Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/14/35b49b-03a3-4101-a3fe-1d8e19df4a62/1/MtOVxX39MMDNLDD0IziuTBSnUKE.mft
File: MtOVxX39MMDNLDD0IziuTBSnUKE.mft (raw, json)
Hash identifier: Io1L768xqp+jYQxZTZBbFRJrWTNwqLIPdg4hrJ8RxWA=
Subject key identifier: 63:AE:9B:4E:47:50:40:8B:74:1F:AC:58:09:69:1B:73:ED:6D:2F:A9
Authority key identifier: 32:D3:95:C5:7D:FD:30:C0:CD:2C:30:F4:23:38:AE:4C:14:A7:50:A1
Certificate issuer: /CN=32d395c57dfd30c0cd2c30f42338ae4c14a750a1
Certificate serial: 01977B66F04BCBAA2E1545A2FCC6ACAA19BC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/MtOVxX39MMDNLDD0IziuTBSnUKE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/14/35b49b-03a3-4101-a3fe-1d8e19df4a62/1/MtOVxX39MMDNLDD0IziuTBSnUKE.mft
Manifest number: 0A7F
Signing time: Tue 17 Jun 2025 01:00:33 +0000
Manifest this update: Tue 17 Jun 2025 01:00:33 +0000
Manifest next update: Wed 18 Jun 2025 01:00:33 +0000
Files and hashes: 1: MtOVxX39MMDNLDD0IziuTBSnUKE.crl (hash: BuY5/U6zFO8H0MGLH2oUQNNIw+DSQFhRSfRW9UwQSJE=)
2: SwDsrRhvfBw9F4XGJ9jQ9aLMXmM.roa (hash: 3d2l7JTHz6vbNzzhkSjJTHAcnYSSZFmoaOBcI2qRo/o=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/14/35b49b-03a3-4101-a3fe-1d8e19df4a62/1/MtOVxX39MMDNLDD0IziuTBSnUKE.crl
rsync://rpki.ripe.net/repository/DEFAULT/14/35b49b-03a3-4101-a3fe-1d8e19df4a62/1/MtOVxX39MMDNLDD0IziuTBSnUKE.mft
rsync://rpki.ripe.net/repository/DEFAULT/MtOVxX39MMDNLDD0IziuTBSnUKE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 18 Jun 2025 01:00:33 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:7b:66:f0:4b:cb:aa:2e:15:45:a2:fc:c6:ac:aa:19:bc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=32d395c57dfd30c0cd2c30f42338ae4c14a750a1
Validity
Not Before: Jun 17 01:00:33 2025 GMT
Not After : Jun 18 01:00:33 2025 GMT
Subject: CN=63ae9b4e4750408b741fac5809691b73ed6d2fa9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:9c:cd:2e:a8:f7:bc:e9:a2:bf:6f:eb:8b:3d:
70:4e:ea:21:4f:2f:d0:38:34:bc:3c:b6:98:6b:52:
8e:72:ee:d8:47:13:8e:b6:7e:0c:af:bb:d8:7b:54:
c4:9b:40:11:d7:18:03:42:b5:ea:dc:d5:7f:23:5a:
f0:8f:48:68:13:a9:3b:6e:07:a7:c2:5e:e6:de:2c:
fe:fe:98:9f:2d:47:67:b7:6e:1a:0f:b1:35:1a:8c:
11:0f:98:64:b7:c3:80:4b:3e:7b:4a:b8:a3:a7:b9:
1b:60:a1:37:de:6e:d4:b4:54:dc:11:83:ec:cf:5f:
dc:83:51:b7:5c:f1:d0:73:f8:a7:25:81:93:fc:7e:
ad:04:24:97:ce:55:e2:96:f6:ec:be:37:39:e6:5c:
37:c8:fb:bb:f1:8b:3e:21:d4:69:02:44:24:ba:b7:
aa:b6:e1:fe:6f:db:79:3c:9f:8c:bf:9a:9f:f9:f5:
38:07:2b:56:f4:1d:63:95:e7:fb:8f:ae:0a:f4:6a:
79:52:23:ce:ab:12:e3:a4:3d:93:62:77:e4:79:a7:
ce:04:a5:b6:ff:52:49:eb:ae:c7:48:d4:7d:54:1b:
5e:33:d8:c3:3d:fd:14:db:19:2f:b5:94:2f:17:27:
32:fa:6c:51:bc:95:5b:ad:ba:79:82:f6:93:3e:1d:
7e:db
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
63:AE:9B:4E:47:50:40:8B:74:1F:AC:58:09:69:1B:73:ED:6D:2F:A9
X509v3 Authority Key Identifier:
keyid:32:D3:95:C5:7D:FD:30:C0:CD:2C:30:F4:23:38:AE:4C:14:A7:50:A1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MtOVxX39MMDNLDD0IziuTBSnUKE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/14/35b49b-03a3-4101-a3fe-1d8e19df4a62/1/MtOVxX39MMDNLDD0IziuTBSnUKE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/14/35b49b-03a3-4101-a3fe-1d8e19df4a62/1/MtOVxX39MMDNLDD0IziuTBSnUKE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
7c:ac:35:09:b7:07:7b:b6:bd:3d:ae:d6:a0:c5:df:32:a0:05:
97:b7:59:83:34:58:e3:6d:04:74:b5:21:3d:5b:aa:6b:d1:fa:
da:a3:ea:2e:06:0a:94:28:67:5f:e3:c2:cb:2e:25:93:e8:69:
5e:18:a5:9c:4a:91:10:6a:6a:10:65:b9:fd:c4:2c:0b:87:59:
b7:d2:92:75:68:ac:e0:d4:fa:c4:70:ba:a8:19:a5:cc:bf:ac:
66:10:9b:4f:9d:13:89:82:9b:73:e8:8b:3c:29:23:79:4b:cd:
de:21:98:d3:73:2f:dd:e4:ab:d4:c8:e5:42:c4:62:be:18:02:
62:7e:93:70:64:62:4e:d1:12:0a:67:b6:0a:d3:10:51:1d:4d:
00:a1:cd:e2:b6:99:af:44:7a:45:64:82:c4:ba:a4:6c:22:06:
e6:1f:b7:45:50:88:ac:fd:88:15:9c:ab:53:3c:6a:1f:72:25:
50:43:f2:99:44:72:2c:fa:ed:5b:89:61:f0:45:c4:66:49:4a:
8b:75:61:50:9b:36:6f:5c:a8:cf:ed:7d:51:94:e8:71:4f:0b:
ce:71:56:5f:64:9f:15:56:93:fb:b3:76:93:37:f2:68:b2:6c:
4d:b0:31:c5:1b:c6:ff:11:f8:a2:0b:83:64:75:f2:a0:fc:4e:
fd:8b:35:d5
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZd7ZvBLy6ouFUWi/Masqhm8MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDMyZDM5NWM1N2RmZDMwYzBjZDJjMzBmNDIzMzhhZTRjMTRh
NzUwYTEwHhcNMjUwNjE3MDEwMDMzWhcNMjUwNjE4MDEwMDMzWjAzMTEwLwYDVQQD
Eyg2M2FlOWI0ZTQ3NTA0MDhiNzQxZmFjNTgwOTY5MWI3M2VkNmQyZmE5MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAzJzNLqj3vOmiv2/riz1wTuohTy/Q
ODS8PLaYa1KOcu7YRxOOtn4Mr7vYe1TEm0AR1xgDQrXq3NV/I1rwj0hoE6k7bgen
wl7m3iz+/pifLUdnt24aD7E1GowRD5hkt8OASz57Srijp7kbYKE33m7UtFTcEYPs
z1/cg1G3XPHQc/inJYGT/H6tBCSXzlXilvbsvjc55lw3yPu78Ys+IdRpAkQkureq
tuH+b9t5PJ+Mv5qf+fU4BytW9B1jlef7j64K9Gp5UiPOqxLjpD2TYnfkeafOBKW2
/1JJ667HSNR9VBteM9jDPf0U2xkvtZQvFycy+mxRvJVbrbp5gvaTPh1+2wIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFGOum05HUECLdB+sWAlpG3PtbS+pMB8GA1UdIwQY
MBaAFDLTlcV9/TDAzSww9CM4rkwUp1ChMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvTXRPVnhYMzlNTUROTEREMEl6aXVUQlNuVUtFLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xNC8zNWI0OWItMDNhMy00MTAxLWEzZmUt
MWQ4ZTE5ZGY0YTYyLzEvTXRPVnhYMzlNTUROTEREMEl6aXVUQlNuVUtFLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8xNC8zNWI0OWItMDNhMy00MTAxLWEzZmUtMWQ4ZTE5ZGY0YTYy
LzEvTXRPVnhYMzlNTUROTEREMEl6aXVUQlNuVUtFLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAfKw1CbcH
e7a9Pa7WoMXfMqAFl7dZgzRY420EdLUhPVuqa9H62qPqLgYKlChnX+PCyy4lk+hp
XhilnEqREGpqEGW5/cQsC4dZt9KSdWis4NT6xHC6qBmlzL+sZhCbT50TiYKbc+iL
PCkjeUvN3iGY03Mv3eSr1MjlQsRivhgCYn6TcGRiTtESCme2CtMQUR1NAKHN4raZ
r0R6RWSCxLqkbCIG5h+3RVCIrP2IFZyrUzxqH3IlUEPymURyLPrtW4lh8EXEZklK
i3VhUJs2b1yoz+19UZTocU8LznFWX2SfFVaT+7N2kzfyaLJsTbAxxRvG/xH4oguD
ZHXyoPxO/Ys11Q==
-----END CERTIFICATE-----
Generated at Tue Jun 17 11:00:31 2025 by rpki-client