Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/14/5a448a-5e7a-47e0-87da-cdcfbb100447/1/MZX3NBnoIjKXlM8X-6fpPzdTdKk.mft
File: MZX3NBnoIjKXlM8X-6fpPzdTdKk.mft (raw, json)
Hash identifier: MXkhFPxFBA/kEqhBL4rZB1PdvrEFkpzyB7XGgwQWUqI=
Subject key identifier: E9:4C:BC:F0:2A:7D:B5:1F:72:DF:CB:00:7B:64:7C:66:C5:8A:B4:35
Authority key identifier: 31:95:F7:34:19:E8:22:32:97:94:CF:17:FB:A7:E9:3F:37:53:74:A9
Certificate issuer: /CN=3195f73419e822329794cf17fba7e93f375374a9
Certificate serial: 019786C6DE18A0E5FF1B2A8701B5ED6DCB62
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/MZX3NBnoIjKXlM8X-6fpPzdTdKk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/14/5a448a-5e7a-47e0-87da-cdcfbb100447/1/MZX3NBnoIjKXlM8X-6fpPzdTdKk.mft
Manifest number: 1142
Signing time: Thu 19 Jun 2025 06:01:09 +0000
Manifest this update: Thu 19 Jun 2025 06:01:09 +0000
Manifest next update: Fri 20 Jun 2025 06:01:09 +0000
Files and hashes: 1: MZX3NBnoIjKXlM8X-6fpPzdTdKk.crl (hash: Fcx1AjITbh2dxiERkQk5NSButDBLcn/baBo0PjSrgfw=)
2: SCHcZAvBuEDabGE8ZnvuGrNm6LM.roa (hash: +7HN05BMaB78AnyjOqZ5Q8EXtIVzWFh5zSmSPi10HzA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/14/5a448a-5e7a-47e0-87da-cdcfbb100447/1/MZX3NBnoIjKXlM8X-6fpPzdTdKk.crl
rsync://rpki.ripe.net/repository/DEFAULT/14/5a448a-5e7a-47e0-87da-cdcfbb100447/1/MZX3NBnoIjKXlM8X-6fpPzdTdKk.mft
rsync://rpki.ripe.net/repository/DEFAULT/MZX3NBnoIjKXlM8X-6fpPzdTdKk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 20 Jun 2025 01:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:86:c6:de:18:a0:e5:ff:1b:2a:87:01:b5:ed:6d:cb:62
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3195f73419e822329794cf17fba7e93f375374a9
Validity
Not Before: Jun 19 06:01:09 2025 GMT
Not After : Jun 20 06:01:09 2025 GMT
Subject: CN=e94cbcf02a7db51f72dfcb007b647c66c58ab435
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9a:bd:25:b3:24:fe:77:13:0c:8f:fd:f7:23:61:
06:f5:da:e9:63:be:e2:50:5e:b6:16:88:c1:37:ba:
3c:39:9e:4b:de:a5:e6:1e:cf:88:61:a1:4b:34:7d:
9c:55:9e:b5:31:be:25:ae:de:07:cc:d2:9e:99:45:
8c:24:dc:94:24:94:97:38:51:fe:61:70:9c:cf:d8:
99:d6:38:95:f8:4b:a2:9a:e9:54:c6:3f:ad:55:f1:
35:45:7a:e5:b0:c9:7f:c6:f7:67:ea:2d:79:4d:cf:
e8:24:b8:d0:1f:d8:65:5a:f5:a4:2c:03:6b:f5:0b:
7e:46:88:4f:65:04:ff:7c:00:c3:8b:89:d5:3e:cf:
a1:86:a3:72:fc:11:5e:38:af:ba:1b:2f:f8:ed:50:
5b:d4:94:fd:61:42:89:fe:77:d4:8d:47:ac:1c:df:
3a:69:7d:61:13:71:a6:f5:68:ae:51:4b:cf:f7:9b:
b5:7d:4b:cb:1e:70:14:fd:ed:bc:26:c1:c3:7d:10:
17:a0:27:14:ff:ce:48:56:bc:8c:1a:92:b3:4f:99:
e3:17:16:de:87:8f:ae:6c:5b:ec:b2:4b:16:04:6c:
60:af:01:59:8d:32:1f:e8:a5:c0:fd:5a:05:f4:90:
ce:bc:6a:7f:03:78:0a:af:2e:0b:89:13:fc:49:2c:
fc:07
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E9:4C:BC:F0:2A:7D:B5:1F:72:DF:CB:00:7B:64:7C:66:C5:8A:B4:35
X509v3 Authority Key Identifier:
keyid:31:95:F7:34:19:E8:22:32:97:94:CF:17:FB:A7:E9:3F:37:53:74:A9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MZX3NBnoIjKXlM8X-6fpPzdTdKk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/14/5a448a-5e7a-47e0-87da-cdcfbb100447/1/MZX3NBnoIjKXlM8X-6fpPzdTdKk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/14/5a448a-5e7a-47e0-87da-cdcfbb100447/1/MZX3NBnoIjKXlM8X-6fpPzdTdKk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
33:d9:0c:56:a8:db:34:d6:7c:78:db:2d:b5:bb:59:87:fb:e6:
2b:80:cd:c0:79:d0:34:0b:5c:5b:d4:15:13:d0:70:a2:c9:41:
ae:81:66:a4:1f:8c:62:2f:ce:02:4d:e4:24:53:54:f4:15:47:
76:3b:62:e4:a8:f5:ea:ea:e0:73:40:ff:1d:d5:eb:5b:12:3a:
30:b7:33:7a:c4:ab:cc:a2:49:47:51:b4:db:d2:33:03:f3:fd:
ff:ec:58:a8:75:85:ef:6a:31:81:bf:20:12:3d:4a:20:ce:ba:
e3:b7:e8:20:1a:42:fb:3a:c9:46:8c:ae:0f:63:9f:8c:bb:5c:
40:8d:db:b4:d2:a2:6d:b9:b8:ca:2a:bd:bb:9a:2c:b6:88:de:
f9:48:d1:34:c4:dd:d3:5c:9f:88:18:e4:6c:f5:a4:cd:6d:d4:
b9:65:62:e7:9e:6a:a7:bd:86:9d:86:b8:14:c9:69:cb:5f:37:
9f:63:93:2c:44:f6:30:37:33:35:88:97:fb:0e:75:af:cf:e5:
2e:a3:28:0c:b3:d5:56:15:3c:b8:1c:57:2f:ec:a7:11:30:e0:
5a:26:de:74:e0:a6:58:11:54:aa:45:91:db:a7:b4:63:f2:e2:
df:b9:32:a7:d8:a5:9b:85:4f:5a:53:fe:d4:6f:25:fe:a2:4a:
67:bb:03:b6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 19 10:56:17 2025 by rpki-client