Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b9/0de238-8d0b-40ff-b569-b2ff681da6bb/1/X3oSNUb-Uankvt-D7uA3Ur2WOdY.mft
File: X3oSNUb-Uankvt-D7uA3Ur2WOdY.mft (raw, json)
Hash identifier: 2+GmaGt9UU5EI8iLO26kc07h09xGKH7KSqpM/PAA3/U=
Subject key identifier: 6D:98:EC:27:3B:2A:9F:64:02:57:9C:77:FF:E6:5C:35:4A:ED:70:E1
Authority key identifier: 5F:7A:12:35:46:FE:51:A9:E4:BE:DF:83:EE:E0:37:52:BD:96:39:D6
Certificate issuer: /CN=5f7a123546fe51a9e4bedf83eee03752bd9639d6
Certificate serial: 019921E7A24F04B85B4E9B8DAED8F12432C8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/X3oSNUb-Uankvt-D7uA3Ur2WOdY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b9/0de238-8d0b-40ff-b569-b2ff681da6bb/1/X3oSNUb-Uankvt-D7uA3Ur2WOdY.mft
Manifest number: 0448
Signing time: Sun 07 Sep 2025 02:00:52 +0000
Manifest this update: Sun 07 Sep 2025 02:00:52 +0000
Manifest next update: Mon 08 Sep 2025 02:00:52 +0000
Files and hashes: 1: X3oSNUb-Uankvt-D7uA3Ur2WOdY.crl (hash: uzLPsTWamZTHHm9gF16SJ97f8XuSj4B9ELNXfBHhStE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b9/0de238-8d0b-40ff-b569-b2ff681da6bb/1/X3oSNUb-Uankvt-D7uA3Ur2WOdY.crl
rsync://rpki.ripe.net/repository/DEFAULT/b9/0de238-8d0b-40ff-b569-b2ff681da6bb/1/X3oSNUb-Uankvt-D7uA3Ur2WOdY.mft
rsync://rpki.ripe.net/repository/DEFAULT/X3oSNUb-Uankvt-D7uA3Ur2WOdY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 08 Sep 2025 02:00:52 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:21:e7:a2:4f:04:b8:5b:4e:9b:8d:ae:d8:f1:24:32:c8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5f7a123546fe51a9e4bedf83eee03752bd9639d6
Validity
Not Before: Sep 7 02:00:52 2025 GMT
Not After : Sep 8 02:00:52 2025 GMT
Subject: CN=6d98ec273b2a9f6402579c77ffe65c354aed70e1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dd:11:0a:76:24:b9:24:6e:ec:44:5a:9c:b1:54:
51:14:fb:99:f8:cd:31:f8:88:b2:53:85:03:3c:60:
cc:8b:a4:a6:14:e5:93:b8:8d:90:05:9e:2f:9e:92:
bc:68:94:93:a5:f4:d3:24:d8:2a:6b:f4:4a:b8:9d:
bb:13:4b:aa:c8:ca:df:e8:0d:00:7b:5d:9f:91:6e:
d9:3a:ec:fb:2f:67:f8:4f:73:6a:22:8f:02:1b:29:
ad:81:c5:80:dc:f9:11:99:e8:10:53:04:7f:04:1e:
7b:0d:2b:ff:af:b5:e2:25:ad:c0:c9:30:f5:d4:87:
b9:86:52:bf:33:d4:21:0e:15:a7:e7:20:69:fa:f5:
c4:dd:f1:f8:9b:3f:9a:e3:56:70:bc:09:54:98:63:
9a:9a:88:5e:4a:d9:e0:51:e1:ea:2a:74:b7:28:c9:
57:0e:25:2b:1d:62:c7:2b:f7:7b:76:03:b6:d0:b0:
f3:b0:f0:dd:65:bc:c9:dc:57:f2:ba:10:2d:6a:bc:
13:19:ae:ab:58:f6:d6:48:4e:37:70:70:cd:5d:0d:
19:66:a2:db:d3:46:52:dc:fb:d5:e9:72:4b:87:8f:
61:91:b0:45:a9:39:aa:3d:0d:68:88:f1:a1:13:4f:
86:a2:2c:14:62:6f:55:a8:40:3d:3c:5a:25:82:c9:
ca:83
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6D:98:EC:27:3B:2A:9F:64:02:57:9C:77:FF:E6:5C:35:4A:ED:70:E1
X509v3 Authority Key Identifier:
keyid:5F:7A:12:35:46:FE:51:A9:E4:BE:DF:83:EE:E0:37:52:BD:96:39:D6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/X3oSNUb-Uankvt-D7uA3Ur2WOdY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b9/0de238-8d0b-40ff-b569-b2ff681da6bb/1/X3oSNUb-Uankvt-D7uA3Ur2WOdY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b9/0de238-8d0b-40ff-b569-b2ff681da6bb/1/X3oSNUb-Uankvt-D7uA3Ur2WOdY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
2e:61:bb:01:c2:50:1f:55:17:ac:ee:20:69:26:c7:30:4a:74:
03:64:ac:dc:f0:3f:d6:b3:64:f2:b0:b9:05:10:24:a4:1c:b1:
14:e6:52:51:fe:7a:fd:5a:64:69:2c:78:b5:54:5c:15:2e:63:
8c:db:39:97:df:8b:f7:7d:cc:f8:49:9b:39:c7:5b:9b:82:0a:
a7:57:f4:66:62:3d:04:52:54:c0:f4:02:98:ab:1a:67:79:59:
c8:16:45:55:8f:83:cc:33:b6:34:7a:70:6d:70:6c:dc:8e:65:
ce:53:e9:97:74:76:0a:b7:97:3f:ea:cd:e5:e8:5d:53:d2:6a:
0a:6e:1e:3d:88:af:ff:81:72:3c:3f:e3:a5:42:34:05:c2:f3:
5b:14:5b:1f:fc:6a:5f:d4:70:5d:11:9e:2f:37:9e:06:01:f6:
47:3e:ab:58:2c:46:60:8e:85:26:03:82:7d:3e:2c:5a:0e:26:
18:99:29:59:43:5e:b1:3d:41:01:16:e8:6e:28:27:51:dd:f8:
08:50:48:a3:33:a9:56:77:6c:a3:e2:e3:9f:7f:28:15:29:21:
4f:f7:a5:b1:91:b2:1d:f9:2c:40:33:44:ce:5d:4d:b2:ee:e0:
d4:d7:fb:2a:cf:51:79:1d:93:48:82:d9:6e:6a:f2:0f:84:fa:
28:ec:1f:92
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Sep 7 09:54:04 2025 by rpki-client