Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/db/a64099-345f-4f1c-a930-760cb3ea1415/1/RXHLqFoCMKnLR6vrWzue1NUxz54.mft
File: RXHLqFoCMKnLR6vrWzue1NUxz54.mft (raw, json)
Hash identifier: /1s3iblYY1NIiBPWwZcYKMHScTE8Hd8me3Xu3kpTJcA=
Subject key identifier: 38:FB:49:FE:76:75:0C:4B:02:0D:F7:40:6A:87:0A:10:EB:3B:D4:D5
Authority key identifier: 45:71:CB:A8:5A:02:30:A9:CB:47:AB:EB:5B:3B:9E:D4:D5:31:CF:9E
Certificate issuer: /CN=4571cba85a0230a9cb47abeb5b3b9ed4d531cf9e
Certificate serial: 0199FC8FC4D85EC709162A5D2BD7AA2B7A88
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/RXHLqFoCMKnLR6vrWzue1NUxz54.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/db/a64099-345f-4f1c-a930-760cb3ea1415/1/RXHLqFoCMKnLR6vrWzue1NUxz54.mft
Manifest number: 048C
Signing time: Sun 19 Oct 2025 13:01:44 +0000
Manifest this update: Sun 19 Oct 2025 13:01:44 +0000
Manifest next update: Mon 20 Oct 2025 13:01:44 +0000
Files and hashes: 1: RXHLqFoCMKnLR6vrWzue1NUxz54.crl (hash: 30xHxf/zqjFpBLm3nNQsAvXscqiKFdp3deufpAGnOaw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/db/a64099-345f-4f1c-a930-760cb3ea1415/1/RXHLqFoCMKnLR6vrWzue1NUxz54.crl
rsync://rpki.ripe.net/repository/DEFAULT/db/a64099-345f-4f1c-a930-760cb3ea1415/1/RXHLqFoCMKnLR6vrWzue1NUxz54.mft
rsync://rpki.ripe.net/repository/DEFAULT/RXHLqFoCMKnLR6vrWzue1NUxz54.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 11:18:59 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fc:8f:c4:d8:5e:c7:09:16:2a:5d:2b:d7:aa:2b:7a:88
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4571cba85a0230a9cb47abeb5b3b9ed4d531cf9e
Validity
Not Before: Oct 19 13:01:44 2025 GMT
Not After : Oct 20 13:01:44 2025 GMT
Subject: CN=38fb49fe76750c4b020df7406a870a10eb3bd4d5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:ea:f3:bf:9b:b0:bf:d4:48:d0:f4:2c:92:be:
3f:6c:27:18:a2:4f:d2:5c:a5:c8:5b:13:a6:f9:4b:
9d:be:df:e6:4f:db:a2:e8:50:79:fd:5e:48:5d:fe:
39:6b:42:4c:49:27:02:9a:4d:bd:17:a0:89:42:69:
88:b9:c5:7e:3e:68:d3:fb:5e:1f:c0:bf:54:e0:b2:
68:5d:9b:f2:d0:79:ad:22:b7:ad:b1:02:fc:2b:24:
08:9d:60:ef:3c:c2:9e:37:80:8d:f6:b1:94:1d:27:
d1:2f:1e:57:f8:06:fb:23:17:b1:82:97:2b:00:9f:
79:1e:a0:63:6b:d6:f4:8a:70:f7:6c:ef:6f:76:41:
74:1f:f5:85:14:ef:dd:2c:6b:4d:70:d1:e6:be:12:
5e:95:ca:18:31:e9:fb:8e:8d:97:08:c9:1f:22:db:
47:9f:aa:87:24:64:9a:ec:e4:71:d1:59:7c:8e:f3:
85:dd:89:d8:cd:45:eb:f7:93:03:b8:01:60:b5:d4:
07:9f:2f:39:a7:65:ee:a2:5e:eb:26:ba:bd:35:36:
80:2c:f4:b2:5e:8e:d6:68:96:d8:97:99:84:2b:4a:
7e:0f:dc:45:ad:e6:0a:25:1b:ca:8a:ed:bd:d9:01:
6e:13:b9:e9:fe:15:8f:b6:95:83:7b:ab:c5:46:fa:
23:e3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
38:FB:49:FE:76:75:0C:4B:02:0D:F7:40:6A:87:0A:10:EB:3B:D4:D5
X509v3 Authority Key Identifier:
keyid:45:71:CB:A8:5A:02:30:A9:CB:47:AB:EB:5B:3B:9E:D4:D5:31:CF:9E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/RXHLqFoCMKnLR6vrWzue1NUxz54.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/db/a64099-345f-4f1c-a930-760cb3ea1415/1/RXHLqFoCMKnLR6vrWzue1NUxz54.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/db/a64099-345f-4f1c-a930-760cb3ea1415/1/RXHLqFoCMKnLR6vrWzue1NUxz54.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
b4:f9:da:95:65:8c:c6:ee:e0:48:b1:4a:8b:00:c4:e3:ff:52:
23:f8:50:96:92:af:dd:33:89:8a:51:f9:7d:81:6f:f3:77:6e:
2e:3c:32:30:c3:c7:7a:0e:26:47:01:64:e9:99:c3:c4:ed:4e:
22:eb:a3:c7:c8:a3:ba:4c:13:d4:0f:73:bb:bb:39:64:22:4f:
cc:16:72:83:c2:c9:55:00:83:95:04:da:f1:94:6e:49:c4:32:
ef:9f:df:6c:27:53:1b:52:29:b0:df:c6:76:9c:72:8c:2e:16:
d2:69:62:7c:0e:94:d1:17:98:d0:90:d1:9a:fd:e2:c4:6a:97:
e2:bb:d5:9a:a6:45:2c:86:47:cf:93:c4:83:3d:06:cc:12:bb:
cf:5f:26:95:36:7e:f9:4d:05:2b:27:76:3e:49:cb:1a:90:98:
fd:f5:38:f9:e6:df:44:7d:f4:0d:ab:66:a8:f9:d4:e8:01:51:
f1:da:86:c3:c7:c1:72:4b:0b:85:cb:a5:68:f5:19:72:0c:91:
13:5f:0c:1a:a7:5d:5b:90:88:ed:c2:06:3f:41:47:0f:75:92:
6e:a5:47:d7:bd:6f:40:f6:8f:27:71:18:aa:39:07:9d:5e:20:
61:6c:64:3d:bd:24:72:46:ef:20:c3:a9:95:bb:e5:d8:c5:7c:
61:71:de:b7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 19 17:58:40 2025 by rpki-client