Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4e/bb861d-330f-4a97-9f9c-66c53f2b1f02/1/XYqf18UZJuIuqKozs7iDjpPovt0.mft
File: XYqf18UZJuIuqKozs7iDjpPovt0.mft (raw, json)
Hash identifier: 4X3XTRkGm88sxk+RT6zcknkOr8+tlH9iG1dpAc7Us1k=
Subject key identifier: 1F:CC:90:02:B0:5A:AF:BB:E3:39:E9:61:98:34:88:99:62:4D:44:62
Authority key identifier: 5D:8A:9F:D7:C5:19:26:E2:2E:A8:AA:33:B3:B8:83:8E:93:E8:BE:DD
Certificate issuer: /CN=5d8a9fd7c51926e22ea8aa33b3b8838e93e8bedd
Certificate serial: 019A54BFCA100C4BC0AB79C94C5845AA945E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XYqf18UZJuIuqKozs7iDjpPovt0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4e/bb861d-330f-4a97-9f9c-66c53f2b1f02/1/XYqf18UZJuIuqKozs7iDjpPovt0.mft
Manifest number: 1712
Signing time: Wed 05 Nov 2025 16:00:46 +0000
Manifest this update: Wed 05 Nov 2025 16:00:46 +0000
Manifest next update: Thu 06 Nov 2025 16:00:46 +0000
Files and hashes: 1: 0RjgNRg0mrp-p0sUPcMzw9plAa8.roa (hash: /sIoNqXyJWt95PHx7AGb8pmEwy8qEaDKsd4+c9cdNhU=)
2: ByhvC5UK-f2zjyXJoOZ55QYyoFY.roa (hash: 7F3UrolhPGtbR/fySIsaZ7YzGq6FNxf2q9uu01GI6C0=)
3: DyR2WdJX7ABSVFzMG--Y2Rw480o.roa (hash: +lC9V9G29eZ0ubABsOu96g/K8AVuHJSib8VHpmomp9Q=)
4: HO-WF7oHezpfwwV3wUG7AErtTlE.roa (hash: 8SO7ZYvzAB17ADVUPvCZiM0fv0nIROPrrAJMFayW82A=)
5: XYqf18UZJuIuqKozs7iDjpPovt0.crl (hash: oN6HmFPosNNM1GjT+mV9ga4F0dwNLmcJDhg7E+Jygxg=)
6: xZlrXqE8pd9RbauBbqs28LHvRHA.roa (hash: 2cai0/ZfgqLeuQF0rbi62rT8qPeDCMYpSTam6ord1Vg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/4e/bb861d-330f-4a97-9f9c-66c53f2b1f02/1/XYqf18UZJuIuqKozs7iDjpPovt0.crl
rsync://rpki.ripe.net/repository/DEFAULT/4e/bb861d-330f-4a97-9f9c-66c53f2b1f02/1/XYqf18UZJuIuqKozs7iDjpPovt0.mft
rsync://rpki.ripe.net/repository/DEFAULT/XYqf18UZJuIuqKozs7iDjpPovt0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 06 Nov 2025 16:00:46 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:54:bf:ca:10:0c:4b:c0:ab:79:c9:4c:58:45:aa:94:5e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5d8a9fd7c51926e22ea8aa33b3b8838e93e8bedd
Validity
Not Before: Nov 5 16:00:46 2025 GMT
Not After : Nov 6 16:00:46 2025 GMT
Subject: CN=1fcc9002b05aafbbe339e96198348899624d4462
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:fa:a9:ea:77:c0:7d:79:bf:c4:46:1b:0b:c6:
98:e5:18:61:4d:ea:e4:ce:ee:00:9d:ad:9f:17:36:
85:06:19:50:e9:db:0b:ec:3b:94:f7:a0:47:8e:8d:
27:27:8c:9d:2e:df:a9:5a:2a:9d:82:b3:79:3f:d2:
a7:f1:56:a9:d0:1a:74:17:ef:7f:79:b0:c3:ca:2a:
11:07:04:82:25:08:1e:09:02:5f:50:43:b9:60:0d:
07:22:70:2b:40:8b:de:ea:6e:a8:3a:37:22:08:ea:
db:f4:a0:b1:21:9b:ec:9b:4c:80:55:58:2b:c7:93:
4b:bb:4d:20:9b:a2:a6:68:5c:8d:94:04:7c:e0:2d:
c2:9d:58:b9:ce:e4:e6:4b:c1:5e:37:65:bc:40:47:
70:aa:56:1f:81:9d:71:4f:6d:37:0e:be:b8:68:7f:
2d:06:56:6e:e5:4c:cc:c1:65:18:dd:5a:22:cc:91:
4c:73:0d:dc:87:3e:7f:04:31:38:b3:25:ce:12:e6:
da:31:3f:d2:17:bb:f8:2c:c5:89:80:41:15:a6:cf:
86:a8:2e:ff:e2:82:30:58:f9:53:69:da:f6:0f:18:
82:3d:a6:bb:7b:83:b9:08:fc:aa:9f:6b:5d:93:fb:
f8:fa:6a:e5:57:ef:0c:30:0c:1a:fb:71:30:3f:55:
14:29
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1F:CC:90:02:B0:5A:AF:BB:E3:39:E9:61:98:34:88:99:62:4D:44:62
X509v3 Authority Key Identifier:
keyid:5D:8A:9F:D7:C5:19:26:E2:2E:A8:AA:33:B3:B8:83:8E:93:E8:BE:DD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XYqf18UZJuIuqKozs7iDjpPovt0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4e/bb861d-330f-4a97-9f9c-66c53f2b1f02/1/XYqf18UZJuIuqKozs7iDjpPovt0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4e/bb861d-330f-4a97-9f9c-66c53f2b1f02/1/XYqf18UZJuIuqKozs7iDjpPovt0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
5c:04:3a:0a:5f:eb:8f:aa:63:67:84:65:d9:a4:c0:63:9b:a1:
d0:fb:e7:d9:c5:29:5b:cf:8b:33:1b:3b:f8:15:dc:32:68:31:
53:ee:eb:78:82:9a:19:3e:f3:fc:b0:ef:dd:4e:d6:78:f0:18:
29:08:c7:d8:47:ab:0d:43:b0:fe:5e:3d:3c:c8:9f:0d:b0:6a:
97:f6:e0:82:12:b9:35:30:7a:39:5a:9c:74:61:16:83:d5:a5:
a8:66:07:40:00:c0:a3:c8:29:ad:d3:ad:fd:7b:da:fc:0d:59:
3e:e6:97:2d:c9:73:d8:4e:53:8c:d7:25:ea:11:88:37:da:a1:
d2:e2:d4:f5:bb:be:10:3c:8f:09:28:03:27:e7:f6:c2:a3:19:
47:2b:40:ce:af:62:45:ce:a3:f8:52:ff:6b:82:15:c1:81:5d:
13:f7:61:40:76:75:7a:66:50:a5:04:70:41:c3:21:dd:3a:1a:
65:63:13:9a:87:67:25:ed:04:1c:9d:29:ba:38:ef:8f:63:fb:
90:02:9f:6e:7b:61:7e:2d:e1:de:64:04:24:a0:af:43:aa:48:
0f:51:66:d9:6b:32:72:20:39:a3:fe:9b:0c:1f:24:e1:05:e3:
50:b1:b3:90:d6:c5:b1:02:99:a8:cf:da:c6:d0:2d:d1:25:14:
5a:e9:44:96
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Nov 6 00:42:14 2025 by rpki-client