Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/50/674496-97bd-4eb0-a886-82119978d6bb/1/XkLDVhL0WvQRA1IK8nYc2qUeOqQ.mft
File: XkLDVhL0WvQRA1IK8nYc2qUeOqQ.mft (raw, json)
Hash identifier: XBJldGkqIszd8wAHhdAAr12KhYJTv0CPHgHJTr4tED0=
Subject key identifier: D1:E1:FE:70:4B:AA:17:11:4B:1F:F4:F5:71:CF:69:94:ED:CB:C1:4B
Authority key identifier: 5E:42:C3:56:12:F4:5A:F4:11:03:52:0A:F2:76:1C:DA:A5:1E:3A:A4
Certificate issuer: /CN=5e42c35612f45af41103520af2761cdaa51e3aa4
Certificate serial: 0199221F65DFDABD0B974EBF55AF78D38B33
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XkLDVhL0WvQRA1IK8nYc2qUeOqQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/50/674496-97bd-4eb0-a886-82119978d6bb/1/XkLDVhL0WvQRA1IK8nYc2qUeOqQ.mft
Manifest number: 1570
Signing time: Sun 07 Sep 2025 03:01:46 +0000
Manifest this update: Sun 07 Sep 2025 03:01:46 +0000
Manifest next update: Mon 08 Sep 2025 03:01:46 +0000
Files and hashes: 1: XkLDVhL0WvQRA1IK8nYc2qUeOqQ.crl (hash: lJ3ZEuJEvD9W5P384PPxGgqDgfJUG7aWhA5rSCLGai4=)
2: xyAqUo1cBCxwcVbYVeKIYjCComY.roa (hash: 5YKuscwS6gvAjWMFAp+aYRLvaxsng69DrIJ3z9uUMo8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/50/674496-97bd-4eb0-a886-82119978d6bb/1/XkLDVhL0WvQRA1IK8nYc2qUeOqQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/50/674496-97bd-4eb0-a886-82119978d6bb/1/XkLDVhL0WvQRA1IK8nYc2qUeOqQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/XkLDVhL0WvQRA1IK8nYc2qUeOqQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 08 Sep 2025 03:01:46 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:22:1f:65:df:da:bd:0b:97:4e:bf:55:af:78:d3:8b:33
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5e42c35612f45af41103520af2761cdaa51e3aa4
Validity
Not Before: Sep 7 03:01:46 2025 GMT
Not After : Sep 8 03:01:46 2025 GMT
Subject: CN=d1e1fe704baa17114b1ff4f571cf6994edcbc14b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:20:0a:31:e4:57:91:f8:3d:27:db:12:cf:2d:
cd:18:e3:2c:ee:6f:6f:ee:73:f0:c0:f8:61:f4:18:
0b:be:e7:f6:93:9c:cd:fc:07:62:f3:40:71:6f:17:
58:29:56:21:09:0e:20:58:f4:c1:23:f5:a7:1e:b4:
26:20:0a:a6:90:4d:a9:58:65:08:cc:e5:f7:2c:cb:
ac:c9:7a:c5:54:4a:1c:9d:36:2b:04:5b:99:17:09:
41:fd:ad:20:6a:39:44:bb:33:a2:3c:99:32:68:0c:
9b:18:2c:8a:b2:2c:35:64:93:a9:f5:52:fe:c0:ea:
3c:d0:25:88:a9:87:f4:fc:cb:c7:3e:67:6e:9f:5e:
73:c4:e9:70:1c:e6:09:7d:f0:85:3e:79:eb:40:a4:
64:44:b3:88:95:22:b9:38:89:f2:79:15:bf:c0:11:
34:3b:98:51:4d:9f:cc:3c:be:c2:c1:9f:25:ec:c9:
87:b2:42:34:12:7a:f2:0b:58:23:09:92:91:3d:18:
1b:d4:8e:d5:bd:f3:fe:01:a4:fb:16:a1:83:04:47:
77:b1:7f:66:8c:6b:03:d1:85:f4:97:65:8c:88:22:
2c:fe:ea:72:bd:61:58:4d:e4:62:ff:7f:2d:ec:84:
7f:61:15:f5:ae:97:4f:17:76:db:7a:e8:11:49:fa:
2a:a3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D1:E1:FE:70:4B:AA:17:11:4B:1F:F4:F5:71:CF:69:94:ED:CB:C1:4B
X509v3 Authority Key Identifier:
keyid:5E:42:C3:56:12:F4:5A:F4:11:03:52:0A:F2:76:1C:DA:A5:1E:3A:A4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XkLDVhL0WvQRA1IK8nYc2qUeOqQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/50/674496-97bd-4eb0-a886-82119978d6bb/1/XkLDVhL0WvQRA1IK8nYc2qUeOqQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/50/674496-97bd-4eb0-a886-82119978d6bb/1/XkLDVhL0WvQRA1IK8nYc2qUeOqQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
4d:71:f6:6e:f5:cc:45:41:6a:f6:00:e3:ea:f5:28:a0:7d:27:
16:00:ab:df:f6:d7:a6:77:3a:31:ab:f6:51:38:c9:63:27:53:
f7:cc:2b:3e:47:75:80:8a:f2:43:53:60:4f:6a:71:0c:fd:4f:
79:06:af:94:a4:21:af:47:3e:4e:c6:d0:04:8f:05:1a:bc:17:
2b:47:fe:0d:0f:c8:12:0c:44:39:8f:1f:64:be:91:02:5f:5f:
64:e5:97:1a:ef:0a:70:08:84:4d:cb:de:e9:c3:d6:7e:dc:a0:
5c:95:c1:b5:ea:ef:0e:c2:f9:55:8d:a5:e0:80:f5:eb:a8:b3:
de:d6:a7:2d:01:6a:9a:0b:6a:06:cc:69:d1:ad:17:cb:30:ce:
2c:3b:84:ec:13:40:b5:fe:12:d9:2b:04:32:e5:e5:b6:2a:ca:
b6:52:96:6e:0f:87:41:e7:9c:37:9a:af:05:94:14:36:0e:b4:
5c:66:15:df:df:f3:fc:a5:43:11:a1:cf:29:a2:a3:31:71:cd:
f8:1b:c4:66:5e:80:e9:aa:a0:d9:d3:8b:7d:a0:1d:79:c3:62:
89:ce:d5:96:3e:71:de:87:62:7e:14:d8:9a:b7:bd:ed:76:55:
ff:b8:fb:96:26:5e:51:6f:14:07:6d:6a:c5:36:0a:d2:63:77:
09:9e:d9:15
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Sep 7 10:12:02 2025 by rpki-client