Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/08/17cd86-7fbb-408f-a28c-fa2676fe38fd/1/MKJCz2wVKaqgaTNn5EyEoH2LDJ8.mft
File: MKJCz2wVKaqgaTNn5EyEoH2LDJ8.mft (raw, json)
Hash identifier: hFBrE/PL2HbxrI0rsBBTHhOmP3nuzaX4q6/GSbY5PiE=
Subject key identifier: 7A:F7:5B:15:E3:DE:37:20:AE:BE:1A:E2:23:C7:62:CD:68:9C:42:D7
Authority key identifier: 30:A2:42:CF:6C:15:29:AA:A0:69:33:67:E4:4C:84:A0:7D:8B:0C:9F
Certificate issuer: /CN=30a242cf6c1529aaa0693367e44c84a07d8b0c9f
Certificate serial: 019896A61177309A06384CF92F8370CC57C0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/MKJCz2wVKaqgaTNn5EyEoH2LDJ8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/08/17cd86-7fbb-408f-a28c-fa2676fe38fd/1/MKJCz2wVKaqgaTNn5EyEoH2LDJ8.mft
Manifest number: 09B0
Signing time: Mon 11 Aug 2025 01:02:02 +0000
Manifest this update: Mon 11 Aug 2025 01:02:02 +0000
Manifest next update: Tue 12 Aug 2025 01:02:02 +0000
Files and hashes: 1: MKJCz2wVKaqgaTNn5EyEoH2LDJ8.crl (hash: rlKGRA0eX64ca8OYNygVsvf5Z/Ez5/NXQWuy8QFAn1g=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/08/17cd86-7fbb-408f-a28c-fa2676fe38fd/1/MKJCz2wVKaqgaTNn5EyEoH2LDJ8.crl
rsync://rpki.ripe.net/repository/DEFAULT/08/17cd86-7fbb-408f-a28c-fa2676fe38fd/1/MKJCz2wVKaqgaTNn5EyEoH2LDJ8.mft
rsync://rpki.ripe.net/repository/DEFAULT/MKJCz2wVKaqgaTNn5EyEoH2LDJ8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 12 Aug 2025 01:02:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:96:a6:11:77:30:9a:06:38:4c:f9:2f:83:70:cc:57:c0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=30a242cf6c1529aaa0693367e44c84a07d8b0c9f
Validity
Not Before: Aug 11 01:02:02 2025 GMT
Not After : Aug 12 01:02:02 2025 GMT
Subject: CN=7af75b15e3de3720aebe1ae223c762cd689c42d7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:be:29:79:ad:6a:86:5f:f8:a7:1b:8c:d4:39:
94:56:a7:32:4f:98:8b:f1:48:8e:b4:dd:fc:b0:54:
44:c4:fe:89:5f:ad:08:70:8f:1f:21:75:89:97:ed:
2b:aa:ad:86:b9:25:3c:f0:b0:2b:ed:81:52:33:37:
e0:41:8a:3f:59:ce:f1:83:37:01:88:6d:3f:fb:96:
e1:27:ab:89:a9:64:7c:b2:74:04:70:1a:5e:2f:3d:
78:6a:3a:b0:af:06:11:47:ce:41:94:ba:e7:50:fd:
69:b9:82:df:bd:97:ea:70:a6:1e:30:43:07:c4:2d:
5e:21:b0:df:1e:21:3e:dd:c4:d5:b0:2d:3c:5b:83:
0e:f3:f2:8f:60:b3:6f:54:8b:d4:56:57:cf:fd:fa:
ff:6e:d9:c7:20:7b:a6:00:2e:d8:44:51:b3:51:a5:
43:79:92:d3:76:7a:e3:aa:b6:11:75:e1:02:42:4e:
65:09:b4:f0:c9:2e:df:9f:c5:84:cc:32:dd:b1:61:
b0:d7:7a:fa:09:ba:dc:ea:f1:5f:99:c9:03:fa:59:
0c:12:e3:9e:de:2b:7b:db:22:e9:54:42:64:08:b3:
38:e9:59:f0:6c:24:8a:0b:42:e1:95:b9:4f:e6:7e:
33:68:5d:c9:78:6e:a2:5b:98:80:8f:39:e8:f3:f5:
40:05
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7A:F7:5B:15:E3:DE:37:20:AE:BE:1A:E2:23:C7:62:CD:68:9C:42:D7
X509v3 Authority Key Identifier:
keyid:30:A2:42:CF:6C:15:29:AA:A0:69:33:67:E4:4C:84:A0:7D:8B:0C:9F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MKJCz2wVKaqgaTNn5EyEoH2LDJ8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/08/17cd86-7fbb-408f-a28c-fa2676fe38fd/1/MKJCz2wVKaqgaTNn5EyEoH2LDJ8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/08/17cd86-7fbb-408f-a28c-fa2676fe38fd/1/MKJCz2wVKaqgaTNn5EyEoH2LDJ8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
92:d0:25:b6:a3:13:e4:b3:fd:6d:f3:db:6b:5d:44:09:87:6e:
b9:d9:a0:b6:2f:df:2c:71:e6:24:b2:32:aa:9d:ab:3b:32:63:
78:b9:a9:5e:0d:0f:10:74:3b:ce:01:62:eb:01:0a:1a:26:6a:
4f:cc:3b:b6:f7:86:fc:19:00:5f:31:96:51:9c:06:dd:64:2c:
da:fb:c0:43:b1:39:9b:60:c6:93:f4:f9:80:bd:3f:13:e1:7f:
24:11:bc:6e:c6:9a:f2:56:bb:02:e1:fc:6c:1e:7f:42:9a:44:
22:a2:7f:8c:87:16:12:7f:29:73:e1:fc:0f:97:35:2c:bc:87:
b9:d0:4e:6f:05:35:d1:01:af:71:31:99:30:1d:65:8d:a9:b8:
14:c6:a8:e1:be:d3:54:89:e7:3b:cb:b3:c9:09:8a:57:a8:e3:
c0:0f:f9:c0:ca:51:94:21:dd:03:2b:08:51:73:3d:4d:c9:41:
e8:58:dd:81:41:2f:e1:78:05:0f:aa:41:c3:e7:b5:eb:22:6a:
7d:dd:4c:e8:4d:d7:64:6c:13:f6:ae:59:75:40:b6:ff:c2:fd:
a2:96:c2:3e:17:1e:45:bf:04:45:5c:ac:c8:46:79:70:01:7b:
75:aa:92:cd:bf:97:9d:d5:a9:67:c3:60:55:c0:b2:2d:1c:c4:
7e:ed:35:aa
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Aug 11 10:29:19 2025 by rpki-client