Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/37/7db3b8-9863-49bb-90f0-d5bdcb630177/1/2xqlqI_mUM51-73mL66AzGIz3Ms.mft
File: 2xqlqI_mUM51-73mL66AzGIz3Ms.mft (raw, json)
Hash identifier: 5FOKi9e7g5EIc88Q4LpbMhnr2OJvjGWW3aQjkk+6zHg=
Subject key identifier: 92:55:C1:04:EC:B3:F8:8F:32:C3:C4:B1:9A:E8:61:62:B3:C6:E1:4C
Authority key identifier: DB:1A:A5:A8:8F:E6:50:CE:75:FB:BD:E6:2F:AE:80:CC:62:33:DC:CB
Certificate issuer: /CN=db1aa5a88fe650ce75fbbde62fae80cc6233dccb
Certificate serial: 0198D4749208E451C1B380FB87E9C431DD66
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2xqlqI_mUM51-73mL66AzGIz3Ms.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/37/7db3b8-9863-49bb-90f0-d5bdcb630177/1/2xqlqI_mUM51-73mL66AzGIz3Ms.mft
Manifest number: 0F4E
Signing time: Sat 23 Aug 2025 01:04:25 +0000
Manifest this update: Sat 23 Aug 2025 01:04:25 +0000
Manifest next update: Sun 24 Aug 2025 01:04:25 +0000
Files and hashes: 1: 2xqlqI_mUM51-73mL66AzGIz3Ms.crl (hash: RItXIsj6FhfvErqry66kUWSBnheOgNeel8zO+6Ig7ME=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/37/7db3b8-9863-49bb-90f0-d5bdcb630177/1/2xqlqI_mUM51-73mL66AzGIz3Ms.crl
rsync://rpki.ripe.net/repository/DEFAULT/37/7db3b8-9863-49bb-90f0-d5bdcb630177/1/2xqlqI_mUM51-73mL66AzGIz3Ms.mft
rsync://rpki.ripe.net/repository/DEFAULT/2xqlqI_mUM51-73mL66AzGIz3Ms.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 00:37:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d4:74:92:08:e4:51:c1:b3:80:fb:87:e9:c4:31:dd:66
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=db1aa5a88fe650ce75fbbde62fae80cc6233dccb
Validity
Not Before: Aug 23 01:04:25 2025 GMT
Not After : Aug 24 01:04:25 2025 GMT
Subject: CN=9255c104ecb3f88f32c3c4b19ae86162b3c6e14c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:90:66:32:e5:6b:e5:74:c8:70:ef:6e:48:ec:4e:
7b:5c:de:67:76:d4:f2:b8:bf:1e:f0:2a:49:e0:ba:
06:d0:9c:b6:49:76:69:f9:e1:f8:69:72:62:be:f9:
ba:83:c8:cc:fc:47:2e:c3:a6:6f:41:f3:f3:f4:15:
ac:c2:e5:db:ac:cc:10:47:d0:1d:5f:db:97:77:7e:
8e:e1:e6:db:a0:6c:b1:6a:a5:9e:a0:39:a9:d4:9b:
75:3c:35:52:ff:c8:a6:2d:19:b5:2d:cc:36:d4:d3:
4e:b6:27:a2:63:55:ff:cd:7a:61:c9:1c:3b:6a:f8:
b0:52:1d:53:e0:15:c2:b4:49:e7:ab:7d:0c:ac:2a:
f0:88:e9:ca:25:0f:23:07:fa:34:d8:80:93:5f:49:
14:28:b2:47:b8:bc:04:b5:12:fe:7b:e5:45:91:59:
0d:ec:68:84:dc:4f:d0:6b:7a:e3:4b:7c:ad:9e:45:
0d:67:39:6e:a4:2b:14:da:6d:49:33:65:5b:eb:b9:
43:3c:81:39:d8:e9:06:0d:c0:56:49:8a:4c:7b:ad:
05:78:00:2b:e4:12:df:bc:93:23:67:f3:0b:7d:27:
33:79:a4:5e:a4:b1:42:7b:2b:56:59:00:e6:ae:02:
6a:42:1b:66:eb:6d:c8:a0:fd:ff:78:7e:0f:f0:7e:
58:9b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
92:55:C1:04:EC:B3:F8:8F:32:C3:C4:B1:9A:E8:61:62:B3:C6:E1:4C
X509v3 Authority Key Identifier:
keyid:DB:1A:A5:A8:8F:E6:50:CE:75:FB:BD:E6:2F:AE:80:CC:62:33:DC:CB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2xqlqI_mUM51-73mL66AzGIz3Ms.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/37/7db3b8-9863-49bb-90f0-d5bdcb630177/1/2xqlqI_mUM51-73mL66AzGIz3Ms.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/37/7db3b8-9863-49bb-90f0-d5bdcb630177/1/2xqlqI_mUM51-73mL66AzGIz3Ms.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
3b:79:28:ed:ff:bd:03:ef:0a:aa:10:d7:57:de:88:92:cc:2a:
f0:a7:ae:6b:7b:b8:55:e5:d9:19:30:d7:0c:df:a3:17:62:e8:
a9:b3:9a:b7:26:22:e7:09:38:74:db:4a:04:ad:cb:56:2d:a7:
60:30:06:07:bf:fa:8a:1e:ce:19:37:fc:b9:c9:7c:fd:31:08:
d4:00:07:55:d3:7c:bd:4e:7a:e4:2b:df:37:e4:b6:d1:6b:a5:
9b:5a:a2:54:d6:9a:a7:43:bf:c4:15:ad:9c:06:09:2d:1b:2a:
17:83:7e:95:f8:f0:f7:18:df:fa:cc:33:ea:1d:d4:e4:1a:8b:
93:e2:e8:9f:d1:0c:64:dc:9c:a3:30:a8:d8:6b:fb:ae:86:92:
1e:19:17:b4:bf:9b:b2:0c:d3:bb:43:04:a9:c5:e8:74:b4:5b:
71:a4:83:e8:f7:cc:c8:94:c4:27:7b:5d:89:ed:2e:bf:ba:31:
bc:80:d7:fb:72:fc:a1:90:93:9d:ba:79:16:b6:b4:53:17:84:
c9:8d:3e:96:50:3b:09:df:7c:91:c9:46:95:8f:12:6a:8b:54:
13:00:f9:59:f1:a6:d9:81:e5:14:42:18:90:65:98:a9:4d:3e:
16:36:fd:2a:87:0f:26:8d:1f:03:01:04:09:7e:84:29:9b:97:
74:3e:e7:dd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 09:42:39 2025 by rpki-client