Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f6/a4ba8f-5e61-4dcc-ba0b-f624ed5f46fe/1/xHC41L-HFAS8pTx3gVME7y6k4co.mft
File: xHC41L-HFAS8pTx3gVME7y6k4co.mft (raw, json)
Hash identifier: 6PVFU3tiuVLTdGjjrND57ziY4iB7aSGA2uh1BrX4J+c=
Subject key identifier: 95:00:01:87:8E:AC:F6:57:8E:D7:B0:61:0A:89:5A:EC:FF:02:05:93
Authority key identifier: C4:70:B8:D4:BF:87:14:04:BC:A5:3C:77:81:53:04:EF:2E:A4:E1:CA
Certificate issuer: /CN=c470b8d4bf871404bca53c77815304ef2ea4e1ca
Certificate serial: 0198D6297DE79CCCC3E64794E02DD47B8EB1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xHC41L-HFAS8pTx3gVME7y6k4co.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f6/a4ba8f-5e61-4dcc-ba0b-f624ed5f46fe/1/xHC41L-HFAS8pTx3gVME7y6k4co.mft
Manifest number: 2F
Signing time: Sat 23 Aug 2025 09:01:40 +0000
Manifest this update: Sat 23 Aug 2025 09:01:40 +0000
Manifest next update: Sun 24 Aug 2025 09:01:40 +0000
Files and hashes: 1: N1QJr3d4xPAL0pWw7bMpfGQLYDw.roa (hash: bdncW/PZlPA4ydR5a6GdEoycfKMOIvrr26MW7cKXUvM=)
2: xHC41L-HFAS8pTx3gVME7y6k4co.crl (hash: DlMWq1VJTpTKpLisUyCBzjbINZEkpmTGkcLv6WnwCrk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f6/a4ba8f-5e61-4dcc-ba0b-f624ed5f46fe/1/xHC41L-HFAS8pTx3gVME7y6k4co.crl
rsync://rpki.ripe.net/repository/DEFAULT/f6/a4ba8f-5e61-4dcc-ba0b-f624ed5f46fe/1/xHC41L-HFAS8pTx3gVME7y6k4co.mft
rsync://rpki.ripe.net/repository/DEFAULT/xHC41L-HFAS8pTx3gVME7y6k4co.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 05:01:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d6:29:7d:e7:9c:cc:c3:e6:47:94:e0:2d:d4:7b:8e:b1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c470b8d4bf871404bca53c77815304ef2ea4e1ca
Validity
Not Before: Aug 23 09:01:40 2025 GMT
Not After : Aug 24 09:01:40 2025 GMT
Subject: CN=950001878eacf6578ed7b0610a895aecff020593
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:5c:64:ba:6c:fa:65:a1:89:93:ee:6a:88:60:
cf:ea:0d:53:2f:97:f0:77:73:b3:be:59:fc:a6:75:
fc:32:e1:b1:c3:d4:fb:5c:ec:b2:91:6e:75:08:0c:
7a:24:0d:f6:99:2c:86:9a:02:33:38:f6:b4:d5:db:
91:04:ef:05:83:5e:85:3d:70:1b:a4:7e:cd:6c:e5:
b9:30:75:e9:cd:cc:1b:60:dc:52:a3:d9:f5:5f:8c:
42:93:d7:29:82:7f:d9:4c:64:37:0c:46:85:79:23:
4f:e7:9b:b8:b2:70:69:19:bf:1f:1b:46:af:88:e1:
fc:e9:4b:4c:1b:24:e0:1f:8a:70:9b:1f:f8:3a:3e:
13:c0:4d:60:cd:11:87:ea:ab:91:b3:e9:9d:c8:73:
9d:3d:e2:cb:b9:cc:b1:4f:8a:b6:40:9f:4a:7c:42:
2f:9c:94:ed:4d:1c:60:26:8f:a3:10:70:99:ac:6f:
2a:4b:c2:b2:68:c6:7c:c4:ea:ac:1a:d0:7e:be:a4:
c6:7a:c5:3c:12:c8:86:77:00:e0:8c:38:06:af:f7:
f1:01:cb:5f:3f:1c:3f:79:24:69:31:75:e0:30:2b:
c8:0b:3b:6e:b5:be:d9:4a:71:58:b4:e7:ee:80:6e:
12:33:5d:68:56:0c:55:be:53:b1:c2:8d:a7:51:23:
71:a9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
95:00:01:87:8E:AC:F6:57:8E:D7:B0:61:0A:89:5A:EC:FF:02:05:93
X509v3 Authority Key Identifier:
keyid:C4:70:B8:D4:BF:87:14:04:BC:A5:3C:77:81:53:04:EF:2E:A4:E1:CA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xHC41L-HFAS8pTx3gVME7y6k4co.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f6/a4ba8f-5e61-4dcc-ba0b-f624ed5f46fe/1/xHC41L-HFAS8pTx3gVME7y6k4co.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f6/a4ba8f-5e61-4dcc-ba0b-f624ed5f46fe/1/xHC41L-HFAS8pTx3gVME7y6k4co.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
df:40:60:3c:84:d1:8e:be:14:6a:bf:9c:92:86:1d:11:54:b9:
cd:30:21:74:7c:04:24:c9:64:f3:5c:e9:4b:13:c9:96:00:db:
e5:59:25:0d:bc:1e:5f:b1:23:6e:1a:3e:36:73:b1:3b:cb:64:
8c:e6:29:e6:ac:b3:f5:e5:b1:39:c1:65:c9:70:45:f4:47:24:
05:6e:74:92:16:49:a6:c7:d4:e9:d1:3c:29:be:14:9f:19:79:
61:01:a8:e8:ea:3b:cd:7e:c8:62:1d:7d:cd:f5:8c:19:26:1c:
94:f0:23:78:75:19:8c:fd:78:3e:bc:16:83:ad:4b:67:c9:e8:
18:2e:46:31:54:87:71:54:d6:5b:a4:a0:38:83:70:b8:3a:fb:
07:16:ae:32:72:71:31:47:ac:22:42:9f:ab:67:95:22:af:b1:
92:f6:03:8f:90:76:02:9b:21:df:6d:74:c8:a0:de:0e:a2:43:
14:fb:d5:f4:ee:b9:d2:3e:0c:e1:fc:c4:57:c5:79:f6:bd:59:
fe:b8:9a:42:ad:9d:7b:fd:d4:ad:37:77:a0:23:02:ab:47:cc:
83:32:18:e8:0c:30:53:a1:e6:a4:d9:6a:7e:47:5e:9b:ff:c7:
13:8c:0e:7a:ad:dd:e3:3d:02:69:3b:7c:bc:d0:b7:b9:70:ca:
fa:39:29:57
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZjWKX3nnMzD5keU4C3Ue46xMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGM0NzBiOGQ0YmY4NzE0MDRiY2E1M2M3NzgxNTMwNGVmMmVh
NGUxY2EwHhcNMjUwODIzMDkwMTQwWhcNMjUwODI0MDkwMTQwWjAzMTEwLwYDVQQD
Eyg5NTAwMDE4NzhlYWNmNjU3OGVkN2IwNjEwYTg5NWFlY2ZmMDIwNTkzMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqVxkumz6ZaGJk+5qiGDP6g1TL5fw
d3Ozvln8pnX8MuGxw9T7XOyykW51CAx6JA32mSyGmgIzOPa01duRBO8Fg16FPXAb
pH7NbOW5MHXpzcwbYNxSo9n1X4xCk9cpgn/ZTGQ3DEaFeSNP55u4snBpGb8fG0av
iOH86UtMGyTgH4pwmx/4Oj4TwE1gzRGH6quRs+mdyHOdPeLLucyxT4q2QJ9KfEIv
nJTtTRxgJo+jEHCZrG8qS8KyaMZ8xOqsGtB+vqTGesU8EsiGdwDgjDgGr/fxActf
Pxw/eSRpMXXgMCvICztutb7ZSnFYtOfugG4SM11oVgxVvlOxwo2nUSNxqQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFJUAAYeOrPZXjtewYQqJWuz/AgWTMB8GA1UdIwQY
MBaAFMRwuNS/hxQEvKU8d4FTBO8upOHKMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQveEhDNDFMLUhGQVM4cFR4M2dWTUU3eTZrNGNvLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mNi9hNGJhOGYtNWU2MS00ZGNjLWJhMGIt
ZjYyNGVkNWY0NmZlLzEveEhDNDFMLUhGQVM4cFR4M2dWTUU3eTZrNGNvLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9mNi9hNGJhOGYtNWU2MS00ZGNjLWJhMGItZjYyNGVkNWY0NmZl
LzEveEhDNDFMLUhGQVM4cFR4M2dWTUU3eTZrNGNvLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEA30BgPITR
jr4Uar+ckoYdEVS5zTAhdHwEJMlk81zpSxPJlgDb5VklDbweX7Ejbho+NnOxO8tk
jOYp5qyz9eWxOcFlyXBF9EckBW50khZJpsfU6dE8Kb4Unxl5YQGo6Oo7zX7IYh19
zfWMGSYclPAjeHUZjP14PrwWg61LZ8noGC5GMVSHcVTWW6SgOINwuDr7BxauMnJx
MUesIkKfq2eVIq+xkvYDj5B2Apsh3210yKDeDqJDFPvV9O650j4M4fzEV8V59r1Z
/riaQq2de/3UrTd3oCMCq0fMgzIY6AwwU6HmpNlqfkdem//HE4wOeq3d4z0CaTt8
vNC3uXDK+jkpVw==
-----END CERTIFICATE-----
Generated at Sat Aug 23 14:04:43 2025 by rpki-client