Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/05/c9c0d8-7013-46c3-9c28-434f9e0d750c/1/M2PXLN2TqwL-P3iNYh1xXZ79dpk.mft
File: M2PXLN2TqwL-P3iNYh1xXZ79dpk.mft (raw, json)
Hash identifier: a9ho4zt7C3j4kw4eJvTp7lQ/kbbnkunOpa7Hf26RLkA=
Subject key identifier: 75:34:9E:23:14:53:00:03:7B:1B:52:C8:68:D6:48:9E:65:97:91:2C
Authority key identifier: 33:63:D7:2C:DD:93:AB:02:FE:3F:78:8D:62:1D:71:5D:9E:FD:76:99
Certificate issuer: /CN=3363d72cdd93ab02fe3f788d621d715d9efd7699
Certificate serial: 019873E277D8C34149B81A8D4FEC91A932E9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/M2PXLN2TqwL-P3iNYh1xXZ79dpk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/05/c9c0d8-7013-46c3-9c28-434f9e0d750c/1/M2PXLN2TqwL-P3iNYh1xXZ79dpk.mft
Manifest number: 11FC
Signing time: Mon 04 Aug 2025 07:01:18 +0000
Manifest this update: Mon 04 Aug 2025 07:01:18 +0000
Manifest next update: Tue 05 Aug 2025 07:01:18 +0000
Files and hashes: 1: M2PXLN2TqwL-P3iNYh1xXZ79dpk.crl (hash: zJh0thJHvI9KC3gZMqqKtgDZgiLglO6v0pbJLk2uukA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/05/c9c0d8-7013-46c3-9c28-434f9e0d750c/1/M2PXLN2TqwL-P3iNYh1xXZ79dpk.crl
rsync://rpki.ripe.net/repository/DEFAULT/05/c9c0d8-7013-46c3-9c28-434f9e0d750c/1/M2PXLN2TqwL-P3iNYh1xXZ79dpk.mft
rsync://rpki.ripe.net/repository/DEFAULT/M2PXLN2TqwL-P3iNYh1xXZ79dpk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 05 Aug 2025 03:00:28 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:73:e2:77:d8:c3:41:49:b8:1a:8d:4f:ec:91:a9:32:e9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3363d72cdd93ab02fe3f788d621d715d9efd7699
Validity
Not Before: Aug 4 07:01:18 2025 GMT
Not After : Aug 5 07:01:18 2025 GMT
Subject: CN=75349e23145300037b1b52c868d6489e6597912c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:89:45:13:6a:9b:ac:a2:31:39:be:f6:4e:e3:
50:f8:87:79:e7:b4:58:50:1a:0a:bc:a0:f0:82:af:
3c:c0:5b:a9:1c:e1:c9:4d:f6:b2:3d:9a:b1:3d:8a:
b8:d0:ed:5b:92:13:5c:08:8d:97:e4:87:1c:92:3e:
1b:0a:75:e8:f4:eb:d8:7e:55:97:56:4f:bc:69:ae:
4a:bb:0d:59:89:83:28:7e:c6:86:6f:0d:9d:65:f1:
26:64:c6:4e:57:c0:4a:78:df:24:1d:ec:78:81:ca:
46:f1:52:ad:58:42:f6:3e:5c:d4:fe:f0:6f:7d:56:
5b:8f:f1:09:ba:a9:31:4a:a2:43:d7:11:ae:3f:27:
2e:46:8e:41:a9:a1:1d:11:0d:a2:0b:bd:1a:cd:c8:
f9:06:c5:82:ba:87:13:25:e0:5d:07:45:80:d7:e7:
0f:18:bb:5f:6e:c0:a1:46:02:d2:01:f8:12:57:2f:
c2:e5:cb:c4:54:5c:a6:df:72:04:b1:5a:c6:02:92:
4d:9b:3b:e2:e2:cd:36:ce:e2:3f:7b:68:25:c5:21:
eb:e4:f9:7a:a6:d0:9f:98:1c:aa:24:a5:dc:71:f5:
4c:f7:af:d2:cf:7e:af:96:ed:ac:e3:ee:f1:0c:a2:
5f:cb:e7:7e:ab:79:93:95:4c:d4:62:9d:42:99:fb:
bd:11
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
75:34:9E:23:14:53:00:03:7B:1B:52:C8:68:D6:48:9E:65:97:91:2C
X509v3 Authority Key Identifier:
keyid:33:63:D7:2C:DD:93:AB:02:FE:3F:78:8D:62:1D:71:5D:9E:FD:76:99
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/M2PXLN2TqwL-P3iNYh1xXZ79dpk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/05/c9c0d8-7013-46c3-9c28-434f9e0d750c/1/M2PXLN2TqwL-P3iNYh1xXZ79dpk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/05/c9c0d8-7013-46c3-9c28-434f9e0d750c/1/M2PXLN2TqwL-P3iNYh1xXZ79dpk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
72:35:85:55:0e:1d:f7:e4:23:12:3f:3e:dd:67:de:16:a2:b0:
10:fd:5a:a0:45:99:ef:09:56:ab:aa:a0:b1:3f:32:57:79:4c:
4e:be:93:f0:ca:ad:d8:10:91:57:44:9c:70:63:82:61:64:c5:
26:7c:32:6d:1d:93:20:bb:c6:56:66:63:d3:45:ab:48:8b:dd:
3c:2c:eb:13:66:43:3a:96:48:83:59:a3:de:f2:a3:7c:ac:da:
e5:5b:71:4b:b7:b1:57:70:fe:6b:7c:b7:f4:ef:8e:6b:a9:71:
cd:74:3a:77:23:cc:15:73:33:70:d9:a5:a2:22:fe:1f:36:9b:
9d:ba:d0:ed:d3:60:ba:82:8e:79:64:18:61:fe:90:23:19:47:
78:20:cf:12:9d:0f:9c:fa:85:b8:c5:d9:75:47:ed:e5:f8:a7:
8f:48:19:c5:a8:1c:6d:b8:e7:6e:2f:74:48:a1:73:fe:84:1a:
31:24:d8:52:69:e6:dc:f9:8c:67:5b:2b:11:ab:f8:3d:a7:cf:
e7:0f:cd:fc:26:64:27:ca:1f:c2:54:9b:f1:62:35:15:8d:f7:
d2:b9:22:f6:a2:5e:42:6d:8c:29:02:ae:08:d0:c8:8f:6c:00:
e1:1c:b7:74:b8:a5:4c:a8:26:0c:47:2c:12:77:8d:a1:e9:39:
3e:81:52:a9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Aug 4 11:17:58 2025 by rpki-client