Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/40/549774-0b7e-4b88-8981-1f0aac1495ac/1/xGtE1wczJKsoQWNn3gQPDkYzSNE.mft
File: xGtE1wczJKsoQWNn3gQPDkYzSNE.mft (raw, json)
Hash identifier: 7tT3/M5Vmmd//BFaGa0ZM26jEVsd/wlTj1+6dfCfoSw=
Subject key identifier: 2B:FE:90:4C:FD:FA:2C:01:99:B1:EB:E3:F5:70:1F:1F:2D:45:2E:35
Authority key identifier: C4:6B:44:D7:07:33:24:AB:28:41:63:67:DE:04:0F:0E:46:33:48:D1
Certificate issuer: /CN=c46b44d7073324ab28416367de040f0e463348d1
Certificate serial: 0198971307E59A3A9996ED107BE61763D834
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xGtE1wczJKsoQWNn3gQPDkYzSNE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/40/549774-0b7e-4b88-8981-1f0aac1495ac/1/xGtE1wczJKsoQWNn3gQPDkYzSNE.mft
Manifest number: 0E53
Signing time: Mon 11 Aug 2025 03:01:03 +0000
Manifest this update: Mon 11 Aug 2025 03:01:03 +0000
Manifest next update: Tue 12 Aug 2025 03:01:03 +0000
Files and hashes: 1: xGtE1wczJKsoQWNn3gQPDkYzSNE.crl (hash: 2bIxno3lXBuQwPpCHnVHgZ6WlqQo5dFFUPHWDmZMkhA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/40/549774-0b7e-4b88-8981-1f0aac1495ac/1/xGtE1wczJKsoQWNn3gQPDkYzSNE.crl
rsync://rpki.ripe.net/repository/DEFAULT/40/549774-0b7e-4b88-8981-1f0aac1495ac/1/xGtE1wczJKsoQWNn3gQPDkYzSNE.mft
rsync://rpki.ripe.net/repository/DEFAULT/xGtE1wczJKsoQWNn3gQPDkYzSNE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 12 Aug 2025 02:00:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:97:13:07:e5:9a:3a:99:96:ed:10:7b:e6:17:63:d8:34
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c46b44d7073324ab28416367de040f0e463348d1
Validity
Not Before: Aug 11 03:01:03 2025 GMT
Not After : Aug 12 03:01:03 2025 GMT
Subject: CN=2bfe904cfdfa2c0199b1ebe3f5701f1f2d452e35
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:6e:0f:fa:83:90:77:a9:26:11:a2:0e:24:af:
47:89:9f:73:9a:ac:46:f3:c6:04:50:28:78:3d:91:
bf:e6:f7:30:67:88:40:1d:6d:08:fd:4d:cb:e3:be:
d2:3a:53:50:e9:00:6c:d4:27:32:f9:7f:b8:72:88:
d2:b4:50:9d:40:0a:cc:8b:de:10:91:5c:c0:ba:78:
6c:b8:53:4c:a2:37:1c:e9:e0:52:52:4d:52:22:0d:
a1:39:41:e8:4f:09:5a:c6:dd:b8:27:22:3c:ec:b6:
d7:02:96:b2:a8:56:52:8c:46:e2:4f:4e:17:e1:e9:
2f:96:c3:bf:48:0f:c7:c0:c8:05:59:90:e5:55:ac:
3f:38:15:4d:29:60:b4:51:eb:f1:3c:23:e9:29:0d:
94:8f:34:d6:94:c2:74:cc:6e:9b:cf:d4:43:cd:9f:
31:d3:06:54:67:4a:ce:8a:01:b6:06:69:cd:22:41:
8c:a0:b8:f0:96:81:df:ec:4f:b5:51:7a:d3:13:7f:
a2:db:49:d0:85:72:c2:e6:93:cb:91:9a:71:43:53:
71:c3:44:33:78:c1:f4:eb:95:12:22:eb:af:6b:8a:
6f:a2:8b:53:4f:f7:25:70:26:91:a4:6e:bc:05:21:
9a:53:c5:13:84:93:c7:de:e2:95:71:34:5e:31:66:
52:3d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2B:FE:90:4C:FD:FA:2C:01:99:B1:EB:E3:F5:70:1F:1F:2D:45:2E:35
X509v3 Authority Key Identifier:
keyid:C4:6B:44:D7:07:33:24:AB:28:41:63:67:DE:04:0F:0E:46:33:48:D1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xGtE1wczJKsoQWNn3gQPDkYzSNE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/40/549774-0b7e-4b88-8981-1f0aac1495ac/1/xGtE1wczJKsoQWNn3gQPDkYzSNE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/40/549774-0b7e-4b88-8981-1f0aac1495ac/1/xGtE1wczJKsoQWNn3gQPDkYzSNE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
5a:65:f1:10:c6:93:69:00:82:72:98:72:c1:91:91:16:79:62:
a2:32:2f:ad:49:1b:21:72:56:29:05:32:94:e9:cd:aa:44:38:
44:b1:1c:46:af:ae:48:e4:62:69:5d:00:52:77:fb:8b:16:35:
16:11:0b:cc:5e:ee:a1:e4:b5:b5:ae:4b:77:3d:ba:c6:a6:88:
3e:d4:67:35:87:67:ef:31:bd:dc:e3:5d:a3:99:06:79:f8:84:
74:39:18:09:3e:0d:88:ae:17:61:e4:d6:b4:2a:aa:f3:c3:9a:
01:3a:e6:94:81:fa:d5:b6:8e:ea:57:a6:dd:20:c0:1e:ae:9f:
d4:37:de:ee:c1:b8:ac:49:9b:8a:9f:54:70:0e:ad:98:bf:56:
da:0e:84:e1:fc:8f:57:72:ae:ae:59:64:cb:95:08:cb:1f:dc:
5a:07:6d:e3:bc:17:91:d3:4a:04:6d:76:7e:40:30:0f:b2:5b:
14:f5:db:20:de:43:20:2f:58:cb:02:25:24:44:32:8d:1c:94:
3b:4c:bd:b3:d6:d4:83:87:2c:70:3f:a8:b4:5a:37:c7:e2:9c:
da:a7:62:4b:ec:3a:d9:b7:39:f9:94:33:82:74:b7:16:0f:9d:
07:36:f9:38:20:0f:35:96:06:d0:4b:9d:0f:5f:33:35:ff:b4:
bd:f6:9d:1b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Aug 11 04:29:14 2025 by rpki-client