Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/02/23d560-253b-4fe1-9c9d-5e92f4755904/1/CoXTeXJsj8CW0n6I_aEXs7JlTlk.mft
File: CoXTeXJsj8CW0n6I_aEXs7JlTlk.mft (raw, json)
Hash identifier: uDDrtkWBLT7bXAFXGZyF/csgK0t2HaKfiFupfiJbYgY=
Subject key identifier: 38:96:25:64:0C:2C:E7:CD:C5:3E:B0:69:80:5E:52:BD:C7:57:D1:3F
Authority key identifier: 0A:85:D3:79:72:6C:8F:C0:96:D2:7E:88:FD:A1:17:B3:B2:65:4E:59
Certificate issuer: /CN=0a85d379726c8fc096d27e88fda117b3b2654e59
Certificate serial: 0199FFFE770CE17352A28C23A05782139264
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CoXTeXJsj8CW0n6I_aEXs7JlTlk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/02/23d560-253b-4fe1-9c9d-5e92f4755904/1/CoXTeXJsj8CW0n6I_aEXs7JlTlk.mft
Manifest number: 04E0
Signing time: Mon 20 Oct 2025 05:01:30 +0000
Manifest this update: Mon 20 Oct 2025 05:01:30 +0000
Manifest next update: Tue 21 Oct 2025 05:01:30 +0000
Files and hashes: 1: CoXTeXJsj8CW0n6I_aEXs7JlTlk.crl (hash: t8CNcyNYTFx4q2HOxHdu6SYBc1ZDQQkBoZOh/gBwWVk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/02/23d560-253b-4fe1-9c9d-5e92f4755904/1/CoXTeXJsj8CW0n6I_aEXs7JlTlk.crl
rsync://rpki.ripe.net/repository/DEFAULT/02/23d560-253b-4fe1-9c9d-5e92f4755904/1/CoXTeXJsj8CW0n6I_aEXs7JlTlk.mft
rsync://rpki.ripe.net/repository/DEFAULT/CoXTeXJsj8CW0n6I_aEXs7JlTlk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 21 Oct 2025 00:00:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:ff:fe:77:0c:e1:73:52:a2:8c:23:a0:57:82:13:92:64
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0a85d379726c8fc096d27e88fda117b3b2654e59
Validity
Not Before: Oct 20 05:01:30 2025 GMT
Not After : Oct 21 05:01:30 2025 GMT
Subject: CN=389625640c2ce7cdc53eb069805e52bdc757d13f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:0b:15:e6:54:de:94:c6:72:8c:fb:fa:9f:7a:
af:41:c6:1c:da:50:f6:41:6e:8a:37:94:fe:e2:fe:
a2:70:7a:f2:cc:f6:d4:99:da:16:d1:48:4d:0e:5b:
f7:df:cf:e9:fb:14:d3:06:9f:2f:6e:96:68:d3:62:
21:f2:d0:3e:57:01:d3:f7:94:d9:8a:f2:e3:ee:45:
92:22:79:24:2c:48:ff:e6:fc:be:6f:12:43:b7:d5:
c7:49:f5:ad:8b:48:c7:27:84:57:66:cf:47:16:38:
96:3a:96:54:3b:78:ff:eb:22:38:72:56:08:ce:a7:
e6:ed:21:b8:9b:c3:63:70:fe:c1:8a:fb:eb:e8:77:
d2:70:21:93:bf:01:e3:90:1c:a3:ea:d4:be:81:10:
8e:aa:25:15:67:49:7c:5e:75:53:eb:05:b1:78:bb:
b3:8f:80:2a:70:d3:a5:d3:03:8f:20:e2:b8:9a:fd:
a8:e3:b4:ff:bc:b1:ac:b2:56:af:57:a8:e8:7c:cf:
2e:85:bd:aa:67:d4:b4:1e:3a:05:a5:7f:24:bf:b8:
08:53:a7:e1:20:bc:da:d3:71:8c:eb:08:3e:9c:9f:
d5:b5:60:9e:48:5d:d1:6e:b1:6f:f1:e9:3f:ce:e2:
38:93:8a:11:1e:42:2e:60:cd:a0:59:8f:00:23:a9:
a0:e5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
38:96:25:64:0C:2C:E7:CD:C5:3E:B0:69:80:5E:52:BD:C7:57:D1:3F
X509v3 Authority Key Identifier:
keyid:0A:85:D3:79:72:6C:8F:C0:96:D2:7E:88:FD:A1:17:B3:B2:65:4E:59
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CoXTeXJsj8CW0n6I_aEXs7JlTlk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/02/23d560-253b-4fe1-9c9d-5e92f4755904/1/CoXTeXJsj8CW0n6I_aEXs7JlTlk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/02/23d560-253b-4fe1-9c9d-5e92f4755904/1/CoXTeXJsj8CW0n6I_aEXs7JlTlk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
8d:ea:c3:15:2b:8c:aa:68:79:5d:35:25:60:c8:31:90:42:cc:
5c:29:ef:d7:b0:76:db:63:fb:3d:66:cf:a2:76:a8:18:0a:b3:
50:e8:bb:25:06:1c:2f:53:fd:4c:fe:b3:52:04:54:e8:a1:33:
e9:28:7f:8e:5d:d6:d5:34:19:1d:59:8f:14:ce:b0:e9:ac:6f:
d2:0b:c7:ae:6d:da:18:58:17:20:dc:8f:4a:41:5c:8a:fa:db:
97:a2:96:ee:e8:d8:4b:03:01:65:59:b4:bc:bd:db:3d:1f:3e:
46:0d:a4:95:62:2b:28:64:2c:90:2e:f5:64:bc:cc:85:7d:84:
6f:02:e1:22:93:e0:12:1c:51:61:16:44:44:76:cd:92:d9:93:
2d:e2:6a:5d:5c:e9:c4:12:8f:1d:38:21:73:6f:c5:b8:08:14:
2b:26:7a:a5:e8:da:0b:d0:be:4e:ba:7a:1e:8a:30:2d:b5:77:
4e:20:09:a0:88:84:34:61:82:a4:3f:a9:2d:9c:46:33:47:1e:
45:fd:be:22:6d:fb:7d:cf:aa:2a:71:8a:de:d9:bc:f5:af:97:
e8:62:f9:83:93:5a:3e:82:8f:f3:15:da:99:f8:a0:b3:94:05:
42:51:2c:4b:4b:d9:e8:86:f1:fd:85:2f:9a:a8:5b:d9:a4:75:
ea:8f:c5:3d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Oct 20 08:50:37 2025 by rpki-client