Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/08/6f6b07-2e45-410f-9318-1cbe661a63ff/1/xdGOGh3GVYxNunMe-jJ2nEX1S6A.mft
File: xdGOGh3GVYxNunMe-jJ2nEX1S6A.mft (raw, json)
Hash identifier: OqEkBa0NOPdPm60rXu+6btis29CAJVsEuQ+xQTEbUGY=
Subject key identifier: 13:47:F8:5D:8F:5D:2C:C4:D8:FD:AD:C0:56:5E:C3:AF:1C:33:CA:3E
Authority key identifier: C5:D1:8E:1A:1D:C6:55:8C:4D:BA:73:1E:FA:32:76:9C:45:F5:4B:A0
Certificate issuer: /CN=c5d18e1a1dc6558c4dba731efa32769c45f54ba0
Certificate serial: 0199239EACCB7B9B47A28DFC2CEAB84DF77A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xdGOGh3GVYxNunMe-jJ2nEX1S6A.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/08/6f6b07-2e45-410f-9318-1cbe661a63ff/1/xdGOGh3GVYxNunMe-jJ2nEX1S6A.mft
Manifest number: 166F
Signing time: Sun 07 Sep 2025 10:00:25 +0000
Manifest this update: Sun 07 Sep 2025 10:00:25 +0000
Manifest next update: Mon 08 Sep 2025 10:00:25 +0000
Files and hashes: 1: xdGOGh3GVYxNunMe-jJ2nEX1S6A.crl (hash: ybPyrjLJlV5M9C8aOV6ELxSF53/q4D0Ej8mHVB8ra/8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/08/6f6b07-2e45-410f-9318-1cbe661a63ff/1/xdGOGh3GVYxNunMe-jJ2nEX1S6A.crl
rsync://rpki.ripe.net/repository/DEFAULT/08/6f6b07-2e45-410f-9318-1cbe661a63ff/1/xdGOGh3GVYxNunMe-jJ2nEX1S6A.mft
rsync://rpki.ripe.net/repository/DEFAULT/xdGOGh3GVYxNunMe-jJ2nEX1S6A.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 08 Sep 2025 05:00:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:23:9e:ac:cb:7b:9b:47:a2:8d:fc:2c:ea:b8:4d:f7:7a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c5d18e1a1dc6558c4dba731efa32769c45f54ba0
Validity
Not Before: Sep 7 10:00:25 2025 GMT
Not After : Sep 8 10:00:25 2025 GMT
Subject: CN=1347f85d8f5d2cc4d8fdadc0565ec3af1c33ca3e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ef:0a:70:0b:e6:e7:13:b0:8b:5e:b5:de:a3:cd:
be:35:ee:fb:a4:22:05:b5:9f:5c:02:25:ed:5e:d7:
0d:72:fd:10:af:c8:7b:47:fd:c0:50:77:ca:2d:65:
73:98:8d:9b:20:2b:76:0a:64:aa:ab:ed:71:25:2f:
7b:43:c2:b2:2e:4c:1f:13:26:b1:4b:75:ac:1f:7d:
12:79:cd:dd:71:50:7e:5a:43:58:a8:c9:ca:57:8f:
6d:c9:1c:5e:60:de:d8:f8:9b:59:2a:19:79:a2:77:
f0:17:a2:e2:d7:ce:53:b4:02:13:8d:cb:55:cd:7e:
f9:60:af:64:a9:61:9a:7b:70:8e:b5:ce:1e:53:e5:
c8:02:94:d7:9a:47:36:16:3c:d5:57:2f:f1:ee:02:
dc:eb:b7:85:da:42:63:14:2f:f9:a8:44:d6:10:7a:
3c:bf:ee:bf:db:07:85:24:70:15:70:f2:67:d5:4b:
17:77:30:9e:96:9f:59:a8:be:07:37:58:eb:78:28:
ac:be:9e:ff:48:a7:41:81:93:bd:ec:1d:d0:3e:51:
6b:14:f6:e2:b1:df:82:38:64:0d:f6:27:32:db:29:
56:d9:4b:d9:1b:6e:e1:b6:0a:09:be:93:68:43:4c:
66:72:8a:fd:b5:92:df:f7:57:f6:3e:24:88:58:d9:
17:c3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
13:47:F8:5D:8F:5D:2C:C4:D8:FD:AD:C0:56:5E:C3:AF:1C:33:CA:3E
X509v3 Authority Key Identifier:
keyid:C5:D1:8E:1A:1D:C6:55:8C:4D:BA:73:1E:FA:32:76:9C:45:F5:4B:A0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xdGOGh3GVYxNunMe-jJ2nEX1S6A.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/08/6f6b07-2e45-410f-9318-1cbe661a63ff/1/xdGOGh3GVYxNunMe-jJ2nEX1S6A.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/08/6f6b07-2e45-410f-9318-1cbe661a63ff/1/xdGOGh3GVYxNunMe-jJ2nEX1S6A.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
3e:92:17:5e:44:d0:62:02:58:2e:20:e4:5a:60:ee:ea:0c:68:
b3:3c:ed:20:c3:bb:4a:f8:40:96:73:83:76:25:aa:f1:47:c9:
67:3b:ee:81:c9:41:ee:16:22:4d:92:a0:04:22:a7:9f:60:6d:
09:b9:cf:45:4c:5e:0b:36:41:f9:78:01:10:08:89:a0:41:fd:
74:c0:6c:e5:27:3d:ba:1b:37:20:d0:31:7a:71:41:f1:70:5d:
b1:e0:06:4d:c6:ad:38:3d:88:c2:e7:ea:b7:ad:c9:ff:85:bb:
ee:2d:26:51:c6:9f:71:35:ab:56:19:57:b2:3c:dd:5a:b6:5d:
7a:ad:a4:01:b7:d0:19:69:15:65:6f:5e:c0:e3:4c:91:bd:f2:
ae:c9:bf:e6:7a:44:b7:de:17:ba:37:37:88:fe:f2:3b:cd:97:
94:a8:9f:a5:6f:cf:ae:8d:cc:88:c7:6b:73:1d:2e:32:de:13:
d7:67:9b:69:d7:e8:70:31:87:f5:18:1f:85:c9:ce:70:ea:34:
5f:a1:e3:03:98:40:c1:2e:68:73:10:dd:14:c9:91:55:d8:fd:
b2:9f:0a:da:7a:a8:80:9c:27:03:95:3d:03:7f:64:e2:9b:36:
e9:13:08:73:43:ea:5c:0c:37:2e:ed:13:d4:d0:c9:b6:2e:c1:
d0:70:a3:41
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Sep 7 12:08:28 2025 by rpki-client