Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f8/32e3d3-9a8d-4653-94fa-a2019988330f/1/_XBhwg1PCXYTrAMTI3pt8rsstdw.mft
File: _XBhwg1PCXYTrAMTI3pt8rsstdw.mft (raw, json)
Hash identifier: AbHQAKUrtgSVRCXUxyeb+/Yd5UH81WdeW39h5JtZ4ww=
Subject key identifier: DB:5B:D8:70:CC:D1:E7:EC:C7:91:A9:4A:FB:2A:D4:6B:3D:29:C7:EF
Authority key identifier: FD:70:61:C2:0D:4F:09:76:13:AC:03:13:23:7A:6D:F2:BB:2C:B5:DC
Certificate issuer: /CN=fd7061c20d4f097613ac0313237a6df2bb2cb5dc
Certificate serial: 0198D6CDF866925C8789C6B00D8F18D6DF9C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/_XBhwg1PCXYTrAMTI3pt8rsstdw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f8/32e3d3-9a8d-4653-94fa-a2019988330f/1/_XBhwg1PCXYTrAMTI3pt8rsstdw.mft
Manifest number: 01DF
Signing time: Sat 23 Aug 2025 12:01:19 +0000
Manifest this update: Sat 23 Aug 2025 12:01:19 +0000
Manifest next update: Sun 24 Aug 2025 12:01:19 +0000
Files and hashes: 1: _XBhwg1PCXYTrAMTI3pt8rsstdw.crl (hash: R0MMRK09oWEMAectyxXdbmZY0byKWvMIYALcWkf3O5Q=)
2: oenpcHzg8QPV-rJqJOxh7sUU4JM.roa (hash: pI8sI3HGC0XwZjUjUuA9QCNQ3HFZ2jSXO5rE2e12GoY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f8/32e3d3-9a8d-4653-94fa-a2019988330f/1/_XBhwg1PCXYTrAMTI3pt8rsstdw.crl
rsync://rpki.ripe.net/repository/DEFAULT/f8/32e3d3-9a8d-4653-94fa-a2019988330f/1/_XBhwg1PCXYTrAMTI3pt8rsstdw.mft
rsync://rpki.ripe.net/repository/DEFAULT/_XBhwg1PCXYTrAMTI3pt8rsstdw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 05:01:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d6:cd:f8:66:92:5c:87:89:c6:b0:0d:8f:18:d6:df:9c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=fd7061c20d4f097613ac0313237a6df2bb2cb5dc
Validity
Not Before: Aug 23 12:01:19 2025 GMT
Not After : Aug 24 12:01:19 2025 GMT
Subject: CN=db5bd870ccd1e7ecc791a94afb2ad46b3d29c7ef
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:93:7d:90:5a:81:73:be:4a:c0:e8:bc:2d:04:9a:
f4:23:8a:24:2f:d4:9a:c0:41:2c:a0:28:d8:b4:e3:
1d:5d:b6:b3:d8:73:5a:d4:12:b2:66:8b:ac:77:52:
b2:ba:52:a0:e0:71:34:9a:40:c4:29:20:2d:85:b0:
54:30:36:94:0b:ed:c9:ee:3d:78:2d:8d:3b:81:d3:
5f:cc:c2:14:fb:80:b8:cd:de:d1:81:11:1a:47:3f:
7f:22:27:89:1c:14:0a:39:e5:80:e9:08:09:94:be:
06:cb:aa:7e:67:93:7a:36:39:c4:a0:be:72:e2:b9:
bc:a9:49:cc:82:80:c2:bd:78:f9:c6:c1:81:91:38:
67:76:ac:ac:0a:ee:55:94:d6:08:77:37:94:a7:58:
f3:47:44:0d:59:38:32:d5:ef:ca:f5:d3:24:6f:a9:
16:50:b3:47:53:81:92:8a:57:32:5c:7b:f0:fd:99:
16:78:be:02:ec:88:97:42:14:ce:ea:aa:7c:7c:7c:
e5:6f:e3:90:64:2c:d6:b9:32:92:5b:78:ee:fd:dd:
72:62:f1:e1:44:ee:0d:7d:e2:f3:d8:2b:bf:25:fd:
f3:2e:e4:f5:65:41:7f:db:b4:28:1b:fe:ac:39:4b:
6d:1d:d1:d1:7e:30:59:b4:18:02:9b:d6:37:a0:53:
16:29
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DB:5B:D8:70:CC:D1:E7:EC:C7:91:A9:4A:FB:2A:D4:6B:3D:29:C7:EF
X509v3 Authority Key Identifier:
keyid:FD:70:61:C2:0D:4F:09:76:13:AC:03:13:23:7A:6D:F2:BB:2C:B5:DC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/_XBhwg1PCXYTrAMTI3pt8rsstdw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f8/32e3d3-9a8d-4653-94fa-a2019988330f/1/_XBhwg1PCXYTrAMTI3pt8rsstdw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f8/32e3d3-9a8d-4653-94fa-a2019988330f/1/_XBhwg1PCXYTrAMTI3pt8rsstdw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
77:98:ca:35:f5:63:b5:cf:39:78:81:3b:54:09:c1:e3:9a:56:
24:41:d6:3a:ca:b2:27:85:e8:4a:d6:0c:f7:f7:07:0f:c1:17:
b9:a3:b4:cd:29:9b:cd:4f:bf:ca:09:11:4a:b6:94:49:15:d5:
41:a5:43:44:ee:7b:ca:50:6a:93:14:32:c5:84:f7:fa:80:b2:
73:ba:4a:88:88:61:ad:c8:72:0c:29:e2:cd:e3:0a:03:f8:66:
59:2e:5a:d6:c1:58:d0:1d:76:5f:72:64:76:de:bc:b7:16:03:
39:e9:59:35:21:82:c8:e2:53:19:9f:24:fe:87:44:e8:48:26:
e2:37:5e:3e:e9:2d:72:86:e2:fa:d8:8b:57:27:69:fa:c1:76:
25:60:a0:91:80:19:4e:a2:b0:da:73:d4:a1:1c:e6:28:01:a3:
34:75:e9:0a:3b:cf:69:d6:13:06:8d:c6:c5:d8:12:ea:5d:cf:
15:68:ec:d8:06:58:d9:d7:39:04:b5:27:6f:d2:f3:a8:6e:0e:
33:22:0a:29:83:6c:da:72:fd:fd:0e:fa:7d:66:f6:20:08:06:
cb:e2:bd:42:75:24:06:72:8e:ea:9d:30:46:48:a3:dc:f1:70:
ff:1b:f1:02:92:15:2d:f2:57:9a:f5:49:47:da:20:ea:e8:44:
f8:a7:2b:38
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 15:23:25 2025 by rpki-client