Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5d/af54e8-bd63-427d-8cc8-f4ecebbb1ec2/1/1-XMgliXioD3e7PkbtIBUjlcp1Hk.mft
File: 1-XMgliXioD3e7PkbtIBUjlcp1Hk.mft (raw, json)
Hash identifier: Hvb6Xhox851UuGhazs0FdN5AtUNeYYlR0cpJ1L2pppk=
Subject key identifier: 80:48:FC:02:71:AB:15:85:CB:DE:F5:0C:C9:08:02:C4:29:2F:02:ED
Authority key identifier: F9:73:20:96:25:E2:A0:3D:DE:EC:F9:1B:B4:80:54:8E:57:29:D4:79
Certificate issuer: /CN=f973209625e2a03ddeecf91bb480548e5729d479
Certificate serial: 0199240D03F49D42A56979A3C97F8D5D86D6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1-XMgliXioD3e7PkbtIBUjlcp1Hk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5d/af54e8-bd63-427d-8cc8-f4ecebbb1ec2/1/1-XMgliXioD3e7PkbtIBUjlcp1Hk.mft
Manifest number: 1670
Signing time: Sun 07 Sep 2025 12:00:56 +0000
Manifest this update: Sun 07 Sep 2025 12:00:56 +0000
Manifest next update: Mon 08 Sep 2025 12:00:56 +0000
Files and hashes: 1: 1-XMgliXioD3e7PkbtIBUjlcp1Hk.crl (hash: cGN0aSqRqhLWz2WWyfNc/4RlJpEzDKFtxY5gBWATx8k=)
2: l3JzatKnSb-qTPQjQ9VOzx8MD7g.roa (hash: 40hMQclA6AyvTYjGgbc8RhGg1fGmdxgMO6uT9Avjx2U=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5d/af54e8-bd63-427d-8cc8-f4ecebbb1ec2/1/1-XMgliXioD3e7PkbtIBUjlcp1Hk.crl
rsync://rpki.ripe.net/repository/DEFAULT/5d/af54e8-bd63-427d-8cc8-f4ecebbb1ec2/1/1-XMgliXioD3e7PkbtIBUjlcp1Hk.mft
rsync://rpki.ripe.net/repository/DEFAULT/1-XMgliXioD3e7PkbtIBUjlcp1Hk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 08 Sep 2025 07:00:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:24:0d:03:f4:9d:42:a5:69:79:a3:c9:7f:8d:5d:86:d6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f973209625e2a03ddeecf91bb480548e5729d479
Validity
Not Before: Sep 7 12:00:56 2025 GMT
Not After : Sep 8 12:00:56 2025 GMT
Subject: CN=8048fc0271ab1585cbdef50cc90802c4292f02ed
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e9:e6:80:49:5b:ec:64:ed:57:94:04:2d:ba:c2:
95:67:6c:2b:d1:6e:28:e8:a4:b9:c5:fc:31:3d:52:
43:2f:ff:77:1d:f2:29:c7:92:23:9e:68:8d:7b:af:
38:0d:85:45:89:bc:28:0a:6c:10:fd:8d:c5:19:15:
3d:77:58:61:c7:00:3b:8b:3f:b3:6a:f6:3d:7e:9b:
4b:e5:19:61:fe:fc:21:e2:99:8a:b3:75:ed:66:71:
e0:33:92:f4:e0:92:42:76:04:f7:a3:4e:f8:f5:57:
d9:4d:2a:03:fc:06:08:2d:2a:5f:82:a3:14:4d:0d:
f5:82:c9:4d:2b:15:98:9c:59:5e:96:c8:60:9b:c1:
37:e4:55:97:8f:c4:00:45:02:3c:22:d0:e9:1d:df:
5f:53:8c:16:31:eb:5f:7b:29:25:cd:9e:e5:ba:2a:
11:f6:24:0f:75:25:27:62:2e:4b:a9:42:1a:31:71:
56:d2:77:87:dd:54:d7:d9:83:38:30:19:3d:9f:2f:
37:d6:f5:6c:aa:cf:c6:22:f1:b8:04:4f:ad:e5:79:
6a:25:fe:84:a5:34:06:9e:3e:65:1a:53:cd:a3:e4:
cc:7f:44:ee:e6:2a:ed:cc:90:e5:c9:69:01:18:7a:
97:9d:39:95:15:f8:bd:dd:0a:07:ab:0e:35:b3:33:
2d:03
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
80:48:FC:02:71:AB:15:85:CB:DE:F5:0C:C9:08:02:C4:29:2F:02:ED
X509v3 Authority Key Identifier:
keyid:F9:73:20:96:25:E2:A0:3D:DE:EC:F9:1B:B4:80:54:8E:57:29:D4:79
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1-XMgliXioD3e7PkbtIBUjlcp1Hk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5d/af54e8-bd63-427d-8cc8-f4ecebbb1ec2/1/1-XMgliXioD3e7PkbtIBUjlcp1Hk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5d/af54e8-bd63-427d-8cc8-f4ecebbb1ec2/1/1-XMgliXioD3e7PkbtIBUjlcp1Hk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
87:e5:c6:23:23:89:8d:fa:30:45:03:e6:12:37:41:1d:a3:89:
bf:73:eb:e1:4f:e4:8b:ce:cc:0f:cc:c7:19:96:cd:36:c6:ad:
4f:23:4b:9c:8c:70:1b:a0:c8:d1:fc:3e:36:88:1f:f8:36:60:
79:62:58:b7:8d:25:5f:e1:b1:91:e4:db:94:a8:27:09:ca:9f:
e6:11:9e:d1:4d:fc:4a:4c:2c:d3:38:e7:b1:b6:ff:9f:e9:31:
d0:db:92:95:56:ee:1d:ef:d3:8f:32:59:66:87:4d:56:96:cf:
b6:ff:bb:4e:77:2a:cb:2c:42:50:ca:f8:d5:69:ca:97:68:cf:
7d:3d:e2:88:35:b7:a4:9b:75:83:a6:5e:59:81:1b:43:82:74:
e7:ba:d8:0f:e8:98:9a:87:be:e1:a1:6f:51:c6:2a:d7:e0:75:
1a:b6:da:24:4d:d3:53:ac:97:df:07:37:e5:58:3b:6d:21:cc:
c4:a1:bb:a7:5f:a5:55:4d:33:75:70:e5:e4:00:d3:69:c3:2a:
d2:34:ef:a6:7d:1b:35:44:65:ea:2e:62:9b:67:94:ec:fd:6e:
11:10:ad:c9:b0:aa:49:fe:fa:28:de:ea:9a:01:fa:e6:65:75:
69:87:d4:79:7c:29:57:af:d7:d3:0d:6e:0a:ca:5f:fb:72:3a:
ad:f8:4c:f7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Sep 7 13:53:46 2025 by rpki-client