Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/22/522cf1-0b5c-4d62-b36c-9fbe8919db90/1/X2KPBcyoyH1ZPnHp3SGw5_idWJM.mft
File: X2KPBcyoyH1ZPnHp3SGw5_idWJM.mft (raw, json)
Hash identifier: f6hQ9tcPJNnsAPdzVGmtLm1zZY+lnPggVCrGPCzukvQ=
Subject key identifier: A8:35:D3:E0:A0:9A:66:5F:00:4B:E4:07:49:EB:FD:83:E8:27:7A:27
Authority key identifier: 5F:62:8F:05:CC:A8:C8:7D:59:3E:71:E9:DD:21:B0:E7:F8:9D:58:93
Certificate issuer: /CN=5f628f05cca8c87d593e71e9dd21b0e7f89d5893
Certificate serial: 0198D65FB08F3A318455F0949BDCE27736E8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/X2KPBcyoyH1ZPnHp3SGw5_idWJM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/22/522cf1-0b5c-4d62-b36c-9fbe8919db90/1/X2KPBcyoyH1ZPnHp3SGw5_idWJM.mft
Manifest number: 1645
Signing time: Sat 23 Aug 2025 10:00:51 +0000
Manifest this update: Sat 23 Aug 2025 10:00:51 +0000
Manifest next update: Sun 24 Aug 2025 10:00:51 +0000
Files and hashes: 1: X2KPBcyoyH1ZPnHp3SGw5_idWJM.crl (hash: FJoATP+VJd3ddG/eCMvyq8SenTaTYP+UDeIQtbp4P3U=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/22/522cf1-0b5c-4d62-b36c-9fbe8919db90/1/X2KPBcyoyH1ZPnHp3SGw5_idWJM.crl
rsync://rpki.ripe.net/repository/DEFAULT/22/522cf1-0b5c-4d62-b36c-9fbe8919db90/1/X2KPBcyoyH1ZPnHp3SGw5_idWJM.mft
rsync://rpki.ripe.net/repository/DEFAULT/X2KPBcyoyH1ZPnHp3SGw5_idWJM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 05:01:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d6:5f:b0:8f:3a:31:84:55:f0:94:9b:dc:e2:77:36:e8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5f628f05cca8c87d593e71e9dd21b0e7f89d5893
Validity
Not Before: Aug 23 10:00:51 2025 GMT
Not After : Aug 24 10:00:51 2025 GMT
Subject: CN=a835d3e0a09a665f004be40749ebfd83e8277a27
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:f0:ce:ae:d7:78:3c:41:d5:60:8b:3c:a1:bf:
c2:9e:b4:6e:51:60:65:cb:52:7d:0e:af:c4:c9:f2:
3a:08:b8:38:ea:91:f0:ce:14:f8:25:74:49:bc:a0:
ce:7d:35:e0:95:88:48:e7:ea:b4:fd:3f:0e:89:e7:
1e:d2:63:7c:57:38:9d:02:67:3f:51:88:5b:5b:14:
cb:f2:77:b6:3a:c2:af:b7:3a:4e:63:5e:c7:8f:2f:
7f:57:a5:5e:ec:53:c3:de:cd:50:47:79:9f:42:51:
4d:cd:bd:75:92:a9:89:c5:d2:4a:0c:a2:0a:5a:66:
93:05:f6:18:17:c9:73:f2:72:c0:d4:94:fb:84:56:
4d:b2:fe:58:3d:22:0e:8f:55:c3:76:df:ab:56:93:
13:62:e2:93:12:52:e9:f5:f1:d5:a4:b4:6b:ce:59:
c8:45:61:27:3a:7c:ec:9d:e1:23:94:41:72:a9:46:
57:96:a0:78:60:14:73:4a:7d:49:ce:18:57:9a:a3:
af:d2:67:61:a3:2a:9e:39:df:8e:76:8b:61:5f:de:
2f:85:49:08:02:64:8f:fc:21:79:c6:36:e6:0f:8a:
4b:97:28:86:d9:f4:3f:64:4e:cc:71:3f:1c:62:d9:
03:d4:a8:2d:18:28:31:53:ef:4e:25:c2:00:00:ab:
fe:d3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A8:35:D3:E0:A0:9A:66:5F:00:4B:E4:07:49:EB:FD:83:E8:27:7A:27
X509v3 Authority Key Identifier:
keyid:5F:62:8F:05:CC:A8:C8:7D:59:3E:71:E9:DD:21:B0:E7:F8:9D:58:93
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/X2KPBcyoyH1ZPnHp3SGw5_idWJM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/22/522cf1-0b5c-4d62-b36c-9fbe8919db90/1/X2KPBcyoyH1ZPnHp3SGw5_idWJM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/22/522cf1-0b5c-4d62-b36c-9fbe8919db90/1/X2KPBcyoyH1ZPnHp3SGw5_idWJM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
14:07:8a:3e:5b:6f:df:cb:0b:7f:43:93:fd:da:c4:6b:66:fd:
ef:bb:2a:a5:cd:e0:1a:bd:d9:5b:4c:f6:0f:c6:e6:1f:f7:2e:
c0:09:f5:45:6c:ea:44:20:0c:cf:0c:fc:9f:a6:6e:35:c7:70:
01:74:cc:30:84:b9:9d:7f:0f:23:d3:1d:80:cd:51:5d:4b:2d:
55:38:d2:03:fe:d5:6c:0f:4e:8c:c1:04:43:a4:5d:4d:53:56:
ec:a0:a0:d2:34:dc:9b:fb:23:d4:cb:7e:0d:8a:6f:0d:4e:82:
32:41:9c:c3:c8:01:c9:86:d9:7a:30:98:d0:57:47:67:ee:e7:
fa:36:7e:70:25:5f:3b:4d:e7:b3:a5:0c:59:c6:14:9f:1a:91:
1b:da:82:bb:24:2f:61:81:7d:e3:11:93:d3:22:33:dd:e7:ce:
23:e2:31:63:87:d4:80:c8:f5:75:c3:8e:9f:76:51:44:b7:5b:
84:3c:dd:ab:da:47:ba:ce:7f:25:25:68:c9:59:dd:5a:15:3f:
9c:9e:4d:9d:4f:51:ca:03:64:3e:48:d9:c6:03:98:7f:3e:5c:
ec:4a:8b:06:52:af:bf:e0:37:29:6f:ab:24:e1:ac:6b:37:09:
bd:a3:57:cc:8c:dd:22:5d:02:7e:fc:9b:e7:12:1c:09:2f:6b:
ff:18:66:b5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 12:22:37 2025 by rpki-client