Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3b/2434f8-0566-45fc-b714-31a3ecf1bdb6/1/xaAZy1TXAKGxxQ6PkOvuKl7qV7s.mft
File: xaAZy1TXAKGxxQ6PkOvuKl7qV7s.mft (raw, json)
Hash identifier: KwhDRZtkksNLEAmAoMJ5cTohMgg2qkEk5OHNG8pINDA=
Subject key identifier: 39:EE:47:17:03:48:69:FD:60:0E:C8:49:F6:EA:6D:2A:B9:10:BB:40
Authority key identifier: C5:A0:19:CB:54:D7:00:A1:B1:C5:0E:8F:90:EB:EE:2A:5E:EA:57:BB
Certificate issuer: /CN=c5a019cb54d700a1b1c50e8f90ebee2a5eea57bb
Certificate serial: 019A4D07AF4E2E015FDAF4D1144DA9BE89EB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xaAZy1TXAKGxxQ6PkOvuKl7qV7s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3b/2434f8-0566-45fc-b714-31a3ecf1bdb6/1/xaAZy1TXAKGxxQ6PkOvuKl7qV7s.mft
Manifest number: 169F
Signing time: Tue 04 Nov 2025 04:02:20 +0000
Manifest this update: Tue 04 Nov 2025 04:02:20 +0000
Manifest next update: Wed 05 Nov 2025 04:02:20 +0000
Files and hashes: 1: kFAWzJxAiMhkm4NOvHOiD5PY66g.roa (hash: QJZEuzHLkJsVvRtJ8dcL8i0clH/1NRZmPUpPgEFazCw=)
2: xaAZy1TXAKGxxQ6PkOvuKl7qV7s.crl (hash: lMyneZ2vz9UPLtejS0nkuxWLJE5KiLsar95umfRSNYI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3b/2434f8-0566-45fc-b714-31a3ecf1bdb6/1/xaAZy1TXAKGxxQ6PkOvuKl7qV7s.crl
rsync://rpki.ripe.net/repository/DEFAULT/3b/2434f8-0566-45fc-b714-31a3ecf1bdb6/1/xaAZy1TXAKGxxQ6PkOvuKl7qV7s.mft
rsync://rpki.ripe.net/repository/DEFAULT/xaAZy1TXAKGxxQ6PkOvuKl7qV7s.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 05 Nov 2025 04:02:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:4d:07:af:4e:2e:01:5f:da:f4:d1:14:4d:a9:be:89:eb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c5a019cb54d700a1b1c50e8f90ebee2a5eea57bb
Validity
Not Before: Nov 4 04:02:20 2025 GMT
Not After : Nov 5 04:02:20 2025 GMT
Subject: CN=39ee4717034869fd600ec849f6ea6d2ab910bb40
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:36:88:43:12:20:e1:64:e9:97:53:a5:4e:30:
27:a3:76:c4:7a:18:fd:c1:d7:a3:29:e8:f2:a2:d6:
37:90:42:9a:e8:09:00:aa:cb:96:a4:3b:73:92:92:
8a:43:45:0f:b7:93:44:a8:10:74:c3:63:47:a7:34:
54:26:2f:04:8b:d4:7d:57:3f:7e:9f:07:c4:d5:16:
1e:3d:e7:61:ee:5b:4f:4d:f4:b5:71:76:14:98:b2:
43:ec:2d:d0:c6:32:c7:2f:40:49:f5:3b:0f:63:d9:
76:ca:9a:0b:2b:1c:92:ce:01:95:30:b4:10:0a:e9:
2e:de:d4:29:56:fe:ff:80:62:3d:01:c7:c9:a3:8c:
c1:7a:1a:48:9d:2f:ca:1a:30:bd:e5:53:66:23:f7:
89:40:c7:f6:b4:02:57:4e:f3:51:e2:ab:74:b6:61:
99:c9:5a:4f:bc:3f:46:56:59:53:08:ef:80:1b:85:
2e:3c:61:2e:2e:22:71:60:ab:5e:58:b9:63:21:6e:
6f:ad:04:06:fa:b7:83:ba:c2:23:4b:f9:bb:6e:21:
c4:b6:52:42:49:d6:74:d1:19:12:16:46:36:54:24:
6d:e3:51:fd:0e:f8:e1:48:a3:4e:a0:d1:02:46:c0:
2b:64:90:b9:7a:55:00:3c:a9:39:b9:c8:bc:80:ed:
83:6d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
39:EE:47:17:03:48:69:FD:60:0E:C8:49:F6:EA:6D:2A:B9:10:BB:40
X509v3 Authority Key Identifier:
keyid:C5:A0:19:CB:54:D7:00:A1:B1:C5:0E:8F:90:EB:EE:2A:5E:EA:57:BB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xaAZy1TXAKGxxQ6PkOvuKl7qV7s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3b/2434f8-0566-45fc-b714-31a3ecf1bdb6/1/xaAZy1TXAKGxxQ6PkOvuKl7qV7s.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3b/2434f8-0566-45fc-b714-31a3ecf1bdb6/1/xaAZy1TXAKGxxQ6PkOvuKl7qV7s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
28:07:86:72:4c:9c:f2:1d:c9:aa:30:32:e5:2d:56:93:5f:6e:
71:cb:ab:3b:47:7b:50:d2:f1:8d:7c:23:fc:44:e2:04:ac:5b:
d1:ae:62:1a:b2:18:f2:81:26:ac:2a:b7:b4:33:94:9a:c0:e2:
df:6e:3d:5c:6e:25:22:02:df:a8:36:a9:8d:1f:b0:2c:8b:2a:
93:01:99:76:87:5f:5f:c5:fc:6d:8b:2a:06:65:96:60:91:a7:
be:51:59:17:34:65:30:ff:7f:a1:06:f9:4f:6d:5d:6d:c9:0c:
46:4a:f8:f0:8d:a6:21:61:92:89:cf:da:2a:6c:b3:e2:ff:9d:
8d:cd:98:1b:9b:d9:6f:46:85:e3:95:02:22:05:6c:fc:e8:1a:
ab:53:98:ea:37:cf:25:71:05:82:93:91:b9:77:64:74:5d:f0:
d3:3e:0e:95:ce:17:98:90:0c:08:c5:06:41:33:33:ed:3d:a7:
4b:0e:2b:1c:2d:91:03:fc:d1:91:c7:c0:f2:66:93:3e:6f:82:
db:b8:df:c9:71:eb:2e:a2:50:dd:9f:50:f5:2b:cc:a3:21:b7:
73:b2:68:b3:a4:37:2e:28:51:fc:f3:2d:47:f0:fa:b7:d4:f8:
26:d4:fe:21:a6:71:93:66:91:d9:71:42:68:ad:6b:bb:da:81:
f5:46:e4:96
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZpNB69OLgFf2vTRFE2pvonrMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGM1YTAxOWNiNTRkNzAwYTFiMWM1MGU4ZjkwZWJlZTJhNWVl
YTU3YmIwHhcNMjUxMTA0MDQwMjIwWhcNMjUxMTA1MDQwMjIwWjAzMTEwLwYDVQQD
EygzOWVlNDcxNzAzNDg2OWZkNjAwZWM4NDlmNmVhNmQyYWI5MTBiYjQwMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwTaIQxIg4WTpl1OlTjAno3bEehj9
wdejKejyotY3kEKa6AkAqsuWpDtzkpKKQ0UPt5NEqBB0w2NHpzRUJi8Ei9R9Vz9+
nwfE1RYePedh7ltPTfS1cXYUmLJD7C3QxjLHL0BJ9TsPY9l2ypoLKxySzgGVMLQQ
Cuku3tQpVv7/gGI9AcfJo4zBehpInS/KGjC95VNmI/eJQMf2tAJXTvNR4qt0tmGZ
yVpPvD9GVllTCO+AG4UuPGEuLiJxYKteWLljIW5vrQQG+reDusIjS/m7biHEtlJC
SdZ00RkSFkY2VCRt41H9DvjhSKNOoNECRsArZJC5elUAPKk5uci8gO2DbQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFDnuRxcDSGn9YA7ISfbqbSq5ELtAMB8GA1UdIwQY
MBaAFMWgGctU1wChscUOj5Dr7ipe6le7MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQveGFBWnkxVFhBS0d4eFE2UGtPdnVLbDdxVjdzLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zYi8yNDM0ZjgtMDU2Ni00NWZjLWI3MTQt
MzFhM2VjZjFiZGI2LzEveGFBWnkxVFhBS0d4eFE2UGtPdnVLbDdxVjdzLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8zYi8yNDM0ZjgtMDU2Ni00NWZjLWI3MTQtMzFhM2VjZjFiZGI2
LzEveGFBWnkxVFhBS0d4eFE2UGtPdnVLbDdxVjdzLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAKAeGckyc
8h3JqjAy5S1Wk19uccurO0d7UNLxjXwj/ETiBKxb0a5iGrIY8oEmrCq3tDOUmsDi
3249XG4lIgLfqDapjR+wLIsqkwGZdodfX8X8bYsqBmWWYJGnvlFZFzRlMP9/oQb5
T21dbckMRkr48I2mIWGSic/aKmyz4v+djc2YG5vZb0aF45UCIgVs/Ogaq1OY6jfP
JXEFgpORuXdkdF3w0z4Olc4XmJAMCMUGQTMz7T2nSw4rHC2RA/zRkcfA8maTPm+C
27jfyXHrLqJQ3Z9Q9SvMoyG3c7Jos6Q3LihR/PMtR/D6t9T4JtT+IaZxk2aR2XFC
aK1ru9qB9Ubklg==
-----END CERTIFICATE-----
Generated at Tue Nov 4 11:20:50 2025 by rpki-client