Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bd/ecc2cf-ecc0-4cbb-9635-166c6a3d3ecf/1/CXa-2b-5b_oZgiBViqPVuMj5zT0.mft
File: CXa-2b-5b_oZgiBViqPVuMj5zT0.mft (raw, json)
Hash identifier: d0JX889tXnjLWHkIMjlsw1S5FS4YYBryEZIRquMgdwQ=
Subject key identifier: 8E:98:E9:27:8C:14:71:3C:3C:17:AA:1D:55:23:8A:9C:D4:7D:7C:56
Authority key identifier: 09:76:BE:D9:BF:B9:6F:FA:19:82:20:55:8A:A3:D5:B8:C8:F9:CD:3D
Certificate issuer: /CN=0976bed9bfb96ffa198220558aa3d5b8c8f9cd3d
Certificate serial: 019917641A5F0BEFA1595FBF870A2500F87D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CXa-2b-5b_oZgiBViqPVuMj5zT0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bd/ecc2cf-ecc0-4cbb-9635-166c6a3d3ecf/1/CXa-2b-5b_oZgiBViqPVuMj5zT0.mft
Manifest number: D3
Signing time: Fri 05 Sep 2025 01:01:00 +0000
Manifest this update: Fri 05 Sep 2025 01:01:00 +0000
Manifest next update: Sat 06 Sep 2025 01:01:00 +0000
Files and hashes: 1: CXa-2b-5b_oZgiBViqPVuMj5zT0.crl (hash: CU2U1R7LB555XNoe1NYzYdlAhjOD8OJqd+IWi7TW3cM=)
2: aBpP3bYzGKuR6nhWBmH2ZNVu5M0.roa (hash: GDuJcoE/4sB2mx00j2kfWz5EyEq+Z7H0hLsLa7O17eM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/bd/ecc2cf-ecc0-4cbb-9635-166c6a3d3ecf/1/CXa-2b-5b_oZgiBViqPVuMj5zT0.crl
rsync://rpki.ripe.net/repository/DEFAULT/bd/ecc2cf-ecc0-4cbb-9635-166c6a3d3ecf/1/CXa-2b-5b_oZgiBViqPVuMj5zT0.mft
rsync://rpki.ripe.net/repository/DEFAULT/CXa-2b-5b_oZgiBViqPVuMj5zT0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 06 Sep 2025 01:00:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:17:64:1a:5f:0b:ef:a1:59:5f:bf:87:0a:25:00:f8:7d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0976bed9bfb96ffa198220558aa3d5b8c8f9cd3d
Validity
Not Before: Sep 5 01:01:00 2025 GMT
Not After : Sep 6 01:01:00 2025 GMT
Subject: CN=8e98e9278c14713c3c17aa1d55238a9cd47d7c56
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:85:c8:c0:cd:b8:2e:00:72:8e:18:e4:66:31:60:
d6:22:68:4b:35:57:ae:76:1e:18:bd:32:71:b8:12:
b7:f0:70:57:61:3e:5a:e4:7d:35:e6:d8:ab:2e:e7:
19:2c:f1:ff:fd:c6:0a:be:94:a8:fc:93:bc:a0:72:
95:e2:d6:ae:c7:fd:cc:da:6b:dc:50:00:71:51:c3:
98:8e:4b:37:5a:76:45:f9:7a:8b:a0:9d:d2:af:c0:
27:d3:53:ca:10:61:2f:ef:cc:57:aa:de:fb:5f:c6:
ea:5f:2a:be:db:69:d0:e0:79:24:92:eb:8e:8a:a5:
06:4e:3e:75:fc:7d:9d:ed:e5:e9:c8:92:86:73:20:
02:90:d8:63:68:bb:b6:74:e7:98:97:8d:c8:21:bb:
4d:55:1d:26:d8:30:e2:25:39:66:b3:2e:47:f3:21:
ed:c4:38:1b:c4:c0:26:dc:7e:a0:89:49:64:97:81:
fc:b7:4b:42:0d:f1:65:ea:44:9d:97:3b:90:d7:65:
0d:bb:22:06:c4:74:89:cd:41:e5:5e:87:f2:cb:87:
9c:42:4b:04:98:d0:65:68:1f:b5:19:d0:28:48:2b:
57:f1:d7:b0:5a:9d:b9:7f:5a:ca:d4:2e:89:37:e4:
03:ec:8e:db:9e:9e:e1:95:6c:27:c5:0a:d0:60:3a:
e9:53
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8E:98:E9:27:8C:14:71:3C:3C:17:AA:1D:55:23:8A:9C:D4:7D:7C:56
X509v3 Authority Key Identifier:
keyid:09:76:BE:D9:BF:B9:6F:FA:19:82:20:55:8A:A3:D5:B8:C8:F9:CD:3D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CXa-2b-5b_oZgiBViqPVuMj5zT0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bd/ecc2cf-ecc0-4cbb-9635-166c6a3d3ecf/1/CXa-2b-5b_oZgiBViqPVuMj5zT0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bd/ecc2cf-ecc0-4cbb-9635-166c6a3d3ecf/1/CXa-2b-5b_oZgiBViqPVuMj5zT0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
2c:8b:61:38:43:8d:34:18:73:34:d1:6e:20:30:13:12:ea:f5:
53:dd:08:97:a1:05:d4:a5:23:26:aa:ee:b0:06:ed:b1:75:79:
08:8a:ae:0b:2e:98:3d:33:c0:d9:2b:a5:22:ed:5f:b2:20:ad:
ef:ff:22:61:fe:86:aa:b6:c0:c4:09:c5:a5:ec:cf:6f:3e:6f:
18:a8:4c:18:cd:28:e4:e2:b4:33:de:4e:6d:21:db:80:eb:40:
81:9a:0c:96:aa:43:ce:e3:3c:bc:0e:ff:4f:fb:85:6c:fb:37:
1a:ec:fa:67:d9:33:e6:98:48:a6:cc:22:3b:ef:ce:02:19:45:
0b:50:c2:3e:8f:f9:0e:4e:9f:32:d4:7e:da:21:68:d4:e6:5b:
8c:4c:eb:98:9e:90:eb:b1:85:6a:57:4a:b5:43:88:0f:7b:e9:
9c:14:5b:f1:c6:c2:2e:9c:07:06:d7:cb:86:c8:c3:9c:ee:b3:
44:2e:07:39:00:18:a0:79:28:7f:77:ef:28:27:21:92:b7:21:
42:2e:3d:54:f4:58:e1:c7:5c:1a:5b:d1:1f:31:bd:f8:2f:42:
16:25:ac:19:01:d4:9d:c7:06:e8:75:87:ab:8a:e1:5f:e4:91:
f6:4c:8d:ab:de:a7:be:92:0e:c1:d4:66:94:5c:fc:cb:ca:95:
0b:a6:50:24
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Sep 5 06:05:35 2025 by rpki-client