Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6f/3c4a64-4b35-41d2-82a5-f30303f3f2f5/1/mfSXPlJLCHF1gld2MNMxk-U7Z8k.mft
File: mfSXPlJLCHF1gld2MNMxk-U7Z8k.mft (raw, json)
Hash identifier: /JU4kyS8usV5xZXAM/BwimJrzzXOGUaAUZqNPAMBCNY=
Subject key identifier: B2:6C:10:A6:DE:4F:3E:C2:15:D5:7C:15:15:64:E6:E0:00:87:89:CA
Authority key identifier: 99:F4:97:3E:52:4B:08:71:75:82:57:76:30:D3:31:93:E5:3B:67:C9
Certificate issuer: /CN=99f4973e524b08717582577630d33193e53b67c9
Certificate serial: 0199221E7EC2862EF79340719BE439082F1D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/mfSXPlJLCHF1gld2MNMxk-U7Z8k.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6f/3c4a64-4b35-41d2-82a5-f30303f3f2f5/1/mfSXPlJLCHF1gld2MNMxk-U7Z8k.mft
Manifest number: 0523
Signing time: Sun 07 Sep 2025 03:00:47 +0000
Manifest this update: Sun 07 Sep 2025 03:00:47 +0000
Manifest next update: Mon 08 Sep 2025 03:00:47 +0000
Files and hashes: 1: mfSXPlJLCHF1gld2MNMxk-U7Z8k.crl (hash: 79gS/KN4suFAxFuRDDllgFL+qo9B8p0T0KtDQ4cDHss=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/6f/3c4a64-4b35-41d2-82a5-f30303f3f2f5/1/mfSXPlJLCHF1gld2MNMxk-U7Z8k.crl
rsync://rpki.ripe.net/repository/DEFAULT/6f/3c4a64-4b35-41d2-82a5-f30303f3f2f5/1/mfSXPlJLCHF1gld2MNMxk-U7Z8k.mft
rsync://rpki.ripe.net/repository/DEFAULT/mfSXPlJLCHF1gld2MNMxk-U7Z8k.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 08 Sep 2025 03:00:47 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:22:1e:7e:c2:86:2e:f7:93:40:71:9b:e4:39:08:2f:1d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=99f4973e524b08717582577630d33193e53b67c9
Validity
Not Before: Sep 7 03:00:47 2025 GMT
Not After : Sep 8 03:00:47 2025 GMT
Subject: CN=b26c10a6de4f3ec215d57c151564e6e0008789ca
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:dc:54:8e:35:16:2c:61:0a:43:19:14:6f:ce:
1c:fe:5a:aa:ef:7f:5f:f7:82:dd:fb:aa:92:6c:f1:
5c:d8:68:06:29:a4:b5:82:e6:12:eb:5f:57:8a:a4:
72:eb:31:df:b5:ed:23:70:4d:16:05:12:49:ad:a6:
07:c4:ad:20:c0:11:2c:19:44:a7:77:f8:c7:1d:13:
e3:be:90:0f:68:be:bf:dc:be:5a:b6:18:df:a6:f4:
5c:3f:f6:92:61:39:8b:3c:ba:6c:66:d0:8a:c5:17:
cc:ca:28:fe:58:17:f6:7e:2f:95:88:5e:94:ed:47:
a6:7a:b4:0b:0e:9a:52:25:c7:78:24:6c:4c:44:44:
9d:fd:22:af:ee:a1:7e:18:a0:35:61:72:2c:00:6f:
80:44:12:bd:7e:db:28:76:e1:68:73:c5:54:8d:fc:
6f:de:8f:b4:9b:c3:cc:23:04:32:f4:58:e6:4b:82:
8e:9a:8a:a1:b1:a3:dd:93:90:fc:da:7f:1d:d5:35:
90:ee:3a:43:c7:08:82:c9:57:1d:7f:1a:fc:87:d2:
d4:94:c4:ce:03:60:e4:1d:e2:e8:90:e9:9e:9b:75:
5f:79:86:5e:46:9f:cf:a2:47:9f:00:d0:1b:68:e9:
af:d4:31:41:13:6c:c5:c1:dc:9c:0b:85:1d:ed:ba:
e5:05
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B2:6C:10:A6:DE:4F:3E:C2:15:D5:7C:15:15:64:E6:E0:00:87:89:CA
X509v3 Authority Key Identifier:
keyid:99:F4:97:3E:52:4B:08:71:75:82:57:76:30:D3:31:93:E5:3B:67:C9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/mfSXPlJLCHF1gld2MNMxk-U7Z8k.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6f/3c4a64-4b35-41d2-82a5-f30303f3f2f5/1/mfSXPlJLCHF1gld2MNMxk-U7Z8k.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6f/3c4a64-4b35-41d2-82a5-f30303f3f2f5/1/mfSXPlJLCHF1gld2MNMxk-U7Z8k.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
c1:29:c0:85:0c:f9:14:92:e8:93:4e:71:ec:32:7e:46:7d:f3:
83:68:af:21:f6:36:b6:cb:cf:43:15:52:32:bd:2f:c4:41:4b:
06:9e:f7:85:4f:06:25:90:c6:05:31:43:9e:a4:17:f1:8c:ca:
bc:2d:b6:27:4b:5e:ac:80:e3:ff:2c:42:93:cd:cf:c0:c6:22:
e9:75:f6:97:5f:87:e6:d4:17:e7:a2:c9:ab:17:f1:a2:12:67:
6f:a2:4b:15:86:06:9f:79:c5:20:29:fa:1a:e1:87:28:7b:47:
1b:7d:72:d0:49:51:e4:52:3d:21:cb:ed:f5:76:ea:fb:8f:c0:
ea:b3:f5:76:ec:0f:ca:d2:be:ee:9e:16:1a:d6:a4:ea:18:ea:
0a:c2:bf:93:b4:b3:04:d4:d0:91:ce:90:35:ba:c1:c7:7e:5e:
2b:bd:58:58:9b:35:76:f0:6b:d0:71:2f:f7:a6:a4:5e:0b:23:
32:40:fb:a8:6e:ef:65:a6:54:5c:73:27:53:a5:86:f3:f2:3c:
63:81:d9:ef:2f:55:2e:8f:40:62:14:27:d6:5f:40:5b:81:42:
0f:37:f8:6a:6d:3c:b5:e6:8f:36:2c:1c:36:1e:91:67:59:a0:
b5:41:2c:d4:cb:4e:07:6e:45:b7:8e:6a:5c:08:1b:9f:e0:3d:
5d:68:93:2d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Sep 7 12:36:50 2025 by rpki-client