Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1f/f8c7e2-3282-4ebb-8508-9f9494966c54/1/cxkAeiit4HgdMS2NSUcts2dnBBY.mft
File: cxkAeiit4HgdMS2NSUcts2dnBBY.mft (raw, json)
Hash identifier: 0u0zlhJYjP2vMyrXrk9Mxc3ABkjyjuOmpDzDtyFd74w=
Subject key identifier: 57:57:A3:35:A5:72:A2:88:1D:EB:17:93:BA:76:B5:E0:04:21:3B:E3
Authority key identifier: 73:19:00:7A:28:AD:E0:78:1D:31:2D:8D:49:47:2D:B3:67:67:04:16
Certificate issuer: /CN=7319007a28ade0781d312d8d49472db367670416
Certificate serial: 0198D705BE8A2111EC1B777B136BD262DCEA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cxkAeiit4HgdMS2NSUcts2dnBBY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1f/f8c7e2-3282-4ebb-8508-9f9494966c54/1/cxkAeiit4HgdMS2NSUcts2dnBBY.mft
Manifest number: 08C6
Signing time: Sat 23 Aug 2025 13:02:14 +0000
Manifest this update: Sat 23 Aug 2025 13:02:14 +0000
Manifest next update: Sun 24 Aug 2025 13:02:14 +0000
Files and hashes: 1: cxkAeiit4HgdMS2NSUcts2dnBBY.crl (hash: AV2DyYK1Y1vF5iRshrjdldRtDSUN1F2/AfMGE62JX4E=)
2: rOIGMeXF9bxOY5fu4vCOE7NrCP0.roa (hash: 1nU5+mzZGJaibKrLnnLB5qj48GydY1KP7W2pluR6Ujw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/1f/f8c7e2-3282-4ebb-8508-9f9494966c54/1/cxkAeiit4HgdMS2NSUcts2dnBBY.crl
rsync://rpki.ripe.net/repository/DEFAULT/1f/f8c7e2-3282-4ebb-8508-9f9494966c54/1/cxkAeiit4HgdMS2NSUcts2dnBBY.mft
rsync://rpki.ripe.net/repository/DEFAULT/cxkAeiit4HgdMS2NSUcts2dnBBY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 05:01:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d7:05:be:8a:21:11:ec:1b:77:7b:13:6b:d2:62:dc:ea
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7319007a28ade0781d312d8d49472db367670416
Validity
Not Before: Aug 23 13:02:14 2025 GMT
Not After : Aug 24 13:02:14 2025 GMT
Subject: CN=5757a335a572a2881deb1793ba76b5e004213be3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:3f:f0:83:e5:81:27:d7:2e:e9:ed:f5:18:ee:
d8:fd:13:96:36:3d:1f:fd:15:b8:b6:09:f6:18:e5:
7e:b0:63:27:bf:a0:cc:a8:90:39:5e:1b:0b:38:2d:
54:65:a3:20:fe:09:a9:b9:d5:bc:c6:eb:58:25:15:
45:7a:c5:c9:39:6a:8c:92:7c:56:1b:9a:8f:e6:af:
ed:62:a7:c0:c8:71:dd:44:c6:e9:6d:f6:20:b1:20:
4f:bf:f7:2c:fc:07:91:76:19:74:23:1e:bc:dc:a1:
fa:f9:b1:72:b0:44:f1:22:37:3c:4b:76:aa:0a:ca:
3a:f8:41:ba:9f:bc:04:9c:7e:65:b2:a8:0e:50:2b:
19:46:e0:28:9e:8e:46:e5:aa:86:c8:8d:aa:3a:71:
47:2b:b0:0e:5d:b1:83:27:c3:5d:14:df:bf:7f:c1:
6c:3c:c4:c7:23:28:b7:c1:e2:43:21:4d:7b:53:3a:
d6:ea:41:df:e0:14:71:db:7f:15:f7:b2:08:2b:c7:
5c:08:bb:8f:a2:c5:d6:ae:fb:96:09:fe:bf:ff:d8:
12:4e:df:a3:14:b6:e8:7d:9c:74:70:f3:22:fd:b0:
2b:73:79:2c:c0:e2:41:60:2b:ad:5d:ec:26:a2:ed:
3c:8b:bf:7b:45:f1:17:fd:77:05:aa:5f:4d:bd:c1:
c8:47
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
57:57:A3:35:A5:72:A2:88:1D:EB:17:93:BA:76:B5:E0:04:21:3B:E3
X509v3 Authority Key Identifier:
keyid:73:19:00:7A:28:AD:E0:78:1D:31:2D:8D:49:47:2D:B3:67:67:04:16
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cxkAeiit4HgdMS2NSUcts2dnBBY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1f/f8c7e2-3282-4ebb-8508-9f9494966c54/1/cxkAeiit4HgdMS2NSUcts2dnBBY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1f/f8c7e2-3282-4ebb-8508-9f9494966c54/1/cxkAeiit4HgdMS2NSUcts2dnBBY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
5e:18:80:48:75:84:ac:2b:c1:64:80:1d:2a:01:de:6a:83:bb:
85:da:b7:4d:48:ee:db:6d:a9:55:ea:ee:03:60:84:d0:ad:23:
8e:4f:29:b3:b3:fc:30:10:85:56:b7:e1:1f:2b:5c:fa:31:f7:
35:51:d1:d5:ed:2b:42:41:5b:7e:10:fb:8b:50:9b:c8:7e:e1:
55:2a:73:d0:3b:df:13:34:d6:bd:c7:52:b5:fa:38:30:78:c7:
84:a0:1a:3f:3c:30:48:d7:e3:9d:2b:bd:3b:38:bc:90:7a:68:
c0:c5:b2:64:ef:47:f1:b4:93:7f:ed:eb:84:52:04:c1:82:47:
04:a2:5e:dc:04:b2:7f:cb:16:fc:f9:04:40:45:f2:11:0a:1e:
3b:2d:c1:4b:6a:c0:40:20:f6:b5:a0:b2:9d:47:a5:cb:56:f2:
1d:6f:07:24:a4:46:30:c4:19:90:67:b8:ab:61:00:b8:d2:eb:
16:6d:b8:5a:df:7b:fb:b6:f1:bf:8e:36:28:9e:06:b2:47:9a:
53:0e:73:c9:68:b6:a6:dd:28:65:2d:98:05:5c:50:86:1a:9b:
f4:48:88:33:a5:f5:90:d3:19:ca:50:50:2e:79:dc:c0:2c:6b:
21:eb:8a:62:2c:4c:75:fa:3d:3b:a0:50:6c:48:f9:af:91:b8:
bd:38:ed:66
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 15:36:02 2025 by rpki-client