Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/20/af832b-a641-4e46-a836-40f4c68e9a31/1/MdfZ0pzs-OWRIiM9cW5rBQ5xhHg.mft
File: MdfZ0pzs-OWRIiM9cW5rBQ5xhHg.mft (raw, json)
Hash identifier: Q8dyB24ShRDB/kFECbCeBjqXwy/wi9lsOQ/5/hNw+wU=
Subject key identifier: 43:E4:70:08:52:3B:CD:90:05:7A:A1:15:8A:F1:83:78:8C:85:85:8A
Authority key identifier: 31:D7:D9:D2:9C:EC:F8:E5:91:22:23:3D:71:6E:6B:05:0E:71:84:78
Certificate issuer: /CN=31d7d9d29cecf8e59122233d716e6b050e718478
Certificate serial: 01989D82C5C2FA41ACB7B477BE899CF9B9AA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/MdfZ0pzs-OWRIiM9cW5rBQ5xhHg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/20/af832b-a641-4e46-a836-40f4c68e9a31/1/MdfZ0pzs-OWRIiM9cW5rBQ5xhHg.mft
Manifest number: 0206
Signing time: Tue 12 Aug 2025 09:00:49 +0000
Manifest this update: Tue 12 Aug 2025 09:00:49 +0000
Manifest next update: Wed 13 Aug 2025 09:00:49 +0000
Files and hashes: 1: MdfZ0pzs-OWRIiM9cW5rBQ5xhHg.crl (hash: ZDbjj8EtwqVpyJtmsjbCb5r9a7pX+9dWxcA2ctGlWLg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/20/af832b-a641-4e46-a836-40f4c68e9a31/1/MdfZ0pzs-OWRIiM9cW5rBQ5xhHg.crl
rsync://rpki.ripe.net/repository/DEFAULT/20/af832b-a641-4e46-a836-40f4c68e9a31/1/MdfZ0pzs-OWRIiM9cW5rBQ5xhHg.mft
rsync://rpki.ripe.net/repository/DEFAULT/MdfZ0pzs-OWRIiM9cW5rBQ5xhHg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 13 Aug 2025 08:00:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:9d:82:c5:c2:fa:41:ac:b7:b4:77:be:89:9c:f9:b9:aa
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=31d7d9d29cecf8e59122233d716e6b050e718478
Validity
Not Before: Aug 12 09:00:49 2025 GMT
Not After : Aug 13 09:00:49 2025 GMT
Subject: CN=43e47008523bcd90057aa1158af183788c85858a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:3d:c1:f2:58:5e:a8:ce:6e:41:a0:d1:24:c9:
86:4a:ca:57:68:be:79:dd:62:55:54:7c:c7:7d:12:
01:04:16:a6:f4:48:2d:17:3a:d7:fe:0f:f8:38:fb:
62:5b:7f:0e:44:c7:7f:66:f2:c8:09:17:f3:80:22:
3d:c9:d8:52:78:a5:df:9e:8a:31:f4:2a:6e:1e:26:
3a:68:43:29:d0:d9:68:26:c9:2b:f6:86:65:a1:07:
19:4f:0a:f8:4d:b1:10:ff:92:ed:80:9e:c7:7a:b4:
10:54:e2:32:d2:ee:52:7d:55:90:e8:2f:77:eb:b3:
c1:7a:9e:7a:c1:c4:98:20:b2:38:9c:20:ae:0f:2b:
a6:64:84:76:63:c0:f9:33:23:a1:53:bb:29:36:bb:
aa:4b:63:0d:bc:15:28:57:11:06:3e:37:5b:fc:6c:
fd:25:e0:78:c5:69:48:58:e9:00:70:7f:fa:e6:98:
ac:04:6f:98:d0:aa:f5:93:9b:58:90:1e:9f:cd:66:
bb:4f:d3:ac:49:0e:ff:39:9d:17:0c:dd:be:f9:64:
39:2c:55:50:ed:a8:b1:ae:2c:ff:c1:e4:ba:d3:db:
c8:f3:1f:6a:e9:38:0f:d0:1c:d0:d7:66:88:ca:3e:
64:23:d3:b1:20:a5:57:70:00:43:f5:43:53:03:25:
3c:e7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
43:E4:70:08:52:3B:CD:90:05:7A:A1:15:8A:F1:83:78:8C:85:85:8A
X509v3 Authority Key Identifier:
keyid:31:D7:D9:D2:9C:EC:F8:E5:91:22:23:3D:71:6E:6B:05:0E:71:84:78
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MdfZ0pzs-OWRIiM9cW5rBQ5xhHg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/20/af832b-a641-4e46-a836-40f4c68e9a31/1/MdfZ0pzs-OWRIiM9cW5rBQ5xhHg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/20/af832b-a641-4e46-a836-40f4c68e9a31/1/MdfZ0pzs-OWRIiM9cW5rBQ5xhHg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
67:10:3d:71:52:3e:fe:e6:89:ff:4f:9f:3f:23:ca:69:8d:98:
93:ce:11:48:da:20:98:e0:21:e6:58:20:4e:49:7a:8c:29:37:
17:dd:01:02:ef:2d:32:26:18:a1:98:b3:5a:39:38:61:61:69:
72:cd:c0:02:71:f2:66:7b:4f:8f:a3:54:54:23:a0:16:65:c8:
2d:98:a3:ed:5d:4d:40:e1:39:24:64:93:0e:70:04:94:1a:7c:
af:e5:30:23:84:81:c5:59:01:6b:36:ba:ae:a0:c7:5c:bc:0f:
3f:d5:56:47:44:96:78:5f:35:85:f6:f9:b2:06:f1:6e:7d:58:
8f:14:6f:9f:56:f6:9c:22:9a:5c:d8:f6:3d:7b:21:d6:8c:a4:
e4:46:bf:eb:8f:cd:b7:0a:54:10:77:53:d5:1a:6e:a4:d3:e8:
74:20:0b:2a:31:5e:fd:b9:de:1c:c0:4e:d6:41:e1:6a:30:ea:
8f:64:25:18:c5:28:54:44:9f:2a:13:98:96:1a:1d:01:92:97:
16:d3:97:93:35:61:7d:19:dc:70:08:64:4e:6d:fd:97:e1:1e:
35:6e:e5:8f:85:25:2e:6b:53:1e:f3:d6:e1:90:6d:f2:10:cf:
e6:15:ea:0c:e4:47:e9:b9:a6:6d:b9:50:0b:0a:8b:ff:86:7b:
0b:0f:d3:69
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Aug 12 13:44:31 2025 by rpki-client