Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/14/35b49b-03a3-4101-a3fe-1d8e19df4a62/1/MtOVxX39MMDNLDD0IziuTBSnUKE.mft
File: MtOVxX39MMDNLDD0IziuTBSnUKE.mft (raw, json)
Hash identifier: 6uEy8ukrUqkRucJS4kF28u0ApSuVGxR8Rb1tbyEOeJI=
Subject key identifier: A2:B2:70:B7:95:40:14:42:95:7B:B7:42:7E:74:10:3A:8C:2B:A2:73
Authority key identifier: 32:D3:95:C5:7D:FD:30:C0:CD:2C:30:F4:23:38:AE:4C:14:A7:50:A1
Certificate issuer: /CN=32d395c57dfd30c0cd2c30f42338ae4c14a750a1
Certificate serial: 01988BB3456454BA9048163BD663C76F886C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/MtOVxX39MMDNLDD0IziuTBSnUKE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/14/35b49b-03a3-4101-a3fe-1d8e19df4a62/1/MtOVxX39MMDNLDD0IziuTBSnUKE.mft
Manifest number: 0B0C
Signing time: Fri 08 Aug 2025 22:00:38 +0000
Manifest this update: Fri 08 Aug 2025 22:00:38 +0000
Manifest next update: Sat 09 Aug 2025 22:00:38 +0000
Files and hashes: 1: MtOVxX39MMDNLDD0IziuTBSnUKE.crl (hash: PB+Jb7V4ScWNa6mMQ1kCcLkWlj0NZjsdyPblfZLopJ8=)
2: SwDsrRhvfBw9F4XGJ9jQ9aLMXmM.roa (hash: 3d2l7JTHz6vbNzzhkSjJTHAcnYSSZFmoaOBcI2qRo/o=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/14/35b49b-03a3-4101-a3fe-1d8e19df4a62/1/MtOVxX39MMDNLDD0IziuTBSnUKE.crl
rsync://rpki.ripe.net/repository/DEFAULT/14/35b49b-03a3-4101-a3fe-1d8e19df4a62/1/MtOVxX39MMDNLDD0IziuTBSnUKE.mft
rsync://rpki.ripe.net/repository/DEFAULT/MtOVxX39MMDNLDD0IziuTBSnUKE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 09 Aug 2025 20:00:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:8b:b3:45:64:54:ba:90:48:16:3b:d6:63:c7:6f:88:6c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=32d395c57dfd30c0cd2c30f42338ae4c14a750a1
Validity
Not Before: Aug 8 22:00:38 2025 GMT
Not After : Aug 9 22:00:38 2025 GMT
Subject: CN=a2b270b795401442957bb7427e74103a8c2ba273
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:87:cf:d1:a5:f9:8c:be:1f:80:48:d4:d8:8a:eb:
96:31:b6:c1:c1:c4:fe:49:bd:61:e3:2c:dc:4b:90:
ba:18:9a:d6:58:d0:73:9f:f5:9e:05:56:e9:c6:2f:
fb:8a:cf:20:b3:c5:de:8d:47:93:9d:8d:92:a7:ec:
2c:3a:56:b3:d5:4c:12:6e:f2:a6:f9:cb:7a:5b:21:
3f:e3:fd:3b:f3:08:83:25:66:24:b6:ea:4f:d9:8b:
53:1d:61:7d:25:30:7f:02:bc:21:0d:4f:27:32:c3:
a3:17:8b:25:45:1d:bd:e4:af:cc:8a:a3:65:6d:3a:
0d:0e:ba:91:85:a8:f1:af:da:62:34:b8:e7:ba:19:
6f:d1:50:99:82:3c:82:d5:21:01:ee:93:0e:0a:d2:
98:5d:5a:6e:13:9c:20:f3:43:12:36:c8:13:ef:6d:
a8:7e:98:9a:28:fb:13:85:a3:de:01:ef:a8:ed:a6:
5a:74:c1:55:40:39:13:5d:f6:58:70:78:a9:01:c2:
88:de:a3:0e:d7:26:b0:e9:fe:dc:44:fe:65:e9:f6:
53:a1:37:4e:42:d7:76:dd:34:d1:e1:e7:f4:f8:63:
15:40:1b:18:4a:84:33:2c:6f:a9:9e:b8:68:8d:5f:
2b:14:b0:4c:55:be:2a:0d:ec:c7:90:f2:13:66:80:
58:11
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A2:B2:70:B7:95:40:14:42:95:7B:B7:42:7E:74:10:3A:8C:2B:A2:73
X509v3 Authority Key Identifier:
keyid:32:D3:95:C5:7D:FD:30:C0:CD:2C:30:F4:23:38:AE:4C:14:A7:50:A1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MtOVxX39MMDNLDD0IziuTBSnUKE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/14/35b49b-03a3-4101-a3fe-1d8e19df4a62/1/MtOVxX39MMDNLDD0IziuTBSnUKE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/14/35b49b-03a3-4101-a3fe-1d8e19df4a62/1/MtOVxX39MMDNLDD0IziuTBSnUKE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
7e:62:12:86:35:ff:0b:1b:17:90:18:f0:ff:80:ee:1f:1b:dd:
8c:a1:68:1f:93:bb:18:e8:7e:0a:03:86:82:90:4f:48:e4:fd:
c3:d8:4e:bd:bf:63:d7:fe:b5:88:b5:ad:3b:c8:c4:5e:ff:e3:
dd:71:92:c0:02:28:0d:86:a3:5c:a8:8f:ad:91:ae:15:f5:c0:
ce:4a:bd:c4:7c:cb:e9:17:25:57:29:50:15:32:9a:92:98:8e:
05:86:f6:65:94:57:30:5a:66:21:fd:1b:a8:a1:b2:91:f1:5e:
97:b3:75:4e:c6:88:eb:4a:69:60:7b:58:92:70:f0:63:b1:7b:
7c:74:df:4c:b5:d5:05:e2:40:c5:a9:47:81:27:47:4a:f1:cb:
70:a6:25:c3:71:1b:b8:d1:31:19:95:cf:85:d0:5b:47:12:5f:
a4:18:84:f4:1f:a8:5c:77:da:c1:ab:00:d5:eb:90:30:59:fb:
eb:d7:3e:d5:4b:ae:2f:f0:5a:3b:0e:00:23:28:6a:50:ce:bd:
f9:a4:49:74:7e:e5:a3:b6:c2:25:15:41:20:2f:5d:ad:36:68:
57:15:bb:82:b5:67:64:9d:a4:bb:0a:a4:85:9e:51:6e:aa:60:
e8:ec:10:37:60:e0:86:cc:51:6b:37:e6:92:b1:75:0c:ba:84:
ed:c0:4c:95
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 9 05:34:58 2025 by rpki-client