Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/09/7ed289-d661-4343-a2e0-0b92679d3625/1/X7dGbY6Sshx7GqE18w7-bnPh-Gw.mft
File: X7dGbY6Sshx7GqE18w7-bnPh-Gw.mft (raw, json)
Hash identifier: CDw2xQLZoYAZ9ADM76In9XEp7DfqqtPzih9DKsbz7EE=
Subject key identifier: A3:CC:A1:7F:FC:F0:94:AA:FD:37:CB:11:79:01:BC:DF:84:23:F6:89
Authority key identifier: 5F:B7:46:6D:8E:92:B2:1C:7B:1A:A1:35:F3:0E:FE:6E:73:E1:F8:6C
Certificate issuer: /CN=5fb7466d8e92b21c7b1aa135f30efe6e73e1f86c
Certificate serial: 0198D5836423569EC18C7E4C0A2D583D6A28
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/X7dGbY6Sshx7GqE18w7-bnPh-Gw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/09/7ed289-d661-4343-a2e0-0b92679d3625/1/X7dGbY6Sshx7GqE18w7-bnPh-Gw.mft
Manifest number: 0C64
Signing time: Sat 23 Aug 2025 06:00:14 +0000
Manifest this update: Sat 23 Aug 2025 06:00:14 +0000
Manifest next update: Sun 24 Aug 2025 06:00:14 +0000
Files and hashes: 1: X7dGbY6Sshx7GqE18w7-bnPh-Gw.crl (hash: P9iW161tytJYR9cmLUOzvfa5kIP/DGOafvmLvuEUWz8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/09/7ed289-d661-4343-a2e0-0b92679d3625/1/X7dGbY6Sshx7GqE18w7-bnPh-Gw.crl
rsync://rpki.ripe.net/repository/DEFAULT/09/7ed289-d661-4343-a2e0-0b92679d3625/1/X7dGbY6Sshx7GqE18w7-bnPh-Gw.mft
rsync://rpki.ripe.net/repository/DEFAULT/X7dGbY6Sshx7GqE18w7-bnPh-Gw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 05:01:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d5:83:64:23:56:9e:c1:8c:7e:4c:0a:2d:58:3d:6a:28
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5fb7466d8e92b21c7b1aa135f30efe6e73e1f86c
Validity
Not Before: Aug 23 06:00:14 2025 GMT
Not After : Aug 24 06:00:14 2025 GMT
Subject: CN=a3cca17ffcf094aafd37cb117901bcdf8423f689
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:53:65:ad:4c:42:68:e8:e4:e4:c8:02:c7:5d:
2d:4b:ff:41:39:dc:64:c1:f5:09:a9:73:26:6a:8a:
35:b1:3f:ed:af:d2:a1:e7:a1:99:27:0a:c0:3d:6d:
55:78:b4:8b:90:ca:48:9d:4e:cf:38:8b:ac:4a:e5:
9e:fc:fc:f2:1c:6f:bf:cd:5b:ef:fd:75:c1:40:38:
20:fb:ac:63:38:67:7a:7d:9a:09:03:3c:73:a2:ae:
cc:ac:83:ae:85:81:e3:47:fb:55:9e:ac:23:bd:6d:
99:06:13:30:6b:30:39:4a:b1:14:b0:ac:33:2d:1b:
99:04:e4:ec:eb:17:0d:bf:58:34:a3:f1:23:1b:0d:
1c:3a:97:fd:5d:d5:4a:9f:36:65:0d:9a:cb:39:73:
c4:34:00:7d:0d:42:86:32:d1:f8:09:90:af:90:02:
ce:7a:88:e0:1a:3f:65:5e:07:93:34:b9:5a:1a:1d:
8d:41:f5:13:4a:8c:b8:f2:97:ca:ff:1f:40:b0:78:
72:a4:18:2a:08:6c:a9:96:09:1c:a6:79:ed:5f:d2:
fc:0b:38:aa:4a:fd:b7:30:34:79:fc:42:72:61:95:
e5:9b:71:e0:fd:14:93:70:81:fe:39:20:f1:96:05:
62:13:74:b1:8f:c5:75:8e:fa:e4:0c:ce:d1:df:dc:
b5:e1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A3:CC:A1:7F:FC:F0:94:AA:FD:37:CB:11:79:01:BC:DF:84:23:F6:89
X509v3 Authority Key Identifier:
keyid:5F:B7:46:6D:8E:92:B2:1C:7B:1A:A1:35:F3:0E:FE:6E:73:E1:F8:6C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/X7dGbY6Sshx7GqE18w7-bnPh-Gw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/09/7ed289-d661-4343-a2e0-0b92679d3625/1/X7dGbY6Sshx7GqE18w7-bnPh-Gw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/09/7ed289-d661-4343-a2e0-0b92679d3625/1/X7dGbY6Sshx7GqE18w7-bnPh-Gw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
74:aa:8b:03:f5:25:12:e5:d1:ac:6b:19:88:13:61:c6:15:5c:
fc:a1:34:f2:f0:bf:68:86:cd:ea:7a:e9:ac:24:ac:58:e9:b9:
64:ae:94:3b:92:70:b7:c0:f3:3a:eb:d4:11:f9:d3:0c:16:d4:
6c:ed:6f:01:ea:29:4f:1f:65:a3:30:ba:92:da:9e:39:3d:26:
1c:7e:d6:a7:51:15:59:e9:47:2d:2e:c9:55:59:f9:29:a2:80:
2d:38:74:ec:78:f9:4a:d0:cb:28:bd:85:4a:e5:79:48:e1:df:
a4:97:ad:cd:07:a4:e9:e9:bf:9e:9f:33:96:9c:e7:82:73:a8:
13:70:bb:ce:0b:25:cf:ce:37:0f:05:08:83:24:62:43:33:80:
77:21:1b:88:34:5a:0a:00:39:97:79:da:f5:43:86:ec:de:b4:
c5:9b:5e:4a:6f:95:ea:0e:9f:ea:db:97:6f:49:6f:8b:1e:36:
cc:42:34:43:4c:2b:da:17:e5:bc:4c:5a:00:9c:97:96:03:fd:
c0:bb:6f:40:03:bd:c2:7f:4a:34:6d:46:3d:86:8a:d4:04:52:
8d:6f:9e:c4:7f:a4:8e:d7:84:a6:97:a3:26:49:05:29:d7:01:
f9:80:a8:3b:3b:4e:67:1f:f2:9a:5d:70:57:6b:f3:17:41:a3:
6b:7a:8c:6a
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZjVg2QjVp7BjH5MCi1YPWooMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDVmYjc0NjZkOGU5MmIyMWM3YjFhYTEzNWYzMGVmZTZlNzNl
MWY4NmMwHhcNMjUwODIzMDYwMDE0WhcNMjUwODI0MDYwMDE0WjAzMTEwLwYDVQQD
EyhhM2NjYTE3ZmZjZjA5NGFhZmQzN2NiMTE3OTAxYmNkZjg0MjNmNjg5MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAs1NlrUxCaOjk5MgCx10tS/9BOdxk
wfUJqXMmaoo1sT/tr9Kh56GZJwrAPW1VeLSLkMpInU7POIusSuWe/PzyHG+/zVvv
/XXBQDgg+6xjOGd6fZoJAzxzoq7MrIOuhYHjR/tVnqwjvW2ZBhMwazA5SrEUsKwz
LRuZBOTs6xcNv1g0o/EjGw0cOpf9XdVKnzZlDZrLOXPENAB9DUKGMtH4CZCvkALO
eojgGj9lXgeTNLlaGh2NQfUTSoy48pfK/x9AsHhypBgqCGyplgkcpnntX9L8Cziq
Sv23MDR5/EJyYZXlm3Hg/RSTcIH+OSDxlgViE3Sxj8V1jvrkDM7R39y14QIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFKPMoX/88JSq/TfLEXkBvN+EI/aJMB8GA1UdIwQY
MBaAFF+3Rm2OkrIcexqhNfMO/m5z4fhsMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvWDdkR2JZNlNzaHg3R3FFMTh3Ny1iblBoLUd3LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wOS83ZWQyODktZDY2MS00MzQzLWEyZTAt
MGI5MjY3OWQzNjI1LzEvWDdkR2JZNlNzaHg3R3FFMTh3Ny1iblBoLUd3Lm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8wOS83ZWQyODktZDY2MS00MzQzLWEyZTAtMGI5MjY3OWQzNjI1
LzEvWDdkR2JZNlNzaHg3R3FFMTh3Ny1iblBoLUd3LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAdKqLA/Ul
EuXRrGsZiBNhxhVc/KE08vC/aIbN6nrprCSsWOm5ZK6UO5Jwt8DzOuvUEfnTDBbU
bO1vAeopTx9lozC6ktqeOT0mHH7Wp1EVWelHLS7JVVn5KaKALTh07Hj5StDLKL2F
SuV5SOHfpJetzQek6em/np8zlpzngnOoE3C7zgslz843DwUIgyRiQzOAdyEbiDRa
CgA5l3na9UOG7N60xZteSm+V6g6f6tuXb0lvix42zEI0Q0wr2hflvExaAJyXlgP9
wLtvQAO9wn9KNG1GPYaK1ARSjW+exH+kjteEppejJkkFKdcB+YCoOztOZx/yml1w
V2vzF0Gja3qMag==
-----END CERTIFICATE-----
Generated at Sat Aug 23 15:03:53 2025 by rpki-client