Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ee/525952-7afb-443d-af0a-77c3e1c8f6de/1/xmJhwznF7fjYxIPwjka4SAqAXvE.mft
File: xmJhwznF7fjYxIPwjka4SAqAXvE.mft (raw, json)
Hash identifier: eqE6czhl/eQcxSyLoad5q609wuBEttODVgihYQyNaM0=
Subject key identifier: 38:62:DC:C2:1A:99:EB:3C:B9:9C:C7:D1:1A:56:E3:E6:DE:C4:00:40
Authority key identifier: C6:62:61:C3:39:C5:ED:F8:D8:C4:83:F0:8E:46:B8:48:0A:80:5E:F1
Certificate issuer: /CN=c66261c339c5edf8d8c483f08e46b8480a805ef1
Certificate serial: 0198D65F17DA260369CC66766BE68D09C18D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xmJhwznF7fjYxIPwjka4SAqAXvE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ee/525952-7afb-443d-af0a-77c3e1c8f6de/1/xmJhwznF7fjYxIPwjka4SAqAXvE.mft
Manifest number: 1586
Signing time: Sat 23 Aug 2025 10:00:12 +0000
Manifest this update: Sat 23 Aug 2025 10:00:12 +0000
Manifest next update: Sun 24 Aug 2025 10:00:12 +0000
Files and hashes: 1: n0PQVaq6lp0buyh71HmvCGJy3cY.roa (hash: QL9cb+VrnWZDKfgvQ3BKYLRd9xHYcd+B/V/qEKLIfgU=)
2: xmJhwznF7fjYxIPwjka4SAqAXvE.crl (hash: CWaQY1E6x/XACy7zOH7oFyuw5gIzykdfIOjSY5kzskE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ee/525952-7afb-443d-af0a-77c3e1c8f6de/1/xmJhwznF7fjYxIPwjka4SAqAXvE.crl
rsync://rpki.ripe.net/repository/DEFAULT/ee/525952-7afb-443d-af0a-77c3e1c8f6de/1/xmJhwznF7fjYxIPwjka4SAqAXvE.mft
rsync://rpki.ripe.net/repository/DEFAULT/xmJhwznF7fjYxIPwjka4SAqAXvE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 05:01:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d6:5f:17:da:26:03:69:cc:66:76:6b:e6:8d:09:c1:8d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c66261c339c5edf8d8c483f08e46b8480a805ef1
Validity
Not Before: Aug 23 10:00:12 2025 GMT
Not After : Aug 24 10:00:12 2025 GMT
Subject: CN=3862dcc21a99eb3cb99cc7d11a56e3e6dec40040
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:c5:68:ac:35:9b:1e:3f:98:cb:2c:dc:bb:c4:
d7:b2:d0:20:c8:cb:f8:e7:b8:49:0a:94:90:f4:03:
05:11:e9:67:80:41:dc:5e:7b:a1:8e:d3:d5:bc:08:
36:94:4e:65:c4:89:8a:c9:b2:a4:db:fb:9b:b2:8f:
23:c8:45:10:90:1f:2e:10:ed:e8:8a:64:6f:93:c1:
e6:54:36:ad:15:b8:e7:da:65:68:d1:b5:56:f4:79:
eb:d7:7a:e9:87:30:24:ed:bc:55:bd:b9:e5:a9:4a:
51:7b:fd:af:15:51:bf:e4:da:ae:bf:eb:d4:9d:d3:
69:ec:f9:26:59:68:c8:a6:b1:a5:b5:0b:98:13:5e:
21:b1:95:3c:d8:da:17:f9:ae:ec:08:bf:41:ac:e0:
97:1b:7f:63:8e:fb:1a:2e:a8:d0:e1:ec:9a:50:32:
0a:5a:2c:a0:8a:67:f2:ea:95:07:9c:b0:66:48:1d:
5b:38:c2:fa:e9:49:87:80:88:7c:7a:15:e9:55:44:
76:c7:2b:21:7c:4e:ff:47:82:c4:6c:9e:9f:7c:a4:
5f:a0:fa:df:60:f1:a4:b2:61:fe:61:c9:82:92:4f:
7f:9e:e7:d6:6c:d5:73:e8:25:9e:3b:fc:70:c6:9f:
7c:59:fa:7b:78:14:02:cf:d7:5f:a9:f5:3a:2b:e8:
c9:6b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
38:62:DC:C2:1A:99:EB:3C:B9:9C:C7:D1:1A:56:E3:E6:DE:C4:00:40
X509v3 Authority Key Identifier:
keyid:C6:62:61:C3:39:C5:ED:F8:D8:C4:83:F0:8E:46:B8:48:0A:80:5E:F1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xmJhwznF7fjYxIPwjka4SAqAXvE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ee/525952-7afb-443d-af0a-77c3e1c8f6de/1/xmJhwznF7fjYxIPwjka4SAqAXvE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ee/525952-7afb-443d-af0a-77c3e1c8f6de/1/xmJhwznF7fjYxIPwjka4SAqAXvE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
98:b9:5f:41:e7:c8:55:bd:22:c5:a2:f2:a5:ef:93:80:a6:06:
91:e2:20:64:cd:6b:9d:99:14:e1:d5:68:26:32:70:a1:a4:7f:
e3:8c:9a:c9:bc:68:bb:74:a7:62:e0:80:a2:c4:53:fc:c7:36:
d8:0f:be:2d:14:b4:5e:bc:a3:98:0a:1d:9a:2a:52:18:96:c1:
cd:e2:82:e5:0e:e0:3a:e8:0b:ae:ce:53:e3:cd:fa:70:1b:35:
6d:77:d4:09:3d:58:1d:de:1b:76:17:1a:7e:1c:26:55:5b:ef:
27:54:0e:52:11:88:72:2f:03:eb:f0:c7:79:1c:60:03:33:e5:
eb:ad:89:f3:77:f0:6e:30:ca:9d:df:4a:4d:48:b9:d9:99:1d:
5f:72:f7:c2:57:52:e2:28:56:67:4c:a6:99:5a:eb:07:69:da:
98:62:b9:0f:38:3b:ba:5e:2e:b2:13:21:80:bb:0a:ad:1e:8d:
02:55:25:1e:e8:fc:3b:d1:29:aa:fb:b4:bf:32:94:18:c7:46:
5b:8d:a6:b2:6a:72:1a:58:b0:25:c2:8b:7f:f1:4c:48:17:fc:
2c:88:34:59:34:16:0a:7c:53:5e:e6:47:fe:d7:de:ad:80:e2:
f9:d7:3a:51:f8:77:09:24:f6:f1:59:ab:14:a5:41:a6:3c:45:
b2:4c:2d:4d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 14:14:00 2025 by rpki-client