Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1f/f8c7e2-3282-4ebb-8508-9f9494966c54/1/cxkAeiit4HgdMS2NSUcts2dnBBY.mft
File: cxkAeiit4HgdMS2NSUcts2dnBBY.mft (raw, json)
Hash identifier: CP/69+WEeIUdmSChfRQLYio+qhSXgoG0gRurh/yBXXg=
Subject key identifier: D7:15:59:0A:0F:AF:56:6F:33:14:63:52:3D:FA:93:47:69:7D:3B:E2
Authority key identifier: 73:19:00:7A:28:AD:E0:78:1D:31:2D:8D:49:47:2D:B3:67:67:04:16
Certificate issuer: /CN=7319007a28ade0781d312d8d49472db367670416
Certificate serial: 01987298327A1AD91F734D7352AD853675C9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cxkAeiit4HgdMS2NSUcts2dnBBY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1f/f8c7e2-3282-4ebb-8508-9f9494966c54/1/cxkAeiit4HgdMS2NSUcts2dnBBY.mft
Manifest number: 0892
Signing time: Mon 04 Aug 2025 01:00:33 +0000
Manifest this update: Mon 04 Aug 2025 01:00:33 +0000
Manifest next update: Tue 05 Aug 2025 01:00:33 +0000
Files and hashes: 1: cxkAeiit4HgdMS2NSUcts2dnBBY.crl (hash: cttmJx15yAMsDX78GEvfBo4EhLiFSfI4idpzODSX03o=)
2: rOIGMeXF9bxOY5fu4vCOE7NrCP0.roa (hash: 1nU5+mzZGJaibKrLnnLB5qj48GydY1KP7W2pluR6Ujw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/1f/f8c7e2-3282-4ebb-8508-9f9494966c54/1/cxkAeiit4HgdMS2NSUcts2dnBBY.crl
rsync://rpki.ripe.net/repository/DEFAULT/1f/f8c7e2-3282-4ebb-8508-9f9494966c54/1/cxkAeiit4HgdMS2NSUcts2dnBBY.mft
rsync://rpki.ripe.net/repository/DEFAULT/cxkAeiit4HgdMS2NSUcts2dnBBY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 05 Aug 2025 01:00:33 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:72:98:32:7a:1a:d9:1f:73:4d:73:52:ad:85:36:75:c9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7319007a28ade0781d312d8d49472db367670416
Validity
Not Before: Aug 4 01:00:33 2025 GMT
Not After : Aug 5 01:00:33 2025 GMT
Subject: CN=d715590a0faf566f331463523dfa9347697d3be2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:e3:71:47:20:b8:d9:c5:df:a7:c1:3d:4e:80:
60:d6:1d:6e:87:8b:c9:72:96:9e:34:b0:9c:a0:11:
bb:b3:71:05:ea:a5:0f:52:ec:6a:63:1c:8b:03:2f:
17:5a:f1:f4:ba:87:08:e3:ea:4e:73:7e:f5:bc:3e:
63:69:21:56:4b:d5:76:a5:74:a8:9c:d3:14:85:46:
fa:b9:61:d0:3f:71:76:56:99:45:9d:25:6e:75:dd:
15:07:5e:96:c7:30:25:dc:3c:03:c2:8f:de:a4:d6:
c2:e2:50:43:ae:91:fe:96:2b:82:8e:8e:44:84:87:
76:15:eb:8e:b2:56:90:26:fc:48:b2:cf:dc:6f:23:
f7:f0:c6:f4:86:eb:a0:6a:0e:95:cf:22:de:a8:d2:
86:7a:0a:2a:55:40:f7:23:82:2e:f0:3a:af:d3:21:
32:82:a6:a9:8f:a5:cd:94:8e:48:b2:9b:6e:1d:2c:
b2:97:0a:7d:32:13:6b:ad:34:22:7b:c0:76:dc:f8:
10:e0:40:d3:43:fc:fd:28:c5:05:03:f1:95:9d:8e:
2f:14:d7:18:91:a6:2c:3f:20:54:8b:d8:fc:52:92:
47:6f:ec:25:38:dc:ad:0d:1c:b9:f9:3d:49:35:50:
f8:58:59:d5:72:72:33:10:5b:8c:6f:21:31:4b:c4:
ee:53
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D7:15:59:0A:0F:AF:56:6F:33:14:63:52:3D:FA:93:47:69:7D:3B:E2
X509v3 Authority Key Identifier:
keyid:73:19:00:7A:28:AD:E0:78:1D:31:2D:8D:49:47:2D:B3:67:67:04:16
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cxkAeiit4HgdMS2NSUcts2dnBBY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1f/f8c7e2-3282-4ebb-8508-9f9494966c54/1/cxkAeiit4HgdMS2NSUcts2dnBBY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1f/f8c7e2-3282-4ebb-8508-9f9494966c54/1/cxkAeiit4HgdMS2NSUcts2dnBBY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
82:ac:02:0b:0f:cd:df:9a:9a:83:83:29:6c:bc:47:10:69:5e:
26:28:23:e4:7c:7d:33:7a:50:d2:81:83:ee:78:0d:58:f4:45:
61:c3:07:8e:9c:fa:66:bf:64:cd:6e:10:13:e9:eb:f2:6e:a2:
e6:cc:22:94:fd:2f:2b:f7:1b:7c:91:26:ab:b0:67:98:56:56:
2a:12:ae:63:84:7a:64:68:87:ed:1d:38:d0:ae:6f:b8:56:0f:
3e:66:85:95:b7:31:74:de:61:88:f2:32:2c:bd:c2:09:11:6c:
60:27:7f:e9:1e:9b:68:fd:de:d6:f2:7e:bc:00:bc:14:d3:ff:
2e:41:5e:db:66:ce:ea:c2:15:6c:00:4e:a1:f7:37:63:23:59:
8a:04:b9:96:dd:21:4d:04:ad:75:b8:f3:9d:9f:3c:44:09:13:
5f:be:6c:2d:91:56:63:5d:0f:8f:61:83:6e:f1:f6:69:df:45:
a5:c0:1e:31:af:63:c1:09:da:79:53:5e:af:d2:e1:68:d1:a4:
80:50:da:97:77:fc:eb:52:d7:00:7c:d4:82:fb:3b:6d:93:47:
8e:45:f6:f3:52:ce:d6:77:2b:d6:72:b1:3c:31:64:e5:ba:3f:
c3:0f:c1:18:51:82:bf:93:a4:26:82:26:78:6e:d2:b7:21:18:
1b:4f:7e:81
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Aug 4 11:15:35 2025 by rpki-client