Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1e/481466-0e38-4e3b-9bf3-285745647f5f/1/mXpkd92XDJSyoXtSUCmC1Px1skQ.mft
File: mXpkd92XDJSyoXtSUCmC1Px1skQ.mft (raw, json)
Hash identifier: gd/kkQ3TPdnBh8e7MG/tmTEi1di43DKYpyVKZhFsB5o=
Subject key identifier: 1D:B6:98:F3:73:86:93:56:C8:8D:88:38:31:E0:4B:2A:97:76:95:95
Authority key identifier: 99:7A:64:77:DD:97:0C:94:B2:A1:7B:52:50:29:82:D4:FC:75:B2:44
Certificate issuer: /CN=997a6477dd970c94b2a17b52502982d4fc75b244
Certificate serial: 0198D69817ED50E3C10B9CD8BBE3863836DF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/mXpkd92XDJSyoXtSUCmC1Px1skQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1e/481466-0e38-4e3b-9bf3-285745647f5f/1/mXpkd92XDJSyoXtSUCmC1Px1skQ.mft
Manifest number: 0576
Signing time: Sat 23 Aug 2025 11:02:28 +0000
Manifest this update: Sat 23 Aug 2025 11:02:28 +0000
Manifest next update: Sun 24 Aug 2025 11:02:28 +0000
Files and hashes: 1: N5euriRPkrPM5tpe3YMpJKwtnXs.roa (hash: Aif5H8pBLwxI+pfqg48v8EjEzgULti0iCYfChkXvfLI=)
2: mXpkd92XDJSyoXtSUCmC1Px1skQ.crl (hash: rLrBxpnFgjzMoOA9edKPSABpWOLPokOUUmSAHrqUDAk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/1e/481466-0e38-4e3b-9bf3-285745647f5f/1/mXpkd92XDJSyoXtSUCmC1Px1skQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/1e/481466-0e38-4e3b-9bf3-285745647f5f/1/mXpkd92XDJSyoXtSUCmC1Px1skQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/mXpkd92XDJSyoXtSUCmC1Px1skQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 11:02:28 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d6:98:17:ed:50:e3:c1:0b:9c:d8:bb:e3:86:38:36:df
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=997a6477dd970c94b2a17b52502982d4fc75b244
Validity
Not Before: Aug 23 11:02:28 2025 GMT
Not After : Aug 24 11:02:28 2025 GMT
Subject: CN=1db698f373869356c88d883831e04b2a97769595
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e3:2d:21:d1:0a:e3:49:20:cc:93:8f:8a:28:d5:
33:55:37:dd:29:cd:5f:c5:cc:5c:eb:6a:da:e5:17:
d1:67:9c:11:f1:e0:0b:4d:8e:be:7e:86:8e:80:eb:
63:19:77:24:3c:39:a2:d0:7f:1f:c7:71:1b:2b:20:
4c:cd:31:76:77:43:44:d4:82:ed:bb:86:1b:af:cc:
c7:02:76:49:a5:13:30:f5:ef:d2:c1:9f:eb:59:2a:
6d:04:e5:e5:73:5b:24:9a:28:22:30:d4:1e:a2:06:
c7:4a:fa:bb:ef:32:c6:8c:f4:c2:6d:a7:df:e4:b0:
bf:32:c5:e7:5c:04:be:23:78:77:8c:33:01:83:e1:
62:8c:a5:3d:82:fd:6c:c4:b0:f2:0d:a9:a6:27:49:
a5:45:ee:ea:60:17:3c:ff:75:b4:69:7e:2f:c4:85:
06:bb:f6:df:dc:a2:f9:ac:0e:b7:c0:4d:51:cc:14:
b3:8e:fc:59:01:39:4a:a4:f4:bd:5e:a8:9f:24:53:
8e:39:e6:9b:62:0d:5a:82:dc:7f:77:20:96:fd:31:
4e:80:be:d6:49:95:f6:48:b3:ce:55:99:6d:09:25:
a4:e8:62:7a:9a:48:e7:19:a7:b8:c2:d9:ef:26:0b:
0c:35:89:a0:46:c1:35:55:51:3b:17:d0:6c:3a:53:
f6:bb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1D:B6:98:F3:73:86:93:56:C8:8D:88:38:31:E0:4B:2A:97:76:95:95
X509v3 Authority Key Identifier:
keyid:99:7A:64:77:DD:97:0C:94:B2:A1:7B:52:50:29:82:D4:FC:75:B2:44
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/mXpkd92XDJSyoXtSUCmC1Px1skQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1e/481466-0e38-4e3b-9bf3-285745647f5f/1/mXpkd92XDJSyoXtSUCmC1Px1skQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1e/481466-0e38-4e3b-9bf3-285745647f5f/1/mXpkd92XDJSyoXtSUCmC1Px1skQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
17:51:c8:1f:83:8c:56:84:9b:d0:de:ab:e0:76:87:f2:72:c6:
cd:ed:4d:bf:e3:35:b0:f3:30:7e:c3:50:9a:dd:f8:fe:12:50:
90:27:d0:10:66:23:36:1a:a2:76:b8:e8:e2:ab:17:80:32:1b:
00:e6:8c:d0:2b:90:67:cb:8d:21:76:ef:61:8f:77:58:8c:24:
c2:a0:c7:82:8a:db:cc:6b:4c:e0:96:10:af:ac:71:ad:35:09:
db:e7:a8:7e:36:e2:28:29:d1:b0:a5:81:1a:0c:ea:e3:96:6a:
27:df:34:8c:80:c6:39:5f:b8:f8:46:a2:0b:1e:ce:78:52:df:
90:d6:0d:90:5b:5e:42:ff:59:c3:20:ad:b1:8f:7e:6d:15:9b:
4c:a1:c3:98:6c:49:e4:5b:18:55:8e:4b:57:a7:8c:57:02:45:
8c:f7:6e:dd:9d:ed:91:69:83:fe:85:43:a5:cb:78:9b:d0:3a:
79:1a:7f:4b:76:b1:48:d0:71:0a:07:1c:28:54:01:b7:13:36:
45:f7:8c:03:27:6a:49:8d:ae:6d:0a:f8:55:71:64:54:ee:c0:
f8:12:77:ed:4b:6e:31:cc:3d:72:62:77:5b:89:df:94:66:44:
30:46:17:a4:6d:8b:27:02:44:b3:4d:1c:51:fc:6b:3b:42:4b:
82:39:6a:d2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 18:24:15 2025 by rpki-client