Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/22/522cf1-0b5c-4d62-b36c-9fbe8919db90/1/X2KPBcyoyH1ZPnHp3SGw5_idWJM.mft
File: X2KPBcyoyH1ZPnHp3SGw5_idWJM.mft (raw, json)
Hash identifier: JEZqMm5m1U3bOxvE/YQh/fScAfi6wDiekTpBZIRj2mc=
Subject key identifier: E0:0F:24:CC:74:E8:CB:A4:09:1F:4D:4B:4F:5F:7E:EA:53:BF:8D:64
Authority key identifier: 5F:62:8F:05:CC:A8:C8:7D:59:3E:71:E9:DD:21:B0:E7:F8:9D:58:93
Certificate issuer: /CN=5f628f05cca8c87d593e71e9dd21b0e7f89d5893
Certificate serial: 01988B0FFA05696902E9CBB5420993F61E9D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/X2KPBcyoyH1ZPnHp3SGw5_idWJM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/22/522cf1-0b5c-4d62-b36c-9fbe8919db90/1/X2KPBcyoyH1ZPnHp3SGw5_idWJM.mft
Manifest number: 161E
Signing time: Fri 08 Aug 2025 19:02:16 +0000
Manifest this update: Fri 08 Aug 2025 19:02:16 +0000
Manifest next update: Sat 09 Aug 2025 19:02:16 +0000
Files and hashes: 1: X2KPBcyoyH1ZPnHp3SGw5_idWJM.crl (hash: fK0gq/n9ZTcqNZayyE+9bJ5Xkt2RFFfkUp2AYBJfhb0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/22/522cf1-0b5c-4d62-b36c-9fbe8919db90/1/X2KPBcyoyH1ZPnHp3SGw5_idWJM.crl
rsync://rpki.ripe.net/repository/DEFAULT/22/522cf1-0b5c-4d62-b36c-9fbe8919db90/1/X2KPBcyoyH1ZPnHp3SGw5_idWJM.mft
rsync://rpki.ripe.net/repository/DEFAULT/X2KPBcyoyH1ZPnHp3SGw5_idWJM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 09 Aug 2025 19:02:16 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:8b:0f:fa:05:69:69:02:e9:cb:b5:42:09:93:f6:1e:9d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5f628f05cca8c87d593e71e9dd21b0e7f89d5893
Validity
Not Before: Aug 8 19:02:16 2025 GMT
Not After : Aug 9 19:02:16 2025 GMT
Subject: CN=e00f24cc74e8cba4091f4d4b4f5f7eea53bf8d64
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:06:7d:95:3e:f3:e1:4a:98:ea:2e:c7:d7:5c:
ab:bd:e8:41:9d:c8:9d:f9:2a:dc:0b:90:34:84:07:
59:c0:19:e7:19:7c:88:5c:bc:3e:d9:05:d1:03:b3:
a9:a3:73:c2:b4:bf:e3:c2:51:0c:05:94:6b:9b:32:
db:6c:b6:44:9e:5f:04:0d:d8:64:d4:fa:1b:47:fc:
ac:fd:72:dd:91:15:54:ce:1a:c2:c4:b4:86:53:ed:
9e:8b:c7:85:8b:60:fb:bf:70:1c:35:59:83:5c:57:
09:e5:e0:86:c3:a1:20:d0:09:03:af:7d:95:6e:ea:
d1:43:69:11:e7:33:3d:e4:77:8d:37:d9:69:da:b9:
38:24:63:bb:55:07:42:a8:2d:f2:45:e5:e1:4c:8b:
c4:ec:b3:51:ac:92:2e:99:44:87:c4:4b:d3:34:60:
01:85:35:61:06:60:58:6c:0c:9d:df:4f:dd:34:15:
b4:ee:1a:f5:61:2a:a1:2f:c6:22:b6:53:b4:f3:be:
45:56:bf:e7:58:8d:53:91:18:0a:c2:c2:bb:95:b0:
02:5a:d7:36:5a:c1:e4:4f:85:01:e5:0d:bd:72:3c:
07:7c:6d:17:34:eb:8d:e8:e3:56:ed:46:f0:09:c3:
d4:e1:04:a1:9c:46:d8:2d:25:ea:6d:2d:35:29:be:
19:7d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E0:0F:24:CC:74:E8:CB:A4:09:1F:4D:4B:4F:5F:7E:EA:53:BF:8D:64
X509v3 Authority Key Identifier:
keyid:5F:62:8F:05:CC:A8:C8:7D:59:3E:71:E9:DD:21:B0:E7:F8:9D:58:93
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/X2KPBcyoyH1ZPnHp3SGw5_idWJM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/22/522cf1-0b5c-4d62-b36c-9fbe8919db90/1/X2KPBcyoyH1ZPnHp3SGw5_idWJM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/22/522cf1-0b5c-4d62-b36c-9fbe8919db90/1/X2KPBcyoyH1ZPnHp3SGw5_idWJM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
44:67:0c:c0:f9:56:2b:40:ba:f8:e0:fe:83:62:91:b7:99:77:
07:2d:81:72:08:65:1a:bf:bb:74:8a:90:eb:2e:5c:a7:03:d6:
bc:e0:6f:30:da:c5:78:d5:ec:18:1c:45:18:11:92:72:34:1c:
36:0b:33:5f:a8:04:d4:1f:6d:7f:0c:1f:d1:03:e3:db:c1:fb:
04:24:3b:95:41:25:32:02:d7:d0:0a:55:d1:df:e2:6f:da:83:
59:49:f2:10:72:7f:ac:69:9a:8f:7c:6f:04:f8:02:a9:7c:10:
f9:3b:83:bd:f7:d3:c8:65:ea:f9:f2:0f:64:3e:a6:87:b0:79:
b5:fa:39:e2:14:00:2b:b8:7a:37:8b:4c:44:f9:20:f3:47:3c:
ec:5f:1a:24:32:33:0b:a9:ea:ae:7d:ed:f8:09:d3:dc:0d:c2:
54:01:70:e5:c3:cd:28:71:7c:dd:13:b7:40:0f:34:67:41:dc:
e5:0b:e8:58:46:60:57:69:18:39:eb:37:ef:6e:1c:00:34:3b:
06:df:b2:15:2c:3a:44:3c:26:70:5a:12:ca:c8:b1:42:98:04:
7c:bd:02:9c:54:bb:80:26:a1:8c:71:39:31:a0:7b:f7:7a:8a:
5b:1b:aa:dc:2d:ef:27:ce:ab:65:a9:9a:ef:59:6e:4c:8d:e4:
f6:1c:d3:2f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 9 01:00:59 2025 by rpki-client