Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/79/daf850-f587-44b2-8de4-a8585ff93546/1/ItxuR0PtXMhDAyhSiW7xX0iS7bA.mft
File: ItxuR0PtXMhDAyhSiW7xX0iS7bA.mft (raw, json)
Hash identifier: ryp0/jGfCUrm7E65Imy97KQjmzhudozZLDpW2E4TOUg=
Subject key identifier: 5C:4D:D2:4F:37:6D:CC:18:A9:7D:36:3F:D9:78:9B:D3:CA:1F:7D:C6
Authority key identifier: 22:DC:6E:47:43:ED:5C:C8:43:03:28:52:89:6E:F1:5F:48:92:ED:B0
Certificate issuer: /CN=22dc6e4743ed5cc843032852896ef15f4892edb0
Certificate serial: 019924443C2FE1A085D2FE61B9D96817AB4D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ItxuR0PtXMhDAyhSiW7xX0iS7bA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/79/daf850-f587-44b2-8de4-a8585ff93546/1/ItxuR0PtXMhDAyhSiW7xX0iS7bA.mft
Manifest number: 0C76
Signing time: Sun 07 Sep 2025 13:01:15 +0000
Manifest this update: Sun 07 Sep 2025 13:01:15 +0000
Manifest next update: Mon 08 Sep 2025 13:01:15 +0000
Files and hashes: 1: ItxuR0PtXMhDAyhSiW7xX0iS7bA.crl (hash: z7DxAGjNnNknHYgBfisa6OR/AZnNOQiBFwbtwxxSf70=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/79/daf850-f587-44b2-8de4-a8585ff93546/1/ItxuR0PtXMhDAyhSiW7xX0iS7bA.crl
rsync://rpki.ripe.net/repository/DEFAULT/79/daf850-f587-44b2-8de4-a8585ff93546/1/ItxuR0PtXMhDAyhSiW7xX0iS7bA.mft
rsync://rpki.ripe.net/repository/DEFAULT/ItxuR0PtXMhDAyhSiW7xX0iS7bA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 08 Sep 2025 07:00:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:24:44:3c:2f:e1:a0:85:d2:fe:61:b9:d9:68:17:ab:4d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=22dc6e4743ed5cc843032852896ef15f4892edb0
Validity
Not Before: Sep 7 13:01:15 2025 GMT
Not After : Sep 8 13:01:15 2025 GMT
Subject: CN=5c4dd24f376dcc18a97d363fd9789bd3ca1f7dc6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e5:46:47:62:0a:c8:26:a4:1e:74:54:23:3c:47:
6c:86:fa:59:e0:4f:27:16:e1:f9:eb:2e:b6:7a:6b:
0f:c1:1c:d3:a2:fb:77:9a:d1:f0:a6:c2:f3:55:0d:
b3:f2:20:cd:1b:30:34:ec:b3:9f:34:17:3d:ef:b1:
af:f1:76:75:cd:80:f8:22:2f:8f:3c:b6:84:bf:31:
0f:ff:24:65:4b:e9:6b:cd:fb:f6:76:e1:51:f0:23:
a3:cb:d9:a5:75:01:c8:5d:6e:18:37:3c:9b:b0:ec:
73:44:af:3c:bc:47:1a:6f:8f:be:eb:93:2b:8f:4a:
20:17:d7:f1:d9:ea:66:7b:47:f3:c9:0b:d7:74:5b:
5d:a0:89:b9:fd:35:f1:52:7b:e6:25:b3:46:f2:e9:
30:a5:be:0a:4a:ac:f5:b5:18:bb:c6:8d:7e:ae:55:
89:fc:12:fc:19:da:54:63:7a:23:ba:9f:62:79:fe:
c0:96:25:de:27:f4:10:3b:8a:51:17:15:a3:1e:10:
74:e8:ad:ef:6f:41:e9:e7:97:11:da:c3:62:ea:d0:
10:15:98:ed:61:ed:3e:d7:bd:15:ad:4b:17:34:a5:
58:12:84:cf:7f:2c:b7:d4:a3:c2:97:3c:de:fb:0f:
37:e2:c2:37:94:07:a6:e4:53:20:c2:90:3a:4e:a0:
30:43
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5C:4D:D2:4F:37:6D:CC:18:A9:7D:36:3F:D9:78:9B:D3:CA:1F:7D:C6
X509v3 Authority Key Identifier:
keyid:22:DC:6E:47:43:ED:5C:C8:43:03:28:52:89:6E:F1:5F:48:92:ED:B0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ItxuR0PtXMhDAyhSiW7xX0iS7bA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/79/daf850-f587-44b2-8de4-a8585ff93546/1/ItxuR0PtXMhDAyhSiW7xX0iS7bA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/79/daf850-f587-44b2-8de4-a8585ff93546/1/ItxuR0PtXMhDAyhSiW7xX0iS7bA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
4f:d9:9c:75:f4:62:04:65:24:6d:ef:f2:45:c3:0f:4e:17:18:
58:1e:36:a3:87:28:7b:ac:a3:f0:be:4d:89:7d:35:96:0d:b2:
12:ca:ed:a7:11:09:35:1f:24:a5:08:1b:c6:c4:6a:39:50:a9:
cb:b8:52:11:62:42:b6:93:f2:1b:a0:ea:7d:d4:95:4b:b0:8d:
87:d6:42:65:75:4d:14:56:b6:f2:cf:9f:b5:31:5c:9b:6c:37:
da:5e:0d:ad:db:2b:6d:3e:9a:43:76:2e:f9:28:8c:a7:b5:9a:
5b:95:b6:8b:d0:fc:23:55:3f:d9:65:ca:ab:98:63:e4:60:bb:
89:7c:97:c1:f7:16:b6:d3:ea:f3:5e:25:e2:fc:96:52:3a:76:
5a:12:be:36:af:dd:27:82:ff:0e:73:9a:1e:92:c0:98:f9:31:
6b:cc:be:85:c5:d3:83:ff:71:fb:67:32:b6:ed:d3:e6:89:b1:
68:d4:f1:63:4d:a9:81:88:f8:56:87:8d:9f:64:c4:0c:e0:58:
64:12:0a:1e:8f:17:d3:c0:42:89:22:12:2f:fa:fe:91:fd:37:
dd:4f:a0:db:62:84:1f:fc:ff:87:91:e6:0b:6d:56:c4:f0:77:
88:68:04:50:cf:3f:aa:df:a0:ce:48:e5:1e:06:b1:73:25:58:
a5:8c:7c:98
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Sep 7 14:42:05 2025 by rpki-client