Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ad/dbe773-befc-4a77-b513-5e23672673d2/1/XUcovR9dE212i_F1NGHFPaRXRss.mft
File: XUcovR9dE212i_F1NGHFPaRXRss.mft (raw, json)
Hash identifier: nC8dZEr1s3O+nWaWQzKLjST+0Xo6NRjNGxwyMc5LvEw=
Subject key identifier: 35:9A:38:BB:15:67:40:EF:35:02:EA:45:44:D3:27:8E:47:B5:E6:68
Authority key identifier: 5D:47:28:BD:1F:5D:13:6D:76:8B:F1:75:34:61:C5:3D:A4:57:46:CB
Certificate issuer: /CN=5d4728bd1f5d136d768bf1753461c53da45746cb
Certificate serial: 0198D5BC08FEA7DBF17BA409B0D39979B0C7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XUcovR9dE212i_F1NGHFPaRXRss.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ad/dbe773-befc-4a77-b513-5e23672673d2/1/XUcovR9dE212i_F1NGHFPaRXRss.mft
Manifest number: 164B
Signing time: Sat 23 Aug 2025 07:02:06 +0000
Manifest this update: Sat 23 Aug 2025 07:02:06 +0000
Manifest next update: Sun 24 Aug 2025 07:02:06 +0000
Files and hashes: 1: HBQ9odudt8FtC2hg2PdPFEmL6sY.roa (hash: qLOlhGmFNavd+EfWsRToyvlmrGX+k5BkUmneKAiMnB0=)
2: XUcovR9dE212i_F1NGHFPaRXRss.crl (hash: 6JEDLjlkbPVA13CUsqBsKVNrreo/qrH/HCTPbcxeghk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ad/dbe773-befc-4a77-b513-5e23672673d2/1/XUcovR9dE212i_F1NGHFPaRXRss.crl
rsync://rpki.ripe.net/repository/DEFAULT/ad/dbe773-befc-4a77-b513-5e23672673d2/1/XUcovR9dE212i_F1NGHFPaRXRss.mft
rsync://rpki.ripe.net/repository/DEFAULT/XUcovR9dE212i_F1NGHFPaRXRss.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 05:01:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d5:bc:08:fe:a7:db:f1:7b:a4:09:b0:d3:99:79:b0:c7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5d4728bd1f5d136d768bf1753461c53da45746cb
Validity
Not Before: Aug 23 07:02:06 2025 GMT
Not After : Aug 24 07:02:06 2025 GMT
Subject: CN=359a38bb156740ef3502ea4544d3278e47b5e668
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ef:cc:88:37:dd:a8:5c:94:44:9b:ab:f0:42:98:
42:f3:52:81:f8:60:83:cc:5b:18:7c:bb:5c:d2:df:
c2:66:2a:c9:99:a8:68:d7:02:7c:be:de:fc:90:38:
30:e8:6d:e2:fd:e3:21:e4:5f:e8:0f:98:58:6f:ab:
a2:66:d1:98:f5:cf:2f:b2:8b:6e:d4:50:7b:f7:06:
a0:d5:5e:30:db:52:b6:7a:0b:a9:10:80:a6:ef:3e:
32:a9:3e:34:dc:3b:6d:cf:15:40:ad:8e:86:90:19:
c8:5e:32:26:78:46:28:38:66:f6:37:8f:f7:79:76:
8d:30:7d:a0:73:2f:6e:76:25:23:8d:a1:bc:80:af:
d5:73:c5:91:df:1b:82:58:ca:91:f0:82:96:82:76:
30:3a:a1:e8:ae:57:1e:37:b3:34:8d:f2:3c:3a:25:
96:59:85:49:73:f5:93:16:10:8e:7f:98:16:d7:41:
06:5a:f7:99:85:53:77:a4:17:73:5c:27:c4:58:3f:
47:b4:8a:7d:d9:1a:da:b8:68:3f:4c:0f:19:be:a5:
f2:f7:65:d2:31:65:cb:2c:fa:2d:66:51:85:cd:9d:
b0:73:d3:a5:1e:62:22:e2:d9:88:50:27:49:dd:b7:
79:2d:b1:7b:e6:0b:cb:c5:ac:5c:94:d6:57:f2:74:
d6:7d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
35:9A:38:BB:15:67:40:EF:35:02:EA:45:44:D3:27:8E:47:B5:E6:68
X509v3 Authority Key Identifier:
keyid:5D:47:28:BD:1F:5D:13:6D:76:8B:F1:75:34:61:C5:3D:A4:57:46:CB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XUcovR9dE212i_F1NGHFPaRXRss.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ad/dbe773-befc-4a77-b513-5e23672673d2/1/XUcovR9dE212i_F1NGHFPaRXRss.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ad/dbe773-befc-4a77-b513-5e23672673d2/1/XUcovR9dE212i_F1NGHFPaRXRss.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
4c:89:c3:8b:6f:c2:9c:c8:b0:5e:bb:28:c6:e8:ec:64:bb:b1:
23:7d:bd:d8:ce:3e:81:5c:69:06:02:d6:76:3c:f6:3a:db:c7:
e8:db:8d:20:85:ab:a8:18:7f:83:77:cb:1a:35:47:a2:16:08:
bd:c6:fa:97:61:87:05:45:52:7e:96:a1:27:d9:61:d7:66:26:
87:b4:ae:9c:3f:18:5a:1d:09:4e:82:9f:0a:af:78:d8:15:89:
72:1e:81:8b:d1:a3:fd:c5:b1:80:87:da:c6:51:1d:ae:40:ff:
e6:2f:cc:f6:1c:d7:7f:b4:c4:64:6e:4b:bf:3d:c9:89:d5:50:
4b:c6:17:94:d0:59:cc:36:d1:3a:85:61:e4:40:bd:ff:db:d8:
35:db:ae:02:fe:58:d8:9d:52:80:d7:fa:3e:20:81:ff:d2:be:
45:07:d1:51:c1:4a:d7:ab:1a:23:d5:76:8e:25:62:cc:74:cd:
ed:62:a2:4c:92:5b:9d:ca:f8:72:44:f9:b0:d9:05:d8:95:4c:
94:9a:fd:58:53:aa:09:75:e2:0e:95:c4:fc:87:9d:d9:04:2d:
81:90:81:a7:50:d4:d1:00:91:0b:53:8d:cb:3a:73:6c:ab:c4:
23:dd:c7:46:59:b8:29:e1:a2:33:8c:71:32:08:70:81:bb:80:
36:40:56:56
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 14:07:38 2025 by rpki-client