Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/eb/ca52f0-d3b3-42c5-8a7b-6dc369dff53f/1/XJF3tPVOZX44dlbmc6-MDuCmCRc.mft
File: XJF3tPVOZX44dlbmc6-MDuCmCRc.mft (raw, json)
Hash identifier: BhtkJ1De6K4x2uNd6xFRmNwFeHAC7J+t9IVxLneoQ2k=
Subject key identifier: C7:7B:8C:65:98:04:BD:4B:CC:90:59:C0:00:9E:89:A9:D2:4C:29:87
Authority key identifier: 5C:91:77:B4:F5:4E:65:7E:38:76:56:E6:73:AF:8C:0E:E0:A6:09:17
Certificate issuer: /CN=5c9177b4f54e657e387656e673af8c0ee0a60917
Certificate serial: 0198D4E09D3268AD5A1E4006CDEC5EA97A42
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XJF3tPVOZX44dlbmc6-MDuCmCRc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/eb/ca52f0-d3b3-42c5-8a7b-6dc369dff53f/1/XJF3tPVOZX44dlbmc6-MDuCmCRc.mft
Manifest number: 01F0
Signing time: Sat 23 Aug 2025 03:02:26 +0000
Manifest this update: Sat 23 Aug 2025 03:02:26 +0000
Manifest next update: Sun 24 Aug 2025 03:02:26 +0000
Files and hashes: 1: XJF3tPVOZX44dlbmc6-MDuCmCRc.crl (hash: z1V1jaSWTn1AonUu4jRHCF3HczBuP/Y1n23Q0gWKS3M=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/eb/ca52f0-d3b3-42c5-8a7b-6dc369dff53f/1/XJF3tPVOZX44dlbmc6-MDuCmCRc.crl
rsync://rpki.ripe.net/repository/DEFAULT/eb/ca52f0-d3b3-42c5-8a7b-6dc369dff53f/1/XJF3tPVOZX44dlbmc6-MDuCmCRc.mft
rsync://rpki.ripe.net/repository/DEFAULT/XJF3tPVOZX44dlbmc6-MDuCmCRc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 03:02:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d4:e0:9d:32:68:ad:5a:1e:40:06:cd:ec:5e:a9:7a:42
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5c9177b4f54e657e387656e673af8c0ee0a60917
Validity
Not Before: Aug 23 03:02:26 2025 GMT
Not After : Aug 24 03:02:26 2025 GMT
Subject: CN=c77b8c659804bd4bcc9059c0009e89a9d24c2987
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:8f:a5:77:dd:5a:7e:2c:48:28:4c:57:75:e0:
e7:45:c4:16:f4:99:54:52:35:af:94:6b:90:da:97:
1c:ea:86:b6:6a:e3:a0:ba:ec:80:7f:65:96:fd:da:
83:fa:3b:ba:5f:fc:a6:b4:5f:54:90:cc:cc:94:e8:
a2:bb:e8:fa:21:34:0e:a0:10:43:f2:ae:fe:5b:c2:
b2:17:83:0b:12:83:1d:14:7b:3f:e4:6a:31:1c:8a:
e4:17:c8:48:4d:b3:7b:a2:54:e2:59:06:d3:f7:1b:
ed:42:20:00:b2:32:21:6a:ca:5b:c5:f9:fa:57:46:
43:af:46:04:0e:25:e5:25:23:8d:d4:5c:21:6e:d8:
66:42:aa:ec:2a:7b:4c:6f:2f:ab:21:27:cb:cf:71:
7f:df:10:f2:19:89:b7:0f:df:10:34:8e:9a:d3:44:
f9:cb:92:cf:c7:69:8c:c9:63:fa:dd:0c:a4:08:5f:
ef:8a:d5:b5:d7:e3:e1:76:20:a5:e4:b0:eb:04:89:
c3:aa:1f:bc:43:df:19:4b:78:0a:0e:90:11:4e:0f:
fc:88:64:1a:f6:44:e9:28:f1:99:73:a1:11:d2:23:
15:a8:15:aa:4d:36:28:98:44:69:e7:f7:ae:c0:14:
e9:b1:5f:d5:8e:47:19:f2:e5:8e:35:02:e9:bf:d6:
40:df
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C7:7B:8C:65:98:04:BD:4B:CC:90:59:C0:00:9E:89:A9:D2:4C:29:87
X509v3 Authority Key Identifier:
keyid:5C:91:77:B4:F5:4E:65:7E:38:76:56:E6:73:AF:8C:0E:E0:A6:09:17
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XJF3tPVOZX44dlbmc6-MDuCmCRc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/eb/ca52f0-d3b3-42c5-8a7b-6dc369dff53f/1/XJF3tPVOZX44dlbmc6-MDuCmCRc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/eb/ca52f0-d3b3-42c5-8a7b-6dc369dff53f/1/XJF3tPVOZX44dlbmc6-MDuCmCRc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
87:48:33:1b:90:13:fe:c3:c0:bf:4f:99:84:63:ff:01:84:64:
f6:8f:27:bd:ef:6f:39:05:da:e6:fa:49:79:0b:88:81:af:bb:
1e:ce:7b:97:f5:d1:00:9b:ef:c2:c6:b4:50:ff:25:4f:98:6b:
4f:0f:a2:39:42:8a:71:79:ae:b7:fb:dc:f5:61:db:d0:8f:c3:
d1:62:10:75:14:4d:a3:66:57:49:24:4f:8f:c7:e8:66:eb:21:
ed:6f:ef:f7:1b:15:a0:1b:bd:78:db:5d:4f:1c:57:72:86:e4:
d7:de:34:7c:d9:39:c5:c9:1b:9a:d8:5d:fb:ff:08:47:75:b7:
51:95:6a:e0:d5:77:69:4c:6f:f1:51:fd:19:32:f5:a2:f6:81:
bb:cd:19:20:4a:80:9d:15:64:5f:73:e9:de:79:a9:27:a2:a2:
ff:47:07:7b:ca:db:14:27:03:f1:bc:d1:85:c8:75:bd:b6:83:
ff:6b:d8:0b:35:6d:8e:b2:77:52:27:94:c8:b0:4e:8c:b3:de:
9a:c4:e9:8d:de:17:86:e9:1a:81:eb:0e:d2:61:25:9f:ee:b2:
c9:31:8a:5d:cb:f4:94:84:b2:97:65:d7:76:9e:f8:c9:f5:b5:
59:8e:21:b9:40:a8:b0:9b:8b:41:96:d0:13:bd:05:3d:57:d1:
82:c8:b2:da
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 11:31:11 2025 by rpki-client