Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/06/1be9f1-5c48-4427-a2b1-6ec7dbe27bb3/1/XZOOJrKYSy-hYarAewS9uFCq3RY.mft
File: XZOOJrKYSy-hYarAewS9uFCq3RY.mft (raw, json)
Hash identifier: GBRRP4N4kI44AMx5OCFnhQJj/GmmaK4zkhErzTroHc0=
Subject key identifier: 3E:3C:7A:55:80:BD:7F:56:B7:7F:F0:D4:FD:F7:B3:C5:77:B4:2F:A2
Authority key identifier: 5D:93:8E:26:B2:98:4B:2F:A1:61:AA:C0:7B:04:BD:B8:50:AA:DD:16
Certificate issuer: /CN=5d938e26b2984b2fa161aac07b04bdb850aadd16
Certificate serial: 019872CFABB7BC76E6DEDF9F6AACFA872324
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XZOOJrKYSy-hYarAewS9uFCq3RY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/06/1be9f1-5c48-4427-a2b1-6ec7dbe27bb3/1/XZOOJrKYSy-hYarAewS9uFCq3RY.mft
Manifest number: 09FC
Signing time: Mon 04 Aug 2025 02:01:09 +0000
Manifest this update: Mon 04 Aug 2025 02:01:09 +0000
Manifest next update: Tue 05 Aug 2025 02:01:09 +0000
Files and hashes: 1: XZOOJrKYSy-hYarAewS9uFCq3RY.crl (hash: EJPJJCd8c6QigSDaCesMVVTyz4S5gVw5kFJZCOTbohE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/06/1be9f1-5c48-4427-a2b1-6ec7dbe27bb3/1/XZOOJrKYSy-hYarAewS9uFCq3RY.crl
rsync://rpki.ripe.net/repository/DEFAULT/06/1be9f1-5c48-4427-a2b1-6ec7dbe27bb3/1/XZOOJrKYSy-hYarAewS9uFCq3RY.mft
rsync://rpki.ripe.net/repository/DEFAULT/XZOOJrKYSy-hYarAewS9uFCq3RY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 05 Aug 2025 02:01:09 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:72:cf:ab:b7:bc:76:e6:de:df:9f:6a:ac:fa:87:23:24
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5d938e26b2984b2fa161aac07b04bdb850aadd16
Validity
Not Before: Aug 4 02:01:09 2025 GMT
Not After : Aug 5 02:01:09 2025 GMT
Subject: CN=3e3c7a5580bd7f56b77ff0d4fdf7b3c577b42fa2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:39:2e:21:23:1e:6a:09:ba:fe:93:23:55:11:
73:5b:29:32:92:c7:26:03:de:f8:6f:15:76:ab:28:
28:37:57:66:01:a8:5b:bb:ad:e6:e7:8a:ed:9d:5f:
52:69:4a:c8:bf:f8:67:f1:ca:34:e2:13:57:35:2c:
92:3d:ec:2c:d3:dd:59:d3:27:d8:da:6d:29:b1:98:
57:0e:66:f0:54:fa:f4:3d:0b:99:73:7a:1d:5a:f6:
44:de:08:87:65:3d:4c:71:bb:0f:96:76:08:ce:dc:
58:ed:18:08:b5:30:67:48:51:b6:70:9a:c6:57:cf:
a4:4a:6d:66:62:d1:ba:e4:f6:0f:18:57:df:3d:11:
1f:f8:e3:b7:a0:b6:b7:65:2b:7f:23:4c:f9:b1:d7:
73:50:79:56:8e:48:52:37:74:aa:ba:4a:51:1b:d1:
03:0e:93:3d:50:15:87:e2:5d:6d:36:5e:ab:69:d8:
2c:a4:1a:66:06:a2:5a:30:e8:23:ec:06:30:b7:75:
02:46:8d:64:a0:0a:67:30:6f:50:f1:8f:c6:eb:7f:
c7:6c:9d:8f:ee:92:3a:4c:7c:da:95:03:f1:ca:e9:
4f:fa:60:e6:42:ec:bc:a5:5a:48:aa:28:c2:56:9f:
90:e6:bc:f4:be:38:9a:35:9f:9d:4c:99:01:36:74:
d8:f5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3E:3C:7A:55:80:BD:7F:56:B7:7F:F0:D4:FD:F7:B3:C5:77:B4:2F:A2
X509v3 Authority Key Identifier:
keyid:5D:93:8E:26:B2:98:4B:2F:A1:61:AA:C0:7B:04:BD:B8:50:AA:DD:16
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XZOOJrKYSy-hYarAewS9uFCq3RY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/06/1be9f1-5c48-4427-a2b1-6ec7dbe27bb3/1/XZOOJrKYSy-hYarAewS9uFCq3RY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/06/1be9f1-5c48-4427-a2b1-6ec7dbe27bb3/1/XZOOJrKYSy-hYarAewS9uFCq3RY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
22:2e:06:34:d3:5c:44:b0:e6:60:2b:1b:7c:4e:35:75:5e:2f:
5b:4b:b0:94:b5:fa:68:35:bd:14:58:c4:24:59:44:e6:50:0a:
c0:3f:0d:c6:7c:7f:8b:ee:2d:9d:bd:8c:58:e4:5e:03:76:12:
99:0e:85:c2:2e:8c:41:68:73:42:a1:89:fa:e9:a7:65:32:9d:
67:30:84:9b:e2:b0:de:42:f2:77:13:aa:5a:71:c1:24:b8:d2:
90:6c:20:d7:58:e2:d6:e2:0c:82:c0:d7:28:a3:8c:98:69:38:
d3:d0:83:1d:d2:ff:d9:0f:4f:a1:21:ba:8c:6e:0c:3a:8e:32:
17:9e:b4:6a:ed:c9:1c:be:40:16:d3:cb:bf:fa:b4:1d:76:3d:
08:9c:46:bb:f3:56:23:02:f3:92:74:5c:fe:8d:31:a8:79:a8:
af:ec:71:35:17:02:54:c9:b5:1e:66:1c:e6:92:2c:91:2a:37:
00:41:25:41:c3:c9:5c:d1:1b:3a:3a:ec:06:03:3a:ac:23:ef:
09:90:2b:af:f2:d8:41:6d:14:e3:ee:c6:a8:dc:eb:bd:8e:d9:
16:15:a4:c5:38:4d:fa:13:bf:65:44:70:ae:33:68:07:c8:60:
cc:f6:8a:6d:f0:1b:db:68:ec:6c:ea:73:88:09:b3:90:0f:9a:
39:3d:6d:34
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Aug 4 11:00:09 2025 by rpki-client