Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ad/dbe773-befc-4a77-b513-5e23672673d2/1/XUcovR9dE212i_F1NGHFPaRXRss.mft
File: XUcovR9dE212i_F1NGHFPaRXRss.mft (raw, json)
Hash identifier: 6fGaTqZ/Pvw6mtmVSk8T/e9N4H3kfW6yni3mBQFQgd4=
Subject key identifier: 7F:EF:75:42:9C:3D:7E:C5:97:DB:FE:A9:38:FB:65:63:FB:D8:EE:06
Authority key identifier: 5D:47:28:BD:1F:5D:13:6D:76:8B:F1:75:34:61:C5:3D:A4:57:46:CB
Certificate issuer: /CN=5d4728bd1f5d136d768bf1753461c53da45746cb
Certificate serial: 0199FD33FAC8E00166CE09057A650915EA08
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XUcovR9dE212i_F1NGHFPaRXRss.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ad/dbe773-befc-4a77-b513-5e23672673d2/1/XUcovR9dE212i_F1NGHFPaRXRss.mft
Manifest number: 16E4
Signing time: Sun 19 Oct 2025 16:01:06 +0000
Manifest this update: Sun 19 Oct 2025 16:01:06 +0000
Manifest next update: Mon 20 Oct 2025 16:01:06 +0000
Files and hashes: 1: HBQ9odudt8FtC2hg2PdPFEmL6sY.roa (hash: qLOlhGmFNavd+EfWsRToyvlmrGX+k5BkUmneKAiMnB0=)
2: XUcovR9dE212i_F1NGHFPaRXRss.crl (hash: IrJwcOAV3biRARbldXrYmLvLFL6X9iUvtLjEGIsp3pA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ad/dbe773-befc-4a77-b513-5e23672673d2/1/XUcovR9dE212i_F1NGHFPaRXRss.crl
rsync://rpki.ripe.net/repository/DEFAULT/ad/dbe773-befc-4a77-b513-5e23672673d2/1/XUcovR9dE212i_F1NGHFPaRXRss.mft
rsync://rpki.ripe.net/repository/DEFAULT/XUcovR9dE212i_F1NGHFPaRXRss.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 11:18:59 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fd:33:fa:c8:e0:01:66:ce:09:05:7a:65:09:15:ea:08
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5d4728bd1f5d136d768bf1753461c53da45746cb
Validity
Not Before: Oct 19 16:01:06 2025 GMT
Not After : Oct 20 16:01:06 2025 GMT
Subject: CN=7fef75429c3d7ec597dbfea938fb6563fbd8ee06
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e7:c9:d5:ff:e7:3e:e9:ad:ed:b5:22:66:96:47:
59:d7:f0:8d:94:93:ba:63:c6:f6:e2:10:1f:2a:d0:
78:8f:0d:fd:e7:e3:74:1d:a2:d6:26:49:74:8a:eb:
d4:f2:a6:06:a6:5c:b9:21:0a:7b:3a:b2:54:13:16:
c4:2a:13:da:e4:63:ba:8b:11:48:97:dc:38:91:d3:
4b:fb:04:a3:44:5f:b3:71:7b:13:2b:60:07:cd:1a:
ed:57:d3:bc:60:ce:07:fe:bb:d4:12:a9:7d:07:ea:
48:2e:f0:1d:4e:46:ae:19:78:68:b1:e0:00:3b:fd:
75:56:aa:b6:31:36:b5:b8:39:a2:5c:3e:c7:8b:3d:
27:ba:7b:87:88:aa:a4:d2:c1:c3:7a:fc:fb:44:43:
0a:d4:b0:f2:c7:a7:b5:ad:06:9b:ec:d5:e5:58:6b:
ae:4a:a6:44:ab:a9:78:f4:97:b5:b4:bc:d2:bc:4c:
eb:61:81:70:60:78:24:1b:59:4b:42:4d:d4:cc:5a:
51:38:54:55:0d:5a:94:a8:33:38:42:8d:13:53:b1:
42:f4:0e:d3:1f:21:65:d0:33:1e:a4:2a:98:20:08:
10:f6:fa:8d:46:83:1a:d0:a7:28:2f:79:37:d4:9d:
d4:ad:e8:69:dc:56:95:48:47:27:6c:b7:ce:55:f9:
67:39
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7F:EF:75:42:9C:3D:7E:C5:97:DB:FE:A9:38:FB:65:63:FB:D8:EE:06
X509v3 Authority Key Identifier:
keyid:5D:47:28:BD:1F:5D:13:6D:76:8B:F1:75:34:61:C5:3D:A4:57:46:CB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XUcovR9dE212i_F1NGHFPaRXRss.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ad/dbe773-befc-4a77-b513-5e23672673d2/1/XUcovR9dE212i_F1NGHFPaRXRss.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ad/dbe773-befc-4a77-b513-5e23672673d2/1/XUcovR9dE212i_F1NGHFPaRXRss.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
56:68:aa:5f:76:73:e0:dc:c9:c2:58:22:6f:ad:79:52:59:17:
4a:b7:08:cf:36:b7:f3:50:57:ac:83:81:14:1d:c9:e8:d1:ce:
10:11:36:cf:8c:67:d6:6e:9b:b0:86:79:5f:64:57:82:7d:02:
7a:87:1a:e0:f5:6d:88:5e:9d:52:92:20:2f:95:16:6b:d5:d7:
8e:8a:a9:1b:f1:3c:c7:08:8a:25:39:98:11:c9:26:1e:ad:50:
f8:e0:c1:a1:d5:4e:ee:4d:9d:2b:16:0a:94:14:7e:84:12:bf:
d6:f0:27:39:c6:eb:21:69:ed:91:63:9d:c1:66:ed:97:57:28:
4d:ca:08:64:6d:74:90:e2:17:bb:bd:5a:fc:84:10:4d:3c:ab:
7b:bd:48:40:93:68:06:92:48:20:aa:d9:fb:23:56:63:da:0d:
5e:bc:7f:58:a9:35:4c:b2:3c:d4:f3:8e:b5:2e:e5:41:aa:b9:
0c:37:c6:e1:60:db:32:0b:b2:de:35:07:d7:fa:a3:e7:b7:72:
a0:21:4b:fa:02:d3:36:69:0f:a4:10:a6:83:45:15:96:fb:2e:
9f:07:bf:75:56:64:9c:be:f6:1c:e6:57:7a:ab:c9:9d:c4:62:
fb:bc:04:09:fc:bf:69:c0:ac:79:37:01:65:e3:8a:0e:a8:8b:
aa:db:a7:a0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 19 20:52:18 2025 by rpki-client