Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1a/23a19a-30db-4872-ab73-5287afc10e68/1/9xPX34BXC8z7JzeT8ApdRshT5Jo.mft
File: 9xPX34BXC8z7JzeT8ApdRshT5Jo.mft (raw, json)
Hash identifier: j61aI8n7rKQIRIVBdsKCr5vQOJ7D5sEjozmGk1iw7CU=
Subject key identifier: 70:EB:2C:2A:97:04:7E:57:57:AA:5D:18:03:FE:76:9C:86:EE:AF:0F
Authority key identifier: F7:13:D7:DF:80:57:0B:CC:FB:27:37:93:F0:0A:5D:46:C8:53:E4:9A
Certificate issuer: /CN=f713d7df80570bccfb273793f00a5d46c853e49a
Certificate serial: 01984A4103A3705BE61E38EF89B144531A1C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/9xPX34BXC8z7JzeT8ApdRshT5Jo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1a/23a19a-30db-4872-ab73-5287afc10e68/1/9xPX34BXC8z7JzeT8ApdRshT5Jo.mft
Manifest number: 0524
Signing time: Sun 27 Jul 2025 05:00:31 +0000
Manifest this update: Sun 27 Jul 2025 05:00:31 +0000
Manifest next update: Mon 28 Jul 2025 05:00:31 +0000
Files and hashes: 1: 9xPX34BXC8z7JzeT8ApdRshT5Jo.crl (hash: EfYgwpHcaWlbLpMFPuUe2AtT9/p6jDIQQY10tlu/k3A=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/1a/23a19a-30db-4872-ab73-5287afc10e68/1/9xPX34BXC8z7JzeT8ApdRshT5Jo.crl
rsync://rpki.ripe.net/repository/DEFAULT/1a/23a19a-30db-4872-ab73-5287afc10e68/1/9xPX34BXC8z7JzeT8ApdRshT5Jo.mft
rsync://rpki.ripe.net/repository/DEFAULT/9xPX34BXC8z7JzeT8ApdRshT5Jo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 28 Jul 2025 05:00:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:4a:41:03:a3:70:5b:e6:1e:38:ef:89:b1:44:53:1a:1c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f713d7df80570bccfb273793f00a5d46c853e49a
Validity
Not Before: Jul 27 05:00:31 2025 GMT
Not After : Jul 28 05:00:31 2025 GMT
Subject: CN=70eb2c2a97047e5757aa5d1803fe769c86eeaf0f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e1:94:b2:ee:66:71:ac:07:3e:47:5a:38:66:f2:
d9:6b:c1:0d:fb:a5:42:d2:47:77:47:74:c2:7b:eb:
86:9c:d0:2b:60:25:40:7a:eb:27:0b:b1:59:fa:28:
3d:9b:fe:f6:80:fb:71:52:ce:a1:0a:15:cb:7b:48:
df:6c:fe:0d:b8:e1:47:2b:30:18:7d:3e:9e:00:50:
d1:b9:ac:dd:8c:26:5f:1b:4a:5d:9f:79:cb:6c:84:
5f:c9:33:d0:cd:a8:9b:82:8d:e5:01:04:3d:6f:ae:
36:a1:4d:2e:05:a6:56:b0:6e:fa:dc:f8:00:2f:2a:
48:3e:fd:26:aa:e8:37:c6:92:44:40:25:6b:41:e0:
5a:b9:f8:fa:bf:d5:73:c8:9b:02:83:69:84:5c:06:
25:78:68:76:f8:80:9e:36:b0:8c:4e:c6:c3:14:53:
f8:d9:dd:0a:05:10:26:4d:56:98:96:74:81:66:dc:
32:b8:c8:c1:80:87:f6:d3:e4:8d:e3:bb:df:78:da:
a7:b1:18:eb:a6:ce:3a:6a:16:be:1f:f2:1b:68:f4:
c7:0f:f9:2c:35:95:8d:23:1d:11:ff:02:9e:58:b7:
36:96:b3:4b:76:56:34:c2:55:ed:30:0f:83:d2:17:
91:5a:9c:8f:89:06:91:17:42:af:ca:65:14:74:3b:
50:6d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
70:EB:2C:2A:97:04:7E:57:57:AA:5D:18:03:FE:76:9C:86:EE:AF:0F
X509v3 Authority Key Identifier:
keyid:F7:13:D7:DF:80:57:0B:CC:FB:27:37:93:F0:0A:5D:46:C8:53:E4:9A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/9xPX34BXC8z7JzeT8ApdRshT5Jo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1a/23a19a-30db-4872-ab73-5287afc10e68/1/9xPX34BXC8z7JzeT8ApdRshT5Jo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1a/23a19a-30db-4872-ab73-5287afc10e68/1/9xPX34BXC8z7JzeT8ApdRshT5Jo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
28:8d:d7:b1:82:42:b6:20:0b:dc:50:59:a5:28:9e:a1:5e:2f:
64:35:91:8e:09:0d:00:bf:37:62:d3:5f:74:f7:31:bd:e6:86:
02:b9:b4:87:6c:93:e1:ea:e4:c0:00:29:75:62:ef:15:46:7d:
8e:62:df:fe:72:75:f7:49:b1:c6:4e:42:6f:1f:2d:e0:82:03:
32:56:13:7d:41:8f:d4:e2:4b:8d:8f:f7:fc:6f:dd:25:08:1b:
4c:fb:c2:8a:15:28:18:70:3b:34:06:04:5f:22:d4:d4:85:cf:
36:0b:af:43:8f:45:07:6a:19:53:5c:49:8d:60:8b:a9:c2:17:
58:0a:d8:57:fd:24:77:d8:79:3c:72:52:5e:2e:9f:81:5c:9c:
05:87:b2:e3:96:cf:64:1d:49:85:46:b1:3f:de:a4:8f:44:fd:
cc:4e:a5:4c:96:c7:10:c4:06:9d:ec:48:57:a0:57:ba:83:c1:
6b:9f:c5:cb:12:69:a7:4b:ba:54:db:92:7d:80:5e:2e:cd:06:
fb:f5:59:5c:3f:4a:1a:29:e1:79:0d:16:be:aa:da:fe:c8:81:
fc:33:ba:ae:b8:88:e7:fe:60:36:f6:fb:d3:b9:de:95:92:7d:
7a:ce:d2:7b:8b:63:a1:64:5a:81:7b:71:7f:88:d1:5f:09:ff:
dd:20:d2:19
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jul 27 13:13:31 2025 by rpki-client