Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/58/42e24c-21f5-441f-b6bc-c23d7adbebdc/1/500-XZlL7NPyWMQd858fY-xWPh0.mft
File: 500-XZlL7NPyWMQd858fY-xWPh0.mft (raw, json)
Hash identifier: pEVmC+LfZKu9Joxk3EMPBAxl6QYnyK8lVVpb3CmekWg=
Subject key identifier: 75:48:8B:0E:43:9A:6C:22:2E:9F:5E:4E:93:E3:60:E5:D7:89:C7:C8
Authority key identifier: E7:4D:3E:5D:99:4B:EC:D3:F2:58:C4:1D:F3:9F:1F:63:EC:56:3E:1D
Certificate issuer: /CN=e74d3e5d994becd3f258c41df39f1f63ec563e1d
Certificate serial: 019880C20A5C89DB8A2663C07A620CBEF459
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/500-XZlL7NPyWMQd858fY-xWPh0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/58/42e24c-21f5-441f-b6bc-c23d7adbebdc/1/500-XZlL7NPyWMQd858fY-xWPh0.mft
Manifest number: 0FC8
Signing time: Wed 06 Aug 2025 19:00:56 +0000
Manifest this update: Wed 06 Aug 2025 19:00:56 +0000
Manifest next update: Thu 07 Aug 2025 19:00:56 +0000
Files and hashes: 1: 500-XZlL7NPyWMQd858fY-xWPh0.crl (hash: VxHR4O20dk4tnvssACEmATz0GmyZh4iycnva/7sHqUQ=)
2: BBc69UDcCnvJ9YXOkYKIegaNiDE.roa (hash: u/teCtCSqk7whi20Ul6NWhHZ26QmJCDD43T9Guz4eqc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/58/42e24c-21f5-441f-b6bc-c23d7adbebdc/1/500-XZlL7NPyWMQd858fY-xWPh0.crl
rsync://rpki.ripe.net/repository/DEFAULT/58/42e24c-21f5-441f-b6bc-c23d7adbebdc/1/500-XZlL7NPyWMQd858fY-xWPh0.mft
rsync://rpki.ripe.net/repository/DEFAULT/500-XZlL7NPyWMQd858fY-xWPh0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 07 Aug 2025 19:00:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:80:c2:0a:5c:89:db:8a:26:63:c0:7a:62:0c:be:f4:59
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e74d3e5d994becd3f258c41df39f1f63ec563e1d
Validity
Not Before: Aug 6 19:00:56 2025 GMT
Not After : Aug 7 19:00:56 2025 GMT
Subject: CN=75488b0e439a6c222e9f5e4e93e360e5d789c7c8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:23:30:f3:5e:b5:bc:f7:66:a9:b6:f9:58:4c:
a3:20:ed:05:a9:50:78:eb:09:8b:9d:ac:8b:9b:a4:
79:9d:1f:8b:46:a3:28:e2:0b:ee:3d:fe:54:21:8d:
45:0b:12:7a:89:11:3f:08:98:c7:53:69:3a:f4:02:
b4:0e:fd:2c:56:5f:2c:6f:1f:38:da:9f:83:40:cb:
ed:53:c2:4a:13:aa:3f:6c:9c:40:f6:1c:d2:f4:e7:
cd:fe:e9:2d:a3:07:bb:65:a1:38:8b:7f:40:78:97:
e2:bc:f5:6b:b3:85:da:a6:86:62:1e:3a:63:c1:0e:
d5:4f:74:a4:99:1c:d6:05:07:5d:02:74:28:cb:a0:
cc:7b:6b:5e:f8:6a:59:0f:f2:28:c0:89:7c:a2:f3:
fb:54:af:13:12:f0:49:30:35:65:66:f9:2b:6f:60:
35:0c:36:37:b2:eb:56:a8:c5:c7:34:d5:06:6b:1d:
bc:ef:68:75:71:db:00:3a:9d:02:bb:29:ab:4b:33:
b7:6f:48:7e:6f:a8:c2:2c:05:52:0f:a4:4f:cd:0a:
8a:a9:07:1d:1f:a0:d6:14:9d:56:9a:3a:99:a0:ba:
e9:ce:74:ae:2c:f8:26:fa:09:47:65:96:c1:f9:60:
e2:8f:88:f7:ef:29:78:24:84:07:53:d7:e2:cb:fa:
ad:1b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
75:48:8B:0E:43:9A:6C:22:2E:9F:5E:4E:93:E3:60:E5:D7:89:C7:C8
X509v3 Authority Key Identifier:
keyid:E7:4D:3E:5D:99:4B:EC:D3:F2:58:C4:1D:F3:9F:1F:63:EC:56:3E:1D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/500-XZlL7NPyWMQd858fY-xWPh0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/58/42e24c-21f5-441f-b6bc-c23d7adbebdc/1/500-XZlL7NPyWMQd858fY-xWPh0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/58/42e24c-21f5-441f-b6bc-c23d7adbebdc/1/500-XZlL7NPyWMQd858fY-xWPh0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
52:43:03:f5:a0:34:e1:c3:11:3b:9d:75:4b:d6:fe:69:82:cb:
22:6f:15:c9:3d:88:f9:b6:68:45:5d:cd:49:a2:ab:e8:49:4b:
11:3a:1c:02:9e:73:70:9a:7f:35:69:1f:3e:f8:cc:5b:26:10:
f2:50:48:53:a4:e9:6b:4b:ea:f5:51:05:d0:53:0e:f5:1f:99:
c4:f3:8f:f2:f0:84:31:17:56:4e:6b:c5:7c:23:1f:33:3e:96:
4e:11:6a:8f:58:f1:a3:9b:6b:a3:b9:ae:b8:e6:f0:8e:0d:9b:
c4:fa:80:cd:f9:44:04:55:98:d1:2b:0f:6f:67:3d:d4:f3:2b:
4a:8e:bb:ee:2d:3d:c1:88:79:05:0c:4a:b9:e5:36:41:84:83:
96:8d:ad:ae:59:d6:3b:2d:12:51:3f:4d:bd:fe:02:47:16:e9:
91:b7:42:aa:dd:52:49:9f:bf:70:bc:92:f3:2f:03:59:0b:66:
e4:e7:f1:16:f3:88:12:d9:e7:8f:45:27:ce:ce:5a:84:76:2c:
94:3c:bc:5b:52:46:33:13:4f:21:e5:84:e0:8e:9b:56:5a:90:
98:1c:26:38:a9:40:e8:bf:23:b4:f9:22:96:a7:51:94:33:4f:
9f:f1:31:13:f0:e5:65:d8:70:fe:d1:42:f1:c7:fc:16:a1:26:
ac:4d:71:e0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Aug 7 04:03:45 2025 by rpki-client