Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b9/0de238-8d0b-40ff-b569-b2ff681da6bb/1/X3oSNUb-Uankvt-D7uA3Ur2WOdY.mft
File: X3oSNUb-Uankvt-D7uA3Ur2WOdY.mft (raw, json)
Hash identifier: n4DUPUDWn5k4Egu4/3XaM6nSalQS59aBeBrAUdOwwUU=
Subject key identifier: A2:29:D7:17:82:A5:D2:CC:3B:76:EC:AB:88:57:EC:2A:0C:99:C1:9A
Authority key identifier: 5F:7A:12:35:46:FE:51:A9:E4:BE:DF:83:EE:E0:37:52:BD:96:39:D6
Certificate issuer: /CN=5f7a123546fe51a9e4bedf83eee03752bd9639d6
Certificate serial: 01989E95AD88BE5540327908618023C45CA3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/X3oSNUb-Uankvt-D7uA3Ur2WOdY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b9/0de238-8d0b-40ff-b569-b2ff681da6bb/1/X3oSNUb-Uankvt-D7uA3Ur2WOdY.mft
Manifest number: 0404
Signing time: Tue 12 Aug 2025 14:01:06 +0000
Manifest this update: Tue 12 Aug 2025 14:01:06 +0000
Manifest next update: Wed 13 Aug 2025 14:01:06 +0000
Files and hashes: 1: X3oSNUb-Uankvt-D7uA3Ur2WOdY.crl (hash: Inxy5ER8o5c2y/kB8+SJMUZqk/c4AVAsUfsB6ie1Njk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b9/0de238-8d0b-40ff-b569-b2ff681da6bb/1/X3oSNUb-Uankvt-D7uA3Ur2WOdY.crl
rsync://rpki.ripe.net/repository/DEFAULT/b9/0de238-8d0b-40ff-b569-b2ff681da6bb/1/X3oSNUb-Uankvt-D7uA3Ur2WOdY.mft
rsync://rpki.ripe.net/repository/DEFAULT/X3oSNUb-Uankvt-D7uA3Ur2WOdY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 13 Aug 2025 13:24:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:9e:95:ad:88:be:55:40:32:79:08:61:80:23:c4:5c:a3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5f7a123546fe51a9e4bedf83eee03752bd9639d6
Validity
Not Before: Aug 12 14:01:06 2025 GMT
Not After : Aug 13 14:01:06 2025 GMT
Subject: CN=a229d71782a5d2cc3b76ecab8857ec2a0c99c19a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:c4:33:c0:b8:76:9c:2e:44:31:e8:dc:f1:67:
de:59:9b:4d:7e:46:34:34:5c:e0:d6:10:43:c2:74:
5d:b4:40:9e:0c:2e:a6:1b:59:42:b6:b7:47:82:58:
04:a5:6d:ab:8d:cd:66:3e:d8:70:db:6a:78:e8:e2:
55:7b:d5:7c:51:ce:54:ca:47:eb:eb:b3:fe:62:6b:
aa:a7:cc:c4:fa:4b:ba:b0:ec:8a:30:ad:fa:e7:f8:
ae:64:11:33:4d:7d:4f:be:71:79:98:c9:b4:5c:0b:
41:86:e4:12:3c:49:95:be:9a:82:39:21:b4:e1:ec:
e1:37:9c:2d:29:ed:06:3e:c7:2c:98:78:79:57:20:
80:76:56:95:25:5c:d8:89:6e:eb:61:ec:6d:9c:92:
b7:3c:7b:68:16:e8:f0:9e:a8:a7:0b:2e:b0:af:39:
e2:a3:d9:62:ed:35:a1:4f:aa:4b:8f:39:41:33:73:
ec:10:60:4a:25:07:99:0b:11:50:0a:7c:7f:ea:94:
3c:78:1a:81:9a:d8:2d:b0:c7:5e:9f:7a:42:e0:57:
85:73:31:04:2a:3f:62:3a:c8:8a:05:52:fd:47:fd:
8b:24:6a:dd:26:f2:f3:bd:74:41:f3:a0:b5:5c:d1:
d1:f3:9f:bc:e1:10:05:57:84:d3:72:90:71:a6:8e:
b4:21
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A2:29:D7:17:82:A5:D2:CC:3B:76:EC:AB:88:57:EC:2A:0C:99:C1:9A
X509v3 Authority Key Identifier:
keyid:5F:7A:12:35:46:FE:51:A9:E4:BE:DF:83:EE:E0:37:52:BD:96:39:D6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/X3oSNUb-Uankvt-D7uA3Ur2WOdY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b9/0de238-8d0b-40ff-b569-b2ff681da6bb/1/X3oSNUb-Uankvt-D7uA3Ur2WOdY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b9/0de238-8d0b-40ff-b569-b2ff681da6bb/1/X3oSNUb-Uankvt-D7uA3Ur2WOdY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
72:82:85:35:85:fc:f8:8e:97:65:1f:e2:a2:fc:23:c4:eb:6a:
7e:39:71:18:86:ef:a0:d6:8f:38:c0:96:ec:b3:61:81:13:5f:
79:81:98:4d:6f:c1:1a:cb:75:85:41:e6:df:f0:9b:ad:91:4e:
60:73:41:2a:9c:83:12:d0:11:2f:c8:7f:d0:82:f5:e5:43:23:
eb:db:31:85:04:68:7d:22:c3:e3:8c:1a:6d:d8:f0:84:60:76:
40:f0:f4:bb:cf:f8:73:ac:d0:91:b7:73:31:9a:01:14:f9:8e:
84:90:d0:a1:67:ae:ba:cf:38:db:a5:15:af:b3:df:5c:a3:e6:
70:a5:5f:cb:2c:00:aa:74:3f:af:eb:df:a3:29:e1:c4:1c:2e:
7b:cf:50:1f:4e:71:f0:82:a6:2a:9b:cd:02:9a:42:6e:fb:98:
c0:8c:66:9c:42:8c:70:98:f3:a8:3f:77:41:14:cb:1b:03:3b:
34:5a:67:a1:c5:47:a3:dd:c3:ba:fd:7c:8f:f1:5f:f2:97:43:
9e:00:0c:da:33:66:e3:bc:5b:07:ff:03:44:67:c0:4d:0c:56:
70:92:6b:cc:c4:a9:6a:59:cd:ee:05:3d:50:4c:48:9c:46:3c:
bd:a9:de:00:af:d0:f1:e0:ad:77:d5:e4:ff:4c:aa:0d:1c:be:
5d:d1:85:e4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Aug 12 22:40:42 2025 by rpki-client