Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/da/623b14-4e6e-4c31-96be-8ebcd09b2bca/1/xcidUmDLNP27s7wlv0rbr0zcaKA.mft
File: xcidUmDLNP27s7wlv0rbr0zcaKA.mft (raw, json)
Hash identifier: c5IdtVN923mWuF0+IwPldpb+6dGmgpQBQNIRBO0B54A=
Subject key identifier: 35:8A:49:E4:8F:3D:14:5C:01:61:B6:28:51:27:F2:C6:A2:1E:21:17
Authority key identifier: C5:C8:9D:52:60:CB:34:FD:BB:B3:BC:25:BF:4A:DB:AF:4C:DC:68:A0
Certificate issuer: /CN=c5c89d5260cb34fdbbb3bc25bf4adbaf4cdc68a0
Certificate serial: 0198D66087892FC27B39AD5524A2464FDAF0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xcidUmDLNP27s7wlv0rbr0zcaKA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/da/623b14-4e6e-4c31-96be-8ebcd09b2bca/1/xcidUmDLNP27s7wlv0rbr0zcaKA.mft
Manifest number: 0606
Signing time: Sat 23 Aug 2025 10:01:46 +0000
Manifest this update: Sat 23 Aug 2025 10:01:46 +0000
Manifest next update: Sun 24 Aug 2025 10:01:46 +0000
Files and hashes: 1: xcidUmDLNP27s7wlv0rbr0zcaKA.crl (hash: kenFFmovWPAEG24LzWs84tcejbi7WbytCYX/wfdQ4Uw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/da/623b14-4e6e-4c31-96be-8ebcd09b2bca/1/xcidUmDLNP27s7wlv0rbr0zcaKA.crl
rsync://rpki.ripe.net/repository/DEFAULT/da/623b14-4e6e-4c31-96be-8ebcd09b2bca/1/xcidUmDLNP27s7wlv0rbr0zcaKA.mft
rsync://rpki.ripe.net/repository/DEFAULT/xcidUmDLNP27s7wlv0rbr0zcaKA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 05:01:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d6:60:87:89:2f:c2:7b:39:ad:55:24:a2:46:4f:da:f0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c5c89d5260cb34fdbbb3bc25bf4adbaf4cdc68a0
Validity
Not Before: Aug 23 10:01:46 2025 GMT
Not After : Aug 24 10:01:46 2025 GMT
Subject: CN=358a49e48f3d145c0161b6285127f2c6a21e2117
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:d7:e5:ec:9d:70:92:30:34:8b:34:3e:79:4d:
a6:60:30:6d:39:e9:d0:0b:bf:14:75:9e:d8:33:5a:
d0:ba:4a:43:7a:b8:aa:9a:7e:0f:da:14:84:20:fe:
ca:11:aa:14:b2:07:57:b4:42:ef:8f:58:a0:d9:1a:
1d:8d:87:a8:2a:1f:39:9e:3e:b7:be:10:10:1f:47:
dc:06:8c:e1:60:7a:80:a2:c0:d9:f7:d4:06:67:3c:
46:0b:c1:6c:ac:c6:2b:01:26:6b:24:99:f7:63:eb:
d4:01:01:fc:1c:ee:6f:21:00:20:96:d4:f5:12:95:
a2:b6:c7:64:82:78:c0:39:4c:2c:4e:b1:ab:61:09:
f1:cf:a6:18:5f:0b:8e:b9:8a:56:07:18:46:77:46:
03:16:26:7a:69:6f:4e:16:57:ea:01:24:3e:67:51:
d7:36:25:74:73:71:76:60:c1:49:d9:a3:19:77:3d:
ab:98:f6:67:02:26:aa:8e:e0:e1:14:a5:8f:39:da:
da:05:cf:44:c6:d2:18:d4:f8:5e:6b:1c:48:09:65:
c5:38:a0:ac:55:1a:6d:ee:1e:b8:77:a9:88:95:f1:
7b:ff:12:1c:5f:4a:cf:f4:cd:e0:6a:0c:da:fa:7d:
94:c5:71:bc:75:ca:ba:91:cf:f5:4a:93:2d:a7:53:
11:3b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
35:8A:49:E4:8F:3D:14:5C:01:61:B6:28:51:27:F2:C6:A2:1E:21:17
X509v3 Authority Key Identifier:
keyid:C5:C8:9D:52:60:CB:34:FD:BB:B3:BC:25:BF:4A:DB:AF:4C:DC:68:A0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xcidUmDLNP27s7wlv0rbr0zcaKA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/da/623b14-4e6e-4c31-96be-8ebcd09b2bca/1/xcidUmDLNP27s7wlv0rbr0zcaKA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/da/623b14-4e6e-4c31-96be-8ebcd09b2bca/1/xcidUmDLNP27s7wlv0rbr0zcaKA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
4f:7b:32:89:e5:51:fc:6b:b5:0f:65:45:e0:35:93:df:14:b5:
de:15:9c:b7:72:93:30:da:07:e7:5b:22:aa:93:c1:62:26:a1:
a4:bb:bc:41:f6:9c:53:81:7a:98:27:c7:4c:2d:e3:60:78:19:
ba:f6:88:10:3d:bf:0b:7e:84:ad:30:89:43:28:fb:cf:4f:11:
e1:69:62:b4:be:dd:8a:4c:2b:db:24:fc:c3:c5:5b:a5:3b:46:
86:4b:a3:53:7a:59:93:f2:8f:52:b8:6f:10:36:14:cb:7f:82:
68:6e:e6:f7:92:c8:da:4b:db:e9:a7:00:e1:34:f8:99:b7:58:
cf:13:3a:13:94:3b:1d:a2:c3:39:5a:e3:fa:f2:ae:dd:79:5f:
ab:b0:05:c3:6f:1f:bf:03:fc:96:fb:36:d9:50:f0:ba:aa:38:
58:fa:e5:a0:22:dd:6e:61:c6:e0:9b:90:15:f7:31:a7:19:c0:
98:e1:e9:59:35:e7:3d:a4:af:34:46:1c:3d:3f:4c:3a:14:3f:
98:bd:0c:07:c5:4d:cd:fb:59:27:97:ba:f6:f0:c8:2f:c8:61:
4a:3f:81:17:40:7d:1a:27:d0:35:26:62:ad:1f:c4:b4:82:17:
16:b2:01:6d:02:83:dd:88:37:76:ef:26:05:08:d1:17:16:a1:
57:a3:d9:13
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 14:20:32 2025 by rpki-client