Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ee/c485d9-2736-49b1-9a44-1b95819cfc9c/1/kXWIXPl40u9mE3YhRTC57WjFtFg.mft
File: kXWIXPl40u9mE3YhRTC57WjFtFg.mft (raw, json)
Hash identifier: 1lLcFyVsSncPI4/Xzk/PpSQnNDVI0u4u9k2u5LFQJY4=
Subject key identifier: 01:2C:4C:A7:42:DA:A3:96:A9:C7:C5:DA:E7:C4:B1:6B:5D:7A:56:5E
Authority key identifier: 91:75:88:5C:F9:78:D2:EF:66:13:76:21:45:30:B9:ED:68:C5:B4:58
Certificate issuer: /CN=9175885cf978d2ef661376214530b9ed68c5b458
Certificate serial: 0198D472A1B6528E96BE49029B8F8982DF8D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/kXWIXPl40u9mE3YhRTC57WjFtFg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ee/c485d9-2736-49b1-9a44-1b95819cfc9c/1/kXWIXPl40u9mE3YhRTC57WjFtFg.mft
Manifest number: 0966
Signing time: Sat 23 Aug 2025 01:02:18 +0000
Manifest this update: Sat 23 Aug 2025 01:02:18 +0000
Manifest next update: Sun 24 Aug 2025 01:02:18 +0000
Files and hashes: 1: kXWIXPl40u9mE3YhRTC57WjFtFg.crl (hash: H7ROIJt7hhTfiW+5xNVN0UTD0G0liO9inHiF/uRBx00=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ee/c485d9-2736-49b1-9a44-1b95819cfc9c/1/kXWIXPl40u9mE3YhRTC57WjFtFg.crl
rsync://rpki.ripe.net/repository/DEFAULT/ee/c485d9-2736-49b1-9a44-1b95819cfc9c/1/kXWIXPl40u9mE3YhRTC57WjFtFg.mft
rsync://rpki.ripe.net/repository/DEFAULT/kXWIXPl40u9mE3YhRTC57WjFtFg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 01:02:18 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d4:72:a1:b6:52:8e:96:be:49:02:9b:8f:89:82:df:8d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9175885cf978d2ef661376214530b9ed68c5b458
Validity
Not Before: Aug 23 01:02:18 2025 GMT
Not After : Aug 24 01:02:18 2025 GMT
Subject: CN=012c4ca742daa396a9c7c5dae7c4b16b5d7a565e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:4d:33:4d:d2:21:5c:f4:c0:d4:03:02:4f:70:
9f:8b:91:2f:e8:98:3f:e5:56:04:de:e1:f2:77:85:
89:bb:49:33:fe:ea:cb:fc:d2:40:3e:c7:92:34:8f:
42:c7:06:d7:2b:f3:bb:0d:49:8b:d2:98:20:c5:ff:
77:a3:c6:5f:35:99:d6:b3:33:4f:26:49:60:16:16:
f2:dd:97:53:36:f2:21:32:9e:56:bf:46:59:69:db:
0f:d1:44:f9:43:c5:36:99:a4:3d:16:be:a2:10:a0:
b7:39:72:18:50:24:79:03:17:93:5e:e3:a2:3d:13:
43:ea:c6:a3:19:69:42:a8:45:89:57:58:18:98:42:
ea:d4:50:a4:77:34:02:77:27:7f:96:d6:40:60:96:
8c:a8:2e:54:ae:84:d1:fe:c2:37:3a:c9:1a:01:11:
2d:11:bb:00:30:1e:7e:79:d9:88:e1:bf:ae:10:a9:
23:1b:5b:c9:da:88:ef:3a:4b:50:72:a7:8c:31:0c:
cf:b0:10:4b:93:50:7b:0e:ff:43:c5:55:b1:1d:4e:
7d:cd:f1:c9:29:5e:27:76:9a:e9:0b:74:d7:00:47:
26:50:92:dc:fe:c4:f9:29:bf:6c:6a:50:f8:61:a5:
e9:a4:3a:b5:43:0d:5e:b8:f9:1e:8e:0c:0b:f1:5e:
08:77
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
01:2C:4C:A7:42:DA:A3:96:A9:C7:C5:DA:E7:C4:B1:6B:5D:7A:56:5E
X509v3 Authority Key Identifier:
keyid:91:75:88:5C:F9:78:D2:EF:66:13:76:21:45:30:B9:ED:68:C5:B4:58
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/kXWIXPl40u9mE3YhRTC57WjFtFg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ee/c485d9-2736-49b1-9a44-1b95819cfc9c/1/kXWIXPl40u9mE3YhRTC57WjFtFg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ee/c485d9-2736-49b1-9a44-1b95819cfc9c/1/kXWIXPl40u9mE3YhRTC57WjFtFg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
62:13:4d:7c:69:e3:a2:e4:f9:46:01:e4:d0:9c:2a:52:68:27:
87:2b:94:ae:b4:29:dd:fb:58:4a:d8:9f:7f:a8:2f:c6:ae:a5:
5a:d0:65:78:b9:b0:a3:4b:d8:1c:33:d6:be:b1:19:17:54:0b:
8f:fa:03:69:9a:89:95:37:cb:f0:34:ad:9e:b6:e1:6d:14:04:
8a:8e:ff:d4:58:15:52:60:de:9b:e6:10:97:9b:84:07:93:70:
34:72:20:37:92:51:0d:fe:e0:37:b0:f5:e3:db:5e:58:12:a9:
c2:50:02:c6:6e:5f:c9:c8:ca:da:a6:85:7c:c1:a6:a6:0b:58:
48:a2:0e:94:7e:f1:db:7b:f8:a6:23:55:10:b7:f1:f9:7a:1a:
91:d1:76:a3:5e:b9:a1:83:1d:a1:cf:6a:44:71:16:7f:15:eb:
23:d9:25:a1:5d:fa:d0:f4:58:59:e2:e1:c8:9b:7a:01:97:fb:
d9:ca:91:35:d0:f1:d7:2c:ae:22:45:01:c6:53:11:b6:69:05:
6e:7f:6e:56:58:5e:17:b3:56:25:25:a5:20:49:dd:61:a3:46:
49:4e:69:9c:84:2e:76:79:f3:d9:09:7d:78:df:bf:2d:3a:3a:
f3:95:91:4e:a1:55:af:8f:7f:43:1e:77:ec:69:df:9b:ff:1d:
03:b3:ad:43
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 11:33:14 2025 by rpki-client