Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8e/83e5ea-9fe4-4814-83c6-1bb430606535/1/xRvfUzN6yxiydpUsNX6RmAvMWww.mft
File: xRvfUzN6yxiydpUsNX6RmAvMWww.mft (raw, json)
Hash identifier: UGzyh9cQ/2KgvZ+vWXWe7KcLfxPuEkrWSDyv8rvRbnc=
Subject key identifier: CE:56:8C:6B:91:F3:5C:77:BD:F5:95:F4:58:F0:68:98:D9:D9:1B:CA
Authority key identifier: C5:1B:DF:53:33:7A:CB:18:B2:76:95:2C:35:7E:91:98:0B:CC:5B:0C
Certificate issuer: /CN=c51bdf53337acb18b276952c357e91980bcc5b0c
Certificate serial: 0198D4744C8ADCD2A5B7C3FFBB410A30D536
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xRvfUzN6yxiydpUsNX6RmAvMWww.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8e/83e5ea-9fe4-4814-83c6-1bb430606535/1/xRvfUzN6yxiydpUsNX6RmAvMWww.mft
Manifest number: 0A58
Signing time: Sat 23 Aug 2025 01:04:08 +0000
Manifest this update: Sat 23 Aug 2025 01:04:08 +0000
Manifest next update: Sun 24 Aug 2025 01:04:08 +0000
Files and hashes: 1: xRvfUzN6yxiydpUsNX6RmAvMWww.crl (hash: kQEk097oqCJyL4ITpygxr+b1pzLmm3VODRvMU35Ambw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/8e/83e5ea-9fe4-4814-83c6-1bb430606535/1/xRvfUzN6yxiydpUsNX6RmAvMWww.crl
rsync://rpki.ripe.net/repository/DEFAULT/8e/83e5ea-9fe4-4814-83c6-1bb430606535/1/xRvfUzN6yxiydpUsNX6RmAvMWww.mft
rsync://rpki.ripe.net/repository/DEFAULT/xRvfUzN6yxiydpUsNX6RmAvMWww.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 00:37:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d4:74:4c:8a:dc:d2:a5:b7:c3:ff:bb:41:0a:30:d5:36
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c51bdf53337acb18b276952c357e91980bcc5b0c
Validity
Not Before: Aug 23 01:04:08 2025 GMT
Not After : Aug 24 01:04:08 2025 GMT
Subject: CN=ce568c6b91f35c77bdf595f458f06898d9d91bca
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:31:db:2f:dc:83:f0:89:70:b1:59:77:a1:54:
46:39:b1:ee:a7:c2:5d:73:05:2f:08:f5:11:4b:58:
62:73:45:53:84:77:54:be:72:e3:b9:a2:90:43:bc:
f1:e8:d3:82:4c:0b:c3:db:a6:5c:c9:05:88:c0:59:
bb:1c:a4:1b:b6:1e:4e:6c:97:03:92:07:32:04:27:
7b:50:8b:48:ab:06:08:0f:6c:e8:33:9e:52:4d:42:
39:27:ee:11:41:64:f7:9b:b4:f1:79:61:fd:d8:9e:
ed:15:52:12:f8:a5:ab:7a:9d:de:4a:39:5e:65:99:
27:ab:26:86:36:fd:32:da:cc:6b:76:c7:4f:d8:9c:
8b:be:01:40:5c:19:18:2d:e2:d6:bf:05:bc:5d:41:
16:d9:fb:c0:54:cb:bc:46:f4:e5:01:db:6c:5e:67:
0c:3a:7e:3f:0c:06:ff:ee:11:95:3b:4b:e1:98:ef:
e3:34:e9:f7:be:e5:b9:3d:bf:85:9e:03:de:a5:50:
a0:92:1b:b8:cc:46:64:7d:bd:21:0e:75:5e:de:e3:
93:e4:fb:bf:6a:0a:3c:1f:8b:b0:8d:69:c3:17:a0:
d2:bd:95:e1:fc:9d:dc:5c:7c:3c:85:08:c5:d1:44:
c2:2a:da:0d:83:94:e3:20:2b:26:f3:7a:93:03:77:
78:61
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CE:56:8C:6B:91:F3:5C:77:BD:F5:95:F4:58:F0:68:98:D9:D9:1B:CA
X509v3 Authority Key Identifier:
keyid:C5:1B:DF:53:33:7A:CB:18:B2:76:95:2C:35:7E:91:98:0B:CC:5B:0C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xRvfUzN6yxiydpUsNX6RmAvMWww.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/83e5ea-9fe4-4814-83c6-1bb430606535/1/xRvfUzN6yxiydpUsNX6RmAvMWww.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/83e5ea-9fe4-4814-83c6-1bb430606535/1/xRvfUzN6yxiydpUsNX6RmAvMWww.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
7e:40:4c:e6:e6:d0:5b:bc:78:5b:1b:81:55:26:cb:be:93:4f:
97:3c:17:37:84:a7:7f:eb:75:79:fc:ec:a5:c2:9c:5f:8c:9a:
40:38:f1:24:c2:e3:55:26:ce:9b:9b:83:fe:c3:f5:c3:26:29:
8e:0e:f6:e4:73:d8:87:dd:08:38:39:8d:59:41:7d:0b:a1:da:
ed:8d:d9:df:45:5d:b9:ca:b0:2e:38:ee:5c:62:f4:06:7b:27:
f2:0a:79:3e:8d:84:ea:0a:23:cf:ea:a2:b3:de:89:7b:fa:de:
32:4e:8b:86:9d:da:10:ba:9e:d5:a2:30:ba:48:ae:6f:3a:8a:
71:1d:c9:90:da:ab:61:1d:8f:9f:f2:83:6d:d0:72:52:38:b4:
43:bb:5c:2a:8a:0d:8d:70:12:e6:39:9f:01:e3:1d:86:c6:70:
11:dd:09:73:15:04:58:a0:06:8b:99:04:c3:21:da:ba:41:53:
1b:72:36:42:35:3c:71:d4:5d:33:ae:62:41:90:e5:fb:f5:c7:
9b:47:a0:0a:ec:6d:09:1f:cc:51:61:8f:80:0a:3f:c2:ec:d5:
d4:a6:b9:1d:2a:8b:5e:41:09:b2:e5:c0:b0:b6:84:59:77:69:
d2:9d:a0:11:2a:45:76:7c:fc:76:ec:ca:21:ca:40:7b:96:c6:
89:f6:9a:be
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 10:28:02 2025 by rpki-client