Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9e/c7ba95-9153-4414-ab0c-d24b4a5b1cdc/1/XTjrKVlWB-1Nj02b8Gy6Qpkmhko.mft
File: XTjrKVlWB-1Nj02b8Gy6Qpkmhko.mft (raw, json)
Hash identifier: k3PN6uGpdCvaWOXGyTI86xkyt79G9UX/s+jL8yttX6A=
Subject key identifier: 71:EF:D9:0A:50:BC:BA:A1:71:99:CA:A5:94:FE:59:8B:D4:A8:E0:1D
Authority key identifier: 5D:38:EB:29:59:56:07:ED:4D:8F:4D:9B:F0:6C:BA:42:99:26:86:4A
Certificate issuer: /CN=5d38eb29595607ed4d8f4d9bf06cba429926864a
Certificate serial: 019872CF419C346CCF8431B3D9A339EA7854
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XTjrKVlWB-1Nj02b8Gy6Qpkmhko.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9e/c7ba95-9153-4414-ab0c-d24b4a5b1cdc/1/XTjrKVlWB-1Nj02b8Gy6Qpkmhko.mft
Manifest number: 0BEB
Signing time: Mon 04 Aug 2025 02:00:41 +0000
Manifest this update: Mon 04 Aug 2025 02:00:41 +0000
Manifest next update: Tue 05 Aug 2025 02:00:41 +0000
Files and hashes: 1: XTjrKVlWB-1Nj02b8Gy6Qpkmhko.crl (hash: QVt6eHFWancCLlNwJIp4IRZrflKkAhKSE6InlYkXwaY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/9e/c7ba95-9153-4414-ab0c-d24b4a5b1cdc/1/XTjrKVlWB-1Nj02b8Gy6Qpkmhko.crl
rsync://rpki.ripe.net/repository/DEFAULT/9e/c7ba95-9153-4414-ab0c-d24b4a5b1cdc/1/XTjrKVlWB-1Nj02b8Gy6Qpkmhko.mft
rsync://rpki.ripe.net/repository/DEFAULT/XTjrKVlWB-1Nj02b8Gy6Qpkmhko.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 05 Aug 2025 02:00:41 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:72:cf:41:9c:34:6c:cf:84:31:b3:d9:a3:39:ea:78:54
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5d38eb29595607ed4d8f4d9bf06cba429926864a
Validity
Not Before: Aug 4 02:00:41 2025 GMT
Not After : Aug 5 02:00:41 2025 GMT
Subject: CN=71efd90a50bcbaa17199caa594fe598bd4a8e01d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9a:48:0a:4e:5e:88:8d:da:15:db:3e:d8:30:17:
68:8f:d8:c1:34:ec:36:4c:82:a8:4f:61:0d:1b:69:
b3:65:75:27:6a:83:dc:aa:18:3e:a9:c3:72:a7:37:
b9:b5:bb:d6:23:90:a3:f7:01:1b:39:74:f1:9d:4d:
fb:7f:d2:39:01:7c:8e:bc:6a:51:67:53:6d:cb:7a:
7e:f7:61:a5:88:d4:eb:7b:28:ff:79:1b:fd:bb:fb:
fb:89:ad:98:e7:97:06:7a:ec:21:ae:3a:13:f1:91:
f2:f3:7f:a1:79:5c:d1:67:79:c6:25:09:de:db:d8:
7b:ac:c1:1a:42:09:8d:1a:4c:71:2e:44:da:2d:07:
d7:a8:89:78:57:7f:b8:30:39:2b:db:3f:f2:6b:b8:
d5:47:3c:17:ca:b7:92:25:f8:30:95:f4:a3:2d:68:
c9:78:5b:6f:0e:47:3a:ac:ef:46:c7:64:36:a8:6f:
7f:5c:5e:34:79:41:e5:e9:52:4b:7a:99:e1:da:b6:
38:b4:ad:01:e3:1b:67:f8:c3:41:cc:40:22:f4:fb:
f1:4f:fb:ab:77:f5:1a:03:8f:a0:df:90:ea:a2:b0:
fd:66:73:ea:a8:2c:95:5c:02:a0:14:a4:fb:c4:54:
90:6c:51:e2:e2:91:20:3a:eb:d7:91:69:a2:90:73:
21:c5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
71:EF:D9:0A:50:BC:BA:A1:71:99:CA:A5:94:FE:59:8B:D4:A8:E0:1D
X509v3 Authority Key Identifier:
keyid:5D:38:EB:29:59:56:07:ED:4D:8F:4D:9B:F0:6C:BA:42:99:26:86:4A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XTjrKVlWB-1Nj02b8Gy6Qpkmhko.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9e/c7ba95-9153-4414-ab0c-d24b4a5b1cdc/1/XTjrKVlWB-1Nj02b8Gy6Qpkmhko.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9e/c7ba95-9153-4414-ab0c-d24b4a5b1cdc/1/XTjrKVlWB-1Nj02b8Gy6Qpkmhko.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
0d:80:ee:22:8f:e8:4c:34:37:30:f9:a1:4e:a4:b8:8f:ab:5d:
ce:c9:19:6a:2c:57:d4:65:16:ea:6e:93:09:70:34:e7:ba:4e:
d3:dc:5c:74:d3:79:80:25:f8:79:5c:f2:6a:64:56:5e:1e:5a:
44:2f:b5:49:e6:81:ec:1d:98:16:ac:4e:7b:da:83:31:8e:fc:
d1:6a:71:8e:f6:35:c5:a8:6e:41:b0:59:b2:61:5b:15:df:89:
42:1f:10:be:bf:b3:d8:b2:2b:2e:2a:f4:19:85:8c:af:ff:9d:
6a:9b:12:8d:9c:f3:1f:47:39:9c:c3:89:3b:9c:54:cc:cf:33:
bf:77:00:b1:78:a9:3e:69:0b:b3:0e:64:3f:94:b9:a5:cc:1c:
a9:b0:44:96:fc:06:cb:c7:5e:30:7f:1f:3f:ee:27:ec:91:8d:
72:22:fc:69:1b:e8:10:65:d2:84:fe:83:85:0f:82:84:48:ef:
d2:61:39:65:77:52:f1:12:33:89:c7:25:e1:1c:38:f1:e6:ad:
82:d6:cf:fb:7e:0b:9e:95:5a:76:bf:0d:0c:fd:e1:43:ee:a2:
65:e2:17:73:27:31:86:f8:06:9a:0d:44:4e:ac:cc:68:30:b5:
79:7d:5f:df:91:55:8f:3c:cb:36:8f:1e:18:8c:e8:39:10:4e:
6a:ed:af:ce
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Aug 4 11:11:34 2025 by rpki-client