Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a7/4cac6b-8e05-448a-83f7-6835852158d8/1/xtEbZP_hjvpC9DpsdlY53uONAn4.mft
File: xtEbZP_hjvpC9DpsdlY53uONAn4.mft (raw, json)
Hash identifier: lrJbH/2w7+DoTlCw28gAbzY837dDlP3IrUQHmqqQGP8=
Subject key identifier: 92:06:C3:C7:2E:FE:9A:5B:36:70:C0:43:18:B1:D7:E6:60:D3:F6:FB
Authority key identifier: C6:D1:1B:64:FF:E1:8E:FA:42:F4:3A:6C:76:56:39:DE:E3:8D:02:7E
Certificate issuer: /CN=c6d11b64ffe18efa42f43a6c765639dee38d027e
Certificate serial: 019A4F627413E2EFB5C77656337F9813EED0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xtEbZP_hjvpC9DpsdlY53uONAn4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a7/4cac6b-8e05-448a-83f7-6835852158d8/1/xtEbZP_hjvpC9DpsdlY53uONAn4.mft
Manifest number: 0F94
Signing time: Tue 04 Nov 2025 15:00:43 +0000
Manifest this update: Tue 04 Nov 2025 15:00:43 +0000
Manifest next update: Wed 05 Nov 2025 15:00:43 +0000
Files and hashes: 1: 5stymyV2VXExRNfPDRHs0SsKv84.roa (hash: LAJy81D8Y1W3Al27GIYu76cE8aqvZvfTwIjGsrUN8O8=)
2: wX4zTXXZMo2WWHOKinMvyAiRYeE.roa (hash: dkBnWGmwxThQE3RCE6xz1EoswQLwUBpuloKrWzo2tUE=)
3: xtEbZP_hjvpC9DpsdlY53uONAn4.crl (hash: n74niifkIeDjeLhXzBmMLa0xiMCi4BSJqIjmaQgawhg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a7/4cac6b-8e05-448a-83f7-6835852158d8/1/xtEbZP_hjvpC9DpsdlY53uONAn4.crl
rsync://rpki.ripe.net/repository/DEFAULT/a7/4cac6b-8e05-448a-83f7-6835852158d8/1/xtEbZP_hjvpC9DpsdlY53uONAn4.mft
rsync://rpki.ripe.net/repository/DEFAULT/xtEbZP_hjvpC9DpsdlY53uONAn4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 05 Nov 2025 09:00:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:4f:62:74:13:e2:ef:b5:c7:76:56:33:7f:98:13:ee:d0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c6d11b64ffe18efa42f43a6c765639dee38d027e
Validity
Not Before: Nov 4 15:00:43 2025 GMT
Not After : Nov 5 15:00:43 2025 GMT
Subject: CN=9206c3c72efe9a5b3670c04318b1d7e660d3f6fb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e3:5c:b0:a7:bc:f5:fe:20:05:4e:e1:22:19:a1:
d1:95:44:5f:50:27:1c:10:c7:31:ae:e6:20:a9:2f:
c0:86:3a:a3:e9:4c:2d:66:fd:9c:4a:42:a2:ba:e1:
47:8f:00:2d:e2:20:0d:03:1a:7c:d1:7d:45:97:2e:
07:e7:b3:7a:b4:1e:5d:07:4c:13:6c:01:2d:da:bf:
20:25:90:bc:5d:1a:27:fc:bd:be:49:18:46:01:6a:
c9:a9:76:10:54:5d:38:74:e5:e7:fd:97:fc:7b:7a:
f3:53:2d:6a:33:59:53:fa:8b:5a:34:7c:e6:c0:33:
ce:c6:fb:bd:6f:2d:2f:25:33:69:38:8d:43:c1:73:
32:18:45:31:03:49:18:7c:1f:a2:b9:88:74:5e:9a:
f6:a5:ec:db:84:f1:5c:bc:f5:d3:7e:f5:5e:be:b8:
99:87:aa:3c:e6:69:db:6e:fe:a4:16:35:43:dd:3d:
b4:21:14:4b:ea:36:8a:84:d8:73:8f:cb:9f:75:b5:
5d:64:a1:38:42:10:e3:5d:b4:fb:7f:74:38:28:39:
6d:af:6f:7d:f7:71:54:9f:fa:bf:05:9e:24:36:37:
39:97:2b:bd:71:bb:16:ec:58:06:a6:fc:a8:8c:18:
5c:38:b6:27:86:73:98:22:19:71:f2:2a:73:4d:da:
47:47
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
92:06:C3:C7:2E:FE:9A:5B:36:70:C0:43:18:B1:D7:E6:60:D3:F6:FB
X509v3 Authority Key Identifier:
keyid:C6:D1:1B:64:FF:E1:8E:FA:42:F4:3A:6C:76:56:39:DE:E3:8D:02:7E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xtEbZP_hjvpC9DpsdlY53uONAn4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a7/4cac6b-8e05-448a-83f7-6835852158d8/1/xtEbZP_hjvpC9DpsdlY53uONAn4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a7/4cac6b-8e05-448a-83f7-6835852158d8/1/xtEbZP_hjvpC9DpsdlY53uONAn4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
d9:80:32:11:1d:6d:a1:ee:e9:4b:aa:16:89:d9:eb:79:c4:c3:
76:c0:cc:c2:7d:c0:02:80:7d:2a:17:5c:5f:6f:a4:e5:3a:11:
dd:4c:50:cf:0c:94:3d:ea:a2:eb:d7:99:ba:ae:f7:d6:17:eb:
ed:a5:3e:9c:a3:79:f3:4e:6e:4e:b3:3c:a7:7d:42:92:42:9f:
e2:06:4f:59:c5:19:ce:77:64:15:14:63:e6:2b:60:b0:ae:9a:
1b:da:cf:de:74:50:d7:e3:3b:bb:1c:35:be:b7:5e:6b:ec:b4:
5b:cf:82:29:9a:9f:8f:31:15:5e:2c:7a:c9:ea:ae:a9:5a:6b:
6d:90:ba:e0:c9:95:59:e0:fb:69:d1:cb:80:8e:ff:31:4f:17:
97:6d:9f:58:79:77:1d:9f:de:a7:ec:91:1c:4a:be:b3:8a:6b:
de:43:4c:b4:04:fb:1e:ff:a8:99:5b:85:a7:bc:cf:25:4f:7b:
f1:08:c7:06:c3:92:8c:69:a8:38:5c:33:ce:e6:ff:99:a3:fc:
b4:85:43:18:cb:3b:50:5c:ad:89:f2:38:30:d1:c3:9d:cd:cc:
b0:12:d4:7d:e0:54:70:36:53:e9:8e:5b:7e:67:64:b9:63:be:
f0:70:dd:70:1b:87:8d:bf:c3:5a:49:42:9e:96:07:e5:79:63:
6f:b1:70:d0
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZpPYnQT4u+1x3ZWM3+YE+7QMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGM2ZDExYjY0ZmZlMThlZmE0MmY0M2E2Yzc2NTYzOWRlZTM4
ZDAyN2UwHhcNMjUxMTA0MTUwMDQzWhcNMjUxMTA1MTUwMDQzWjAzMTEwLwYDVQQD
Eyg5MjA2YzNjNzJlZmU5YTViMzY3MGMwNDMxOGIxZDdlNjYwZDNmNmZiMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA41ywp7z1/iAFTuEiGaHRlURfUCcc
EMcxruYgqS/Ahjqj6UwtZv2cSkKiuuFHjwAt4iANAxp80X1Fly4H57N6tB5dB0wT
bAEt2r8gJZC8XRon/L2+SRhGAWrJqXYQVF04dOXn/Zf8e3rzUy1qM1lT+otaNHzm
wDPOxvu9by0vJTNpOI1DwXMyGEUxA0kYfB+iuYh0Xpr2pezbhPFcvPXTfvVevriZ
h6o85mnbbv6kFjVD3T20IRRL6jaKhNhzj8ufdbVdZKE4QhDjXbT7f3Q4KDltr299
93FUn/q/BZ4kNjc5lyu9cbsW7FgGpvyojBhcOLYnhnOYIhlx8ipzTdpHRwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFJIGw8cu/ppbNnDAQxix1+Zg0/b7MB8GA1UdIwQY
MBaAFMbRG2T/4Y76QvQ6bHZWOd7jjQJ+MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQveHRFYlpQX2hqdnBDOURwc2RsWTUzdU9OQW40LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hNy80Y2FjNmItOGUwNS00NDhhLTgzZjct
NjgzNTg1MjE1OGQ4LzEveHRFYlpQX2hqdnBDOURwc2RsWTUzdU9OQW40Lm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9hNy80Y2FjNmItOGUwNS00NDhhLTgzZjctNjgzNTg1MjE1OGQ4
LzEveHRFYlpQX2hqdnBDOURwc2RsWTUzdU9OQW40LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEA2YAyER1t
oe7pS6oWidnrecTDdsDMwn3AAoB9KhdcX2+k5ToR3UxQzwyUPeqi69eZuq731hfr
7aU+nKN5805uTrM8p31CkkKf4gZPWcUZzndkFRRj5itgsK6aG9rP3nRQ1+M7uxw1
vrdea+y0W8+CKZqfjzEVXix6yequqVprbZC64MmVWeD7adHLgI7/MU8Xl22fWHl3
HZ/ep+yRHEq+s4pr3kNMtAT7Hv+omVuFp7zPJU978QjHBsOSjGmoOFwzzub/maP8
tIVDGMs7UFytifI4MNHDnc3MsBLUfeBUcDZT6Y5bfmdkuWO+8HDdcBuHjb/DWklC
npYH5Xljb7Fw0A==
-----END CERTIFICATE-----
Generated at Tue Nov 4 18:17:40 2025 by rpki-client