Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b1/8f015d-a7e4-48d8-8705-1ec37465d3af/1/XSGWjpHC9H8bB8HzX-fSY8VtBJU.mft
File: XSGWjpHC9H8bB8HzX-fSY8VtBJU.mft (raw, json)
Hash identifier: 40XObZF9lAmDSlM+edvA9ulj5HENA9sF7zY8Qjyj68U=
Subject key identifier: 7B:34:E4:85:B1:B8:A1:9E:0A:C8:F7:05:5E:71:C4:4B:3A:FD:93:90
Authority key identifier: 5D:21:96:8E:91:C2:F4:7F:1B:07:C1:F3:5F:E7:D2:63:C5:6D:04:95
Certificate issuer: /CN=5d21968e91c2f47f1b07c1f35fe7d263c56d0495
Certificate serial: 0198D705C07228CCB879A73CCE6DBAD694A7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XSGWjpHC9H8bB8HzX-fSY8VtBJU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b1/8f015d-a7e4-48d8-8705-1ec37465d3af/1/XSGWjpHC9H8bB8HzX-fSY8VtBJU.mft
Manifest number: 065C
Signing time: Sat 23 Aug 2025 13:02:15 +0000
Manifest this update: Sat 23 Aug 2025 13:02:15 +0000
Manifest next update: Sun 24 Aug 2025 13:02:15 +0000
Files and hashes: 1: XSGWjpHC9H8bB8HzX-fSY8VtBJU.crl (hash: s4NxgXV0TJcngOPWM60rD9wjIPVvvs3fAOX1O+WA/Vk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b1/8f015d-a7e4-48d8-8705-1ec37465d3af/1/XSGWjpHC9H8bB8HzX-fSY8VtBJU.crl
rsync://rpki.ripe.net/repository/DEFAULT/b1/8f015d-a7e4-48d8-8705-1ec37465d3af/1/XSGWjpHC9H8bB8HzX-fSY8VtBJU.mft
rsync://rpki.ripe.net/repository/DEFAULT/XSGWjpHC9H8bB8HzX-fSY8VtBJU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 05:01:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d7:05:c0:72:28:cc:b8:79:a7:3c:ce:6d:ba:d6:94:a7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5d21968e91c2f47f1b07c1f35fe7d263c56d0495
Validity
Not Before: Aug 23 13:02:15 2025 GMT
Not After : Aug 24 13:02:15 2025 GMT
Subject: CN=7b34e485b1b8a19e0ac8f7055e71c44b3afd9390
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:94:c7:1f:41:fc:c6:2d:15:0f:9c:10:b9:2d:eb:
0c:7e:ff:d2:be:d1:ba:b2:1d:1b:17:95:e3:5e:8c:
b5:d7:21:e6:d1:68:de:ee:3b:06:8f:9c:a0:60:66:
8a:46:30:d7:29:47:e3:5b:db:b1:0d:35:79:30:f1:
01:ef:a0:7b:36:6a:0e:a7:22:de:fc:8e:19:8e:04:
c6:1c:3d:b6:6c:6b:f6:49:71:ac:c1:41:e4:b9:84:
b8:ff:86:5d:76:37:a6:3d:9a:aa:03:df:cd:7b:90:
39:18:10:3e:2d:c4:cd:74:c0:1b:15:b8:7c:79:d1:
e6:c9:55:72:1a:cd:50:2c:02:44:e8:c0:be:79:fd:
34:fc:83:ad:0b:69:d2:85:45:e6:c9:ff:c0:a3:b1:
79:54:1e:2f:1d:ba:63:de:68:e0:5a:b6:7a:39:83:
e2:f8:ea:4b:ef:c8:f2:fb:6d:fa:82:03:47:c0:4d:
e4:92:66:ed:5e:da:8f:8a:02:61:72:31:6d:c6:90:
68:49:2d:37:6b:ea:7b:df:36:c9:26:d0:07:34:a4:
ad:5d:b3:ec:ba:87:88:bb:e7:2e:4e:3e:99:8b:33:
37:39:bf:9e:2f:38:fa:4a:82:e7:8d:29:ef:68:15:
f5:b3:ad:2c:11:0d:dc:2d:fc:a1:0d:18:e8:f5:a5:
72:4f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7B:34:E4:85:B1:B8:A1:9E:0A:C8:F7:05:5E:71:C4:4B:3A:FD:93:90
X509v3 Authority Key Identifier:
keyid:5D:21:96:8E:91:C2:F4:7F:1B:07:C1:F3:5F:E7:D2:63:C5:6D:04:95
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XSGWjpHC9H8bB8HzX-fSY8VtBJU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b1/8f015d-a7e4-48d8-8705-1ec37465d3af/1/XSGWjpHC9H8bB8HzX-fSY8VtBJU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b1/8f015d-a7e4-48d8-8705-1ec37465d3af/1/XSGWjpHC9H8bB8HzX-fSY8VtBJU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
83:0e:9f:62:df:0b:3e:99:71:46:d6:35:15:26:dd:44:86:3e:
6e:a2:56:aa:b3:fa:7f:2a:b6:82:46:21:e3:64:f5:7d:53:70:
8f:8e:e4:47:c9:96:a2:5c:66:47:33:a0:b2:34:82:b8:70:d9:
55:5b:02:c5:62:58:58:eb:d6:29:cf:2a:f8:3f:ee:9d:c2:1a:
3f:0f:7d:71:fd:ae:ee:06:1c:de:b1:0f:e5:4a:c6:a2:79:9c:
33:6a:8e:04:ce:5f:b6:94:19:0a:23:bf:26:49:c8:28:60:cc:
03:07:eb:62:7a:01:5f:b5:9c:2d:c6:f9:ee:84:ed:8f:a0:c6:
3e:fe:4d:7b:37:d2:33:10:30:10:5a:7c:75:75:11:26:47:3c:
48:ec:51:8d:91:ee:96:86:03:5c:01:86:b7:3a:b9:bb:e5:ac:
08:bb:0e:d3:36:60:02:9f:82:3c:94:9b:12:ff:28:a4:f0:87:
08:e7:61:3d:ff:5c:54:ea:23:38:80:09:ad:fc:c0:a4:59:1a:
84:50:a8:72:1f:9f:f1:50:00:05:42:02:8f:c9:9a:22:e2:2d:
82:7d:bf:d3:48:9e:1d:55:3d:e9:15:d7:6a:fa:da:c6:97:96:
07:66:d6:a7:9d:d3:5a:a3:f7:33:18:b2:7c:27:9b:d3:73:fa:
d8:59:04:ee
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 15:37:38 2025 by rpki-client