Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2d/b254bd-145c-4019-88a4-d5a177178f4a/1/xFz9uYA84FcULRh_hrxPVnHX63s.mft
File: xFz9uYA84FcULRh_hrxPVnHX63s.mft (raw, json)
Hash identifier: dl5XB8MU4p1pbaLJYbefhaHqy3FOOpfDzQ+xAxmppUs=
Subject key identifier: 19:74:1D:B7:DB:49:6B:31:B3:DC:92:50:68:9B:D9:F1:D3:D1:84:B9
Authority key identifier: C4:5C:FD:B9:80:3C:E0:57:14:2D:18:7F:86:BC:4F:56:71:D7:EB:7B
Certificate issuer: /CN=c45cfdb9803ce057142d187f86bc4f5671d7eb7b
Certificate serial: 0198D472C8F900298C83CE2EE483BF25BADB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xFz9uYA84FcULRh_hrxPVnHX63s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2d/b254bd-145c-4019-88a4-d5a177178f4a/1/xFz9uYA84FcULRh_hrxPVnHX63s.mft
Manifest number: 1643
Signing time: Sat 23 Aug 2025 01:02:28 +0000
Manifest this update: Sat 23 Aug 2025 01:02:28 +0000
Manifest next update: Sun 24 Aug 2025 01:02:28 +0000
Files and hashes: 1: xFz9uYA84FcULRh_hrxPVnHX63s.crl (hash: Vx/AQKTm6e21e/A0uETtRir/v8r+LIDFs1GAjg9H+iI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2d/b254bd-145c-4019-88a4-d5a177178f4a/1/xFz9uYA84FcULRh_hrxPVnHX63s.crl
rsync://rpki.ripe.net/repository/DEFAULT/2d/b254bd-145c-4019-88a4-d5a177178f4a/1/xFz9uYA84FcULRh_hrxPVnHX63s.mft
rsync://rpki.ripe.net/repository/DEFAULT/xFz9uYA84FcULRh_hrxPVnHX63s.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 00:37:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d4:72:c8:f9:00:29:8c:83:ce:2e:e4:83:bf:25:ba:db
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c45cfdb9803ce057142d187f86bc4f5671d7eb7b
Validity
Not Before: Aug 23 01:02:28 2025 GMT
Not After : Aug 24 01:02:28 2025 GMT
Subject: CN=19741db7db496b31b3dc9250689bd9f1d3d184b9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d6:3d:48:c1:ed:ef:7e:07:1d:3b:17:ae:b3:ff:
82:9b:33:ec:98:05:de:b3:78:7c:15:18:ac:99:c8:
8c:e2:e3:bd:8d:37:ad:2f:08:44:c0:78:4b:1d:58:
8d:79:6a:f6:b2:6a:90:59:c2:b9:63:6b:48:a3:21:
6b:d8:fe:e8:35:01:cd:18:02:92:c8:f7:03:ea:5e:
5f:91:00:e3:2f:0f:c4:15:e5:66:dc:39:aa:cd:2c:
8e:27:af:bf:f7:25:4b:50:9c:c1:df:43:ea:1d:c3:
ac:a0:ce:7e:92:a2:eb:3b:1f:51:6e:14:44:e2:6a:
be:35:4c:8c:0d:b6:ac:55:f0:87:b2:29:ee:88:0c:
aa:30:d4:11:32:5f:48:06:c3:82:be:c8:c9:e7:a4:
45:a1:29:d6:9b:3b:fa:49:74:63:2f:5a:b8:be:04:
60:03:e3:39:21:55:2e:5f:ee:31:11:75:1a:8f:29:
74:3a:bd:0b:e4:41:70:da:a0:2f:37:7c:f8:0a:38:
3c:44:3a:9f:24:0c:9c:0f:0a:93:83:aa:a1:82:0a:
a9:65:6a:cb:f8:bb:ba:e6:40:60:71:88:8b:a5:aa:
f3:20:61:57:f1:b8:b0:b9:52:73:1e:0f:ab:33:dd:
34:ca:2a:05:b8:93:9b:5f:1a:df:df:25:f9:c0:de:
38:07
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
19:74:1D:B7:DB:49:6B:31:B3:DC:92:50:68:9B:D9:F1:D3:D1:84:B9
X509v3 Authority Key Identifier:
keyid:C4:5C:FD:B9:80:3C:E0:57:14:2D:18:7F:86:BC:4F:56:71:D7:EB:7B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xFz9uYA84FcULRh_hrxPVnHX63s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2d/b254bd-145c-4019-88a4-d5a177178f4a/1/xFz9uYA84FcULRh_hrxPVnHX63s.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2d/b254bd-145c-4019-88a4-d5a177178f4a/1/xFz9uYA84FcULRh_hrxPVnHX63s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
03:32:b7:34:dc:9c:e4:4a:22:3b:0c:60:67:76:f4:2c:7c:58:
3b:1d:9c:94:3f:61:86:f6:b3:35:59:ab:00:fe:9a:a1:90:31:
2b:67:5c:bf:9d:e6:ff:cf:9c:c5:6c:f9:8a:da:c7:91:18:c5:
4f:42:b8:3e:4a:0b:c7:4c:0a:07:4e:a5:db:3c:a7:e4:be:14:
0f:aa:00:69:5c:e6:cc:86:23:76:78:6f:c4:c1:25:09:73:31:
9a:e1:0c:00:67:25:4f:fb:73:aa:65:3e:92:3f:d1:98:e7:ea:
4b:76:ac:33:44:85:12:c9:f3:d3:1b:6d:3e:67:bc:8c:c7:fb:
7c:3c:2f:de:f7:14:14:f7:01:f3:d0:ed:97:e1:d2:65:87:49:
9b:21:69:42:06:90:2c:dd:f1:86:68:a4:fb:c2:ed:6e:da:7b:
eb:03:78:09:38:4f:11:67:da:97:a4:4c:ca:38:d4:3f:3e:65:
82:3b:01:0a:99:80:58:30:81:92:01:b9:cd:03:b3:44:eb:c5:
92:ef:2d:ae:95:80:00:89:0e:f4:44:50:79:7d:7a:42:ce:0d:
c7:a6:b3:31:82:43:7c:f5:e8:1d:d1:21:f5:9c:1e:1d:13:07:
dc:ee:cb:75:0e:c6:15:41:5c:f7:a3:62:f3:97:2e:d5:2b:3e:
c2:0d:01:ca
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 10:22:14 2025 by rpki-client