
Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/09/2820d1-fd20-4889-834f-d527ce0d9930/1/MFxE6MlhoUUNCqshLw3scX0d77Y.mft
File: MFxE6MlhoUUNCqshLw3scX0d77Y.mft (raw, json)
Hash identifier: A+apsrdQw6GGDQDL8MvfT9kjPUZB4gPQ4A/yo1o+UQk=
Subject key identifier: BC:33:85:C9:D7:68:8D:1D:21:88:9B:37:1B:5C:94:0C:70:F4:FB:B2
Authority key identifier: 30:5C:44:E8:C9:61:A1:45:0D:0A:AB:21:2F:0D:EC:71:7D:1D:EF:B6
Certificate issuer: /CN=305c44e8c961a1450d0aab212f0dec717d1defb6
Certificate serial: 01987F7A9E6CEBC91C789C754E67020A7BB7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/MFxE6MlhoUUNCqshLw3scX0d77Y.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/09/2820d1-fd20-4889-834f-d527ce0d9930/1/MFxE6MlhoUUNCqshLw3scX0d77Y.mft
Manifest number: 161D
Signing time: Wed 06 Aug 2025 13:03:19 +0000
Manifest this update: Wed 06 Aug 2025 13:03:19 +0000
Manifest next update: Thu 07 Aug 2025 13:03:19 +0000
Files and hashes: 1: MFxE6MlhoUUNCqshLw3scX0d77Y.crl (hash: QcP8gaEPSzjMAjLPDyiEwwfINWkm7b/J1tRNLqubARY=)
2: mJgdj-dzJHYIwfc18P0iKUu6K8Q.roa (hash: BwFiGax6tDOHoiiFhGtxEO6XUIlUJlP+Zm+e5NhOWpg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/09/2820d1-fd20-4889-834f-d527ce0d9930/1/MFxE6MlhoUUNCqshLw3scX0d77Y.crl
rsync://rpki.ripe.net/repository/DEFAULT/09/2820d1-fd20-4889-834f-d527ce0d9930/1/MFxE6MlhoUUNCqshLw3scX0d77Y.mft
rsync://rpki.ripe.net/repository/DEFAULT/MFxE6MlhoUUNCqshLw3scX0d77Y.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 07 Aug 2025 13:03:19 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:7f:7a:9e:6c:eb:c9:1c:78:9c:75:4e:67:02:0a:7b:b7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=305c44e8c961a1450d0aab212f0dec717d1defb6
Validity
Not Before: Aug 6 13:03:19 2025 GMT
Not After : Aug 7 13:03:19 2025 GMT
Subject: CN=bc3385c9d7688d1d21889b371b5c940c70f4fbb2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ee:40:e4:df:d6:67:ad:98:1e:c4:af:ae:80:99:
e9:d4:f9:03:28:57:6b:45:ca:78:dc:cb:79:0f:8c:
79:8e:d7:9c:e8:ff:b3:c0:79:59:4a:e3:c5:ba:32:
3d:a6:87:2e:a1:40:5e:26:36:08:da:45:f1:fa:46:
47:0e:fb:81:8d:8a:bc:16:3a:7a:e9:37:30:61:f1:
fe:75:db:6e:cf:1d:b4:5f:e2:8e:0e:99:ed:eb:4e:
ff:12:15:81:7b:d8:23:c8:cf:a6:47:bc:8d:6a:44:
ff:b9:56:31:1e:a4:35:3d:0d:df:9c:5c:37:48:06:
df:0a:43:14:a8:94:5f:56:23:ac:26:7a:16:ad:19:
d6:78:86:ca:05:b6:b9:75:7b:15:e2:8e:08:10:98:
b7:2c:6d:49:ad:a0:b3:45:c9:ff:b3:e1:a5:bc:93:
4f:3c:ce:8c:7b:c3:95:57:91:cc:f5:d6:fa:e1:bf:
07:49:41:59:78:d7:ec:69:8e:1e:06:22:d4:7e:ee:
e0:79:e0:f1:53:70:2e:3d:4b:bd:e7:03:1c:3d:f5:
13:32:3b:a2:31:3e:e9:a2:02:df:c6:b8:4f:ca:fb:
94:41:01:b3:a0:c8:e9:b2:c3:3a:31:f4:88:38:06:
1d:e1:59:02:ba:80:be:54:4e:0b:ea:70:7e:17:bb:
88:27
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BC:33:85:C9:D7:68:8D:1D:21:88:9B:37:1B:5C:94:0C:70:F4:FB:B2
X509v3 Authority Key Identifier:
keyid:30:5C:44:E8:C9:61:A1:45:0D:0A:AB:21:2F:0D:EC:71:7D:1D:EF:B6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MFxE6MlhoUUNCqshLw3scX0d77Y.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/09/2820d1-fd20-4889-834f-d527ce0d9930/1/MFxE6MlhoUUNCqshLw3scX0d77Y.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/09/2820d1-fd20-4889-834f-d527ce0d9930/1/MFxE6MlhoUUNCqshLw3scX0d77Y.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
6a:ab:61:8d:da:f1:60:da:4f:d1:a5:a5:a5:d1:00:a0:3f:f4:
b8:f5:86:06:46:8a:ff:0e:38:50:0a:85:aa:43:97:9b:00:51:
70:b5:3b:1d:94:87:92:82:ed:42:67:ec:fb:6e:9e:c0:43:c6:
35:5b:92:db:dd:c6:37:a0:64:39:99:b1:4c:c5:88:3c:b3:88:
4f:cb:d0:ba:ad:77:38:8e:00:2c:5c:5b:25:7e:00:2e:c5:3b:
3c:48:4e:c8:ac:d8:ee:be:57:a0:5c:a3:16:95:20:7e:38:9b:
8a:9b:32:1c:e8:48:b7:e2:b2:08:a5:50:6a:30:d8:7d:4f:69:
b9:1e:fb:8d:d9:fc:fa:a1:fe:4b:4c:6d:0e:8f:63:59:d2:ef:
bd:9f:7e:24:4b:0f:78:4a:ab:ef:3a:70:00:65:e3:ec:e2:a4:
26:eb:73:23:21:cd:58:84:12:ec:66:3a:00:33:d9:0d:bb:15:
9d:aa:cf:46:1f:98:25:7c:72:29:c6:7c:99:a1:2e:b8:d6:7f:
7a:22:c1:53:ce:1e:4c:3a:28:f6:3d:6e:0d:3c:49:10:b4:9e:
f3:54:1c:48:06:5e:0b:14:ba:59:a9:36:95:90:0a:8c:64:b5:
9c:b8:77:7b:46:ec:d0:92:6c:b9:f3:9a:e8:de:68:1b:10:b7:
6b:de:a6:b4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Aug 6 16:20:41 2025 by rpki-client