Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/17/70bfd7-711d-4ad9-82f7-2f3c0032e446/1/X06OdhPaoX6FqhB4yOwlXPGNQio.mft
File: X06OdhPaoX6FqhB4yOwlXPGNQio.mft (raw, json)
Hash identifier: sjx74NFUGpSRnWoUzs+sS8qxJeJ2t5H6yG3gjwr0p6E=
Subject key identifier: AA:0B:6C:6A:4D:60:D6:3F:75:57:72:96:5E:AD:6A:10:5F:2F:D3:AE
Authority key identifier: 5F:4E:8E:76:13:DA:A1:7E:85:AA:10:78:C8:EC:25:5C:F1:8D:42:2A
Certificate issuer: /CN=5f4e8e7613daa17e85aa1078c8ec255cf18d422a
Certificate serial: 01988B0F79EAF6F46D27A7E10F623F85F29D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/X06OdhPaoX6FqhB4yOwlXPGNQio.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/17/70bfd7-711d-4ad9-82f7-2f3c0032e446/1/X06OdhPaoX6FqhB4yOwlXPGNQio.mft
Manifest number: 0D4E
Signing time: Fri 08 Aug 2025 19:01:43 +0000
Manifest this update: Fri 08 Aug 2025 19:01:43 +0000
Manifest next update: Sat 09 Aug 2025 19:01:43 +0000
Files and hashes: 1: X06OdhPaoX6FqhB4yOwlXPGNQio.crl (hash: fietQSk0OrBpll/z3sr6tArGza7CjyGWgcf8V6W6Kuo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/17/70bfd7-711d-4ad9-82f7-2f3c0032e446/1/X06OdhPaoX6FqhB4yOwlXPGNQio.crl
rsync://rpki.ripe.net/repository/DEFAULT/17/70bfd7-711d-4ad9-82f7-2f3c0032e446/1/X06OdhPaoX6FqhB4yOwlXPGNQio.mft
rsync://rpki.ripe.net/repository/DEFAULT/X06OdhPaoX6FqhB4yOwlXPGNQio.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 09 Aug 2025 19:01:43 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:8b:0f:79:ea:f6:f4:6d:27:a7:e1:0f:62:3f:85:f2:9d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5f4e8e7613daa17e85aa1078c8ec255cf18d422a
Validity
Not Before: Aug 8 19:01:43 2025 GMT
Not After : Aug 9 19:01:43 2025 GMT
Subject: CN=aa0b6c6a4d60d63f755772965ead6a105f2fd3ae
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f0:8d:8f:e4:e9:42:a8:1e:b1:a9:44:9a:70:ad:
30:a8:58:d2:45:19:a6:05:ae:86:4d:38:5e:8b:ec:
03:2a:4f:40:c8:e9:ad:9b:0b:a9:53:b0:1e:9b:08:
c2:7a:f3:d1:73:d9:87:37:82:8e:80:a1:1d:7a:91:
7e:8f:c8:8b:5d:02:cd:23:7b:87:a2:17:de:7f:b8:
d1:21:26:b8:39:0c:2f:f6:4d:b3:a6:ac:29:70:d5:
a8:d0:38:bb:93:97:01:81:6c:a8:f1:db:f9:11:a0:
43:6b:4b:79:24:58:47:7a:e0:f6:04:26:4f:c6:02:
f5:72:c4:5e:f6:6b:75:8c:27:ad:90:c6:7b:25:10:
61:57:8c:d3:07:53:c1:56:c6:38:9f:e6:7f:3f:29:
0b:5d:37:3d:e3:5c:c3:3d:de:7c:2f:01:b2:2e:d1:
18:0c:f1:af:c5:0a:7c:5b:1d:59:72:58:15:c6:04:
56:b4:23:d2:af:c3:84:aa:0a:aa:41:b9:5d:0f:1a:
c7:cf:fe:cd:7e:ce:ef:07:c5:06:1e:55:a6:4e:4a:
8e:2b:b7:65:5d:4d:cc:bb:71:7b:ed:27:b7:dc:95:
dc:6f:06:36:ed:15:46:88:b1:6f:ba:57:02:64:74:
ba:4c:70:7e:b2:36:10:af:e6:79:fa:d8:66:d6:aa:
b4:61
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AA:0B:6C:6A:4D:60:D6:3F:75:57:72:96:5E:AD:6A:10:5F:2F:D3:AE
X509v3 Authority Key Identifier:
keyid:5F:4E:8E:76:13:DA:A1:7E:85:AA:10:78:C8:EC:25:5C:F1:8D:42:2A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/X06OdhPaoX6FqhB4yOwlXPGNQio.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/17/70bfd7-711d-4ad9-82f7-2f3c0032e446/1/X06OdhPaoX6FqhB4yOwlXPGNQio.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/17/70bfd7-711d-4ad9-82f7-2f3c0032e446/1/X06OdhPaoX6FqhB4yOwlXPGNQio.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
9f:6c:18:fd:aa:16:3e:ed:05:43:08:8a:c5:b7:b1:a6:0e:a3:
e0:fe:81:2b:3a:61:d0:10:4c:ab:2c:f5:fb:0e:db:48:85:e0:
d5:f5:88:af:2a:14:a7:cf:0d:4b:2f:31:22:8d:99:24:34:21:
0d:cc:e0:2d:5a:c4:4a:e0:38:49:c5:1f:59:1a:a2:d0:0d:56:
d6:5a:62:74:f3:0f:12:10:e2:9e:e0:4e:5e:74:0f:4d:48:aa:
4e:a4:2e:3a:28:dd:4b:ee:e2:dd:da:a0:90:a2:f5:2e:fb:5b:
2b:d4:35:48:e5:3e:7a:2e:6a:7b:9f:5b:ff:03:b1:f4:51:b5:
a6:c8:10:a2:29:ed:93:6e:e5:7d:24:00:09:b1:f0:cf:a3:3a:
78:21:64:92:f5:59:55:40:fe:3e:34:df:d0:0c:b0:2e:2c:e5:
e5:de:d3:84:a6:4f:fb:da:9a:3d:07:69:50:60:f7:d4:69:d6:
00:34:06:a7:3b:ff:56:f3:1a:cc:1b:4d:2d:11:c3:3e:ec:88:
13:6f:f6:a2:02:42:f1:88:87:0b:f5:14:d2:91:47:40:18:20:
d3:de:b7:3f:8b:0e:ab:b0:45:08:37:c0:b3:a7:7d:66:06:19:
77:be:4b:e8:4b:78:e0:af:96:7a:c9:3a:7f:45:36:f8:b1:64:
b5:04:53:c9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 9 01:00:56 2025 by rpki-client