1a:0f:c1:18:3a:52:13:39:
21:db:a6:89:df:58:65:a2:cd:0b:8f:67:59:d8:3a:
ff:b1:19:76:f1:9f:8a:36:5d:b2:f8:94:6e:dd:88:
d5:e2:34:56:74:23:98:e7:4c:5f:fd:65:7a:4a:5c:
11:0c:71:48:37:f3:1c:b5:4b:bf:70:32:e9:9c:7b:
ec:16:b3:d4:7f:b2:58:51:20:c0:c9:f6:2d:fd:99:
b9:f1:84:58:ed:32:39:de:42:44:9a:d9:55:f8:68:
05:90:de:7d:df:07:1e:45:b5:99:f9:e7:f9:ce:ab:
ec:07:46:cc:fd:07:b1:13:71:dc:0a:6b:db:07:3e:
cf:85
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
28:90:BF:79:4C:71:DF:05:AD:C4:D7:C8:DA:85:AC:DF:09:F7:B7:1B
X509v3 Authority Key Identifier:
keyid:5F:DD:1E:8C:23:94:D1:8E:87:6C:2D:57:01:6E:7E:D8:98:05:A6:67
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/X90ejCOU0Y6HbC1XAW5-2JgFpmc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a0/a6d42c-cfd7-4ed5-9f83-5ae93ec8fb11/1/X90ejCOU0Y6HbC1XAW5-2JgFpmc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a0/a6d42c-cfd7-4ed5-9f83-5ae93ec8fb11/1/X90ejCOU0Y6HbC1XAW5-2JgFpmc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
b8:64:7b:a3:0b:5b:24:32:a7:55:45:f3:e3:bb:2c:50:df:e6:
70:b7:41:11:2f:9b:95:e9:4f:11:32:a0:79:b2:80:37:91:6a:
59:78:77:d7:3c:0d:09:bd:a8:33:3a:bb:ce:80:a3:42:c6:27:
df:1c:bf:92:85:ba:ed:eb:97:0d:8d:c6:0b:b1:e0:93:d1:a9:
ae:60:3f:af:a4:50:b3:93:e7:a2:e6:27:10:ae:f9:96:f2:ad:
91:33:b6:2a:96:de:55:46:f8:d8:27:d4:8b:e1:85:3c:0c:7e:
b6:50:e9:63:5a:27:a0:4c:b0:a8:2d:96:68:91:bd:67:2a:3f:
5b:10:dd:a1:64:95:c6:5c:f4:d0:85:55:a8:9a:90:c6:a3:6f:
35:8d:1f:ef:b4:7a:ab:db:e7:fb:f8:04:ef:9f:ad:b4:7d:67:
da:41:32:02:69:d6:18:35:dc:b0:34:07:6a:5a:2a:ab:fd:e2:
1a:93:52:9f:0d:c1:49:cf:4a:26:23:7a:4c:40:46:83:cb:27:
3e:3d:e6:19:1a:1e:88:cf:97:51:13:ef:74:8a:e4:b6:af:c1:
6a:0d:31:74:f6:32:5e:aa:44:b2:c0:9c:a3:63:06:ff:c1:32:
7a:81:fe:74:91:0a:98:ec:3b:6c:2e:18:62:e4:27:cd:5a:92:
fb:15:40:11
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZoAbCauplDw6hienD1INMMvMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDVmZGQxZThjMjM5NGQxOGU4NzZjMmQ1NzAxNmU3ZWQ4OTgw
NWE2NjcwHhcNMjUxMDIwMDcwMTE5WhcNMjUxMDIxMDcwMTE5WjAzMTEwLwYDVQQD
EygyODkwYmY3OTRjNzFkZjA1YWRjNGQ3YzhkYTg1YWNkZjA5ZjdiNzFiMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAw5y9BTT3GF58ugBiLoh/sUClMtpd
RE/CUL5EcNDHsZBNoVqzX7uB9U6ZDaNgjb5LA8T1dFAUtWdtJL+LgEM8cvd51x0Q
dP2gW7aKYh57p9EmYkb2FqWRzGk5CAxFDCl8ia6NHlCmREyeRYovzyGU5qiCdjgj
ipI7rIEL8a/3Gg/BGDpSEzkh26aJ31hlos0Lj2dZ2Dr/sRl28Z+KNl2y+JRu3YjV
4jRWdCOY50xf/WV6SlwRDHFIN/MctUu/cDLpnHvsFrPUf7JYUSDAyfYt/Zm58YRY
7TI53kJEmtlV+GgFkN593wceRbWZ+ef5zqvsB0bM/QexE3HcCmvbBz7PhQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFCiQv3lMcd8FrcTXyNqFrN8J97cbMB8GA1UdIwQY
MBaAFF/dHowjlNGOh2wtVwFuftiYBaZnMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvWDkwZWpDT1UwWTZIYkMxWEFXNS0ySmdGcG1jLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hMC9hNmQ0MmMtY2ZkNy00ZWQ1LTlmODMt
NWFlOTNlYzhmYjExLzEvWDkwZWpDT1UwWTZIYkMxWEFXNS0ySmdGcG1jLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9hMC9hNmQ0MmMtY2ZkNy00ZWQ1LTlmODMtNWFlOTNlYzhmYjEx
LzEvWDkwZWpDT1UwWTZIYkMxWEFXNS0ySmdGcG1jLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAuGR7owtb
JDKnVUXz47ssUN/mcLdBES+blelPETKgebKAN5FqWXh31zwNCb2oMzq7zoCjQsYn
3xy/koW67euXDY3GC7Hgk9GprmA/r6RQs5PnouYnEK75lvKtkTO2KpbeVUb42CfU
i+GFPAx+tlDpY1onoEywqC2WaJG9Zyo/WxDdoWSVxlz00IVVqJqQxqNvNY0f77R6
q9vn+/gE75+ttH1n2kEyAmnWGDXcsDQHaloqq/3iGpNSnw3BSc9KJiN6TEBGg8sn
Pj3mGRoeiM+XURPvdIrktq/Bag0xdPYyXqpEssCco2MG/8EyeoH+dJEKmOw7bC4Y
YuQnzVqS+xVAEQ==
-----END CERTIFICATE-----
Generated at Mon Oct 20 09:11:51 2025 by rpki-client