Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2d/f7f214-1db2-436a-95c6-643f0da849fa/1/rxFguAPrImHBP4yK3JU9O1r7V8w.mft
File: rxFguAPrImHBP4yK3JU9O1r7V8w.mft (raw, json)
Hash identifier: 4rk4domNgOXfjq51hW87saIEZdkEqJHPRkI6Z2LbKRI=
Subject key identifier: CA:75:52:84:6A:F3:CF:DC:40:BE:2B:21:C2:1E:B4:C9:D6:DB:F9:BF
Authority key identifier: AF:11:60:B8:03:EB:22:61:C1:3F:8C:8A:DC:95:3D:3B:5A:FB:57:CC
Certificate issuer: /CN=af1160b803eb2261c13f8c8adc953d3b5afb57cc
Certificate serial: 0198D583A07FB33F38C243BE0BCC8FB2F2E4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/rxFguAPrImHBP4yK3JU9O1r7V8w.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2d/f7f214-1db2-436a-95c6-643f0da849fa/1/rxFguAPrImHBP4yK3JU9O1r7V8w.mft
Manifest number: 0168
Signing time: Sat 23 Aug 2025 06:00:29 +0000
Manifest this update: Sat 23 Aug 2025 06:00:29 +0000
Manifest next update: Sun 24 Aug 2025 06:00:29 +0000
Files and hashes: 1: rxFguAPrImHBP4yK3JU9O1r7V8w.crl (hash: Q1ZLf0qdMu5QM1QP7S7FC5NAXS/0cCrHn2CCDRfDQxA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2d/f7f214-1db2-436a-95c6-643f0da849fa/1/rxFguAPrImHBP4yK3JU9O1r7V8w.crl
rsync://rpki.ripe.net/repository/DEFAULT/2d/f7f214-1db2-436a-95c6-643f0da849fa/1/rxFguAPrImHBP4yK3JU9O1r7V8w.mft
rsync://rpki.ripe.net/repository/DEFAULT/rxFguAPrImHBP4yK3JU9O1r7V8w.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 00:37:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d5:83:a0:7f:b3:3f:38:c2:43:be:0b:cc:8f:b2:f2:e4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=af1160b803eb2261c13f8c8adc953d3b5afb57cc
Validity
Not Before: Aug 23 06:00:29 2025 GMT
Not After : Aug 24 06:00:29 2025 GMT
Subject: CN=ca7552846af3cfdc40be2b21c21eb4c9d6dbf9bf
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e5:05:fe:a9:39:36:04:96:d3:d4:d9:82:e5:58:
c9:45:23:67:c6:6b:96:80:24:e8:eb:d6:59:e2:4e:
a7:34:0b:3a:06:d1:3d:ec:7c:13:18:ad:07:47:0f:
2e:f4:2d:28:73:22:88:e8:f6:51:cb:d5:1f:61:dd:
d6:cc:05:45:a7:9d:91:b9:8c:2f:b9:5f:dc:c4:2c:
c0:48:df:dd:e4:67:85:88:e7:a6:45:5a:cd:e3:9a:
5c:72:ff:86:87:50:f3:83:d1:eb:f4:28:a4:8a:4b:
e6:6d:06:89:df:17:a4:5f:48:48:98:1c:3b:b2:42:
81:ea:11:c5:85:3d:60:fa:0e:18:92:87:7d:42:1f:
99:10:68:fe:05:e2:0d:74:7b:fe:04:72:c1:4a:82:
98:7b:60:7d:02:f8:29:c1:fd:0b:07:5d:07:2b:0f:
02:55:c0:39:39:0e:0b:7b:81:3c:92:da:a9:a1:e3:
62:f8:97:e3:60:ae:cb:47:a5:50:5e:7e:b0:61:01:
ab:9e:6f:db:21:f7:b8:34:94:6d:dc:7e:aa:59:73:
fe:7a:9a:d3:b9:d3:8c:21:ed:49:3c:ee:50:95:83:
0e:87:c3:1b:33:4d:44:c4:28:93:0e:9d:b9:31:17:
db:39:1c:cb:32:d4:e6:13:8d:20:bd:7c:10:01:98:
5d:03
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CA:75:52:84:6A:F3:CF:DC:40:BE:2B:21:C2:1E:B4:C9:D6:DB:F9:BF
X509v3 Authority Key Identifier:
keyid:AF:11:60:B8:03:EB:22:61:C1:3F:8C:8A:DC:95:3D:3B:5A:FB:57:CC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rxFguAPrImHBP4yK3JU9O1r7V8w.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2d/f7f214-1db2-436a-95c6-643f0da849fa/1/rxFguAPrImHBP4yK3JU9O1r7V8w.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2d/f7f214-1db2-436a-95c6-643f0da849fa/1/rxFguAPrImHBP4yK3JU9O1r7V8w.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
4e:d6:e6:6a:ab:1b:4b:32:85:2c:8d:c7:78:e1:2c:02:fb:e5:
8d:97:6d:fc:ba:9c:cc:1a:3e:b3:5d:c2:ef:58:44:aa:3b:f3:
46:95:7f:a7:79:6a:97:dd:15:cd:50:bc:3f:11:08:cb:b0:ab:
2d:ac:2e:f8:91:25:2e:a9:8a:de:68:de:a2:c3:2f:4f:9a:d8:
d8:16:3a:2d:69:47:ea:91:1d:02:4a:fb:b2:e2:89:d6:c0:4d:
19:34:77:64:7a:c5:5f:49:95:c3:6f:ac:d0:0d:59:1c:de:d9:
53:49:7c:88:5b:e5:6a:fd:c0:b1:30:e9:62:25:3e:2b:b8:ee:
71:ea:be:f9:ae:83:cd:a6:3c:58:5d:08:c5:ab:f5:a7:09:36:
49:bc:50:32:ee:31:f5:fe:17:9e:64:ee:95:c4:86:3a:14:15:
51:9f:0c:b7:65:73:b1:73:8d:8e:41:3c:45:8c:e5:e6:7c:a5:
38:96:21:ec:ae:ed:82:39:a6:e7:18:82:ca:40:ab:c2:98:ae:
61:21:f3:b9:b4:d4:0d:48:20:c6:4d:e5:bc:bb:85:12:68:fd:
6a:be:d8:c5:9a:e4:ef:d4:03:90:ba:e6:90:44:09:fb:b9:aa:
57:08:9c:fa:d7:1a:a2:28:01:04:83:55:6f:7d:9e:83:85:48:
ce:9d:5e:81
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 10:27:15 2025 by rpki-client