Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ec/6524f6-5320-4686-a5c3-72e1fc4a306e/1/XlTVGjJHsX9vlqDM4lMBktyfdCI.mft
File: XlTVGjJHsX9vlqDM4lMBktyfdCI.mft (raw, json)
Hash identifier: j9uKijtIQOmHNhKbMc1KeCpLcjT1mNLli8xFwG/GTfs=
Subject key identifier: 49:DD:C7:2D:AD:EA:85:13:72:C4:D7:8F:9F:12:74:52:62:AB:0D:65
Authority key identifier: 5E:54:D5:1A:32:47:B1:7F:6F:96:A0:CC:E2:53:01:92:DC:9F:74:22
Certificate issuer: /CN=5e54d51a3247b17f6f96a0cce2530192dc9f7422
Certificate serial: 0198D6CD575DA57F7632DCF10DB0189426B6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XlTVGjJHsX9vlqDM4lMBktyfdCI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ec/6524f6-5320-4686-a5c3-72e1fc4a306e/1/XlTVGjJHsX9vlqDM4lMBktyfdCI.mft
Manifest number: 061B
Signing time: Sat 23 Aug 2025 12:00:37 +0000
Manifest this update: Sat 23 Aug 2025 12:00:37 +0000
Manifest next update: Sun 24 Aug 2025 12:00:37 +0000
Files and hashes: 1: XlTVGjJHsX9vlqDM4lMBktyfdCI.crl (hash: q8EQHARHHGZaiJxyXTAhyQo9HBZPiLXoSs3d7ZCpowg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ec/6524f6-5320-4686-a5c3-72e1fc4a306e/1/XlTVGjJHsX9vlqDM4lMBktyfdCI.crl
rsync://rpki.ripe.net/repository/DEFAULT/ec/6524f6-5320-4686-a5c3-72e1fc4a306e/1/XlTVGjJHsX9vlqDM4lMBktyfdCI.mft
rsync://rpki.ripe.net/repository/DEFAULT/XlTVGjJHsX9vlqDM4lMBktyfdCI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 12:00:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d6:cd:57:5d:a5:7f:76:32:dc:f1:0d:b0:18:94:26:b6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5e54d51a3247b17f6f96a0cce2530192dc9f7422
Validity
Not Before: Aug 23 12:00:37 2025 GMT
Not After : Aug 24 12:00:37 2025 GMT
Subject: CN=49ddc72dadea851372c4d78f9f12745262ab0d65
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ee:40:c3:c0:d3:d5:ee:79:3a:11:3d:cc:ef:a1:
df:35:a0:e8:55:1d:c3:ef:4b:46:be:c1:0a:fb:32:
7b:e4:1f:38:ed:bb:23:20:fb:20:43:a9:ee:e8:27:
15:3b:3d:93:d1:f6:73:0e:0b:67:65:88:47:b9:87:
9a:9d:9c:a3:d7:c8:bc:f1:64:16:69:08:e8:4b:31:
65:53:3f:04:74:f5:5b:51:5f:c5:d9:9c:07:0e:02:
94:35:95:2c:94:c1:bf:44:28:ef:21:21:82:e9:58:
07:93:2b:86:06:e0:41:7c:18:91:ae:d2:a5:54:5e:
79:88:f8:7e:cc:ee:b1:6f:e2:0a:77:30:8b:94:a4:
35:2f:c9:71:5a:ec:0a:55:df:55:b5:29:6d:80:eb:
aa:78:20:4e:67:05:a9:58:9a:a6:d3:a5:ce:4d:31:
c1:74:eb:6a:55:06:ca:0d:24:8b:58:85:76:14:9b:
e4:fa:93:a9:b5:2c:3a:0f:ed:5a:83:6a:98:f6:18:
32:de:91:d8:41:57:0d:cf:cb:6d:50:87:fc:f9:60:
f9:8f:fa:25:0d:3b:c0:24:34:31:8e:ea:29:c0:e1:
7a:54:ba:f1:5b:aa:e6:da:38:8f:ee:a2:70:5f:3d:
1d:83:73:cb:f3:d5:9b:8d:70:f9:52:3a:4c:40:f5:
b8:05
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
49:DD:C7:2D:AD:EA:85:13:72:C4:D7:8F:9F:12:74:52:62:AB:0D:65
X509v3 Authority Key Identifier:
keyid:5E:54:D5:1A:32:47:B1:7F:6F:96:A0:CC:E2:53:01:92:DC:9F:74:22
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XlTVGjJHsX9vlqDM4lMBktyfdCI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ec/6524f6-5320-4686-a5c3-72e1fc4a306e/1/XlTVGjJHsX9vlqDM4lMBktyfdCI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ec/6524f6-5320-4686-a5c3-72e1fc4a306e/1/XlTVGjJHsX9vlqDM4lMBktyfdCI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
ae:81:be:67:80:ac:0c:95:de:59:5f:31:c8:21:21:bb:d1:b2:
91:7b:5f:0f:f9:f1:cc:3e:9a:97:0e:06:66:f0:11:90:2e:77:
e5:49:82:b4:1b:16:95:21:cd:f4:d4:8f:5f:01:cd:f1:8d:10:
a2:31:b7:1b:9f:d5:92:55:e3:bc:a6:88:dc:f2:a5:6a:26:c9:
f2:f2:84:7e:dd:c4:0d:72:55:bf:d9:61:2b:7b:97:ee:db:bb:
93:ce:aa:64:c7:95:37:e7:55:93:cb:34:5d:a2:52:8f:6e:6d:
68:6d:9c:49:21:54:ef:8b:eb:8a:35:de:c3:17:28:35:73:4a:
7d:be:c3:2d:60:6b:4f:5c:c9:a6:0a:bf:f6:f7:91:6e:61:ab:
93:fc:95:cd:aa:b9:12:c6:80:a1:01:fa:0a:dc:7c:cf:d2:0b:
7b:2b:7a:cd:2b:c5:8c:ad:5f:07:56:22:95:99:84:62:e0:bf:
78:07:b1:19:06:0d:39:e5:43:0e:30:dc:65:40:0e:a8:30:2b:
1e:fd:fd:4a:91:03:74:d3:59:fe:ed:60:58:80:b2:a5:dd:3a:
e1:ba:5a:5e:a7:b6:7a:75:10:2f:db:f2:51:0f:75:9b:7e:19:
3e:d1:e9:53:e4:3d:9c:84:65:9b:b1:3e:7f:36:97:06:10:4b:
de:69:5d:44
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 17:50:56 2025 by rpki-client