Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2f/b8f5e6-c951-4ddb-b4f5-a881ec8228b5/1/XM3soXHkIseck4wnMqkNSKjFPAY.mft
File: XM3soXHkIseck4wnMqkNSKjFPAY.mft (raw, json)
Hash identifier: oqYtcI7dQ1L6FeVQNMhSHlT6e4Cu4vBC2hsqL7sN5xQ=
Subject key identifier: B8:39:90:B6:3E:6A:9B:55:36:2F:2E:63:63:A2:AB:0C:D5:74:74:82
Authority key identifier: 5C:CD:EC:A1:71:E4:22:C7:9C:93:8C:27:32:A9:0D:48:A8:C5:3C:06
Certificate issuer: /CN=5ccdeca171e422c79c938c2732a90d48a8c53c06
Certificate serial: 019A4F9942242B928C64B604409846BD598A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XM3soXHkIseck4wnMqkNSKjFPAY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2f/b8f5e6-c951-4ddb-b4f5-a881ec8228b5/1/XM3soXHkIseck4wnMqkNSKjFPAY.mft
Manifest number: 171B
Signing time: Tue 04 Nov 2025 16:00:35 +0000
Manifest this update: Tue 04 Nov 2025 16:00:35 +0000
Manifest next update: Wed 05 Nov 2025 16:00:35 +0000
Files and hashes: 1: 1ZFRCjoLi_l_VlnDb8o8tJWIa2E.roa (hash: vVgcWoftvDNuMTcgCwdMnGyQwGXGLdFZoBkxUeU+jcg=)
2: LxxlY-veNdEFSuClmgliyHMOZOA.roa (hash: eyCm9s0PQeZ1TTpko+C38z1BbPAWbfE1nA0PWObj7+Q=)
3: NqBM7SejbvGbff9d0C8tNNMd9cE.roa (hash: NsdFpCr4tDnCXl/0XE2a5AdGU138fFNht03h3yMplDQ=)
4: Td-MjJ9z3BFMN-CR2k1YuGa_k_c.roa (hash: 0YQPkgNx9PD50yI1FD2kcNedXzzoW6sYrN+X7fEAhd4=)
5: XM3soXHkIseck4wnMqkNSKjFPAY.crl (hash: YksE3f8E+pW+GWU35SJFMv4mxiR4Puv2j3t1ved2vvE=)
6: aa3wYkdpjQEDieV4Tr1D1UlS-yQ.roa (hash: OvNz6w0TsSCTT94cQ7JVYM2YwdlsjARoid2lWLlXj5c=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2f/b8f5e6-c951-4ddb-b4f5-a881ec8228b5/1/XM3soXHkIseck4wnMqkNSKjFPAY.crl
rsync://rpki.ripe.net/repository/DEFAULT/2f/b8f5e6-c951-4ddb-b4f5-a881ec8228b5/1/XM3soXHkIseck4wnMqkNSKjFPAY.mft
rsync://rpki.ripe.net/repository/DEFAULT/XM3soXHkIseck4wnMqkNSKjFPAY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 05 Nov 2025 16:00:35 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:4f:99:42:24:2b:92:8c:64:b6:04:40:98:46:bd:59:8a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5ccdeca171e422c79c938c2732a90d48a8c53c06
Validity
Not Before: Nov 4 16:00:35 2025 GMT
Not After : Nov 5 16:00:35 2025 GMT
Subject: CN=b83990b63e6a9b55362f2e6363a2ab0cd5747482
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:e6:d4:22:b5:18:77:27:63:94:37:9f:43:38:
d0:78:7f:46:60:56:62:4f:d8:8c:41:8e:5a:1c:b2:
9e:5a:d9:b5:a7:80:3d:82:48:2f:be:fb:24:54:c0:
56:34:d8:7e:5e:e9:e6:d2:eb:24:cc:cb:61:59:30:
67:9e:2d:de:4f:f3:62:d3:00:37:c3:fe:c5:88:5e:
d3:54:23:dc:c0:34:e2:04:89:9b:8b:79:e0:f1:98:
99:c8:a9:14:61:e3:5f:0f:7f:30:1e:f7:cf:1f:af:
cf:bc:21:23:2a:77:ea:8a:a6:51:a9:73:0c:27:f3:
03:6f:a4:3a:2d:2a:27:92:38:43:85:84:ac:ea:5d:
fa:fe:ce:74:af:34:b8:58:c7:8e:e7:62:7c:09:e0:
5e:82:c2:db:ba:57:09:4d:06:3d:5a:a2:ba:0b:98:
64:cf:d0:ae:07:bd:06:5f:01:0d:1b:62:1e:5c:70:
4d:23:83:e6:bb:d5:e9:60:6a:da:e0:5e:28:d8:63:
a9:0c:7f:ed:6f:ab:d5:12:5b:79:97:c0:1a:ef:99:
cf:f7:39:b5:bf:55:db:ca:96:83:02:8c:ee:82:38:
c3:f8:70:a6:12:cb:1e:1d:b3:52:3e:4d:2d:12:c9:
81:2f:f5:87:1d:d1:cf:56:3e:4b:34:2f:e9:44:de:
04:cf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B8:39:90:B6:3E:6A:9B:55:36:2F:2E:63:63:A2:AB:0C:D5:74:74:82
X509v3 Authority Key Identifier:
keyid:5C:CD:EC:A1:71:E4:22:C7:9C:93:8C:27:32:A9:0D:48:A8:C5:3C:06
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XM3soXHkIseck4wnMqkNSKjFPAY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2f/b8f5e6-c951-4ddb-b4f5-a881ec8228b5/1/XM3soXHkIseck4wnMqkNSKjFPAY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2f/b8f5e6-c951-4ddb-b4f5-a881ec8228b5/1/XM3soXHkIseck4wnMqkNSKjFPAY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
65:0e:91:03:dd:4e:17:28:11:73:d4:f9:42:7a:c2:58:d5:f0:
28:f4:46:e8:a7:ea:fd:15:9f:7b:0f:fd:a3:88:87:c3:3b:ab:
2d:ff:8d:d4:1d:43:a8:16:ce:85:6e:36:d6:f6:45:45:22:3b:
5e:64:0e:1b:8a:95:51:b9:83:76:21:ef:73:62:b0:45:e2:e0:
1f:3d:26:99:48:3c:eb:3c:bf:05:04:ea:2f:67:94:f3:a7:f6:
27:d3:a5:99:a4:49:f0:56:cd:f2:38:d6:bc:f7:64:d6:8b:f9:
1b:97:bd:49:2e:34:b5:4b:82:16:c0:e4:2b:7e:4b:4f:62:52:
7d:71:d2:3d:8d:ce:bd:99:6b:73:27:b2:b7:65:51:dc:3c:52:
4c:ae:66:76:66:4e:04:84:82:52:20:fa:00:18:56:11:25:07:
af:0d:f0:b6:6c:c7:b3:93:e0:9b:ab:ed:79:15:78:0a:3c:a7:
99:1d:b1:83:5b:28:15:83:c5:3b:9d:cf:b8:74:08:f6:0c:f9:
e7:df:41:95:f6:94:17:a6:67:32:ac:f9:02:dc:01:5a:fc:08:
61:67:7d:31:8c:52:69:2f:a4:e9:eb:0e:c7:63:20:ed:d7:42:
5a:95:f0:34:fd:10:d4:e9:a8:91:73:af:c2:24:3a:c1:10:26:
a4:42:87:3d
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZpPmUIkK5KMZLYEQJhGvVmKMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDVjY2RlY2ExNzFlNDIyYzc5YzkzOGMyNzMyYTkwZDQ4YThj
NTNjMDYwHhcNMjUxMTA0MTYwMDM1WhcNMjUxMTA1MTYwMDM1WjAzMTEwLwYDVQQD
EyhiODM5OTBiNjNlNmE5YjU1MzYyZjJlNjM2M2EyYWIwY2Q1NzQ3NDgyMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtebUIrUYdydjlDefQzjQeH9GYFZi
T9iMQY5aHLKeWtm1p4A9gkgvvvskVMBWNNh+Xunm0uskzMthWTBnni3eT/Ni0wA3
w/7FiF7TVCPcwDTiBImbi3ng8ZiZyKkUYeNfD38wHvfPH6/PvCEjKnfqiqZRqXMM
J/MDb6Q6LSonkjhDhYSs6l36/s50rzS4WMeO52J8CeBegsLbulcJTQY9WqK6C5hk
z9CuB70GXwENG2IeXHBNI4Pmu9XpYGra4F4o2GOpDH/tb6vVElt5l8Aa75nP9zm1
v1XbypaDAozugjjD+HCmEsseHbNSPk0tEsmBL/WHHdHPVj5LNC/pRN4EzwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFLg5kLY+aptVNi8uY2OiqwzVdHSCMB8GA1UdIwQY
MBaAFFzN7KFx5CLHnJOMJzKpDUioxTwGMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvWE0zc29YSGtJc2VjazR3bk1xa05TS2pGUEFZLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yZi9iOGY1ZTYtYzk1MS00ZGRiLWI0ZjUt
YTg4MWVjODIyOGI1LzEvWE0zc29YSGtJc2VjazR3bk1xa05TS2pGUEFZLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8yZi9iOGY1ZTYtYzk1MS00ZGRiLWI0ZjUtYTg4MWVjODIyOGI1
LzEvWE0zc29YSGtJc2VjazR3bk1xa05TS2pGUEFZLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAZQ6RA91O
FygRc9T5QnrCWNXwKPRG6Kfq/RWfew/9o4iHwzurLf+N1B1DqBbOhW421vZFRSI7
XmQOG4qVUbmDdiHvc2KwReLgHz0mmUg86zy/BQTqL2eU86f2J9OlmaRJ8FbN8jjW
vPdk1ov5G5e9SS40tUuCFsDkK35LT2JSfXHSPY3OvZlrcyeyt2VR3DxSTK5mdmZO
BISCUiD6ABhWESUHrw3wtmzHs5Pgm6vteRV4CjynmR2xg1soFYPFO53PuHQI9gz5
599BlfaUF6ZnMqz5AtwBWvwIYWd9MYxSaS+k6esOx2Mg7ddCWpXwNP0Q1OmokXOv
wiQ6wRAmpEKHPQ==
-----END CERTIFICATE-----
Generated at Tue Nov 4 20:16:49 2025 by rpki-client