Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/21/bea847-a783-489d-ae4b-53f57504ef35/1/mGM1ShEa9tXhrRDaOK2BRLa-ho4.mft
File: mGM1ShEa9tXhrRDaOK2BRLa-ho4.mft (raw, json)
Hash identifier: V7Njynj9j3agYI+jT03xNNDeNmW3FQkHzFEkplUlgB8=
Subject key identifier: 88:98:93:96:A0:49:80:18:CD:24:6B:0E:38:79:9C:63:F0:F1:CA:E4
Authority key identifier: 98:63:35:4A:11:1A:F6:D5:E1:AD:10:DA:38:AD:81:44:B6:BE:86:8E
Certificate issuer: /CN=9863354a111af6d5e1ad10da38ad8144b6be868e
Certificate serial: 019887D6FA104D4632D07C404C089E50C800
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/mGM1ShEa9tXhrRDaOK2BRLa-ho4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/21/bea847-a783-489d-ae4b-53f57504ef35/1/mGM1ShEa9tXhrRDaOK2BRLa-ho4.mft
Manifest number: 0719
Signing time: Fri 08 Aug 2025 04:01:09 +0000
Manifest this update: Fri 08 Aug 2025 04:01:09 +0000
Manifest next update: Sat 09 Aug 2025 04:01:09 +0000
Files and hashes: 1: J5SKCaGOc1EmK2ciMl5AsL0Yt6k.roa (hash: G1OhQbiptYNimu4j0r+tzGfxHpXqGX5AtlwZt3l6QBs=)
2: TMwrQ9VEC3dWwdOdSzhchqd9LKU.roa (hash: ddLT4suSyGT63FePBoB4o2Q5fl/qPXcvtKn+r4yKT0g=)
3: mGM1ShEa9tXhrRDaOK2BRLa-ho4.crl (hash: 8sfhTtxdu65oAh5KHekUhmv96k+Bj7o1zyt/YAWVeh8=)
4: qjXXTFXVdVVWr7-MSHZr7AQqbSo.roa (hash: Sp8Mn3EU/O89RIW7deIN1lZCT2/D8tgJU4hIx0BHNRE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/21/bea847-a783-489d-ae4b-53f57504ef35/1/mGM1ShEa9tXhrRDaOK2BRLa-ho4.crl
rsync://rpki.ripe.net/repository/DEFAULT/21/bea847-a783-489d-ae4b-53f57504ef35/1/mGM1ShEa9tXhrRDaOK2BRLa-ho4.mft
rsync://rpki.ripe.net/repository/DEFAULT/mGM1ShEa9tXhrRDaOK2BRLa-ho4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 09 Aug 2025 04:01:09 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:87:d6:fa:10:4d:46:32:d0:7c:40:4c:08:9e:50:c8:00
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9863354a111af6d5e1ad10da38ad8144b6be868e
Validity
Not Before: Aug 8 04:01:09 2025 GMT
Not After : Aug 9 04:01:09 2025 GMT
Subject: CN=88989396a0498018cd246b0e38799c63f0f1cae4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:e5:8f:ac:16:ed:33:12:61:6d:21:9e:da:4c:
95:af:ba:16:27:79:b7:07:83:b8:91:63:55:a6:83:
12:91:c1:48:da:68:64:72:e3:39:c9:42:03:49:42:
72:78:9c:24:fa:6b:01:45:26:ff:c9:c9:aa:43:df:
83:88:90:62:e7:25:d9:e6:80:8c:84:7a:65:55:7f:
c0:2d:2c:d4:a0:90:1d:27:0b:9c:c3:ae:e1:6d:8b:
d4:96:50:f2:d5:d2:b2:c5:bc:0c:f2:20:d9:37:6e:
ec:00:a2:56:3a:48:a9:4b:e9:c1:c4:a1:95:eb:7f:
c4:c7:d8:29:0a:49:88:5e:4d:1c:47:da:f9:e3:bb:
b3:07:cc:e5:c8:76:f4:df:2f:05:a7:56:0b:70:b8:
ac:2c:11:92:fe:2d:c2:36:55:26:8f:38:41:42:93:
ae:32:9e:68:fc:ad:65:4e:4c:d9:8d:62:e6:7a:8d:
c3:9b:9f:59:93:64:31:da:77:df:5e:65:db:77:cd:
0c:5f:a0:8a:a4:a0:3b:9b:e1:73:34:5a:fc:5f:f7:
fe:bf:59:2c:a5:2d:dc:49:ae:83:f3:f9:e4:24:ce:
83:52:db:74:f9:98:4d:22:1f:b2:d3:26:d7:ee:c4:
a6:e2:58:c4:a6:03:3f:f6:fe:c6:21:5f:d0:6e:c2:
5f:ad
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
88:98:93:96:A0:49:80:18:CD:24:6B:0E:38:79:9C:63:F0:F1:CA:E4
X509v3 Authority Key Identifier:
keyid:98:63:35:4A:11:1A:F6:D5:E1:AD:10:DA:38:AD:81:44:B6:BE:86:8E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/mGM1ShEa9tXhrRDaOK2BRLa-ho4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/21/bea847-a783-489d-ae4b-53f57504ef35/1/mGM1ShEa9tXhrRDaOK2BRLa-ho4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/21/bea847-a783-489d-ae4b-53f57504ef35/1/mGM1ShEa9tXhrRDaOK2BRLa-ho4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
9a:13:6a:b2:bd:f2:cf:88:14:f4:d2:d3:21:77:23:09:26:d3:
bc:ed:c1:c3:fa:13:2b:ea:82:7f:23:18:d3:6b:6a:ab:26:12:
ea:3c:a4:15:e9:7c:3b:fa:58:a1:9a:fe:ff:f5:b5:c6:5e:fa:
d2:35:de:04:69:71:be:16:45:43:89:1a:2e:0a:c9:25:77:c0:
b5:de:54:a8:45:54:98:18:26:f3:32:b7:cb:ba:eb:ed:c0:6f:
31:0e:af:0a:d7:6b:c4:91:33:6d:eb:52:1d:f5:23:89:61:e1:
a2:ad:63:0a:63:96:df:82:19:bf:8e:58:d5:34:c6:6c:7a:e5:
c0:53:ba:4e:52:fa:ae:83:28:4d:6f:ea:25:42:8b:a1:ce:51:
ab:bf:7a:96:87:8c:a5:95:ee:04:cc:cc:7f:e0:03:bc:4d:28:
1d:5c:e1:f9:be:1e:34:6c:2e:e4:94:d7:03:20:e7:1f:9d:0d:
90:40:92:27:8e:01:78:2c:e7:ac:0d:06:4b:78:53:f0:e7:41:
a0:30:3a:da:63:1c:e6:d6:de:44:18:bc:d7:11:55:24:4c:84:
07:ba:dc:e1:79:34:82:9f:4f:ec:e7:62:b1:09:fb:0e:e3:27:
a5:4d:4c:df:37:57:88:3c:b4:7a:6c:e3:6f:be:6b:49:7a:1b:
1b:16:1f:90
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Aug 8 13:06:25 2025 by rpki-client