Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/98/1bafe1-6996-4dcf-8752-d540e8b13f7d/1/XzoD6voEyDkjvYaTJGGFDfX3gUY.mft
File: XzoD6voEyDkjvYaTJGGFDfX3gUY.mft (raw, json)
Hash identifier: 9CZOW5bZguryrUlHLzt7HPOGllUNdZk6cndYuEAg57Q=
Subject key identifier: 59:42:0E:57:59:6E:88:AB:17:80:44:D5:B7:22:26:87:28:40:22:48
Authority key identifier: 5F:3A:03:EA:FA:04:C8:39:23:BD:86:93:24:61:85:0D:F5:F7:81:46
Certificate issuer: /CN=5f3a03eafa04c83923bd86932461850df5f78146
Certificate serial: 01988C58C7A9F3A818DA51EC36F833A13AC1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XzoD6voEyDkjvYaTJGGFDfX3gUY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/98/1bafe1-6996-4dcf-8752-d540e8b13f7d/1/XzoD6voEyDkjvYaTJGGFDfX3gUY.mft
Manifest number: 127E
Signing time: Sat 09 Aug 2025 01:01:25 +0000
Manifest this update: Sat 09 Aug 2025 01:01:25 +0000
Manifest next update: Sun 10 Aug 2025 01:01:25 +0000
Files and hashes: 1: XzoD6voEyDkjvYaTJGGFDfX3gUY.crl (hash: 8qZv5KXhoqFngSsiVSm43aSvcK/BORhJLlC7/a6cpAw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/98/1bafe1-6996-4dcf-8752-d540e8b13f7d/1/XzoD6voEyDkjvYaTJGGFDfX3gUY.crl
rsync://rpki.ripe.net/repository/DEFAULT/98/1bafe1-6996-4dcf-8752-d540e8b13f7d/1/XzoD6voEyDkjvYaTJGGFDfX3gUY.mft
rsync://rpki.ripe.net/repository/DEFAULT/XzoD6voEyDkjvYaTJGGFDfX3gUY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 10 Aug 2025 01:01:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:8c:58:c7:a9:f3:a8:18:da:51:ec:36:f8:33:a1:3a:c1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5f3a03eafa04c83923bd86932461850df5f78146
Validity
Not Before: Aug 9 01:01:25 2025 GMT
Not After : Aug 10 01:01:25 2025 GMT
Subject: CN=59420e57596e88ab178044d5b722268728402248
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ec:47:a6:6d:de:2f:38:0b:a8:2f:e7:ee:2d:17:
e3:ee:f4:c7:90:fe:e8:6e:7e:76:43:f2:2e:a2:49:
ab:c7:49:c4:2e:b6:be:e6:06:7b:ea:60:c3:ed:29:
cb:5f:2d:d2:20:f9:46:a0:d4:4a:a1:71:15:4b:f3:
22:21:e0:5e:6f:26:61:d4:1c:0e:2b:0c:6f:67:46:
3e:c2:a3:f7:be:6a:17:0c:af:8a:34:f1:ae:4c:8e:
bc:31:ac:54:56:9a:51:8b:05:a5:4a:da:03:b1:fc:
55:65:85:35:05:a7:5a:b8:18:f0:86:37:3b:1f:a9:
7e:e8:94:b2:b6:49:c0:99:8d:06:d5:66:45:2f:be:
6a:3f:b5:55:87:5c:72:06:bf:0e:dd:9f:82:8d:73:
01:7b:9e:3b:6f:dd:10:f2:79:5b:72:aa:2b:d8:20:
d2:d9:19:c2:9d:89:42:ed:70:40:4e:5d:59:5a:91:
fd:16:dc:41:22:ca:c3:f3:4b:ad:c8:65:61:76:b3:
bc:67:4b:72:91:9c:4a:df:23:b1:ed:c2:f1:10:c9:
58:dc:f6:f2:79:96:4f:99:54:58:59:3d:65:fd:2b:
10:0c:07:3d:55:36:4e:50:ab:6c:c5:1b:17:e8:ad:
60:c8:c1:b9:e8:b8:37:64:ac:71:52:1c:32:40:2f:
a1:95
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
59:42:0E:57:59:6E:88:AB:17:80:44:D5:B7:22:26:87:28:40:22:48
X509v3 Authority Key Identifier:
keyid:5F:3A:03:EA:FA:04:C8:39:23:BD:86:93:24:61:85:0D:F5:F7:81:46
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XzoD6voEyDkjvYaTJGGFDfX3gUY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/98/1bafe1-6996-4dcf-8752-d540e8b13f7d/1/XzoD6voEyDkjvYaTJGGFDfX3gUY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/98/1bafe1-6996-4dcf-8752-d540e8b13f7d/1/XzoD6voEyDkjvYaTJGGFDfX3gUY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
9a:53:68:c8:6b:c3:58:bc:39:c3:6a:4e:58:db:bb:42:6a:44:
d1:4e:50:2a:d1:46:30:aa:d1:fc:b8:69:3f:f5:d0:e8:7e:72:
99:6c:0d:ac:af:10:26:41:88:23:0a:8c:ad:8f:16:2b:4c:5a:
c2:11:93:a5:08:11:34:9d:d5:23:3b:3c:7a:7d:fd:96:bb:ad:
a6:b7:2e:d4:d0:57:b9:63:00:1d:ab:ed:bd:b6:e5:d8:fc:63:
98:5d:59:ce:90:86:da:dc:de:2d:f5:43:f3:98:29:35:b5:b3:
b8:77:c2:f8:6e:b4:56:cf:6f:55:95:a9:d0:df:a2:cd:63:2f:
96:00:e7:0a:77:f3:8f:ee:7a:9f:d7:70:a5:e3:4c:6e:e4:51:
11:f8:cf:2a:6e:42:30:30:83:dc:e5:55:2a:dd:f5:33:12:d5:
c4:ea:70:de:29:bf:30:8c:b7:b4:4a:e8:be:7c:2a:07:2e:f8:
fd:d6:e9:ae:91:f3:3d:0f:ba:41:5d:6c:84:e0:45:9e:38:94:
c1:de:c4:c5:ff:21:20:51:9c:36:4b:dc:99:43:9f:a4:7b:3a:
2d:d5:75:2e:32:07:80:79:11:0e:80:f6:b0:06:94:1a:30:23:
53:0a:5d:6c:69:f4:db:1f:5d:a1:2a:58:99:ba:46:a4:f9:5a:
c5:24:f5:db
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 9 10:41:02 2025 by rpki-client