Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f9/34404a-4132-4e83-8e46-390e935beda3/1/Xf04PhaNLsn7w5DqjZmkuvfsO1s.mft
File: Xf04PhaNLsn7w5DqjZmkuvfsO1s.mft (raw, json)
Hash identifier: vghf2XmGqXnAxFnOv3jZyGiElo1bZ0BIouv/8LD3wkA=
Subject key identifier: CA:43:56:B3:92:09:20:ED:AC:6A:BA:D6:62:3C:BE:0E:DB:C0:AB:88
Authority key identifier: 5D:FD:38:3E:16:8D:2E:C9:FB:C3:90:EA:8D:99:A4:BA:F7:EC:3B:5B
Certificate issuer: /CN=5dfd383e168d2ec9fbc390ea8d99a4baf7ec3b5b
Certificate serial: 019892FF00484031630D29FC1F757D33E24E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Xf04PhaNLsn7w5DqjZmkuvfsO1s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f9/34404a-4132-4e83-8e46-390e935beda3/1/Xf04PhaNLsn7w5DqjZmkuvfsO1s.mft
Manifest number: C0
Signing time: Sun 10 Aug 2025 08:00:41 +0000
Manifest this update: Sun 10 Aug 2025 08:00:41 +0000
Manifest next update: Mon 11 Aug 2025 08:00:41 +0000
Files and hashes: 1: Xf04PhaNLsn7w5DqjZmkuvfsO1s.crl (hash: ANx1XciNw1q9+VTIzT69Iaii2ECIydqDlYFDKOd6PUo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f9/34404a-4132-4e83-8e46-390e935beda3/1/Xf04PhaNLsn7w5DqjZmkuvfsO1s.crl
rsync://rpki.ripe.net/repository/DEFAULT/f9/34404a-4132-4e83-8e46-390e935beda3/1/Xf04PhaNLsn7w5DqjZmkuvfsO1s.mft
rsync://rpki.ripe.net/repository/DEFAULT/Xf04PhaNLsn7w5DqjZmkuvfsO1s.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 11 Aug 2025 08:00:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:92:ff:00:48:40:31:63:0d:29:fc:1f:75:7d:33:e2:4e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5dfd383e168d2ec9fbc390ea8d99a4baf7ec3b5b
Validity
Not Before: Aug 10 08:00:41 2025 GMT
Not After : Aug 11 08:00:41 2025 GMT
Subject: CN=ca4356b3920920edac6abad6623cbe0edbc0ab88
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:a9:8d:74:c5:f1:f7:83:5d:87:81:b1:ca:4e:
5f:ef:11:cf:14:e5:2e:c6:32:48:c1:9e:1b:9f:c4:
5a:cf:2a:f5:cf:a1:f2:ae:e9:18:cb:2c:e7:3e:99:
b6:06:f2:11:46:c6:e3:a1:53:2c:b9:9d:4b:51:22:
01:96:48:bb:b7:a4:c0:91:f2:d0:86:cd:e9:07:6e:
96:33:27:5a:3d:74:dc:19:50:ee:78:ed:d0:7f:5b:
2f:b0:8d:af:f4:b5:b8:bf:2a:6c:47:43:16:05:b3:
4b:d1:03:71:07:f0:b7:30:a5:27:18:f8:56:7d:ed:
6c:2b:81:a1:33:9e:5d:d5:0c:6e:37:24:23:ea:b6:
a2:f1:66:bd:8a:00:e1:02:79:1d:5b:90:0d:2a:ce:
73:f3:ce:ea:c1:d2:c9:0f:6d:6c:e1:17:96:d7:18:
65:9c:82:79:d4:d4:e4:a2:8f:f9:0b:7e:5f:39:95:
f7:8b:72:7b:2c:db:a8:5b:59:ea:20:74:13:bc:c8:
3d:ef:5d:b5:07:4a:62:10:11:94:30:ad:37:e9:aa:
f1:33:7a:37:5f:24:2c:03:aa:94:ee:9c:eb:13:b6:
12:8d:2c:9e:0a:da:d0:f2:32:27:da:f4:29:b9:55:
1e:73:30:c8:6f:31:4e:a7:11:07:1b:db:7e:ef:52:
81:a7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CA:43:56:B3:92:09:20:ED:AC:6A:BA:D6:62:3C:BE:0E:DB:C0:AB:88
X509v3 Authority Key Identifier:
keyid:5D:FD:38:3E:16:8D:2E:C9:FB:C3:90:EA:8D:99:A4:BA:F7:EC:3B:5B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Xf04PhaNLsn7w5DqjZmkuvfsO1s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f9/34404a-4132-4e83-8e46-390e935beda3/1/Xf04PhaNLsn7w5DqjZmkuvfsO1s.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f9/34404a-4132-4e83-8e46-390e935beda3/1/Xf04PhaNLsn7w5DqjZmkuvfsO1s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
24:d7:16:33:c1:cd:c6:5f:7b:c9:59:f7:54:e1:31:3a:1e:14:
95:4f:d1:a5:9e:6e:14:79:8e:e8:5c:c5:37:a6:4d:fa:12:b5:
32:3d:bd:00:dc:e5:66:79:c0:04:6b:18:03:d5:53:94:22:f4:
df:de:3d:19:f1:4f:81:9b:b9:13:18:fc:9f:25:86:e0:f6:e8:
33:a4:b1:5b:58:c9:cd:b8:55:82:c0:11:d8:0b:4b:be:55:83:
d0:87:0a:53:6d:44:ac:b7:1d:8c:0f:3b:05:6c:a7:31:8e:dd:
37:b6:b6:60:1b:c9:9d:b0:fa:f1:19:87:2d:73:7f:64:ca:19:
f9:cf:7d:56:3a:18:13:b5:fd:b6:51:43:ce:9b:ed:8d:27:27:
9d:6d:b0:5b:a8:28:96:fb:de:85:35:80:de:66:27:bd:2d:68:
ae:56:96:2b:0a:c5:6c:fc:9a:25:7d:73:62:da:50:06:92:ae:
a5:b8:ab:ad:4c:12:7f:c5:94:68:fb:a1:55:e4:57:2d:55:2e:
36:bd:fb:9e:d7:79:b2:28:db:31:59:dd:5a:a0:2b:cc:2c:55:
ba:43:0c:fb:20:49:22:39:0e:bb:55:8e:ca:56:39:ae:ad:a7:
24:cb:1c:b6:3b:76:c1:77:ee:1c:b0:49:1b:9f:98:ba:30:b6:
1d:31:42:cd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Aug 10 13:46:38 2025 by rpki-client