Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/08/17cd86-7fbb-408f-a28c-fa2676fe38fd/1/MKJCz2wVKaqgaTNn5EyEoH2LDJ8.mft
File: MKJCz2wVKaqgaTNn5EyEoH2LDJ8.mft (raw, json)
Hash identifier: jBBy0OpaOMlL8FalRZrG87wfEIlCknNgP2TQJeCBr/o=
Subject key identifier: 2C:CC:6D:F9:20:0C:24:76:67:8B:DA:04:B2:1E:29:0E:88:FA:52:C8
Authority key identifier: 30:A2:42:CF:6C:15:29:AA:A0:69:33:67:E4:4C:84:A0:7D:8B:0C:9F
Certificate issuer: /CN=30a242cf6c1529aaa0693367e44c84a07d8b0c9f
Certificate serial: 01976960B9C01C74776B4807BE3A80D3D65B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/MKJCz2wVKaqgaTNn5EyEoH2LDJ8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/08/17cd86-7fbb-408f-a28c-fa2676fe38fd/1/MKJCz2wVKaqgaTNn5EyEoH2LDJ8.mft
Manifest number: 0914
Signing time: Fri 13 Jun 2025 13:00:36 +0000
Manifest this update: Fri 13 Jun 2025 13:00:36 +0000
Manifest next update: Sat 14 Jun 2025 13:00:36 +0000
Files and hashes: 1: MKJCz2wVKaqgaTNn5EyEoH2LDJ8.crl (hash: owo5UlrHIItWnYsTo3mp59WgNfeO27TWF8WAwXiQPnw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/08/17cd86-7fbb-408f-a28c-fa2676fe38fd/1/MKJCz2wVKaqgaTNn5EyEoH2LDJ8.crl
rsync://rpki.ripe.net/repository/DEFAULT/08/17cd86-7fbb-408f-a28c-fa2676fe38fd/1/MKJCz2wVKaqgaTNn5EyEoH2LDJ8.mft
rsync://rpki.ripe.net/repository/DEFAULT/MKJCz2wVKaqgaTNn5EyEoH2LDJ8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 14 Jun 2025 13:00:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:69:60:b9:c0:1c:74:77:6b:48:07:be:3a:80:d3:d6:5b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=30a242cf6c1529aaa0693367e44c84a07d8b0c9f
Validity
Not Before: Jun 13 13:00:36 2025 GMT
Not After : Jun 14 13:00:36 2025 GMT
Subject: CN=2ccc6df9200c2476678bda04b21e290e88fa52c8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:3e:d0:15:04:cf:54:e9:2c:0d:05:cf:af:fc:
f8:64:e6:8b:c5:17:9b:71:69:8d:ef:fb:95:0b:da:
1c:65:60:0f:f1:da:27:3f:58:bb:bb:47:23:13:6d:
da:05:b4:b3:e1:ea:75:12:54:12:44:12:78:7d:c3:
f2:ae:42:6d:fa:1d:5f:aa:07:83:70:34:2c:cd:4b:
6d:96:b7:8d:e2:39:16:34:cc:bf:5d:82:ca:2d:80:
b1:af:6c:18:e2:c3:93:ef:cb:97:a9:f1:e7:84:d7:
67:91:5d:6e:9b:d1:61:e3:21:24:75:7b:0d:ff:ae:
ce:30:77:bd:1a:56:3c:5f:62:bb:1e:ea:5b:5b:1a:
f3:15:4e:df:c1:71:0a:e7:3b:22:8c:0d:f5:9f:8e:
50:50:ad:4e:d2:43:8f:54:54:52:7d:b8:2a:7c:7d:
8d:08:4a:da:b0:40:39:ec:8f:c2:fa:de:15:cf:1a:
3f:78:d1:1e:6d:23:ad:f1:ad:ca:87:8c:63:59:50:
fc:51:53:4f:60:cb:f6:0d:6c:f0:04:61:23:5e:51:
0f:bf:16:a7:f3:c8:ea:92:98:7a:90:5a:0d:79:5a:
72:45:aa:39:2f:68:27:2b:76:78:0f:ce:c0:c3:1a:
40:3c:77:e7:94:71:ef:15:0a:bb:ba:b9:dc:dd:81:
27:63
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2C:CC:6D:F9:20:0C:24:76:67:8B:DA:04:B2:1E:29:0E:88:FA:52:C8
X509v3 Authority Key Identifier:
keyid:30:A2:42:CF:6C:15:29:AA:A0:69:33:67:E4:4C:84:A0:7D:8B:0C:9F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MKJCz2wVKaqgaTNn5EyEoH2LDJ8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/08/17cd86-7fbb-408f-a28c-fa2676fe38fd/1/MKJCz2wVKaqgaTNn5EyEoH2LDJ8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/08/17cd86-7fbb-408f-a28c-fa2676fe38fd/1/MKJCz2wVKaqgaTNn5EyEoH2LDJ8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
02:46:0c:65:5c:92:f7:63:da:e9:89:11:b5:fe:ab:11:6c:14:
f8:05:98:30:11:1f:51:f8:70:9f:45:be:54:b1:3e:c8:94:2c:
7a:46:b7:e9:be:d4:c3:6e:9c:10:3b:a2:8d:18:0a:f2:b4:b7:
2a:64:f5:35:d7:e4:1b:70:1f:a2:52:8e:01:fa:e2:d9:af:45:
17:13:27:fd:7e:8b:20:2f:78:dc:85:45:69:b2:fd:93:cb:a5:
c6:56:0d:c9:78:7c:c1:ff:74:e2:97:03:8c:a7:e6:23:8c:9e:
0c:e7:8c:1d:3d:f2:9a:f5:4b:0b:fa:1f:9a:ff:8e:17:78:61:
28:93:40:f6:62:5b:3e:61:2b:54:ad:de:f6:b7:cc:51:07:ec:
ac:c3:62:41:c5:7a:ec:3e:24:75:85:b3:10:d6:3a:5d:7b:b8:
56:b7:b3:a2:b7:a8:d6:f0:47:8d:b9:6b:af:9a:64:ac:eb:24:
7f:84:a4:87:20:a4:91:c2:80:11:23:84:98:90:d2:ab:c5:fb:
71:38:14:31:32:47:41:a2:4d:ca:c3:2c:e7:14:2d:dc:b5:d0:
f0:92:6c:c4:7c:35:b2:4a:da:9b:90:f6:f9:f3:ae:ae:e7:5f:
b9:d0:6e:9b:64:d8:5d:d0:b9:52:05:da:66:2f:fb:d6:34:92:
6e:01:5b:a5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jun 13 19:50:00 2025 by rpki-client