Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/04/6e6dd8-1bca-4630-9574-a597ee637db4/1/XOackdRTOWv6Fm8FG_jwbAOghcs.mft
File: XOackdRTOWv6Fm8FG_jwbAOghcs.mft (raw, json)
Hash identifier: MhG4OfbIM8uf7oSBTvb4Za491/jVohdnIjB/ljauoUg=
Subject key identifier: 01:BE:99:27:EE:2C:2C:05:8A:AD:42:BC:28:35:47:86:4E:93:3D:98
Authority key identifier: 5C:E6:9C:91:D4:53:39:6B:FA:16:6F:05:1B:F8:F0:6C:03:A0:85:CB
Certificate issuer: /CN=5ce69c91d453396bfa166f051bf8f06c03a085cb
Certificate serial: 019923A005509441AAC203F85567C53835EA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XOackdRTOWv6Fm8FG_jwbAOghcs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/04/6e6dd8-1bca-4630-9574-a597ee637db4/1/XOackdRTOWv6Fm8FG_jwbAOghcs.mft
Manifest number: 0B7E
Signing time: Sun 07 Sep 2025 10:01:53 +0000
Manifest this update: Sun 07 Sep 2025 10:01:53 +0000
Manifest next update: Mon 08 Sep 2025 10:01:53 +0000
Files and hashes: 1: XOackdRTOWv6Fm8FG_jwbAOghcs.crl (hash: a6EN0mi6G6nryTygl67vIciUcCj5GaQfY77gg6DyrOU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/04/6e6dd8-1bca-4630-9574-a597ee637db4/1/XOackdRTOWv6Fm8FG_jwbAOghcs.crl
rsync://rpki.ripe.net/repository/DEFAULT/04/6e6dd8-1bca-4630-9574-a597ee637db4/1/XOackdRTOWv6Fm8FG_jwbAOghcs.mft
rsync://rpki.ripe.net/repository/DEFAULT/XOackdRTOWv6Fm8FG_jwbAOghcs.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 08 Sep 2025 07:00:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:23:a0:05:50:94:41:aa:c2:03:f8:55:67:c5:38:35:ea
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5ce69c91d453396bfa166f051bf8f06c03a085cb
Validity
Not Before: Sep 7 10:01:53 2025 GMT
Not After : Sep 8 10:01:53 2025 GMT
Subject: CN=01be9927ee2c2c058aad42bc283547864e933d98
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:60:1c:98:8a:7e:d4:53:99:33:f4:22:ad:bc:
94:e5:49:81:a7:ec:41:cc:0f:05:7a:9d:7b:f2:b6:
df:f2:ab:b6:3f:6c:08:e3:27:3a:25:ee:d6:12:f6:
24:01:c0:22:30:8a:cf:3e:4b:4e:97:b1:d5:06:55:
a1:89:51:f8:c1:b3:75:1b:67:e1:6c:a9:4f:4f:af:
4e:99:d9:c4:79:bb:1b:bd:e8:fc:a3:2f:bf:bb:2a:
98:19:f6:41:fc:b8:6b:fa:62:a4:e5:8c:a1:da:6e:
76:e1:b4:19:57:3e:2b:7f:d6:b4:75:7d:5d:26:f3:
d0:4c:0d:af:8c:9d:74:7c:2d:e4:f3:e9:c1:d9:8f:
01:ab:ac:db:99:75:69:cd:3c:97:e8:0d:41:d8:1a:
6c:14:69:bf:8a:2c:3f:70:f7:b8:61:9c:2e:61:89:
e7:e9:e7:42:34:d9:5e:5d:8d:db:98:a3:6a:15:36:
60:c2:4f:d6:6a:c2:88:81:f3:8a:a3:df:c8:32:ba:
1e:4b:59:ea:e0:20:53:7a:79:72:d8:49:84:02:0b:
1b:22:0c:d5:15:19:ba:76:11:8d:34:1d:3e:84:e6:
45:34:f4:1f:4d:aa:d3:20:03:62:35:a8:95:75:8c:
65:6d:7e:1a:56:9b:5a:b9:08:24:61:94:43:ad:65:
14:f1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
01:BE:99:27:EE:2C:2C:05:8A:AD:42:BC:28:35:47:86:4E:93:3D:98
X509v3 Authority Key Identifier:
keyid:5C:E6:9C:91:D4:53:39:6B:FA:16:6F:05:1B:F8:F0:6C:03:A0:85:CB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XOackdRTOWv6Fm8FG_jwbAOghcs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/04/6e6dd8-1bca-4630-9574-a597ee637db4/1/XOackdRTOWv6Fm8FG_jwbAOghcs.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/04/6e6dd8-1bca-4630-9574-a597ee637db4/1/XOackdRTOWv6Fm8FG_jwbAOghcs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
52:a3:18:a7:90:c8:fe:a7:23:00:34:9e:9b:91:38:5b:ef:9c:
9c:25:f9:6e:fd:ff:e4:a6:a5:1d:20:72:0c:b7:a1:c1:3d:d8:
fc:f9:50:43:c7:5e:d6:a1:41:b4:cb:b5:bc:37:69:6c:70:cc:
b2:34:f0:fd:0b:50:d0:b2:21:e4:6d:f9:ac:23:16:99:b8:ae:
98:45:5d:fa:06:35:58:b7:f0:41:34:78:1e:22:bc:be:69:0b:
c5:f3:08:4c:52:17:66:08:26:e3:a4:f8:62:ac:4a:d4:cf:fa:
7c:b2:6d:dc:9b:c3:49:b8:63:8b:bd:74:a8:b2:fb:e1:fc:28:
0f:66:a4:1b:54:14:4a:64:50:ca:de:13:e4:0a:21:0e:eb:a2:
c8:36:40:6c:9e:ea:da:90:fa:11:05:b8:da:12:15:ac:12:a6:
bd:aa:6f:c7:f6:39:25:9f:34:af:68:94:36:18:30:d9:88:05:
fd:0f:c1:c4:b0:97:63:b6:39:a9:57:d4:02:56:2f:15:92:f8:
74:10:30:cd:cd:1c:58:de:58:5c:e9:87:75:a6:3b:4a:76:bd:
06:83:a9:86:61:63:55:3a:60:3c:2f:ee:32:02:85:62:63:32:
fa:ed:19:fe:61:02:35:a7:82:32:99:b3:bb:97:32:5c:62:f5:
57:75:44:3f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Sep 7 14:47:35 2025 by rpki-client