Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/11/1ebcb2-4ef0-42ff-81b5-9b17def9c233/1/x0HESpzVjhJWkGY32TXDGQ9_6xo.mft
File: x0HESpzVjhJWkGY32TXDGQ9_6xo.mft (raw, json)
Hash identifier: 90DnvR8fRTil5ibjhpQArfmvDMZgyh6xqPpd2hLcpwQ=
Subject key identifier: E8:55:56:B6:D9:58:6C:D1:C0:86:01:FB:14:41:8C:B2:13:E6:72:BC
Authority key identifier: C7:41:C4:4A:9C:D5:8E:12:56:90:66:37:D9:35:C3:19:0F:7F:EB:1A
Certificate issuer: /CN=c741c44a9cd58e1256906637d935c3190f7feb1a
Certificate serial: 019A4E8641EC682B798676D6CC10D9CC5481
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/x0HESpzVjhJWkGY32TXDGQ9_6xo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/11/1ebcb2-4ef0-42ff-81b5-9b17def9c233/1/x0HESpzVjhJWkGY32TXDGQ9_6xo.mft
Manifest number: 14AE
Signing time: Tue 04 Nov 2025 11:00:12 +0000
Manifest this update: Tue 04 Nov 2025 11:00:12 +0000
Manifest next update: Wed 05 Nov 2025 11:00:12 +0000
Files and hashes: 1: qptSZ2XpOAOxaz7moTgQi3lsLeM.roa (hash: KtrtO/sBSgHAN1gAhTfDKw+KYUTZI/b5RNJ8EjfK/UU=)
2: x0HESpzVjhJWkGY32TXDGQ9_6xo.crl (hash: nAyV4qwCXtaDXAu81bO7jOZ09FgkMlK/7EeC7NWiKFo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/11/1ebcb2-4ef0-42ff-81b5-9b17def9c233/1/x0HESpzVjhJWkGY32TXDGQ9_6xo.crl
rsync://rpki.ripe.net/repository/DEFAULT/11/1ebcb2-4ef0-42ff-81b5-9b17def9c233/1/x0HESpzVjhJWkGY32TXDGQ9_6xo.mft
rsync://rpki.ripe.net/repository/DEFAULT/x0HESpzVjhJWkGY32TXDGQ9_6xo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 05 Nov 2025 09:00:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:4e:86:41:ec:68:2b:79:86:76:d6:cc:10:d9:cc:54:81
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c741c44a9cd58e1256906637d935c3190f7feb1a
Validity
Not Before: Nov 4 11:00:12 2025 GMT
Not After : Nov 5 11:00:12 2025 GMT
Subject: CN=e85556b6d9586cd1c08601fb14418cb213e672bc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:9c:9c:b5:8d:82:f5:84:f3:3b:53:d3:b3:06:
24:57:34:05:27:74:71:2b:17:c1:1e:5c:c3:04:5c:
c8:44:13:41:c3:6e:47:57:58:f2:84:f6:00:0b:d4:
62:7d:f8:12:4b:ce:69:ce:f8:93:a3:37:51:b0:f2:
f6:e1:eb:bd:12:b4:48:cf:0f:37:2d:72:04:61:77:
46:7e:58:8d:5f:89:1f:62:24:28:78:f3:94:0f:c7:
0c:a4:5f:21:02:da:6f:7d:1c:8b:33:6e:65:8b:17:
69:dd:e1:28:37:80:22:0d:d3:dd:68:50:8f:31:ae:
3d:6a:9e:e7:9f:de:7b:0e:0a:22:f4:87:34:ec:d6:
f3:23:d2:3f:c6:d1:8c:6d:ac:88:76:ea:a5:5e:f3:
12:ef:8d:1e:d1:7e:3e:83:c0:be:29:5a:2a:7f:c9:
cb:06:ce:69:51:3f:13:3e:60:46:a5:f4:1f:74:71:
a3:8c:25:7a:c7:75:2c:14:95:f3:54:b7:dc:44:4c:
63:10:db:81:84:0a:ac:ab:ff:6f:95:92:83:0f:5a:
c9:05:5f:d2:04:6d:8c:f1:c2:c9:2d:6c:2d:82:bf:
3c:16:a0:2b:5a:7b:5c:c8:ed:60:49:97:f8:b1:7a:
15:dc:28:b3:07:bd:c6:24:ed:e7:60:46:17:e8:c5:
af:81
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E8:55:56:B6:D9:58:6C:D1:C0:86:01:FB:14:41:8C:B2:13:E6:72:BC
X509v3 Authority Key Identifier:
keyid:C7:41:C4:4A:9C:D5:8E:12:56:90:66:37:D9:35:C3:19:0F:7F:EB:1A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/x0HESpzVjhJWkGY32TXDGQ9_6xo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/11/1ebcb2-4ef0-42ff-81b5-9b17def9c233/1/x0HESpzVjhJWkGY32TXDGQ9_6xo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/11/1ebcb2-4ef0-42ff-81b5-9b17def9c233/1/x0HESpzVjhJWkGY32TXDGQ9_6xo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
ad:04:6a:cf:1f:2a:1f:c1:2b:0c:ac:fa:0d:f9:3e:46:bb:3e:
65:03:d0:a6:44:e0:e6:8f:c4:89:bf:3d:b0:14:3f:63:5f:96:
62:e6:bd:5f:4d:3e:8a:3a:39:c2:06:9d:30:7a:5f:a8:6d:84:
07:ba:72:8f:15:2f:91:ed:a9:d6:10:85:7d:26:01:e8:60:1d:
16:b0:8a:d2:2f:54:68:5b:f1:54:81:80:c1:a5:1c:93:59:3d:
1a:7c:23:65:20:e5:b4:1c:4d:77:c0:05:05:b7:15:ae:a5:28:
d0:7c:d3:c7:29:9e:96:8b:95:e5:e9:a4:ce:f6:0d:b1:c4:b8:
1c:7f:ba:57:e2:4b:32:c4:d8:8e:18:35:9d:2f:1d:d9:da:75:
c5:8c:06:d2:44:ef:11:d9:59:f1:dc:bf:85:4f:f3:50:46:d1:
16:94:42:f3:84:68:97:64:c3:ff:ad:df:78:91:e9:56:b6:c8:
d2:52:b3:4f:7e:90:c0:18:7d:2a:2d:8b:7b:e5:58:26:4a:10:
da:45:bc:e1:26:d4:26:ea:22:fe:25:b7:61:80:2b:7c:60:43:
91:4d:3f:b4:8a:cb:16:21:71:13:62:f0:f7:5b:c4:5b:ef:cf:
3d:e3:2a:00:63:7a:54:81:7d:3e:fa:6d:ae:9b:05:18:16:17:
11:bb:39:5e
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZpOhkHsaCt5hnbWzBDZzFSBMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGM3NDFjNDRhOWNkNThlMTI1NjkwNjYzN2Q5MzVjMzE5MGY3
ZmViMWEwHhcNMjUxMTA0MTEwMDEyWhcNMjUxMTA1MTEwMDEyWjAzMTEwLwYDVQQD
EyhlODU1NTZiNmQ5NTg2Y2QxYzA4NjAxZmIxNDQxOGNiMjEzZTY3MmJjMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArZyctY2C9YTzO1PTswYkVzQFJ3Rx
KxfBHlzDBFzIRBNBw25HV1jyhPYAC9RiffgSS85pzviTozdRsPL24eu9ErRIzw83
LXIEYXdGfliNX4kfYiQoePOUD8cMpF8hAtpvfRyLM25lixdp3eEoN4AiDdPdaFCP
Ma49ap7nn957Dgoi9Ic07NbzI9I/xtGMbayIduqlXvMS740e0X4+g8C+KVoqf8nL
Bs5pUT8TPmBGpfQfdHGjjCV6x3UsFJXzVLfcRExjENuBhAqsq/9vlZKDD1rJBV/S
BG2M8cLJLWwtgr88FqArWntcyO1gSZf4sXoV3CizB73GJO3nYEYX6MWvgQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFOhVVrbZWGzRwIYB+xRBjLIT5nK8MB8GA1UdIwQY
MBaAFMdBxEqc1Y4SVpBmN9k1wxkPf+saMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQveDBIRVNwelZqaEpXa0dZMzJUWERHUTlfNnhvLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xMS8xZWJjYjItNGVmMC00MmZmLTgxYjUt
OWIxN2RlZjljMjMzLzEveDBIRVNwelZqaEpXa0dZMzJUWERHUTlfNnhvLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8xMS8xZWJjYjItNGVmMC00MmZmLTgxYjUtOWIxN2RlZjljMjMz
LzEveDBIRVNwelZqaEpXa0dZMzJUWERHUTlfNnhvLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEArQRqzx8q
H8ErDKz6Dfk+Rrs+ZQPQpkTg5o/Eib89sBQ/Y1+WYua9X00+ijo5wgadMHpfqG2E
B7pyjxUvke2p1hCFfSYB6GAdFrCK0i9UaFvxVIGAwaUck1k9GnwjZSDltBxNd8AF
BbcVrqUo0HzTxymelouV5emkzvYNscS4HH+6V+JLMsTYjhg1nS8d2dp1xYwG0kTv
EdlZ8dy/hU/zUEbRFpRC84Rol2TD/63feJHpVrbI0lKzT36QwBh9Ki2Le+VYJkoQ
2kW84SbUJuoi/iW3YYArfGBDkU0/tIrLFiFxE2Lw91vEW+/PPeMqAGN6VIF9Pvpt
rpsFGBYXEbs5Xg==
-----END CERTIFICATE-----
Generated at Tue Nov 4 18:15:43 2025 by rpki-client