Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/63/d54bc0-f781-48b0-9f6d-b5f0d21053f8/1/XYLKb462haVz5dHZH48GEhqwKjc.mft
File: XYLKb462haVz5dHZH48GEhqwKjc.mft (raw, json)
Hash identifier: Ye4F76XJoelTq6IBt3QGRUoA69tW+CKWWz+GWNT1NMo=
Subject key identifier: D8:4C:6E:3E:47:72:F7:9A:4B:33:78:71:DF:24:7D:22:40:94:8A:D6
Authority key identifier: 5D:82:CA:6F:8E:B6:85:A5:73:E5:D1:D9:1F:8F:06:12:1A:B0:2A:37
Certificate issuer: /CN=5d82ca6f8eb685a573e5d1d91f8f06121ab02a37
Certificate serial: 019A5074E15B83AFEA462E2780460B75E633
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XYLKb462haVz5dHZH48GEhqwKjc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/63/d54bc0-f781-48b0-9f6d-b5f0d21053f8/1/XYLKb462haVz5dHZH48GEhqwKjc.mft
Manifest number: 1345
Signing time: Tue 04 Nov 2025 20:00:28 +0000
Manifest this update: Tue 04 Nov 2025 20:00:28 +0000
Manifest next update: Wed 05 Nov 2025 20:00:28 +0000
Files and hashes: 1: 5CQ4eO5LX17KXZ4KRK1zO2WmDio.roa (hash: elGO+kkXCWf6xUhLxKQr6fK8y3EJu/aqnItwgZKwIWc=)
2: B7NZ-u78J5mcpsov1XyIGK10cH0.roa (hash: U6kZ6B0tG819VSZmmXYNrc7xdPGbBot/5/JsXAv6Iss=)
3: OoBGTJUsN0YQ8-kRUhL79IvaFTU.roa (hash: KQ8kfmaZw2mJmdCZhrX6qjUaRt+eTM3yBnvc8ppjAws=)
4: XYLKb462haVz5dHZH48GEhqwKjc.crl (hash: U1UOU1XLQeRYbXsOzBYKzjn6uy43azpFgh9BXqhvOLc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/63/d54bc0-f781-48b0-9f6d-b5f0d21053f8/1/XYLKb462haVz5dHZH48GEhqwKjc.crl
rsync://rpki.ripe.net/repository/DEFAULT/63/d54bc0-f781-48b0-9f6d-b5f0d21053f8/1/XYLKb462haVz5dHZH48GEhqwKjc.mft
rsync://rpki.ripe.net/repository/DEFAULT/XYLKb462haVz5dHZH48GEhqwKjc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 05 Nov 2025 20:00:28 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:50:74:e1:5b:83:af:ea:46:2e:27:80:46:0b:75:e6:33
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5d82ca6f8eb685a573e5d1d91f8f06121ab02a37
Validity
Not Before: Nov 4 20:00:28 2025 GMT
Not After : Nov 5 20:00:28 2025 GMT
Subject: CN=d84c6e3e4772f79a4b337871df247d2240948ad6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:fb:01:b7:00:83:19:88:e3:15:16:7e:99:db:
35:e7:94:d8:61:d2:f3:18:2a:2f:d3:09:eb:e4:6b:
6c:59:8d:92:1c:7f:91:68:26:22:c7:08:40:19:54:
90:47:8d:25:fe:e0:ed:44:65:a6:14:60:bd:a5:75:
4b:43:c8:c9:ca:07:e2:86:76:1e:a0:76:9c:56:a3:
9c:5f:cc:be:ca:ba:cb:58:3f:50:bc:c5:ff:d8:10:
72:2b:bb:95:0b:20:e7:ae:9d:ef:25:00:87:b4:21:
f9:32:ba:8d:a2:f9:2d:5b:0c:52:75:1b:8d:10:a7:
c3:88:3d:2d:5a:b8:b5:63:d7:eb:31:47:2a:0d:71:
0f:65:94:91:58:3e:e7:2d:18:b2:b6:d4:06:64:c6:
a9:5c:f8:d9:1e:8f:0d:c2:60:7b:7b:35:76:f2:5c:
cb:23:18:d1:6e:e2:86:70:06:fe:42:3d:12:10:25:
6b:13:06:06:09:bf:c2:41:b1:dd:9d:f6:2f:da:25:
2b:77:54:fa:54:8a:80:46:f4:2c:7b:b8:9b:84:e7:
e1:f7:4e:b1:0e:85:c5:41:d3:47:ba:8b:9a:07:b0:
87:4b:c7:76:e2:bc:4d:48:15:82:2e:ea:85:47:21:
60:3f:61:f7:2d:ba:e2:d9:1f:ac:3a:97:50:9e:6e:
2d:b5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D8:4C:6E:3E:47:72:F7:9A:4B:33:78:71:DF:24:7D:22:40:94:8A:D6
X509v3 Authority Key Identifier:
keyid:5D:82:CA:6F:8E:B6:85:A5:73:E5:D1:D9:1F:8F:06:12:1A:B0:2A:37
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XYLKb462haVz5dHZH48GEhqwKjc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/63/d54bc0-f781-48b0-9f6d-b5f0d21053f8/1/XYLKb462haVz5dHZH48GEhqwKjc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/63/d54bc0-f781-48b0-9f6d-b5f0d21053f8/1/XYLKb462haVz5dHZH48GEhqwKjc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
8c:23:24:5b:77:bf:12:2a:79:5e:e3:75:8e:0e:1d:76:ea:44:
1e:98:7f:e0:51:49:b9:aa:1a:77:f3:09:70:a0:73:0b:02:56:
d9:8c:dc:8c:a4:77:d4:6e:db:c2:42:e0:59:8e:70:fa:e1:cf:
5e:8f:34:2c:89:45:bb:e4:c5:1a:ce:81:ba:15:67:9d:a5:5a:
34:6c:ae:d2:86:54:c5:3b:ab:a0:78:8f:a1:55:70:8c:85:42:
d0:33:e1:26:14:48:a3:ce:dd:90:f4:07:b9:bf:c8:d0:19:13:
75:85:12:7a:62:22:4e:e1:9b:20:c4:b0:4b:1d:3e:12:19:1d:
37:6d:eb:97:94:76:45:8b:70:e3:0e:9a:2a:06:98:96:f5:15:
8c:75:e9:71:68:42:ae:79:4d:b5:6b:2a:9f:da:80:65:bb:e7:
5c:73:9a:33:91:2a:4b:1a:28:f7:b6:10:58:d2:4a:91:5b:97:
10:81:01:2e:b6:15:1b:45:e0:15:a9:50:5a:61:4a:f0:5e:34:
ea:3e:c1:e6:dc:21:b3:62:6b:e4:23:c5:bb:8d:49:1d:bf:60:
47:ea:82:8a:88:55:bb:84:0b:20:72:db:fa:33:4a:04:db:46:
88:54:63:f5:ee:c8:75:5e:68:77:de:f2:44:2a:93:c5:75:c9:
97:25:3f:d7
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZpQdOFbg6/qRi4ngEYLdeYzMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDVkODJjYTZmOGViNjg1YTU3M2U1ZDFkOTFmOGYwNjEyMWFi
MDJhMzcwHhcNMjUxMTA0MjAwMDI4WhcNMjUxMTA1MjAwMDI4WjAzMTEwLwYDVQQD
EyhkODRjNmUzZTQ3NzJmNzlhNGIzMzc4NzFkZjI0N2QyMjQwOTQ4YWQ2MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtfsBtwCDGYjjFRZ+mds155TYYdLz
GCov0wnr5GtsWY2SHH+RaCYixwhAGVSQR40l/uDtRGWmFGC9pXVLQ8jJygfihnYe
oHacVqOcX8y+yrrLWD9QvMX/2BByK7uVCyDnrp3vJQCHtCH5MrqNovktWwxSdRuN
EKfDiD0tWri1Y9frMUcqDXEPZZSRWD7nLRiyttQGZMapXPjZHo8NwmB7ezV28lzL
IxjRbuKGcAb+Qj0SECVrEwYGCb/CQbHdnfYv2iUrd1T6VIqARvQse7ibhOfh906x
DoXFQdNHuouaB7CHS8d24rxNSBWCLuqFRyFgP2H3Lbri2R+sOpdQnm4ttQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFNhMbj5HcveaSzN4cd8kfSJAlIrWMB8GA1UdIwQY
MBaAFF2Cym+OtoWlc+XR2R+PBhIasCo3MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvWFlMS2I0NjJoYVZ6NWRIWkg0OEdFaHF3S2pjLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82My9kNTRiYzAtZjc4MS00OGIwLTlmNmQt
YjVmMGQyMTA1M2Y4LzEvWFlMS2I0NjJoYVZ6NWRIWkg0OEdFaHF3S2pjLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC82My9kNTRiYzAtZjc4MS00OGIwLTlmNmQtYjVmMGQyMTA1M2Y4
LzEvWFlMS2I0NjJoYVZ6NWRIWkg0OEdFaHF3S2pjLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAjCMkW3e/
Eip5XuN1jg4ddupEHph/4FFJuaoad/MJcKBzCwJW2YzcjKR31G7bwkLgWY5w+uHP
Xo80LIlFu+TFGs6BuhVnnaVaNGyu0oZUxTuroHiPoVVwjIVC0DPhJhRIo87dkPQH
ub/I0BkTdYUSemIiTuGbIMSwSx0+EhkdN23rl5R2RYtw4w6aKgaYlvUVjHXpcWhC
rnlNtWsqn9qAZbvnXHOaM5EqSxoo97YQWNJKkVuXEIEBLrYVG0XgFalQWmFK8F40
6j7B5twhs2Jr5CPFu41JHb9gR+qCiohVu4QLIHLb+jNKBNtGiFRj9e7IdV5od97y
RCqTxXXJlyU/1w==
-----END CERTIFICATE-----
Generated at Wed Nov 5 05:52:41 2025 by rpki-client