Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/95/2ca2c3-e20f-494e-b1ce-6a71b844ad66/1/xRlGjFXmvnFcDagFzvta7IXTKSY.mft
File: xRlGjFXmvnFcDagFzvta7IXTKSY.mft (raw, json)
Hash identifier: DtFDFzyWKdIK3K2xudNEIO5sJRxzKOr9M3vEQ7pdBts=
Subject key identifier: AC:6B:87:7A:ED:89:02:99:02:BB:77:3D:A0:CD:C2:43:17:AE:1B:6F
Authority key identifier: C5:19:46:8C:55:E6:BE:71:5C:0D:A8:05:CE:FB:5A:EC:85:D3:29:26
Certificate issuer: /CN=c519468c55e6be715c0da805cefb5aec85d32926
Certificate serial: 0198D4743260E5462B1991B9E74CC1AA5C21
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xRlGjFXmvnFcDagFzvta7IXTKSY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/95/2ca2c3-e20f-494e-b1ce-6a71b844ad66/1/xRlGjFXmvnFcDagFzvta7IXTKSY.mft
Manifest number: 0F42
Signing time: Sat 23 Aug 2025 01:04:01 +0000
Manifest this update: Sat 23 Aug 2025 01:04:01 +0000
Manifest next update: Sun 24 Aug 2025 01:04:01 +0000
Files and hashes: 1: xRlGjFXmvnFcDagFzvta7IXTKSY.crl (hash: 9sN8DSFCwHhG8WcK53LCAFpFIRYl9gHG82baFUFT/p8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/95/2ca2c3-e20f-494e-b1ce-6a71b844ad66/1/xRlGjFXmvnFcDagFzvta7IXTKSY.crl
rsync://rpki.ripe.net/repository/DEFAULT/95/2ca2c3-e20f-494e-b1ce-6a71b844ad66/1/xRlGjFXmvnFcDagFzvta7IXTKSY.mft
rsync://rpki.ripe.net/repository/DEFAULT/xRlGjFXmvnFcDagFzvta7IXTKSY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 00:37:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d4:74:32:60:e5:46:2b:19:91:b9:e7:4c:c1:aa:5c:21
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c519468c55e6be715c0da805cefb5aec85d32926
Validity
Not Before: Aug 23 01:04:01 2025 GMT
Not After : Aug 24 01:04:01 2025 GMT
Subject: CN=ac6b877aed89029902bb773da0cdc24317ae1b6f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f1:f3:e5:21:23:d7:b3:51:dd:84:9b:ca:c4:42:
91:e7:ff:be:23:8a:df:e6:10:62:b3:98:f6:e5:b1:
ba:74:e1:21:24:37:05:19:77:f7:58:56:d1:54:e1:
c7:cd:de:a0:bf:c5:66:16:2d:59:35:8b:af:74:ab:
69:91:5a:98:ec:ac:e9:d9:36:c8:93:c3:3f:1b:e8:
b9:b5:16:a9:03:42:07:81:27:7e:39:23:8f:a9:62:
6f:2f:79:7a:1b:20:e4:f2:ae:32:42:cc:2a:aa:5f:
61:2b:3a:63:68:34:33:31:87:ed:64:6e:fa:b7:e2:
90:3a:6f:25:4b:03:29:6b:a3:a9:04:ba:26:3e:e7:
7d:6e:89:f6:d8:9d:04:e0:a9:7c:0a:3e:02:b6:6f:
07:9f:b7:11:8f:71:8a:b5:d7:ec:91:0e:06:a4:f4:
68:32:b4:fd:9d:9e:56:84:7b:77:22:37:55:a9:a6:
fb:ab:44:9a:af:5c:39:ca:4b:29:b0:16:a1:1e:c3:
65:01:47:d9:69:29:c0:23:07:a6:a0:ca:bd:19:7b:
67:96:8d:fb:ae:16:89:cd:e3:fd:01:a2:32:3f:4e:
3e:fd:5e:37:ba:80:1d:01:fb:5e:22:65:55:c9:4c:
1c:2b:1e:e4:45:85:1f:62:81:86:d2:db:de:df:ef:
b8:a3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AC:6B:87:7A:ED:89:02:99:02:BB:77:3D:A0:CD:C2:43:17:AE:1B:6F
X509v3 Authority Key Identifier:
keyid:C5:19:46:8C:55:E6:BE:71:5C:0D:A8:05:CE:FB:5A:EC:85:D3:29:26
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xRlGjFXmvnFcDagFzvta7IXTKSY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/95/2ca2c3-e20f-494e-b1ce-6a71b844ad66/1/xRlGjFXmvnFcDagFzvta7IXTKSY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/95/2ca2c3-e20f-494e-b1ce-6a71b844ad66/1/xRlGjFXmvnFcDagFzvta7IXTKSY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
37:c6:4a:80:28:c6:79:c5:7b:50:0e:3e:28:c7:22:09:47:c5:
63:74:f2:33:e9:0c:07:ee:ee:52:49:25:27:90:34:72:66:93:
a2:a2:c2:21:8a:99:d5:79:bd:10:6e:a4:ab:61:0a:cd:d3:2e:
7c:18:38:28:58:34:96:7a:d7:9b:87:a2:77:2c:dd:42:ae:a3:
36:f9:d2:b1:5a:51:c8:b6:3c:8e:5c:82:1b:d2:2c:44:45:5a:
f9:5a:15:36:e4:8b:52:25:9e:4c:24:f4:b7:dc:84:54:56:ac:
1c:ba:cd:08:99:8f:64:96:62:0a:ac:47:c2:3c:68:bc:69:b1:
ab:a2:77:8a:16:32:18:91:c0:d9:1e:d0:d5:8d:b9:11:2a:e5:
95:5c:5a:80:9b:9b:89:90:eb:42:d1:6a:ee:e3:18:56:47:93:
32:b5:b4:91:23:23:6d:3c:40:8e:2b:8d:21:52:e1:0b:c9:64:
d8:43:6d:78:cc:43:3e:18:cd:20:ea:0f:d8:7a:31:9c:96:e9:
b5:64:2e:aa:03:18:14:2a:a9:06:12:bb:00:80:37:91:92:7c:
4b:c5:d4:b6:52:f5:50:8c:ef:84:c7:d8:e8:cb:0e:91:a5:cb:
4f:9c:90:07:33:bb:76:9c:c8:c6:ac:cb:7c:98:d7:46:b7:7f:
79:b8:3d:c3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 10:28:14 2025 by rpki-client