Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/99/e2927e-bff0-4c61-9188-b86a6f262633/1/xLCiTzhOiW3lHlg149KEYHtJxZE.mft
File: xLCiTzhOiW3lHlg149KEYHtJxZE.mft (raw, json)
Hash identifier: J29jhOkVsDtVMcAia+IBktfvx+Mrv5auJd/jamU8G/0=
Subject key identifier: C5:1E:9E:0E:81:DA:CE:F8:0E:5E:50:80:DA:73:05:94:8E:11:18:A5
Authority key identifier: C4:B0:A2:4F:38:4E:89:6D:E5:1E:58:35:E3:D2:84:60:7B:49:C5:91
Certificate issuer: /CN=c4b0a24f384e896de51e5835e3d284607b49c591
Certificate serial: 0198D84FDF2D1DFF19361D576E79E23CF050
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xLCiTzhOiW3lHlg149KEYHtJxZE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/99/e2927e-bff0-4c61-9188-b86a6f262633/1/xLCiTzhOiW3lHlg149KEYHtJxZE.mft
Manifest number: 011F
Signing time: Sat 23 Aug 2025 19:02:49 +0000
Manifest this update: Sat 23 Aug 2025 19:02:49 +0000
Manifest next update: Sun 24 Aug 2025 19:02:49 +0000
Files and hashes: 1: xLCiTzhOiW3lHlg149KEYHtJxZE.crl (hash: 7X4dyI/yYwrv4tBBlZQC01GFFy9cevbWqJSnPHFzvwg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/99/e2927e-bff0-4c61-9188-b86a6f262633/1/xLCiTzhOiW3lHlg149KEYHtJxZE.crl
rsync://rpki.ripe.net/repository/DEFAULT/99/e2927e-bff0-4c61-9188-b86a6f262633/1/xLCiTzhOiW3lHlg149KEYHtJxZE.mft
rsync://rpki.ripe.net/repository/DEFAULT/xLCiTzhOiW3lHlg149KEYHtJxZE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 19:02:49 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d8:4f:df:2d:1d:ff:19:36:1d:57:6e:79:e2:3c:f0:50
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c4b0a24f384e896de51e5835e3d284607b49c591
Validity
Not Before: Aug 23 19:02:49 2025 GMT
Not After : Aug 24 19:02:49 2025 GMT
Subject: CN=c51e9e0e81dacef80e5e5080da7305948e1118a5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d9:5f:26:69:bb:f3:82:ef:51:43:2e:a8:8c:9d:
63:a8:98:d0:0b:79:3a:f8:a7:ab:b6:77:5b:1d:85:
e2:2c:9e:3b:04:1b:b4:0c:8c:1e:8e:e9:89:f0:69:
47:9a:82:fa:f6:6f:4f:4e:db:d2:ab:5c:3b:a8:90:
a0:3f:4f:20:7f:8e:1c:fd:5a:2e:8d:2a:a7:1f:2a:
d8:e5:a9:39:be:95:f9:31:0d:56:e9:b1:75:d5:e9:
7a:63:b8:fb:13:74:a6:ff:04:97:b0:90:96:34:c1:
2f:35:e5:ed:5a:70:d0:26:5d:c3:a6:30:a5:e6:a7:
d3:52:78:1a:32:ce:00:3e:88:31:83:70:aa:1f:c3:
7f:a6:32:b4:da:46:e9:87:3c:3d:38:1a:a0:ad:f2:
66:fd:91:a6:e6:13:a1:5a:10:3d:6a:6d:3d:d2:28:
94:25:c6:a1:69:8d:ab:a9:83:45:bc:04:e1:0e:fe:
ec:cb:a4:d1:bf:64:af:e7:f5:3b:63:1a:7d:c4:a3:
c2:6e:e4:13:a0:73:8b:b9:ed:9d:9d:4c:6a:28:45:
69:d9:9f:be:f4:4f:b1:0b:a0:35:09:3a:b4:a3:db:
ac:a8:65:02:95:cf:54:fd:08:9e:36:50:8f:7e:13:
a3:e3:f1:82:a1:b1:26:cf:b3:07:77:72:4a:89:53:
df:ff
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C5:1E:9E:0E:81:DA:CE:F8:0E:5E:50:80:DA:73:05:94:8E:11:18:A5
X509v3 Authority Key Identifier:
keyid:C4:B0:A2:4F:38:4E:89:6D:E5:1E:58:35:E3:D2:84:60:7B:49:C5:91
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xLCiTzhOiW3lHlg149KEYHtJxZE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/99/e2927e-bff0-4c61-9188-b86a6f262633/1/xLCiTzhOiW3lHlg149KEYHtJxZE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/99/e2927e-bff0-4c61-9188-b86a6f262633/1/xLCiTzhOiW3lHlg149KEYHtJxZE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
4f:f8:6f:d5:20:54:c6:4b:1a:22:3f:38:14:e8:44:48:a7:ef:
b4:84:a2:28:cf:25:0f:fd:69:a5:54:01:07:53:d9:ed:55:7a:
62:ac:ef:1b:54:6e:62:87:8a:7c:83:6b:96:04:0a:bb:28:05:
8c:df:2f:3f:44:62:be:9d:4c:dd:5c:c2:5a:d7:1b:36:65:fc:
9f:f5:b9:e6:48:aa:7f:91:3f:4b:cc:d5:e1:18:bd:18:e9:19:
df:0d:87:fd:d7:43:84:e1:d5:11:fd:4e:c4:e8:71:71:e0:f7:
c6:8f:6c:2f:a1:d3:dd:ee:94:4c:7e:b0:4c:89:e1:47:99:0b:
e3:ee:da:e2:e3:1d:f4:53:d3:c9:23:b0:a9:5e:5e:c1:9e:41:
6a:70:b9:c1:00:02:a7:73:09:dd:1f:d6:c9:1e:49:cc:24:ca:
18:f9:8e:34:f1:ae:4a:40:81:15:da:55:6a:57:bd:da:84:f8:
ca:59:15:32:1a:8b:cc:91:55:63:0f:2b:cb:6f:61:e9:b4:6e:
dd:bd:42:34:9f:74:d6:63:71:2e:0e:18:ea:59:e9:66:de:ef:
fc:96:58:e3:08:f1:9f:bb:f6:ea:8c:e2:b7:05:30:c6:ef:bc:
63:69:91:76:8c:ea:35:23:b1:3b:41:91:20:77:19:5e:ed:ae:
ab:70:73:cd
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZjYT98tHf8ZNh1XbnniPPBQMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGM0YjBhMjRmMzg0ZTg5NmRlNTFlNTgzNWUzZDI4NDYwN2I0
OWM1OTEwHhcNMjUwODIzMTkwMjQ5WhcNMjUwODI0MTkwMjQ5WjAzMTEwLwYDVQQD
EyhjNTFlOWUwZTgxZGFjZWY4MGU1ZTUwODBkYTczMDU5NDhlMTExOGE1MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA2V8mabvzgu9RQy6ojJ1jqJjQC3k6
+KertndbHYXiLJ47BBu0DIwejumJ8GlHmoL69m9PTtvSq1w7qJCgP08gf44c/Vou
jSqnHyrY5ak5vpX5MQ1W6bF11el6Y7j7E3Sm/wSXsJCWNMEvNeXtWnDQJl3DpjCl
5qfTUngaMs4APogxg3CqH8N/pjK02kbphzw9OBqgrfJm/ZGm5hOhWhA9am090iiU
JcahaY2rqYNFvAThDv7sy6TRv2Sv5/U7Yxp9xKPCbuQToHOLue2dnUxqKEVp2Z++
9E+xC6A1CTq0o9usqGUClc9U/QieNlCPfhOj4/GCobEmz7MHd3JKiVPf/wIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFMUeng6B2s74Dl5QgNpzBZSOERilMB8GA1UdIwQY
MBaAFMSwok84Tolt5R5YNePShGB7ScWRMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQveExDaVR6aE9pVzNsSGxnMTQ5S0VZSHRKeFpFLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC85OS9lMjkyN2UtYmZmMC00YzYxLTkxODgt
Yjg2YTZmMjYyNjMzLzEveExDaVR6aE9pVzNsSGxnMTQ5S0VZSHRKeFpFLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC85OS9lMjkyN2UtYmZmMC00YzYxLTkxODgtYjg2YTZmMjYyNjMz
LzEveExDaVR6aE9pVzNsSGxnMTQ5S0VZSHRKeFpFLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAT/hv1SBU
xksaIj84FOhESKfvtISiKM8lD/1ppVQBB1PZ7VV6YqzvG1RuYoeKfINrlgQKuygF
jN8vP0Rivp1M3VzCWtcbNmX8n/W55kiqf5E/S8zV4Ri9GOkZ3w2H/ddDhOHVEf1O
xOhxceD3xo9sL6HT3e6UTH6wTInhR5kL4+7a4uMd9FPTySOwqV5ewZ5BanC5wQAC
p3MJ3R/WyR5JzCTKGPmONPGuSkCBFdpVale92oT4ylkVMhqLzJFVYw8ry29h6bRu
3b1CNJ901mNxLg4Y6lnpZt7v/JZY4wjxn7v26ozitwUwxu+8Y2mRdozqNSOxO0GR
IHcZXu2uq3BzzQ==
-----END CERTIFICATE-----
Generated at Sun Aug 24 04:57:14 2025 by rpki-client