Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b1/8f015d-a7e4-48d8-8705-1ec37465d3af/1/XSGWjpHC9H8bB8HzX-fSY8VtBJU.mft
File: XSGWjpHC9H8bB8HzX-fSY8VtBJU.mft (raw, json)
Hash identifier: qQC4Xd73f0gSWRxrJ27H6UXMfTrs+uFEhuwiTJj0muo=
Subject key identifier: 73:3A:41:F3:DE:38:08:2C:AA:7A:F6:9D:9B:58:B3:D8:07:7F:75:70
Authority key identifier: 5D:21:96:8E:91:C2:F4:7F:1B:07:C1:F3:5F:E7:D2:63:C5:6D:04:95
Certificate issuer: /CN=5d21968e91c2f47f1b07c1f35fe7d263c56d0495
Certificate serial: 0198820BD47D7D9EC8F06CCDAE874BAF0E83
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XSGWjpHC9H8bB8HzX-fSY8VtBJU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b1/8f015d-a7e4-48d8-8705-1ec37465d3af/1/XSGWjpHC9H8bB8HzX-fSY8VtBJU.mft
Manifest number: 0630
Signing time: Thu 07 Aug 2025 01:01:09 +0000
Manifest this update: Thu 07 Aug 2025 01:01:09 +0000
Manifest next update: Fri 08 Aug 2025 01:01:09 +0000
Files and hashes: 1: XSGWjpHC9H8bB8HzX-fSY8VtBJU.crl (hash: M9zywwCx1xjDi1zfuQysYOmXggL9KTuLc6xXcUuexVk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b1/8f015d-a7e4-48d8-8705-1ec37465d3af/1/XSGWjpHC9H8bB8HzX-fSY8VtBJU.crl
rsync://rpki.ripe.net/repository/DEFAULT/b1/8f015d-a7e4-48d8-8705-1ec37465d3af/1/XSGWjpHC9H8bB8HzX-fSY8VtBJU.mft
rsync://rpki.ripe.net/repository/DEFAULT/XSGWjpHC9H8bB8HzX-fSY8VtBJU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 07 Aug 2025 20:46:39 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:82:0b:d4:7d:7d:9e:c8:f0:6c:cd:ae:87:4b:af:0e:83
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5d21968e91c2f47f1b07c1f35fe7d263c56d0495
Validity
Not Before: Aug 7 01:01:09 2025 GMT
Not After : Aug 8 01:01:09 2025 GMT
Subject: CN=733a41f3de38082caa7af69d9b58b3d8077f7570
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:15:59:fd:a2:16:d5:0d:33:88:fd:59:01:18:
00:0f:40:61:a5:a4:37:19:55:4e:f1:9c:a1:c0:57:
fa:59:95:98:11:67:4e:a1:fe:86:83:d1:59:8f:2f:
b1:52:6d:26:a1:5e:65:58:bd:51:6e:d7:6d:7d:0f:
60:17:ef:79:36:80:6d:5a:10:c3:62:9f:c4:e9:d6:
76:f2:98:d8:69:15:c7:36:28:42:5a:14:bc:c6:63:
44:18:d1:91:ae:31:dd:6a:d0:44:aa:5d:c4:50:4c:
50:61:c4:33:5e:79:b3:e1:3d:74:ba:3c:85:bb:2f:
c4:ce:6e:53:61:b6:89:c6:0e:47:04:66:86:f4:0d:
1e:89:44:82:8e:e7:56:f9:64:46:d9:df:51:94:03:
2e:c2:6b:f5:c0:63:5a:fd:e1:91:24:75:77:ea:7f:
70:eb:5d:0a:c8:5c:f9:67:99:1b:e2:04:cd:b4:1c:
10:ca:ec:d8:a9:f6:54:1b:b4:76:76:7b:e5:34:49:
c3:ad:ff:50:2d:11:e5:e2:6d:a6:1e:82:b4:5b:72:
c2:53:53:28:cd:2c:f1:73:45:a2:37:30:5f:ca:e5:
23:18:cf:0e:62:45:0a:86:5c:95:e7:f4:ba:4b:3a:
d6:aa:b6:d4:19:47:df:c9:b1:c8:04:59:a6:2d:d9:
ef:75
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
73:3A:41:F3:DE:38:08:2C:AA:7A:F6:9D:9B:58:B3:D8:07:7F:75:70
X509v3 Authority Key Identifier:
keyid:5D:21:96:8E:91:C2:F4:7F:1B:07:C1:F3:5F:E7:D2:63:C5:6D:04:95
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XSGWjpHC9H8bB8HzX-fSY8VtBJU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b1/8f015d-a7e4-48d8-8705-1ec37465d3af/1/XSGWjpHC9H8bB8HzX-fSY8VtBJU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b1/8f015d-a7e4-48d8-8705-1ec37465d3af/1/XSGWjpHC9H8bB8HzX-fSY8VtBJU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
1b:9b:f9:a7:b6:95:8c:c1:27:a0:1b:5f:ea:48:47:f8:66:44:
95:f1:81:91:31:02:92:bc:15:2c:d6:ee:fd:7f:96:c1:b0:6a:
9b:6c:c2:2f:e7:f0:fe:aa:73:41:4d:bb:ff:2c:f5:3c:40:a0:
0d:ef:2e:df:78:06:4a:e9:9d:55:40:3e:49:40:9c:6c:77:52:
d3:5c:da:4e:18:35:12:c8:f6:33:a1:c6:8a:49:1f:bd:6c:ca:
f7:c2:59:40:8d:ba:b6:43:dc:58:d0:87:35:43:c0:04:41:08:
2f:ec:14:bb:ea:12:fa:c8:bc:0b:25:d6:5e:85:cd:4f:fa:f7:
26:67:34:47:eb:0d:0b:cb:04:5a:49:ef:24:99:15:18:b6:86:
26:69:12:fc:da:8a:18:51:17:34:c0:39:cc:4a:7a:54:73:17:
aa:56:a9:80:b3:14:2a:92:1a:fa:d3:8f:22:00:f6:57:48:d1:
65:4a:da:6b:6a:39:f0:40:e9:79:39:f9:c8:7e:1f:7f:0d:a4:
0b:65:10:97:0c:58:02:86:43:1e:1b:55:93:97:e4:9a:2f:97:
83:91:39:46:f9:1d:07:3b:19:e8:ec:1b:c5:4f:b1:42:d9:47:
b3:62:13:4e:43:25:54:35:97:d8:7d:8b:c4:9d:7b:c3:ec:4f:
91:10:de:47
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Aug 7 04:24:57 2025 by rpki-client