Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cb/cbe005-2689-4379-9a7e-a50e32de0823/1/xIzPWOSy4trdSoSDPAZ87iuXRek.mft
File: xIzPWOSy4trdSoSDPAZ87iuXRek.mft (raw, json)
Hash identifier: /0PLBWB84M0BQKsplKOeJaqGP00py+nBYza6X3uILgA=
Subject key identifier: DF:30:9E:32:70:9B:31:14:97:94:DB:A8:32:AE:C2:81:89:DF:C6:86
Authority key identifier: C4:8C:CF:58:E4:B2:E2:DA:DD:4A:84:83:3C:06:7C:EE:2B:97:45:E9
Certificate issuer: /CN=c48ccf58e4b2e2dadd4a84833c067cee2b9745e9
Certificate serial: 01987ED38EB54AF8DCEAD6832E99F77C9543
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xIzPWOSy4trdSoSDPAZ87iuXRek.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cb/cbe005-2689-4379-9a7e-a50e32de0823/1/xIzPWOSy4trdSoSDPAZ87iuXRek.mft
Manifest number: 084C
Signing time: Wed 06 Aug 2025 10:00:50 +0000
Manifest this update: Wed 06 Aug 2025 10:00:50 +0000
Manifest next update: Thu 07 Aug 2025 10:00:50 +0000
Files and hashes: 1: xIzPWOSy4trdSoSDPAZ87iuXRek.crl (hash: n0gtZaPfdFFxx0z3RSS3hwztbt/qti4JuaD80iym8Do=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/cb/cbe005-2689-4379-9a7e-a50e32de0823/1/xIzPWOSy4trdSoSDPAZ87iuXRek.crl
rsync://rpki.ripe.net/repository/DEFAULT/cb/cbe005-2689-4379-9a7e-a50e32de0823/1/xIzPWOSy4trdSoSDPAZ87iuXRek.mft
rsync://rpki.ripe.net/repository/DEFAULT/xIzPWOSy4trdSoSDPAZ87iuXRek.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 07 Aug 2025 08:00:28 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:7e:d3:8e:b5:4a:f8:dc:ea:d6:83:2e:99:f7:7c:95:43
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c48ccf58e4b2e2dadd4a84833c067cee2b9745e9
Validity
Not Before: Aug 6 10:00:50 2025 GMT
Not After : Aug 7 10:00:50 2025 GMT
Subject: CN=df309e32709b31149794dba832aec28189dfc686
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:0b:aa:43:0a:c4:07:cf:5d:c4:43:06:f7:d4:
6d:22:00:42:38:f4:59:44:de:05:2b:fa:37:ea:69:
8b:3a:89:5d:04:05:4f:b6:14:d1:eb:e3:ff:30:43:
94:e1:fa:73:67:96:bd:86:78:13:cf:6c:b1:3e:1a:
39:98:c4:78:5c:d7:a5:74:59:37:ad:76:f5:c1:18:
72:23:cc:ac:93:14:7b:5e:10:3a:14:44:a5:41:73:
ee:4b:bf:1b:68:44:ba:03:87:3e:8a:db:60:d2:ef:
fc:d8:d0:b9:1f:f5:1f:ff:6b:c3:ce:10:0e:16:43:
6f:80:85:9b:ba:d0:dd:9b:99:ef:44:4b:b1:db:47:
dc:31:fb:fe:cb:6c:32:a8:3c:bd:a2:63:86:c3:e1:
9c:eb:be:68:a0:b0:ab:f7:e9:75:8d:9a:9b:f8:f1:
9d:4c:d9:db:93:db:16:f0:9e:5e:d4:8b:e1:ad:67:
3c:1c:4c:35:f0:8f:5e:2e:c0:48:a7:ab:38:e2:21:
44:ca:e3:3e:81:39:47:99:51:0b:b7:f9:42:e0:ee:
c3:cc:06:24:ea:89:f2:69:29:be:d3:be:93:b5:c0:
b2:d2:53:fc:f9:88:74:b9:b1:a2:4e:fa:49:e0:33:
d7:e9:65:7c:3e:52:79:6c:a3:fa:94:b5:0b:b1:05:
93:03
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DF:30:9E:32:70:9B:31:14:97:94:DB:A8:32:AE:C2:81:89:DF:C6:86
X509v3 Authority Key Identifier:
keyid:C4:8C:CF:58:E4:B2:E2:DA:DD:4A:84:83:3C:06:7C:EE:2B:97:45:E9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xIzPWOSy4trdSoSDPAZ87iuXRek.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cb/cbe005-2689-4379-9a7e-a50e32de0823/1/xIzPWOSy4trdSoSDPAZ87iuXRek.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/cb/cbe005-2689-4379-9a7e-a50e32de0823/1/xIzPWOSy4trdSoSDPAZ87iuXRek.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
9e:c0:88:76:f3:d8:30:1c:69:ed:2c:29:5e:96:0b:57:6c:27:
dc:7c:7a:c3:b9:ec:86:99:be:59:bd:4b:39:14:08:cd:41:8a:
cd:10:48:2a:16:ca:b2:8e:15:c0:00:e5:bc:8c:c6:10:5f:da:
90:b2:3c:e2:f0:ba:8a:2a:50:48:ae:a8:6e:5f:3f:7b:2c:e7:
24:06:58:e9:f0:04:dc:9b:37:5b:77:67:e6:68:27:61:98:9b:
ec:a8:0b:5b:7c:8e:22:7f:b0:f4:67:40:f0:de:da:65:c6:44:
88:13:9b:20:26:80:1f:e3:7c:d1:c5:d4:3c:39:9d:ea:1e:47:
90:aa:91:24:38:b1:4c:4d:73:c1:14:f9:ec:34:6b:7c:85:4c:
f1:46:4f:15:e5:89:61:3e:31:93:59:2d:b8:e6:9f:b8:8b:42:
83:f2:1c:3e:35:fa:34:ef:55:4c:ff:5f:05:87:cb:ce:7b:ba:
71:a5:1f:e3:6a:7a:a2:71:99:a6:68:ee:58:06:cc:41:4e:0a:
08:be:12:22:3c:7d:a3:ef:48:5e:5a:d0:4e:8e:a2:58:d3:2f:
b4:46:7e:4d:27:44:a8:71:1d:79:65:63:4a:c4:2d:13:37:86:
e7:e1:0e:66:6a:53:1d:ab:d2:bc:5f:e7:fb:97:ef:d0:ab:33:
90:57:ad:2e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Aug 6 14:06:12 2025 by rpki-client