Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ad/dbe773-befc-4a77-b513-5e23672673d2/1/XUcovR9dE212i_F1NGHFPaRXRss.mft
File: XUcovR9dE212i_F1NGHFPaRXRss.mft (raw, json)
Hash identifier: jicyZydcE82WuxFs084qIIOjDd4PJZF0BDGcDfD+p6U=
Subject key identifier: 24:F1:28:F1:67:93:16:50:94:CF:BF:93:F9:42:32:19:DA:71:62:62
Authority key identifier: 5D:47:28:BD:1F:5D:13:6D:76:8B:F1:75:34:61:C5:3D:A4:57:46:CB
Certificate issuer: /CN=5d4728bd1f5d136d768bf1753461c53da45746cb
Certificate serial: 0196CA602EB29C12010BF768C1AF62FE385D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XUcovR9dE212i_F1NGHFPaRXRss.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ad/dbe773-befc-4a77-b513-5e23672673d2/1/XUcovR9dE212i_F1NGHFPaRXRss.mft
Manifest number: 153C
Signing time: Tue 13 May 2025 16:00:23 +0000
Manifest this update: Tue 13 May 2025 16:00:23 +0000
Manifest next update: Wed 14 May 2025 16:00:23 +0000
Files and hashes: 1: HBQ9odudt8FtC2hg2PdPFEmL6sY.roa (hash: qLOlhGmFNavd+EfWsRToyvlmrGX+k5BkUmneKAiMnB0=)
2: XUcovR9dE212i_F1NGHFPaRXRss.crl (hash: ufShvMFxoD6XRzw6LgDsnayIKZvFU52phYXJvSOBS40=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ad/dbe773-befc-4a77-b513-5e23672673d2/1/XUcovR9dE212i_F1NGHFPaRXRss.crl
rsync://rpki.ripe.net/repository/DEFAULT/ad/dbe773-befc-4a77-b513-5e23672673d2/1/XUcovR9dE212i_F1NGHFPaRXRss.mft
rsync://rpki.ripe.net/repository/DEFAULT/XUcovR9dE212i_F1NGHFPaRXRss.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 14 May 2025 14:31:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:ca:60:2e:b2:9c:12:01:0b:f7:68:c1:af:62:fe:38:5d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5d4728bd1f5d136d768bf1753461c53da45746cb
Validity
Not Before: May 13 16:00:23 2025 GMT
Not After : May 14 16:00:23 2025 GMT
Subject: CN=24f128f16793165094cfbf93f9423219da716262
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:fd:d3:13:48:25:89:be:ba:d6:29:78:5a:18:
bd:f7:e6:50:23:cb:a8:db:c6:83:8c:71:2e:2b:6d:
61:d9:7d:8e:df:f2:83:4d:b2:ac:94:48:2b:cd:93:
91:1c:a0:a0:32:4a:ae:d5:6f:16:c2:12:1e:c4:ea:
ff:66:a0:c3:77:9d:30:a4:70:41:8a:2c:6f:29:90:
b7:83:c4:13:9d:b5:d1:86:da:e9:23:ce:ff:bc:c3:
db:92:35:ff:e7:51:91:25:51:97:53:19:da:43:a0:
70:33:a6:16:32:fb:dc:97:33:3b:d2:a8:7a:bc:4f:
3c:ca:4c:0c:bd:99:7e:a3:f9:bd:b5:c4:da:4c:d5:
d7:2f:00:ac:3b:50:46:b3:b8:5e:c6:67:04:a0:d7:
74:01:20:5d:f2:fb:ca:44:e4:26:6c:02:47:1d:7f:
26:e6:a1:55:7c:67:c2:f4:62:cf:6b:1b:04:ed:fb:
ab:95:8d:68:60:65:dd:74:b7:da:ee:25:8e:80:98:
30:3d:3d:d5:87:e2:c9:81:a8:a6:73:3c:7a:43:e3:
66:57:33:be:f7:86:53:ff:67:2f:ae:3d:2f:3d:70:
8d:20:87:1b:a1:18:4a:b6:f1:0d:7b:02:16:06:de:
a5:93:3d:a9:2f:5f:83:a5:35:1a:e4:03:0a:cb:ca:
13:7f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
24:F1:28:F1:67:93:16:50:94:CF:BF:93:F9:42:32:19:DA:71:62:62
X509v3 Authority Key Identifier:
keyid:5D:47:28:BD:1F:5D:13:6D:76:8B:F1:75:34:61:C5:3D:A4:57:46:CB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XUcovR9dE212i_F1NGHFPaRXRss.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ad/dbe773-befc-4a77-b513-5e23672673d2/1/XUcovR9dE212i_F1NGHFPaRXRss.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ad/dbe773-befc-4a77-b513-5e23672673d2/1/XUcovR9dE212i_F1NGHFPaRXRss.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
6b:23:f1:24:20:4e:3e:c1:3a:23:73:3d:9a:4d:ae:bb:3e:1d:
66:65:65:f5:2a:fb:25:84:63:3c:b7:ae:a5:a2:a7:2c:76:33:
5f:a8:da:b2:0e:ff:a9:27:a3:cb:4f:28:27:22:16:47:f6:59:
05:2c:46:43:60:18:89:e8:cb:e2:6d:24:61:da:ed:48:8d:78:
aa:3c:1b:1a:02:78:96:cf:03:fd:f5:f5:6d:b9:da:7d:94:8a:
26:a7:a1:6a:f9:06:f2:b2:b1:b1:9b:48:91:5f:10:3f:69:3d:
f8:96:5c:3b:13:5b:01:f9:a7:0b:ce:46:0b:35:a9:77:e4:00:
80:5d:0f:2e:f1:ba:8f:93:56:bb:5f:08:5b:e1:ba:19:87:d2:
46:68:b3:13:b7:ad:53:ce:e1:17:14:16:04:85:a2:fa:b9:f0:
b1:10:1c:4a:14:58:82:da:50:b0:39:dc:a7:71:d9:b1:b1:ee:
3d:a2:54:cb:f1:9f:6b:41:64:89:6d:34:7b:70:1c:3d:d8:01:
d7:4e:4d:71:72:c9:a1:69:a9:49:a2:20:07:26:0e:12:9b:2c:
4f:16:5e:fa:55:a2:b0:96:52:dc:e3:76:ef:89:97:9b:7c:aa:
54:eb:38:dd:01:7a:78:02:38:48:df:94:0b:9b:f0:72:4a:3a:
b7:d9:1e:c5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue May 13 20:44:06 2025 by rpki-client