Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/20/af832b-a641-4e46-a836-40f4c68e9a31/1/MdfZ0pzs-OWRIiM9cW5rBQ5xhHg.mft
File: MdfZ0pzs-OWRIiM9cW5rBQ5xhHg.mft (raw, json)
Hash identifier: NEDfDiSRtCz35r5/gKp8TQgzgKfeyX5HqG9nIRRJXck=
Subject key identifier: F7:E1:D7:E0:03:8A:17:07:08:B3:7C:AE:F2:21:3D:A3:F3:5C:63:18
Authority key identifier: 31:D7:D9:D2:9C:EC:F8:E5:91:22:23:3D:71:6E:6B:05:0E:71:84:78
Certificate issuer: /CN=31d7d9d29cecf8e59122233d716e6b050e718478
Certificate serial: 01976C61B85328948E472703B929E467D21F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/MdfZ0pzs-OWRIiM9cW5rBQ5xhHg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/20/af832b-a641-4e46-a836-40f4c68e9a31/1/MdfZ0pzs-OWRIiM9cW5rBQ5xhHg.mft
Manifest number: 0168
Signing time: Sat 14 Jun 2025 03:00:32 +0000
Manifest this update: Sat 14 Jun 2025 03:00:32 +0000
Manifest next update: Sun 15 Jun 2025 03:00:32 +0000
Files and hashes: 1: MdfZ0pzs-OWRIiM9cW5rBQ5xhHg.crl (hash: eFFvr1goarT3w880zJdOvHMJ9MQIWd4d/PPXYA9KUno=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/20/af832b-a641-4e46-a836-40f4c68e9a31/1/MdfZ0pzs-OWRIiM9cW5rBQ5xhHg.crl
rsync://rpki.ripe.net/repository/DEFAULT/20/af832b-a641-4e46-a836-40f4c68e9a31/1/MdfZ0pzs-OWRIiM9cW5rBQ5xhHg.mft
rsync://rpki.ripe.net/repository/DEFAULT/MdfZ0pzs-OWRIiM9cW5rBQ5xhHg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 15 Jun 2025 01:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:6c:61:b8:53:28:94:8e:47:27:03:b9:29:e4:67:d2:1f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=31d7d9d29cecf8e59122233d716e6b050e718478
Validity
Not Before: Jun 14 03:00:32 2025 GMT
Not After : Jun 15 03:00:32 2025 GMT
Subject: CN=f7e1d7e0038a170708b37caef2213da3f35c6318
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:19:f4:e4:18:b8:db:33:55:de:30:54:c3:b8:
20:23:ea:70:01:20:84:24:af:67:31:29:83:8f:17:
72:78:1a:dd:84:bf:af:47:d7:67:0c:7d:ee:03:3a:
74:d5:6e:65:0d:7d:25:5c:3c:44:91:a7:71:3c:56:
dd:53:19:31:21:0d:e3:8f:23:5c:06:55:de:d1:34:
c1:93:d6:b4:0f:7d:fe:50:6d:fa:34:d8:67:03:73:
64:4c:50:f0:27:af:01:1e:fc:97:66:00:53:90:a8:
9e:0b:3e:6e:be:5c:cb:8d:bc:01:ba:fa:2b:6c:f4:
a8:e7:df:dc:82:e2:df:2b:f5:08:62:b1:50:8d:e8:
e1:46:06:1a:00:05:ed:57:68:f2:68:dd:c3:ec:bd:
34:17:e2:a7:72:25:7b:be:6a:14:6f:c3:f9:76:10:
81:24:a6:fc:db:01:4c:8f:1b:fb:76:af:7a:ad:7b:
39:bd:2b:cd:1e:38:28:6d:3b:b5:e5:fb:69:67:7a:
38:af:ac:3e:4a:f4:ed:c9:59:5f:4d:07:e4:aa:18:
c8:f0:b7:2b:7b:ed:5f:1b:2f:bf:14:00:a9:1f:1a:
a5:5c:f7:a6:b1:aa:3e:d9:1e:2b:55:bf:a2:7b:75:
36:7a:d8:08:6e:32:e4:16:44:9a:5e:1f:bc:13:c5:
93:f1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F7:E1:D7:E0:03:8A:17:07:08:B3:7C:AE:F2:21:3D:A3:F3:5C:63:18
X509v3 Authority Key Identifier:
keyid:31:D7:D9:D2:9C:EC:F8:E5:91:22:23:3D:71:6E:6B:05:0E:71:84:78
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MdfZ0pzs-OWRIiM9cW5rBQ5xhHg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/20/af832b-a641-4e46-a836-40f4c68e9a31/1/MdfZ0pzs-OWRIiM9cW5rBQ5xhHg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/20/af832b-a641-4e46-a836-40f4c68e9a31/1/MdfZ0pzs-OWRIiM9cW5rBQ5xhHg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
7d:a9:66:42:5e:64:79:d4:36:1c:a5:8e:e2:81:63:96:65:c7:
c5:68:47:ad:8b:42:28:11:31:cc:b2:cd:aa:76:a1:aa:e9:d7:
ee:c7:bf:9c:79:15:24:c2:48:77:b6:b9:2a:5c:66:8f:e7:43:
4a:f4:a8:78:30:23:a6:eb:c8:67:49:c0:cc:9e:5c:33:1a:d4:
5e:36:6b:17:93:7c:7e:70:d7:fd:db:76:fb:e5:e9:79:24:ca:
94:b4:85:48:3b:da:06:3b:6b:15:33:5b:d7:33:b1:cc:f1:8f:
3e:2d:d6:b3:0d:5d:e5:d1:ea:a3:8d:51:fd:ef:3b:83:02:63:
c0:ef:11:e4:dd:09:48:71:bd:73:f6:38:8f:3e:71:32:85:7d:
ec:42:6e:0b:37:dc:82:1c:06:fc:f7:fd:27:8c:1f:b8:72:96:
1f:3d:c6:2f:20:11:8b:0e:2b:09:22:a1:f6:82:d4:a2:03:b5:
47:e5:0e:9b:2a:28:8a:bf:cf:16:b0:f5:cb:03:63:e6:77:51:
11:c9:9e:e9:4a:f3:e1:01:3a:21:1d:28:cc:24:1e:84:e7:29:
61:a5:e9:8f:03:98:8d:ba:3b:3a:5a:14:5a:82:60:fd:9a:68:
7d:d3:ce:a8:7b:9b:45:34:ed:e1:03:13:53:61:1d:d9:da:c8:
8d:22:58:d8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 14 12:20:14 2025 by rpki-client