Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/13/525707-1a12-4138-ae46-9f7e8a6122a3/1/x4tS3f0L5WHUEMqIRvx5fiKYs8w.mft
File: x4tS3f0L5WHUEMqIRvx5fiKYs8w.mft (raw, json)
Hash identifier: EU6hTTf2Vf4ChrzGLMT0tXcxWhyJX3xxtx/Eq+3zDzY=
Subject key identifier: CC:FD:54:BF:C0:C3:D0:E3:D8:40:13:39:B4:30:06:2D:35:99:37:17
Authority key identifier: C7:8B:52:DD:FD:0B:E5:61:D4:10:CA:88:46:FC:79:7E:22:98:B3:CC
Certificate issuer: /CN=c78b52ddfd0be561d410ca8846fc797e2298b3cc
Certificate serial: 019847E5089A0E313175CA937274E3341088
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/x4tS3f0L5WHUEMqIRvx5fiKYs8w.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/13/525707-1a12-4138-ae46-9f7e8a6122a3/1/x4tS3f0L5WHUEMqIRvx5fiKYs8w.mft
Manifest number: 12DE
Signing time: Sat 26 Jul 2025 18:00:48 +0000
Manifest this update: Sat 26 Jul 2025 18:00:48 +0000
Manifest next update: Sun 27 Jul 2025 18:00:48 +0000
Files and hashes: 1: MnEhxi_woQM3cXv5W6rDC8mvyKY.roa (hash: kYcuDCyVLUhxBSbVQtzSrwd5iX/KUoxvsuaVTI7bR60=)
2: x4tS3f0L5WHUEMqIRvx5fiKYs8w.crl (hash: ZAM834k/EB7C/bgzRiJoeG4UuNr8O2R0d9yBwfslXoU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/13/525707-1a12-4138-ae46-9f7e8a6122a3/1/x4tS3f0L5WHUEMqIRvx5fiKYs8w.crl
rsync://rpki.ripe.net/repository/DEFAULT/13/525707-1a12-4138-ae46-9f7e8a6122a3/1/x4tS3f0L5WHUEMqIRvx5fiKYs8w.mft
rsync://rpki.ripe.net/repository/DEFAULT/x4tS3f0L5WHUEMqIRvx5fiKYs8w.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 27 Jul 2025 18:00:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:47:e5:08:9a:0e:31:31:75:ca:93:72:74:e3:34:10:88
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c78b52ddfd0be561d410ca8846fc797e2298b3cc
Validity
Not Before: Jul 26 18:00:48 2025 GMT
Not After : Jul 27 18:00:48 2025 GMT
Subject: CN=ccfd54bfc0c3d0e3d8401339b430062d35993717
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:be:cf:1b:22:34:86:7c:a4:7f:56:11:11:2b:
d9:b3:27:55:33:6c:f0:88:33:40:e2:22:44:12:02:
bf:66:b9:50:9f:e4:e8:9d:fe:0f:56:1b:2e:df:62:
1e:65:b6:94:f3:0a:d0:00:0b:12:09:79:f8:fc:76:
bb:33:08:40:e1:58:56:31:9f:d2:58:6e:47:93:66:
93:c9:c5:53:1f:9d:88:b8:6a:ba:d8:2d:9e:70:af:
a6:97:21:17:dd:62:b2:ed:23:bf:ae:3f:94:5d:a0:
2d:e4:0c:62:66:37:91:b8:e0:e6:e9:b3:17:c5:9c:
1a:66:d8:9a:4b:54:41:be:cf:f8:ab:90:c3:76:92:
d9:53:3a:0a:37:87:18:4b:da:b3:ef:03:ab:40:c1:
dd:c5:a6:7a:19:13:c3:c4:08:e2:4a:b8:52:a6:c0:
54:02:3b:2d:d9:91:3c:21:17:4c:ab:65:bc:c1:ba:
4c:c4:fe:c2:45:e3:31:08:1b:cf:f3:31:7b:59:e8:
10:80:60:7c:fd:2f:30:fc:12:5e:6f:bc:e0:de:c3:
80:11:3f:fc:9d:67:80:ff:7e:7e:b0:e7:da:92:31:
2b:0f:3e:b9:e0:2a:8a:57:7b:31:10:d0:36:35:14:
15:e3:4e:c0:46:22:3a:6d:47:cf:c3:85:94:77:a9:
ce:dd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CC:FD:54:BF:C0:C3:D0:E3:D8:40:13:39:B4:30:06:2D:35:99:37:17
X509v3 Authority Key Identifier:
keyid:C7:8B:52:DD:FD:0B:E5:61:D4:10:CA:88:46:FC:79:7E:22:98:B3:CC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/x4tS3f0L5WHUEMqIRvx5fiKYs8w.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/13/525707-1a12-4138-ae46-9f7e8a6122a3/1/x4tS3f0L5WHUEMqIRvx5fiKYs8w.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/13/525707-1a12-4138-ae46-9f7e8a6122a3/1/x4tS3f0L5WHUEMqIRvx5fiKYs8w.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
7a:bc:0e:06:ea:a0:c9:f2:0d:47:52:79:ba:5e:53:68:ab:07:
ce:10:79:b6:47:d8:61:f7:9f:85:da:0a:02:b8:38:00:ae:22:
46:90:10:b9:4f:73:85:78:6a:34:a0:9c:14:33:23:82:26:f5:
25:d7:bd:4e:7c:ad:47:65:97:15:18:e9:2e:6b:f3:81:eb:db:
2a:01:16:98:ea:8a:42:e8:af:bb:03:5a:c8:3f:8b:97:fe:28:
44:9b:2c:4c:b9:5e:0d:1f:d8:4a:6c:42:36:77:9a:d5:f4:02:
d0:9d:f6:f6:62:f3:be:fd:7e:10:42:2c:c2:67:88:d1:cb:a7:
b4:1f:b4:7b:36:8b:a7:5d:c9:a0:50:8b:be:06:96:dc:5d:f4:
48:40:d4:f5:1e:35:f5:d4:3e:95:6d:40:46:5e:31:45:20:8d:
21:d5:51:49:0d:d5:39:88:96:df:c7:84:ee:e0:b8:3b:23:34:
dd:0c:82:c9:ac:dc:a1:99:08:e5:37:a8:b5:c4:a7:1b:b0:5e:
cb:7b:0b:79:f9:59:a5:90:11:c4:9c:c7:9b:a2:20:e4:0a:4a:
e4:58:5a:a0:3e:8d:c8:8c:c8:ea:f7:bf:ac:34:7d:2d:5d:d3:
11:3c:48:a3:5a:0f:0f:5f:5e:6d:60:78:f6:29:68:c7:a6:41:
9b:3a:c1:27
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jul 27 03:56:19 2025 by rpki-client