Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4a/4ae99d-f552-476c-8177-ebf5f0433772/1/xZZ4VHbvuud_lh0jBXBX-gNvsn8.mft
File: xZZ4VHbvuud_lh0jBXBX-gNvsn8.mft (raw, json)
Hash identifier: ZxucQ6g9pztcyfX/6lquYh8I80tFBdajh0RKQaB0iJQ=
Subject key identifier: 8F:B8:B1:8A:0B:D8:0A:1B:D2:E0:D6:3F:BD:42:1C:74:8B:15:3E:10
Authority key identifier: C5:96:78:54:76:EF:BA:E7:7F:96:1D:23:05:70:57:FA:03:6F:B2:7F
Certificate issuer: /CN=c596785476efbae77f961d23057057fa036fb27f
Certificate serial: 0198D73B56E0D33884F78381C4D2716B5C1D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xZZ4VHbvuud_lh0jBXBX-gNvsn8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4a/4ae99d-f552-476c-8177-ebf5f0433772/1/xZZ4VHbvuud_lh0jBXBX-gNvsn8.mft
Manifest number: 14F6
Signing time: Sat 23 Aug 2025 14:00:46 +0000
Manifest this update: Sat 23 Aug 2025 14:00:46 +0000
Manifest next update: Sun 24 Aug 2025 14:00:46 +0000
Files and hashes: 1: xZZ4VHbvuud_lh0jBXBX-gNvsn8.crl (hash: dML/JHxu1izJAQIk7RBB22hQpGZnJnNO4cxroP+xIPE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/4a/4ae99d-f552-476c-8177-ebf5f0433772/1/xZZ4VHbvuud_lh0jBXBX-gNvsn8.crl
rsync://rpki.ripe.net/repository/DEFAULT/4a/4ae99d-f552-476c-8177-ebf5f0433772/1/xZZ4VHbvuud_lh0jBXBX-gNvsn8.mft
rsync://rpki.ripe.net/repository/DEFAULT/xZZ4VHbvuud_lh0jBXBX-gNvsn8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 14:00:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d7:3b:56:e0:d3:38:84:f7:83:81:c4:d2:71:6b:5c:1d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c596785476efbae77f961d23057057fa036fb27f
Validity
Not Before: Aug 23 14:00:46 2025 GMT
Not After : Aug 24 14:00:46 2025 GMT
Subject: CN=8fb8b18a0bd80a1bd2e0d63fbd421c748b153e10
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:37:67:51:1d:61:6a:86:5b:3f:01:53:14:eb:
1b:80:55:f2:0d:07:ea:93:7e:39:b2:57:7d:10:bb:
f2:b5:0c:a0:a0:bd:6e:89:86:53:e0:7a:fb:64:f6:
8b:9a:69:78:bf:d3:8b:48:42:4a:47:73:10:ec:33:
c4:d2:6a:fa:9f:4d:95:2f:14:5f:78:77:aa:8b:03:
f8:a2:2d:b2:9a:ea:b1:c2:6d:ac:d9:e8:dd:e9:2d:
d1:be:a3:07:73:a9:13:08:cd:4f:05:26:ff:cf:d5:
71:72:81:f3:a4:ce:66:0b:7f:3e:ac:56:e3:74:c7:
a1:9e:f2:e0:8d:0b:3b:35:6d:33:32:b1:e6:4e:1c:
40:ec:14:c9:84:29:0e:82:4a:69:04:f1:c7:c1:17:
7e:2e:8b:fa:c8:35:79:ca:78:ce:5b:01:eb:98:1d:
5d:81:ea:42:a5:63:b7:43:6e:24:73:e4:1d:00:81:
d1:52:c9:29:ea:94:c8:d9:2c:3f:32:af:e1:2f:57:
bb:d5:8d:73:bb:6b:02:ec:5c:e2:aa:11:83:62:7d:
6c:5a:05:47:a1:8a:18:70:44:28:2d:41:64:ce:a6:
3e:3d:88:56:29:3f:8d:7c:f4:ec:6c:01:56:07:59:
2f:f4:be:5d:6b:24:85:7d:28:74:76:47:8c:db:07:
7d:71
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8F:B8:B1:8A:0B:D8:0A:1B:D2:E0:D6:3F:BD:42:1C:74:8B:15:3E:10
X509v3 Authority Key Identifier:
keyid:C5:96:78:54:76:EF:BA:E7:7F:96:1D:23:05:70:57:FA:03:6F:B2:7F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xZZ4VHbvuud_lh0jBXBX-gNvsn8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4a/4ae99d-f552-476c-8177-ebf5f0433772/1/xZZ4VHbvuud_lh0jBXBX-gNvsn8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4a/4ae99d-f552-476c-8177-ebf5f0433772/1/xZZ4VHbvuud_lh0jBXBX-gNvsn8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
2e:23:8e:e2:ad:2f:0e:cd:04:1f:0e:a0:35:42:79:f4:6c:1a:
d9:e5:7c:0e:4f:bc:29:1c:69:d1:c7:b3:01:53:3c:36:f7:a3:
3d:7e:3f:e1:84:fc:a9:15:b7:c2:ba:91:c3:3c:17:fc:90:29:
9d:a7:93:54:55:aa:3b:e3:bc:dc:f6:a9:79:38:b4:13:49:f0:
00:b1:aa:1d:61:81:a0:ff:35:ca:1e:b0:2b:9a:59:fb:50:3d:
3f:b9:31:f5:1a:b8:3f:7e:b7:d4:5c:ec:b0:ea:83:f6:c4:d3:
ad:15:87:4e:08:5a:17:f6:67:6e:c0:fb:67:d6:6b:ea:5a:77:
da:85:7b:1f:59:0a:96:73:56:d0:a2:17:31:69:ff:3e:10:24:
19:35:99:41:87:99:3b:ec:32:9b:36:7f:a9:21:67:58:0b:05:
1f:e5:eb:87:c3:04:1b:18:fd:19:ca:02:31:22:60:80:e8:b2:
40:51:db:34:3e:74:3b:38:d5:8b:5e:e4:53:d8:5c:15:89:2c:
55:de:1d:d5:41:0d:6d:f6:a5:78:f0:46:fa:70:fd:9d:93:d3:
ce:0b:d4:41:14:25:ac:b4:3f:36:1e:80:e4:a6:05:e7:b3:cb:
5a:51:35:25:8e:f4:d0:43:b6:c8:9f:a3:d2:23:aa:d1:1b:f0:
da:95:91:93
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 19:35:02 2025 by rpki-client