Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/09/2820d1-fd20-4889-834f-d527ce0d9930/1/MFxE6MlhoUUNCqshLw3scX0d77Y.mft
File: MFxE6MlhoUUNCqshLw3scX0d77Y.mft (raw, json)
Hash identifier: xLEr33bTcOW/OrB3ooYcmtqKaL66NZZvQVsUDajegYA=
Subject key identifier: 71:EE:29:F7:EF:FB:D1:E1:78:EE:AA:12:77:18:1D:B2:D4:FF:BB:F7
Authority key identifier: 30:5C:44:E8:C9:61:A1:45:0D:0A:AB:21:2F:0D:EC:71:7D:1D:EF:B6
Certificate issuer: /CN=305c44e8c961a1450d0aab212f0dec717d1defb6
Certificate serial: 01976D06AD0CD7D1F0075ABCE276388AA9BF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/MFxE6MlhoUUNCqshLw3scX0d77Y.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/09/2820d1-fd20-4889-834f-d527ce0d9930/1/MFxE6MlhoUUNCqshLw3scX0d77Y.mft
Manifest number: 158F
Signing time: Sat 14 Jun 2025 06:00:43 +0000
Manifest this update: Sat 14 Jun 2025 06:00:43 +0000
Manifest next update: Sun 15 Jun 2025 06:00:43 +0000
Files and hashes: 1: MFxE6MlhoUUNCqshLw3scX0d77Y.crl (hash: zpBmwgB85XlpsiEzgFpC6ic5Rca6sBtHX6C1YrWW5j4=)
2: mJgdj-dzJHYIwfc18P0iKUu6K8Q.roa (hash: BwFiGax6tDOHoiiFhGtxEO6XUIlUJlP+Zm+e5NhOWpg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/09/2820d1-fd20-4889-834f-d527ce0d9930/1/MFxE6MlhoUUNCqshLw3scX0d77Y.crl
rsync://rpki.ripe.net/repository/DEFAULT/09/2820d1-fd20-4889-834f-d527ce0d9930/1/MFxE6MlhoUUNCqshLw3scX0d77Y.mft
rsync://rpki.ripe.net/repository/DEFAULT/MFxE6MlhoUUNCqshLw3scX0d77Y.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 15 Jun 2025 01:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:6d:06:ad:0c:d7:d1:f0:07:5a:bc:e2:76:38:8a:a9:bf
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=305c44e8c961a1450d0aab212f0dec717d1defb6
Validity
Not Before: Jun 14 06:00:43 2025 GMT
Not After : Jun 15 06:00:43 2025 GMT
Subject: CN=71ee29f7effbd1e178eeaa1277181db2d4ffbbf7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:ba:e0:a4:ec:75:f5:10:2c:08:97:b9:e2:35:
42:5b:3d:d5:05:c2:f9:a6:75:66:a2:d6:f0:f1:6d:
ec:95:bd:79:d7:b5:e7:70:7f:5d:e5:af:a7:0b:76:
0a:e1:5e:2e:42:bf:6d:75:30:d5:18:84:a7:25:2b:
c3:19:93:68:22:19:24:87:00:b8:05:51:c4:df:4d:
67:4e:b5:5e:94:a4:d3:d3:b3:dc:68:d8:29:0d:82:
b1:76:63:38:f1:22:ca:06:87:ba:04:d6:18:7b:e6:
62:9d:81:dc:e6:77:2c:e3:da:e7:74:14:46:66:70:
90:1c:36:4d:03:dc:0e:55:45:62:c2:06:17:df:1d:
44:23:14:a0:ce:7f:67:74:9f:7e:ab:61:0c:a2:21:
f6:83:51:67:de:9b:c8:17:eb:50:50:6b:71:16:15:
3f:e4:86:c3:ef:80:eb:06:50:3b:03:f4:c6:71:d6:
7e:c8:96:ab:d4:6e:cf:57:b4:fa:cc:7d:48:8a:69:
f6:96:6b:d9:93:45:59:56:a7:04:d3:8b:2b:55:34:
8d:3c:bf:94:a9:9d:28:85:da:04:34:8a:35:2e:3a:
39:e3:02:5e:e8:0e:30:49:56:e9:1a:1c:24:bf:c3:
ca:11:df:b5:19:ed:06:31:06:9d:a6:7c:d9:8e:53:
ce:71
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
71:EE:29:F7:EF:FB:D1:E1:78:EE:AA:12:77:18:1D:B2:D4:FF:BB:F7
X509v3 Authority Key Identifier:
keyid:30:5C:44:E8:C9:61:A1:45:0D:0A:AB:21:2F:0D:EC:71:7D:1D:EF:B6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MFxE6MlhoUUNCqshLw3scX0d77Y.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/09/2820d1-fd20-4889-834f-d527ce0d9930/1/MFxE6MlhoUUNCqshLw3scX0d77Y.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/09/2820d1-fd20-4889-834f-d527ce0d9930/1/MFxE6MlhoUUNCqshLw3scX0d77Y.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
b8:f8:b1:e1:d5:dd:f2:f6:c1:ef:2c:fd:df:06:69:97:bd:14:
99:58:8f:92:7c:4e:4f:1f:7a:a5:97:b8:68:d8:7e:d6:bb:fd:
f4:43:ed:ad:8f:86:07:e0:42:ea:3d:09:43:f9:07:04:4c:10:
41:9d:1d:17:7e:17:99:8a:ac:ae:92:df:7b:89:b0:d0:b1:13:
7f:13:51:75:06:85:bc:53:58:75:10:c8:b9:c4:56:ea:c8:38:
28:9f:cc:7c:05:74:c6:09:f6:bc:42:6f:74:30:f6:a4:7a:e4:
d2:99:79:00:8e:27:d5:7c:01:5b:e0:86:a7:81:e2:90:c1:37:
38:8c:eb:45:9d:93:49:37:a0:43:31:ae:62:93:cd:b4:5b:b7:
93:23:86:e4:30:db:3d:98:d7:6d:54:3e:5a:bc:48:15:b1:dc:
26:14:51:55:50:30:6a:ad:3c:9f:d3:73:16:ab:96:06:d2:35:
48:ca:75:e8:88:10:41:0d:12:9a:ad:9c:a8:ca:6b:e9:79:bd:
88:04:73:a5:e6:5d:e5:aa:48:46:17:0e:e1:60:39:b9:b5:93:
b6:2a:bd:9c:f4:32:42:4a:3a:ee:a3:b7:a7:2a:c2:3c:55:8c:
91:54:26:9e:ad:5b:94:8c:cf:e6:b0:9d:88:ba:81:3d:c8:4f:
16:9f:eb:9a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 14 11:50:17 2025 by rpki-client