Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/20/217e97-6b2c-4a5d-915b-949c628e5f3c/1/XX2xSVjPTXheWe9cbGefjvVMHYs.mft
File: XX2xSVjPTXheWe9cbGefjvVMHYs.mft (raw, json)
Hash identifier: 6n8R9LdgSQDlFxk8TnN2ynd/CkGdZ8QTCCrqcbhzTao=
Subject key identifier: E2:83:28:22:8D:8E:87:47:BE:9C:D0:B5:AA:1E:27:BC:EF:DE:32:45
Authority key identifier: 5D:7D:B1:49:58:CF:4D:78:5E:59:EF:5C:6C:67:9F:8E:F5:4C:1D:8B
Certificate issuer: /CN=5d7db14958cf4d785e59ef5c6c679f8ef54c1d8b
Certificate serial: 0198D4DFF46C6B6C11355217E4EDFA72F9C0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XX2xSVjPTXheWe9cbGefjvVMHYs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/20/217e97-6b2c-4a5d-915b-949c628e5f3c/1/XX2xSVjPTXheWe9cbGefjvVMHYs.mft
Manifest number: 0631
Signing time: Sat 23 Aug 2025 03:01:43 +0000
Manifest this update: Sat 23 Aug 2025 03:01:43 +0000
Manifest next update: Sun 24 Aug 2025 03:01:43 +0000
Files and hashes: 1: XX2xSVjPTXheWe9cbGefjvVMHYs.crl (hash: d3BDHgQKe3zFcTP3Vy6xrBjlnHrnkgmgrZM1IsFd/cs=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/20/217e97-6b2c-4a5d-915b-949c628e5f3c/1/XX2xSVjPTXheWe9cbGefjvVMHYs.crl
rsync://rpki.ripe.net/repository/DEFAULT/20/217e97-6b2c-4a5d-915b-949c628e5f3c/1/XX2xSVjPTXheWe9cbGefjvVMHYs.mft
rsync://rpki.ripe.net/repository/DEFAULT/XX2xSVjPTXheWe9cbGefjvVMHYs.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 03:01:43 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d4:df:f4:6c:6b:6c:11:35:52:17:e4:ed:fa:72:f9:c0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5d7db14958cf4d785e59ef5c6c679f8ef54c1d8b
Validity
Not Before: Aug 23 03:01:43 2025 GMT
Not After : Aug 24 03:01:43 2025 GMT
Subject: CN=e28328228d8e8747be9cd0b5aa1e27bcefde3245
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:8b:8e:a0:e9:eb:9f:2e:bd:6d:c9:60:a7:7f:
4d:a0:1e:50:1b:52:1f:35:6b:a0:4f:d3:c4:76:b7:
19:cc:16:15:92:8d:ea:82:ba:81:c3:d0:41:9e:a0:
73:e9:5a:b0:e4:94:97:ee:bb:78:a5:9e:7b:5f:fe:
93:ae:0c:99:76:bd:06:be:15:c1:cb:dd:3b:c8:1a:
9d:b5:be:2c:72:56:ab:48:bd:19:14:f8:eb:d9:07:
f3:b7:43:ea:17:37:f8:98:bd:3a:2c:97:0d:80:ca:
80:1d:2e:4c:b6:23:1c:0a:01:4e:51:1e:61:e8:21:
ad:3d:b9:c3:72:6a:17:b3:b7:9b:d5:97:66:df:65:
00:30:1c:9a:03:ff:22:d8:9f:9d:d8:1e:31:5c:51:
b3:df:80:e2:0e:d9:6d:0e:02:b8:bc:bc:28:3d:61:
43:5e:e7:35:6e:a0:8f:22:8f:aa:2b:04:40:35:6e:
2c:55:d4:00:da:44:a3:d8:aa:76:5e:db:57:4e:a1:
74:28:e2:4a:79:3d:35:94:a0:f8:e5:96:b5:9d:bd:
ce:a4:73:af:17:6d:19:53:c8:2b:a9:56:53:d4:6f:
41:0c:78:2b:dc:9e:45:c3:b1:b8:2b:21:5b:c2:c4:
59:f2:12:8d:e3:34:75:d3:6f:79:be:a1:b7:8d:cb:
6b:b3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E2:83:28:22:8D:8E:87:47:BE:9C:D0:B5:AA:1E:27:BC:EF:DE:32:45
X509v3 Authority Key Identifier:
keyid:5D:7D:B1:49:58:CF:4D:78:5E:59:EF:5C:6C:67:9F:8E:F5:4C:1D:8B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XX2xSVjPTXheWe9cbGefjvVMHYs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/20/217e97-6b2c-4a5d-915b-949c628e5f3c/1/XX2xSVjPTXheWe9cbGefjvVMHYs.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/20/217e97-6b2c-4a5d-915b-949c628e5f3c/1/XX2xSVjPTXheWe9cbGefjvVMHYs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
54:96:80:0a:44:91:11:61:2f:77:c8:fc:6e:0f:5f:0f:c1:e3:
0f:3a:f7:88:1c:d6:2c:a6:5e:1c:47:a2:15:70:b0:06:6b:6b:
6a:19:04:e0:03:f0:5b:99:ac:e6:30:81:5d:eb:41:ae:37:bc:
09:3b:67:c4:bf:33:9c:0f:bc:85:cc:95:e4:3d:11:6e:45:83:
91:93:93:d5:77:27:f9:a8:85:ac:c1:7e:d1:52:84:d4:91:ef:
42:75:c9:43:f6:aa:ad:99:99:54:2e:d4:ca:8d:03:ed:42:f3:
77:a8:e7:9b:49:d6:6b:e3:53:6b:e8:86:8a:80:fe:f0:a1:15:
cd:d8:52:96:95:4c:cb:0c:2b:b9:5c:b1:e7:b0:b5:78:7e:26:
62:70:19:9a:be:c2:47:b3:b2:55:93:cd:87:95:20:9e:3a:97:
4c:d6:32:62:ce:3d:22:5b:0e:af:60:db:36:f1:8b:c7:10:9f:
9d:79:14:51:34:2a:88:78:2e:3d:69:71:97:99:52:02:ac:14:
8e:c7:71:82:d6:b3:8a:b4:ea:1c:cb:3c:43:83:a2:7c:a9:cb:
d1:3e:a9:4b:11:87:8a:c2:20:14:d5:06:9c:b3:e9:67:d4:7a:
f0:43:49:7d:7c:89:fc:52:89:c5:aa:63:28:ac:c8:0b:0b:25:
8d:4a:72:76
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 12:23:25 2025 by rpki-client