Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1a/23a19a-30db-4872-ab73-5287afc10e68/1/9xPX34BXC8z7JzeT8ApdRshT5Jo.mft
File: 9xPX34BXC8z7JzeT8ApdRshT5Jo.mft (raw, json)
Hash identifier: 7oq4Jkwctx94ZAhILGo+75DBFmQdZ9zsDBXLsxfyDoY=
Subject key identifier: CA:AA:8C:41:D0:44:71:F0:7E:8F:85:9F:A4:A0:E2:B4:6D:46:A2:36
Authority key identifier: F7:13:D7:DF:80:57:0B:CC:FB:27:37:93:F0:0A:5D:46:C8:53:E4:9A
Certificate issuer: /CN=f713d7df80570bccfb273793f00a5d46c853e49a
Certificate serial: 01988FC709B4E7A00EB81FAE239C4EF4BBB4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/9xPX34BXC8z7JzeT8ApdRshT5Jo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1a/23a19a-30db-4872-ab73-5287afc10e68/1/9xPX34BXC8z7JzeT8ApdRshT5Jo.mft
Manifest number: 0548
Signing time: Sat 09 Aug 2025 17:00:42 +0000
Manifest this update: Sat 09 Aug 2025 17:00:42 +0000
Manifest next update: Sun 10 Aug 2025 17:00:42 +0000
Files and hashes: 1: 9xPX34BXC8z7JzeT8ApdRshT5Jo.crl (hash: 2d3bIm4CFHbr0yC76lIopLbJeYHwabPhJ+RxbNTCBf4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/1a/23a19a-30db-4872-ab73-5287afc10e68/1/9xPX34BXC8z7JzeT8ApdRshT5Jo.crl
rsync://rpki.ripe.net/repository/DEFAULT/1a/23a19a-30db-4872-ab73-5287afc10e68/1/9xPX34BXC8z7JzeT8ApdRshT5Jo.mft
rsync://rpki.ripe.net/repository/DEFAULT/9xPX34BXC8z7JzeT8ApdRshT5Jo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 10 Aug 2025 14:00:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:8f:c7:09:b4:e7:a0:0e:b8:1f:ae:23:9c:4e:f4:bb:b4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f713d7df80570bccfb273793f00a5d46c853e49a
Validity
Not Before: Aug 9 17:00:42 2025 GMT
Not After : Aug 10 17:00:42 2025 GMT
Subject: CN=caaa8c41d04471f07e8f859fa4a0e2b46d46a236
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:fb:74:85:24:cc:f5:38:42:5a:5d:f3:11:ea:
87:b3:5e:c4:ea:a0:52:b2:ea:91:b4:ea:27:36:a1:
32:bc:d7:1a:b7:58:a5:9e:08:bb:18:7f:e5:11:8a:
b7:5c:93:11:9d:e4:b4:21:be:36:9d:c9:e7:0d:99:
b2:c8:e8:58:e9:ff:11:7d:53:ea:3c:96:20:73:b0:
33:63:7d:b9:f6:0c:27:62:61:26:b8:2b:78:62:87:
c0:db:c4:14:ab:73:8d:c0:a5:0d:a8:75:75:20:cb:
f5:3a:79:57:8e:bb:f1:87:1b:39:1f:74:48:1b:d3:
19:eb:86:d6:90:db:72:6c:c2:86:27:a3:97:52:32:
e8:e1:fd:ef:4b:8d:a8:89:91:1b:10:e3:1f:d9:ac:
16:93:06:3e:7f:4b:a6:d2:4e:0c:a0:65:8c:76:21:
bf:59:96:e7:0a:bd:df:cf:f1:9e:31:6c:f4:a5:b9:
42:97:87:8a:56:a3:cb:b0:8a:26:36:89:82:12:54:
37:06:27:50:fd:72:b9:66:fd:3c:4a:f8:dd:6e:8b:
57:d8:d6:ec:ee:e1:3d:43:dc:2f:5a:09:20:8c:a0:
af:f2:4b:6f:06:23:52:a9:a7:ef:82:fe:07:ed:b9:
ac:3b:1b:ba:05:4f:85:db:67:44:fb:31:ff:17:d4:
89:43
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CA:AA:8C:41:D0:44:71:F0:7E:8F:85:9F:A4:A0:E2:B4:6D:46:A2:36
X509v3 Authority Key Identifier:
keyid:F7:13:D7:DF:80:57:0B:CC:FB:27:37:93:F0:0A:5D:46:C8:53:E4:9A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/9xPX34BXC8z7JzeT8ApdRshT5Jo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1a/23a19a-30db-4872-ab73-5287afc10e68/1/9xPX34BXC8z7JzeT8ApdRshT5Jo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1a/23a19a-30db-4872-ab73-5287afc10e68/1/9xPX34BXC8z7JzeT8ApdRshT5Jo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
8d:7e:e5:4f:80:4d:94:ed:4b:46:40:8c:fb:d1:c1:9b:87:f5:
ab:53:69:f5:0e:91:db:7c:29:d3:ec:67:55:5d:ea:05:11:cd:
fc:b2:b1:24:61:5d:d9:07:23:3a:ee:33:45:cd:34:66:2e:af:
4a:44:3d:92:15:72:cc:c1:b5:2a:06:ec:2e:9d:58:bf:b4:56:
92:9c:2c:82:dc:4d:d5:ba:38:a4:a2:22:c1:0c:2b:b0:48:38:
54:bf:62:f7:70:be:9a:fa:c4:d5:7a:fe:e1:1c:07:56:c8:d7:
15:15:32:d9:3e:39:95:9b:79:0b:44:9f:81:60:be:7a:32:62:
a6:6e:4b:2c:5c:56:b9:10:bc:33:af:93:1d:e3:81:52:b9:bd:
d7:cf:2a:aa:c1:8a:23:1b:cc:de:5c:6d:1b:23:17:a0:81:96:
e9:d8:51:cc:6b:07:6c:0b:1d:fb:91:ee:2d:ed:df:36:2c:60:
8a:39:9d:ce:63:2f:06:d1:95:2f:d5:ff:d9:70:10:28:9d:f3:
4b:41:a9:bc:3e:9e:c1:77:e5:77:79:b1:8d:c4:a4:9c:9b:29:
e1:b4:14:22:33:e8:e7:7a:63:d9:be:20:ce:34:31:04:40:e9:
c8:84:71:be:4c:e9:3a:9b:f7:a9:2d:b7:c8:24:fb:35:43:53:
92:d4:38:f8
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZiPxwm056AOuB+uI5xO9Lu0MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGY3MTNkN2RmODA1NzBiY2NmYjI3Mzc5M2YwMGE1ZDQ2Yzg1
M2U0OWEwHhcNMjUwODA5MTcwMDQyWhcNMjUwODEwMTcwMDQyWjAzMTEwLwYDVQQD
EyhjYWFhOGM0MWQwNDQ3MWYwN2U4Zjg1OWZhNGEwZTJiNDZkNDZhMjM2MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAn/t0hSTM9ThCWl3zEeqHs17E6qBS
suqRtOonNqEyvNcat1ilngi7GH/lEYq3XJMRneS0Ib42ncnnDZmyyOhY6f8RfVPq
PJYgc7AzY3259gwnYmEmuCt4YofA28QUq3ONwKUNqHV1IMv1OnlXjrvxhxs5H3RI
G9MZ64bWkNtybMKGJ6OXUjLo4f3vS42oiZEbEOMf2awWkwY+f0um0k4MoGWMdiG/
WZbnCr3fz/GeMWz0pblCl4eKVqPLsIomNomCElQ3BidQ/XK5Zv08SvjdbotX2Nbs
7uE9Q9wvWgkgjKCv8ktvBiNSqafvgv4H7bmsOxu6BU+F22dE+zH/F9SJQwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFMqqjEHQRHHwfo+Fn6Sg4rRtRqI2MB8GA1UdIwQY
MBaAFPcT19+AVwvM+yc3k/AKXUbIU+SaMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvOXhQWDM0QlhDOHo3SnplVDhBcGRSc2hUNUpvLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xYS8yM2ExOWEtMzBkYi00ODcyLWFiNzMt
NTI4N2FmYzEwZTY4LzEvOXhQWDM0QlhDOHo3SnplVDhBcGRSc2hUNUpvLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8xYS8yM2ExOWEtMzBkYi00ODcyLWFiNzMtNTI4N2FmYzEwZTY4
LzEvOXhQWDM0QlhDOHo3SnplVDhBcGRSc2hUNUpvLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAjX7lT4BN
lO1LRkCM+9HBm4f1q1Np9Q6R23wp0+xnVV3qBRHN/LKxJGFd2QcjOu4zRc00Zi6v
SkQ9khVyzMG1KgbsLp1Yv7RWkpwsgtxN1bo4pKIiwQwrsEg4VL9i93C+mvrE1Xr+
4RwHVsjXFRUy2T45lZt5C0SfgWC+ejJipm5LLFxWuRC8M6+THeOBUrm9188qqsGK
IxvM3lxtGyMXoIGW6dhRzGsHbAsd+5HuLe3fNixgijmdzmMvBtGVL9X/2XAQKJ3z
S0GpvD6ewXfld3mxjcSknJsp4bQUIjPo53pj2b4gzjQxBEDpyIRxvkzpOpv3qS23
yCT7NUNTktQ4+A==
-----END CERTIFICATE-----
Generated at Sat Aug 9 20:34:45 2025 by rpki-client