Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c5/d60291-d840-4901-a85d-c685fa916b07/1/xndznw-VRrTwJXcsXCsXl4WSOFI.mft
File: xndznw-VRrTwJXcsXCsXl4WSOFI.mft (raw, json)
Hash identifier: 7Hx70BsevColQjtcmySgLuZDFAV9uzLDTGq7W/EKRQM=
Subject key identifier: EA:E3:BA:4D:8F:FC:E9:E3:6C:06:AE:33:6F:99:E2:B3:2D:7B:F8:F5
Authority key identifier: C6:77:73:9F:0F:95:46:B4:F0:25:77:2C:5C:2B:17:97:85:92:38:52
Certificate issuer: /CN=c677739f0f9546b4f025772c5c2b179785923852
Certificate serial: 019916BF5C47E70C37CA43F64B82EAAF5DDA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xndznw-VRrTwJXcsXCsXl4WSOFI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c5/d60291-d840-4901-a85d-c685fa916b07/1/xndznw-VRrTwJXcsXCsXl4WSOFI.mft
Manifest number: 147D
Signing time: Thu 04 Sep 2025 22:01:03 +0000
Manifest this update: Thu 04 Sep 2025 22:01:03 +0000
Manifest next update: Fri 05 Sep 2025 22:01:03 +0000
Files and hashes: 1: xndznw-VRrTwJXcsXCsXl4WSOFI.crl (hash: 52fByeyoDHDgJvQfgHCU5sIX66fwZR7ORQoHlr7ZY6Q=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c5/d60291-d840-4901-a85d-c685fa916b07/1/xndznw-VRrTwJXcsXCsXl4WSOFI.crl
rsync://rpki.ripe.net/repository/DEFAULT/c5/d60291-d840-4901-a85d-c685fa916b07/1/xndznw-VRrTwJXcsXCsXl4WSOFI.mft
rsync://rpki.ripe.net/repository/DEFAULT/xndznw-VRrTwJXcsXCsXl4WSOFI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 05 Sep 2025 19:46:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:16:bf:5c:47:e7:0c:37:ca:43:f6:4b:82:ea:af:5d:da
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c677739f0f9546b4f025772c5c2b179785923852
Validity
Not Before: Sep 4 22:01:03 2025 GMT
Not After : Sep 5 22:01:03 2025 GMT
Subject: CN=eae3ba4d8ffce9e36c06ae336f99e2b32d7bf8f5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:48:d0:81:9e:99:5b:26:95:6f:e5:70:32:b7:
71:d1:fc:91:ab:f5:21:6d:dd:5b:09:64:9b:87:16:
a8:15:46:65:d6:2a:1a:af:39:64:e1:27:5d:48:1d:
f9:7e:c9:54:9d:93:df:7f:fa:e7:2b:90:05:64:71:
a9:d2:23:a3:36:7b:61:c8:62:ad:a1:e6:9b:18:7f:
52:21:17:a1:a2:a4:52:a9:5a:90:62:1c:de:a9:a9:
01:b1:96:53:8f:5b:24:4d:7c:89:8f:2e:a1:bb:d5:
e2:26:ca:1f:c0:d2:a4:ce:b4:fe:d1:99:eb:93:1b:
30:82:e0:16:bf:1b:92:5f:ba:ac:7f:df:8d:7f:dc:
c0:87:98:2f:1b:b2:0e:b6:2a:fe:91:cd:8d:5e:d8:
f7:6f:21:7b:af:fe:38:88:a0:01:48:d6:d3:c2:0f:
a6:ee:b9:6a:7a:8d:79:d9:27:26:30:d2:18:60:a1:
01:9b:31:b1:27:57:c3:a8:a4:5f:1e:cb:fe:13:c4:
e7:7b:46:54:ae:54:35:e3:fe:97:ef:7c:84:84:f5:
6e:27:59:97:f3:9d:b9:6b:83:22:e9:a2:c0:03:63:
0f:c7:a0:a9:c4:a5:70:a2:ff:5c:49:a9:54:a6:22:
3b:69:36:aa:84:3d:9e:9b:a1:3a:4a:69:ce:70:fd:
99:29
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EA:E3:BA:4D:8F:FC:E9:E3:6C:06:AE:33:6F:99:E2:B3:2D:7B:F8:F5
X509v3 Authority Key Identifier:
keyid:C6:77:73:9F:0F:95:46:B4:F0:25:77:2C:5C:2B:17:97:85:92:38:52
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xndznw-VRrTwJXcsXCsXl4WSOFI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c5/d60291-d840-4901-a85d-c685fa916b07/1/xndznw-VRrTwJXcsXCsXl4WSOFI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c5/d60291-d840-4901-a85d-c685fa916b07/1/xndznw-VRrTwJXcsXCsXl4WSOFI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
7b:f9:38:25:25:a2:19:0b:b5:09:db:67:35:e1:b9:28:33:1b:
fb:17:a4:26:a5:fd:f9:54:ec:4b:fe:a8:1e:71:b0:2e:4c:6a:
ef:e1:b6:41:00:dd:a3:9d:b1:64:c3:17:1c:97:56:a8:fa:e1:
21:6f:a3:4d:6a:77:d2:c2:57:2b:46:0e:f4:a4:d1:16:4e:0f:
40:f9:8a:4c:a3:9b:24:dd:16:58:70:68:00:ab:0d:89:98:2d:
8d:14:26:1e:02:3c:33:29:f1:f2:70:2e:2d:d2:20:c7:ce:d8:
3e:86:f1:1b:91:94:f9:e9:59:8c:6d:67:38:54:d9:b7:88:23:
f9:c2:73:47:fc:c9:a6:c3:46:28:ae:cd:b7:3a:c9:61:d5:b1:
17:aa:30:56:2c:ec:e6:b1:29:e0:6c:e8:48:2c:ff:eb:c4:23:
ee:64:3d:eb:5b:6d:53:ed:91:e8:10:bb:76:d8:91:51:74:34:
fd:61:3f:0d:85:c2:0c:37:d1:9d:05:3d:39:6d:09:59:b9:86:
38:6f:ff:c6:42:e2:f5:8b:45:e3:28:3f:62:23:30:fb:1e:5d:
6b:66:18:43:33:5f:b6:67:aa:7b:44:3d:89:60:ca:ba:37:7b:
9c:a7:be:bc:26:5e:0f:d0:1f:54:11:f3:0d:5d:50:48:75:b2:
3d:21:05:0d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Sep 5 04:27:23 2025 by rpki-client