Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/14/5a448a-5e7a-47e0-87da-cdcfbb100447/1/MZX3NBnoIjKXlM8X-6fpPzdTdKk.mft
File: MZX3NBnoIjKXlM8X-6fpPzdTdKk.mft (raw, json)
Hash identifier: MqPQ2Ssf10B9UjkQKfvY2+SYZ8nuVp5fG1Yh+GSQb/Q=
Subject key identifier: B9:CC:0B:94:56:6C:BA:9D:DA:01:A6:86:44:5C:1B:4D:E4:C6:D2:1C
Authority key identifier: 31:95:F7:34:19:E8:22:32:97:94:CF:17:FB:A7:E9:3F:37:53:74:A9
Certificate issuer: /CN=3195f73419e822329794cf17fba7e93f375374a9
Certificate serial: 0198898EADCE9782719AC0AB86F74B5078C3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/MZX3NBnoIjKXlM8X-6fpPzdTdKk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/14/5a448a-5e7a-47e0-87da-cdcfbb100447/1/MZX3NBnoIjKXlM8X-6fpPzdTdKk.mft
Manifest number: 11C8
Signing time: Fri 08 Aug 2025 12:01:25 +0000
Manifest this update: Fri 08 Aug 2025 12:01:25 +0000
Manifest next update: Sat 09 Aug 2025 12:01:25 +0000
Files and hashes: 1: MZX3NBnoIjKXlM8X-6fpPzdTdKk.crl (hash: +ZHcPHvatI+HCNUxkLfLk1NdV+kI8x4w2+y6jT1bmP8=)
2: SCHcZAvBuEDabGE8ZnvuGrNm6LM.roa (hash: +7HN05BMaB78AnyjOqZ5Q8EXtIVzWFh5zSmSPi10HzA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/14/5a448a-5e7a-47e0-87da-cdcfbb100447/1/MZX3NBnoIjKXlM8X-6fpPzdTdKk.crl
rsync://rpki.ripe.net/repository/DEFAULT/14/5a448a-5e7a-47e0-87da-cdcfbb100447/1/MZX3NBnoIjKXlM8X-6fpPzdTdKk.mft
rsync://rpki.ripe.net/repository/DEFAULT/MZX3NBnoIjKXlM8X-6fpPzdTdKk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 09 Aug 2025 11:00:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:89:8e:ad:ce:97:82:71:9a:c0:ab:86:f7:4b:50:78:c3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3195f73419e822329794cf17fba7e93f375374a9
Validity
Not Before: Aug 8 12:01:25 2025 GMT
Not After : Aug 9 12:01:25 2025 GMT
Subject: CN=b9cc0b94566cba9dda01a686445c1b4de4c6d21c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:e4:6d:65:33:60:d1:bf:78:07:65:f1:75:9b:
98:ce:bd:4e:07:8b:e2:61:89:72:b1:a9:a3:68:77:
29:77:b9:18:88:07:8c:86:3f:3d:48:a4:4d:d0:54:
98:43:2f:d0:a4:ac:f6:e2:06:87:43:d0:3a:89:91:
ab:e5:4d:6a:28:51:a1:7a:68:39:33:48:89:5f:5e:
53:3b:5c:4d:f7:cd:e0:43:81:8e:4e:f7:b7:99:55:
45:eb:1e:05:1b:7e:b1:46:2f:de:4d:46:11:1d:e7:
1f:bb:b2:9b:9f:96:7c:71:87:0f:2c:1d:8b:0a:87:
48:2f:e0:7c:58:c2:16:f5:b2:91:c9:30:d2:4c:1b:
06:3c:51:3e:62:44:17:9d:39:31:08:c1:f1:5c:3a:
15:27:c9:eb:d6:d4:ac:a1:b6:0c:06:03:18:0a:19:
fe:e6:01:52:88:6e:9b:8a:93:bb:2e:b2:3e:7b:9a:
b4:cd:5d:d3:78:8b:fe:9b:20:ae:f0:3f:2d:fb:99:
2c:c8:45:92:1f:a5:36:19:27:e6:6d:c0:1f:54:16:
36:ca:ed:2e:93:6c:43:0f:74:e0:4b:e3:de:69:36:
99:80:33:51:da:7d:5a:7b:fa:19:50:08:e3:44:f3:
47:7f:3b:65:80:12:1d:08:0e:28:bc:44:fb:24:c4:
25:2b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B9:CC:0B:94:56:6C:BA:9D:DA:01:A6:86:44:5C:1B:4D:E4:C6:D2:1C
X509v3 Authority Key Identifier:
keyid:31:95:F7:34:19:E8:22:32:97:94:CF:17:FB:A7:E9:3F:37:53:74:A9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MZX3NBnoIjKXlM8X-6fpPzdTdKk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/14/5a448a-5e7a-47e0-87da-cdcfbb100447/1/MZX3NBnoIjKXlM8X-6fpPzdTdKk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/14/5a448a-5e7a-47e0-87da-cdcfbb100447/1/MZX3NBnoIjKXlM8X-6fpPzdTdKk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
49:90:41:ab:31:ff:0e:f2:77:fe:bb:f2:ac:ed:31:12:13:cd:
d7:ae:0b:e0:10:47:80:77:09:7d:c0:75:0f:8a:f2:fa:ad:7c:
ca:15:64:b7:2d:d4:b0:8a:09:51:ce:ef:2b:a0:ea:cd:0f:d3:
09:4f:08:73:60:18:bd:92:5c:b0:8e:73:76:83:20:dd:53:ea:
c3:e0:ad:4e:e9:b1:08:ea:cb:31:e6:d1:d3:88:cc:d5:90:b3:
4d:7f:03:1e:5d:5c:19:af:ee:47:bf:24:e7:9f:35:01:72:d3:
87:d4:e5:9f:da:4d:98:b9:23:01:e6:15:4b:2c:8d:b1:5a:6a:
ad:e6:dd:d8:e2:18:76:81:6e:ed:ae:56:d1:33:5a:1d:75:ca:
8e:92:91:8b:ef:75:90:ca:66:fb:a5:71:2d:b9:a7:11:5f:dd:
15:dc:0b:7c:04:9e:31:8b:16:d6:7a:73:c3:47:14:0b:bf:82:
40:26:48:f7:52:08:6b:66:70:be:94:4e:66:33:66:6c:25:89:
76:0e:99:b8:5c:f2:0a:5e:5a:0c:56:00:5d:dd:68:14:b7:5e:
4c:47:24:10:5a:28:2e:f2:fd:21:52:92:26:ee:1a:b2:27:1b:
3c:d4:b1:d8:4b:8e:79:bc:95:dd:01:64:17:3b:de:97:5c:75:
f4:61:79:c3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Aug 8 19:37:29 2025 by rpki-client