Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/02/23d560-253b-4fe1-9c9d-5e92f4755904/1/CoXTeXJsj8CW0n6I_aEXs7JlTlk.mft
File: CoXTeXJsj8CW0n6I_aEXs7JlTlk.mft (raw, json)
Hash identifier: d3u2MSOXD9h3M/mUK65lT678H0L7DB3ysc1+VyFgQZ4=
Subject key identifier: BD:8A:DA:BE:B5:3E:5B:3C:EB:94:08:F8:3C:24:DC:BE:1A:5B:04:A5
Authority key identifier: 0A:85:D3:79:72:6C:8F:C0:96:D2:7E:88:FD:A1:17:B3:B2:65:4E:59
Certificate issuer: /CN=0a85d379726c8fc096d27e88fda117b3b2654e59
Certificate serial: 0198D4A7B24493F767C99F33632FF91C435B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CoXTeXJsj8CW0n6I_aEXs7JlTlk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/02/23d560-253b-4fe1-9c9d-5e92f4755904/1/CoXTeXJsj8CW0n6I_aEXs7JlTlk.mft
Manifest number: 0445
Signing time: Sat 23 Aug 2025 02:00:16 +0000
Manifest this update: Sat 23 Aug 2025 02:00:16 +0000
Manifest next update: Sun 24 Aug 2025 02:00:16 +0000
Files and hashes: 1: CoXTeXJsj8CW0n6I_aEXs7JlTlk.crl (hash: f5UXMnOrDrw39B4HzypuvdeVyy0/U/zgvVeDnSusVfQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/02/23d560-253b-4fe1-9c9d-5e92f4755904/1/CoXTeXJsj8CW0n6I_aEXs7JlTlk.crl
rsync://rpki.ripe.net/repository/DEFAULT/02/23d560-253b-4fe1-9c9d-5e92f4755904/1/CoXTeXJsj8CW0n6I_aEXs7JlTlk.mft
rsync://rpki.ripe.net/repository/DEFAULT/CoXTeXJsj8CW0n6I_aEXs7JlTlk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 00:37:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d4:a7:b2:44:93:f7:67:c9:9f:33:63:2f:f9:1c:43:5b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0a85d379726c8fc096d27e88fda117b3b2654e59
Validity
Not Before: Aug 23 02:00:16 2025 GMT
Not After : Aug 24 02:00:16 2025 GMT
Subject: CN=bd8adabeb53e5b3ceb9408f83c24dcbe1a5b04a5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:2c:17:f7:87:9e:ee:7c:ef:2f:4c:a7:10:f7:
b0:50:fa:65:0d:58:13:2f:95:40:f4:e6:f0:5d:59:
27:51:89:67:a2:73:26:25:c5:4f:0f:7e:47:62:b2:
83:1e:23:7e:20:1f:7b:9c:83:28:62:67:75:9b:13:
11:29:4c:e1:38:53:f7:52:5f:74:5a:52:a1:5b:82:
30:04:d6:53:a7:38:0b:52:64:05:23:6d:83:e8:2b:
54:31:df:94:7d:e7:9b:aa:f6:e4:b9:ed:36:bc:2b:
4f:61:81:47:61:1b:49:02:f4:35:35:0c:9b:3a:27:
85:7b:c7:53:21:78:e9:ff:84:c2:64:f1:ab:b4:81:
b2:fb:d0:4d:3b:f4:ac:5a:c7:3c:8e:24:bd:95:39:
48:24:17:c4:35:06:27:31:01:09:6f:ca:20:eb:5f:
a0:40:90:67:fb:de:51:30:68:64:22:33:04:58:08:
6f:64:cf:5c:9d:5e:f7:be:9d:02:2d:bd:a4:44:1e:
1d:55:a9:8d:ea:21:ec:73:c6:76:9c:85:f1:fa:dc:
fa:3e:8c:38:3b:89:27:1a:3d:4d:3e:74:8c:69:0f:
da:72:d9:e3:48:39:e4:d4:ae:4a:06:70:81:f6:8f:
fb:fc:51:a6:9d:d3:06:aa:d9:9d:20:4c:a7:2a:ca:
75:81
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BD:8A:DA:BE:B5:3E:5B:3C:EB:94:08:F8:3C:24:DC:BE:1A:5B:04:A5
X509v3 Authority Key Identifier:
keyid:0A:85:D3:79:72:6C:8F:C0:96:D2:7E:88:FD:A1:17:B3:B2:65:4E:59
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CoXTeXJsj8CW0n6I_aEXs7JlTlk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/02/23d560-253b-4fe1-9c9d-5e92f4755904/1/CoXTeXJsj8CW0n6I_aEXs7JlTlk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/02/23d560-253b-4fe1-9c9d-5e92f4755904/1/CoXTeXJsj8CW0n6I_aEXs7JlTlk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
d9:32:91:94:03:5b:00:b1:84:7c:84:cf:12:9a:e7:09:56:55:
69:f5:78:30:68:ab:b6:59:d2:69:7c:7c:23:7a:bc:fd:21:8e:
eb:0e:d6:10:d5:21:f3:a6:19:66:f3:ce:d8:7e:17:af:16:ac:
ed:ae:04:b8:84:e5:6e:79:0e:90:15:0c:f1:58:fe:90:7a:20:
06:72:7f:dc:74:33:33:58:ca:22:f5:c0:1c:59:09:f7:03:26:
47:c6:7c:13:39:53:fb:3a:e8:16:d4:4d:9f:34:50:a7:87:ab:
e2:eb:14:6b:49:fa:cf:7b:86:4a:ab:67:1c:6b:d7:94:72:16:
5a:29:a8:8c:45:4d:66:db:79:14:5f:5a:09:ad:56:19:7b:da:
21:8e:e9:ef:8f:ec:d2:b8:ea:7e:35:d8:4d:62:4b:f5:a2:97:
a9:94:f7:57:19:be:35:5a:3a:63:34:46:48:27:9f:0b:6c:99:
71:5a:dd:53:54:e1:e7:50:de:84:df:0b:66:fb:91:30:43:08:
55:82:1e:ae:87:f7:9b:0f:fe:af:ab:4a:ed:78:93:c2:a9:2e:
00:b5:fc:ba:ed:fd:54:91:c8:d3:cf:e3:93:8b:c8:20:3f:4a:
a0:0b:4f:66:65:f4:17:a3:85:09:5e:ac:ec:81:36:c7:f6:43:
3a:a2:1e:a1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 10:26:21 2025 by rpki-client