Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f9/34404a-4132-4e83-8e46-390e935beda3/1/Xf04PhaNLsn7w5DqjZmkuvfsO1s.mft
File: Xf04PhaNLsn7w5DqjZmkuvfsO1s.mft (raw, json)
Hash identifier: scpcm4z56NPPz4ZCc0L36kfd8gLCbNi1SkUfVa+gHrg=
Subject key identifier: 2D:95:B5:26:C9:55:4E:1C:9B:90:8D:1F:3C:AB:AA:43:E1:1C:D2:43
Authority key identifier: 5D:FD:38:3E:16:8D:2E:C9:FB:C3:90:EA:8D:99:A4:BA:F7:EC:3B:5B
Certificate issuer: /CN=5dfd383e168d2ec9fbc390ea8d99a4baf7ec3b5b
Certificate serial: 0198D697FE6647A5DC626790E1FCFE58F8DE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Xf04PhaNLsn7w5DqjZmkuvfsO1s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f9/34404a-4132-4e83-8e46-390e935beda3/1/Xf04PhaNLsn7w5DqjZmkuvfsO1s.mft
Manifest number: E3
Signing time: Sat 23 Aug 2025 11:02:21 +0000
Manifest this update: Sat 23 Aug 2025 11:02:21 +0000
Manifest next update: Sun 24 Aug 2025 11:02:21 +0000
Files and hashes: 1: Xf04PhaNLsn7w5DqjZmkuvfsO1s.crl (hash: tBYBg57hl1gIGLFZiOBF9Ztttad79uexCQCswjfSt7g=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f9/34404a-4132-4e83-8e46-390e935beda3/1/Xf04PhaNLsn7w5DqjZmkuvfsO1s.crl
rsync://rpki.ripe.net/repository/DEFAULT/f9/34404a-4132-4e83-8e46-390e935beda3/1/Xf04PhaNLsn7w5DqjZmkuvfsO1s.mft
rsync://rpki.ripe.net/repository/DEFAULT/Xf04PhaNLsn7w5DqjZmkuvfsO1s.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 11:02:21 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d6:97:fe:66:47:a5:dc:62:67:90:e1:fc:fe:58:f8:de
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5dfd383e168d2ec9fbc390ea8d99a4baf7ec3b5b
Validity
Not Before: Aug 23 11:02:21 2025 GMT
Not After : Aug 24 11:02:21 2025 GMT
Subject: CN=2d95b526c9554e1c9b908d1f3cabaa43e11cd243
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ec:68:d9:b3:18:92:25:ba:df:98:d5:1d:10:c5:
1d:5b:8f:8e:b4:5f:18:8c:ca:7f:76:4a:01:54:cd:
10:47:e5:d5:1e:ff:5c:e8:10:57:a9:41:36:9a:ed:
26:a7:8b:81:2e:a0:76:ae:fa:35:a0:ef:79:cb:21:
4c:03:59:4b:fc:f6:e9:e6:e2:1d:21:85:38:98:72:
47:5d:d4:3c:8a:f4:c1:55:d0:82:04:ac:33:22:05:
5a:e3:a3:54:98:dd:14:ea:37:66:fb:e5:22:91:8a:
c1:e9:d1:74:a9:1b:b3:24:50:7f:49:6f:32:05:8b:
59:bf:d8:a5:1d:ae:3e:36:1f:61:77:73:d0:f8:6d:
44:de:b5:a3:fd:3e:ba:29:53:be:d0:4f:ee:50:87:
48:95:9d:57:f9:1c:60:b5:4a:35:6a:6a:44:92:d6:
69:06:c0:d4:b6:b1:1a:96:16:39:a5:2f:db:0b:cc:
89:4e:b3:7b:28:b4:09:cc:23:f5:88:24:f5:2b:22:
df:1f:57:c0:86:6d:6f:9f:e6:1f:c9:03:9b:0f:1e:
38:d2:57:a6:3f:fb:5d:d7:ea:b3:b2:78:29:b4:7a:
49:65:93:18:9c:40:d2:5e:69:e3:f9:6e:73:c3:71:
bd:b3:cc:0e:27:35:81:0b:fb:2a:88:58:ff:92:49:
db:37
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2D:95:B5:26:C9:55:4E:1C:9B:90:8D:1F:3C:AB:AA:43:E1:1C:D2:43
X509v3 Authority Key Identifier:
keyid:5D:FD:38:3E:16:8D:2E:C9:FB:C3:90:EA:8D:99:A4:BA:F7:EC:3B:5B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Xf04PhaNLsn7w5DqjZmkuvfsO1s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f9/34404a-4132-4e83-8e46-390e935beda3/1/Xf04PhaNLsn7w5DqjZmkuvfsO1s.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f9/34404a-4132-4e83-8e46-390e935beda3/1/Xf04PhaNLsn7w5DqjZmkuvfsO1s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
a2:e6:d7:f0:f4:ca:19:be:44:3f:a3:81:64:c9:46:92:b2:2b:
04:58:ff:ba:da:42:d8:0d:e6:b2:20:cc:af:a8:b2:84:85:c3:
af:21:55:b2:83:28:7b:dc:14:48:67:61:0e:f4:99:71:1a:4d:
e3:22:1a:7a:09:12:81:93:a8:19:45:fd:bd:e5:a6:24:36:3e:
5b:98:2a:87:08:15:50:4c:d9:6f:7f:86:69:a5:20:90:0c:30:
95:00:68:1e:8a:4c:1d:8e:af:f7:48:43:11:2b:05:fd:12:6f:
47:58:45:c3:02:8d:db:5e:fd:5d:54:ed:b3:8e:47:ca:b4:a4:
ec:4c:df:e8:98:0b:ee:ee:c7:08:51:9d:d0:aa:8b:3d:f9:10:
ef:80:43:3b:ad:f3:d1:cf:3c:6b:27:82:b7:30:7a:18:9d:74:
bb:bb:58:37:45:08:48:cc:1a:40:46:cb:b0:5d:c1:20:4a:48:
5b:0c:e0:9e:85:72:5d:8d:20:f2:bb:9e:e7:c9:d0:dc:50:d7:
46:a8:37:26:8d:bc:f5:06:16:0a:96:e5:a9:83:04:15:d7:6c:
69:65:42:80:e6:95:fd:d7:ae:cc:14:3e:e7:d4:87:23:78:15:
3b:23:50:6c:ec:38:3b:00:a4:48:44:5c:78:29:6a:7a:60:2f:
7e:05:3b:44
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 19:26:38 2025 by rpki-client