Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1f/50c205-2189-4734-9648-486a8cdddbe8/1/XO56utwc1TZH4rILdg1aXHqxp8w.mft
File: XO56utwc1TZH4rILdg1aXHqxp8w.mft (raw, json)
Hash identifier: a/FtQmyyzorZEmVrcXkKDw3pf3eu9nSfPGm6AaI7atA=
Subject key identifier: 41:B3:0F:7E:5F:13:2F:E7:50:BC:A3:DD:8A:F5:56:19:C4:64:5F:AF
Authority key identifier: 5C:EE:7A:BA:DC:1C:D5:36:47:E2:B2:0B:76:0D:5A:5C:7A:B1:A7:CC
Certificate issuer: /CN=5cee7abadc1cd53647e2b20b760d5a5c7ab1a7cc
Certificate serial: 0199228D1E92D12786244D14F30220257F93
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XO56utwc1TZH4rILdg1aXHqxp8w.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1f/50c205-2189-4734-9648-486a8cdddbe8/1/XO56utwc1TZH4rILdg1aXHqxp8w.mft
Manifest number: 015E
Signing time: Sun 07 Sep 2025 05:01:37 +0000
Manifest this update: Sun 07 Sep 2025 05:01:37 +0000
Manifest next update: Mon 08 Sep 2025 05:01:37 +0000
Files and hashes: 1: XO56utwc1TZH4rILdg1aXHqxp8w.crl (hash: Dn+Os3RrfVYGWG5C1sgkR4XHnlBN7UBQ8fQmPg1nDkw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/1f/50c205-2189-4734-9648-486a8cdddbe8/1/XO56utwc1TZH4rILdg1aXHqxp8w.crl
rsync://rpki.ripe.net/repository/DEFAULT/1f/50c205-2189-4734-9648-486a8cdddbe8/1/XO56utwc1TZH4rILdg1aXHqxp8w.mft
rsync://rpki.ripe.net/repository/DEFAULT/XO56utwc1TZH4rILdg1aXHqxp8w.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 08 Sep 2025 05:00:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:22:8d:1e:92:d1:27:86:24:4d:14:f3:02:20:25:7f:93
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5cee7abadc1cd53647e2b20b760d5a5c7ab1a7cc
Validity
Not Before: Sep 7 05:01:37 2025 GMT
Not After : Sep 8 05:01:37 2025 GMT
Subject: CN=41b30f7e5f132fe750bca3dd8af55619c4645faf
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f3:4a:c7:60:00:14:39:0b:ff:af:65:5c:39:e0:
df:58:46:3b:ac:87:48:02:04:92:70:55:2f:f0:55:
ab:df:d4:9d:5f:cd:8b:3c:95:82:50:96:9a:23:b9:
e1:19:c1:13:7b:ec:07:05:a5:c0:e8:c6:70:50:a3:
87:b7:97:06:f1:f0:c3:fc:59:4b:8d:a2:55:67:a5:
71:95:75:44:63:b8:55:99:28:6a:e8:68:82:7c:be:
b3:ba:7d:fa:e2:6a:4d:24:2a:fc:e0:e7:ca:c2:64:
b3:ae:c7:4b:8e:dc:19:83:7a:5e:39:a9:59:98:72:
7e:ac:63:83:b3:42:df:d9:5c:7b:e4:f8:44:35:9e:
8a:41:07:95:01:9d:ef:a1:18:ee:28:ee:23:e8:1c:
7c:0f:35:40:58:cf:74:12:b1:35:5d:8c:6d:db:07:
8d:92:49:be:33:e7:93:5b:ec:1f:3b:83:eb:9c:a9:
e1:1e:0b:f8:47:e5:16:12:25:ba:d2:27:c5:3f:f7:
a7:3f:16:e8:98:eb:88:c0:d4:bb:b0:93:82:b2:5f:
1a:11:52:db:ee:d9:fe:a5:57:be:cf:43:7e:d8:9e:
b0:ec:49:73:af:88:ce:dc:f8:66:1e:ea:d0:f7:de:
d8:95:b6:79:60:c5:de:fa:91:20:60:79:05:ff:ec:
6f:d7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
41:B3:0F:7E:5F:13:2F:E7:50:BC:A3:DD:8A:F5:56:19:C4:64:5F:AF
X509v3 Authority Key Identifier:
keyid:5C:EE:7A:BA:DC:1C:D5:36:47:E2:B2:0B:76:0D:5A:5C:7A:B1:A7:CC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XO56utwc1TZH4rILdg1aXHqxp8w.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1f/50c205-2189-4734-9648-486a8cdddbe8/1/XO56utwc1TZH4rILdg1aXHqxp8w.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1f/50c205-2189-4734-9648-486a8cdddbe8/1/XO56utwc1TZH4rILdg1aXHqxp8w.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
a5:d0:0f:80:44:88:29:6b:93:36:10:46:5a:aa:61:4b:4d:94:
13:38:9b:9c:ce:09:a8:87:96:7b:2a:cf:b5:d2:3b:db:65:95:
dd:26:f1:91:ce:d5:ac:97:f2:29:b7:34:1a:a8:ff:df:d7:a3:
c2:13:ec:9a:81:43:14:78:3b:d6:4f:f7:3d:27:5d:a3:e8:df:
4c:8e:ea:ff:99:f9:3e:6e:6a:d4:b5:e6:ae:65:7f:be:d7:30:
01:e9:a2:23:97:2c:81:3e:22:4d:76:17:53:73:e5:85:f0:3f:
e8:af:45:7c:95:20:16:ba:f8:18:a8:8b:ef:65:43:d7:81:cb:
e5:6a:45:30:c6:27:d9:aa:a9:32:a5:22:03:2d:92:77:8f:bf:
68:0f:5e:f4:97:2f:5b:53:5b:1d:46:d0:8d:95:e6:27:f8:fd:
06:8f:9a:12:3c:9a:d6:6d:28:87:f5:1c:13:cf:b6:25:58:56:
25:85:1d:b1:32:92:45:67:d5:30:77:b0:21:31:89:7b:d8:ce:
d0:21:d8:cd:de:ce:65:69:19:28:d9:ff:49:28:56:3d:6f:1b:
3c:36:0f:28:2c:cf:1b:3d:e3:bc:d3:e1:ed:32:00:fc:d3:74:
74:a2:3a:67:f0:95:5f:c2:f1:5b:d5:56:01:de:a7:2e:11:9c:
d2:75:8c:0e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Sep 7 11:25:08 2025 by rpki-client