Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a7/4cac6b-8e05-448a-83f7-6835852158d8/1/xtEbZP_hjvpC9DpsdlY53uONAn4.mft
File: xtEbZP_hjvpC9DpsdlY53uONAn4.mft (raw, json)
Hash identifier: RpZy6Ufwyn6inGO1J2JWLxwl+5WImn+cY0O5snI4xUU=
Subject key identifier: 4F:2E:94:7C:50:02:75:5B:AC:6C:3F:E7:29:36:60:0C:DD:DA:85:02
Authority key identifier: C6:D1:1B:64:FF:E1:8E:FA:42:F4:3A:6C:76:56:39:DE:E3:8D:02:7E
Certificate issuer: /CN=c6d11b64ffe18efa42f43a6c765639dee38d027e
Certificate serial: 0198745034F8682D8CB6EAA622CAD6F1DFE5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xtEbZP_hjvpC9DpsdlY53uONAn4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a7/4cac6b-8e05-448a-83f7-6835852158d8/1/xtEbZP_hjvpC9DpsdlY53uONAn4.mft
Manifest number: 0E9E
Signing time: Mon 04 Aug 2025 09:01:10 +0000
Manifest this update: Mon 04 Aug 2025 09:01:10 +0000
Manifest next update: Tue 05 Aug 2025 09:01:10 +0000
Files and hashes: 1: 5stymyV2VXExRNfPDRHs0SsKv84.roa (hash: LAJy81D8Y1W3Al27GIYu76cE8aqvZvfTwIjGsrUN8O8=)
2: wX4zTXXZMo2WWHOKinMvyAiRYeE.roa (hash: dkBnWGmwxThQE3RCE6xz1EoswQLwUBpuloKrWzo2tUE=)
3: xtEbZP_hjvpC9DpsdlY53uONAn4.crl (hash: 4KZV7xuMwu0B1hRSk8EUcoedVcsjwfbew9wvZzAcI+Y=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a7/4cac6b-8e05-448a-83f7-6835852158d8/1/xtEbZP_hjvpC9DpsdlY53uONAn4.crl
rsync://rpki.ripe.net/repository/DEFAULT/a7/4cac6b-8e05-448a-83f7-6835852158d8/1/xtEbZP_hjvpC9DpsdlY53uONAn4.mft
rsync://rpki.ripe.net/repository/DEFAULT/xtEbZP_hjvpC9DpsdlY53uONAn4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 05 Aug 2025 09:01:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:74:50:34:f8:68:2d:8c:b6:ea:a6:22:ca:d6:f1:df:e5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c6d11b64ffe18efa42f43a6c765639dee38d027e
Validity
Not Before: Aug 4 09:01:10 2025 GMT
Not After : Aug 5 09:01:10 2025 GMT
Subject: CN=4f2e947c5002755bac6c3fe72936600cddda8502
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:da:cf:50:a0:28:da:ba:7c:38:3b:70:7d:9e:8a:
7a:20:02:6e:c2:17:0f:23:46:15:ee:c9:b6:9a:15:
b8:b1:e3:3e:5a:26:a9:cb:63:2d:2c:83:0e:b4:3c:
a7:09:a1:cc:10:72:29:15:df:27:6f:5c:ee:09:7b:
9e:9a:9c:22:0a:6c:dc:76:e8:bb:83:65:81:bf:12:
4a:98:2a:b5:ad:df:17:67:14:95:e0:49:cb:7b:39:
18:fb:28:c2:ef:06:be:29:ef:63:ad:08:03:44:46:
6e:58:88:5a:32:50:50:6f:9f:5f:5e:a8:fd:96:67:
74:58:3e:70:de:fa:8a:1e:c2:b0:50:59:e4:97:8f:
fa:58:0b:35:d0:f8:0e:06:6c:f4:fd:b5:e9:66:95:
9c:52:9d:3d:9a:97:c0:95:08:fe:c4:c6:ec:2c:bc:
c6:13:3f:67:41:82:ef:34:e5:4d:ae:7e:8d:36:fd:
94:e1:45:1b:66:7f:98:d9:d9:f6:e8:85:bd:f5:ab:
16:fb:ca:33:c6:f4:ec:6a:9c:77:ea:50:de:a0:b4:
13:b7:70:1b:58:fc:22:f7:6f:3a:44:f1:6d:b0:bf:
b7:f9:25:54:71:4c:2a:35:7a:a8:b1:13:74:7c:3f:
73:9c:1c:06:2f:b1:82:23:5f:6e:ab:37:f8:ef:7b:
a6:4b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4F:2E:94:7C:50:02:75:5B:AC:6C:3F:E7:29:36:60:0C:DD:DA:85:02
X509v3 Authority Key Identifier:
keyid:C6:D1:1B:64:FF:E1:8E:FA:42:F4:3A:6C:76:56:39:DE:E3:8D:02:7E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xtEbZP_hjvpC9DpsdlY53uONAn4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a7/4cac6b-8e05-448a-83f7-6835852158d8/1/xtEbZP_hjvpC9DpsdlY53uONAn4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a7/4cac6b-8e05-448a-83f7-6835852158d8/1/xtEbZP_hjvpC9DpsdlY53uONAn4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
15:b5:87:1e:71:1d:36:e6:b2:98:61:3b:f8:df:b0:ef:40:5b:
c8:27:5a:a6:e6:f7:d8:7b:da:81:92:61:7d:c6:a1:b6:d7:7a:
8c:5c:07:6f:a9:f0:79:60:09:5a:e7:67:80:50:e5:b4:70:90:
f2:77:17:2a:f9:e3:2a:68:3b:d3:92:f4:2c:e0:1f:2e:04:45:
65:2c:71:c8:ed:71:82:81:19:8d:31:20:56:50:39:ec:9d:54:
af:42:9b:dc:72:43:84:95:6a:cd:1e:90:f9:58:ca:ba:dc:0a:
cf:f8:1d:fd:df:fb:06:e2:e1:06:99:97:15:8d:b4:1f:1d:2e:
ec:6c:2c:f4:47:5e:8e:a1:a6:14:61:7b:56:dc:f6:d1:82:96:
5d:30:fa:68:1c:af:19:a4:cc:7f:d5:ea:f3:1e:4a:b2:44:fe:
7d:b7:98:21:be:58:97:7b:a1:39:8c:b8:52:bb:87:58:c0:7a:
cf:b1:7b:ba:be:2c:b8:9c:c3:ea:7c:82:38:f3:3d:6e:77:75:
95:10:a4:b3:c9:7e:fe:af:a0:3a:66:6d:2f:2b:19:d8:30:07:
1d:32:2d:4f:b4:cc:b1:e2:56:25:4c:87:b3:e5:13:23:47:26:
22:ab:cf:71:ce:02:49:44:c0:76:5d:4e:4c:3e:50:5e:99:ee:
10:f4:b6:9d
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZh0UDT4aC2MtuqmIsrW8d/lMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGM2ZDExYjY0ZmZlMThlZmE0MmY0M2E2Yzc2NTYzOWRlZTM4
ZDAyN2UwHhcNMjUwODA0MDkwMTEwWhcNMjUwODA1MDkwMTEwWjAzMTEwLwYDVQQD
Eyg0ZjJlOTQ3YzUwMDI3NTViYWM2YzNmZTcyOTM2NjAwY2RkZGE4NTAyMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA2s9QoCjaunw4O3B9nop6IAJuwhcP
I0YV7sm2mhW4seM+Wiapy2MtLIMOtDynCaHMEHIpFd8nb1zuCXuempwiCmzcdui7
g2WBvxJKmCq1rd8XZxSV4EnLezkY+yjC7wa+Ke9jrQgDREZuWIhaMlBQb59fXqj9
lmd0WD5w3vqKHsKwUFnkl4/6WAs10PgOBmz0/bXpZpWcUp09mpfAlQj+xMbsLLzG
Ez9nQYLvNOVNrn6NNv2U4UUbZn+Y2dn26IW99asW+8ozxvTsapx36lDeoLQTt3Ab
WPwi9286RPFtsL+3+SVUcUwqNXqosRN0fD9znBwGL7GCI19uqzf473umSwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFE8ulHxQAnVbrGw/5yk2YAzd2oUCMB8GA1UdIwQY
MBaAFMbRG2T/4Y76QvQ6bHZWOd7jjQJ+MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQveHRFYlpQX2hqdnBDOURwc2RsWTUzdU9OQW40LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hNy80Y2FjNmItOGUwNS00NDhhLTgzZjct
NjgzNTg1MjE1OGQ4LzEveHRFYlpQX2hqdnBDOURwc2RsWTUzdU9OQW40Lm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9hNy80Y2FjNmItOGUwNS00NDhhLTgzZjctNjgzNTg1MjE1OGQ4
LzEveHRFYlpQX2hqdnBDOURwc2RsWTUzdU9OQW40LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAFbWHHnEd
NuaymGE7+N+w70BbyCdapub32HvagZJhfcahttd6jFwHb6nweWAJWudngFDltHCQ
8ncXKvnjKmg705L0LOAfLgRFZSxxyO1xgoEZjTEgVlA57J1Ur0Kb3HJDhJVqzR6Q
+VjKutwKz/gd/d/7BuLhBpmXFY20Hx0u7Gws9EdejqGmFGF7Vtz20YKWXTD6aByv
GaTMf9Xq8x5KskT+fbeYIb5Yl3uhOYy4UruHWMB6z7F7ur4suJzD6nyCOPM9bnd1
lRCks8l+/q+gOmZtLysZ2DAHHTItT7TMseJWJUyHs+UTI0cmIqvPcc4CSUTAdl1O
TD5QXpnuEPS2nQ==
-----END CERTIFICATE-----
Generated at Mon Aug 4 16:06:52 2025 by rpki-client