Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2f/58a4e1-dfc1-4d81-b2c6-216597e03f11/1/MXBn6Bphoh_cFIWY72ull1f6A4A.mft
File: MXBn6Bphoh_cFIWY72ull1f6A4A.mft (raw, json)
Hash identifier: 5VJ5Hjl7Y2/7OCx4TmZT5jAN1bXatzq4MpoyM9/Zwhc=
Subject key identifier: 1D:71:CB:85:9C:09:CE:97:12:F0:81:1F:5E:3B:FB:B5:21:C4:B8:05
Authority key identifier: 31:70:67:E8:1A:61:A2:1F:DC:14:85:98:EF:6B:A5:97:57:FA:03:80
Certificate issuer: /CN=317067e81a61a21fdc148598ef6ba59757fa0380
Certificate serial: 01976DAB73BA17D4606B4BC257FAD2AB4E58
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/MXBn6Bphoh_cFIWY72ull1f6A4A.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2f/58a4e1-dfc1-4d81-b2c6-216597e03f11/1/MXBn6Bphoh_cFIWY72ull1f6A4A.mft
Manifest number: 0816
Signing time: Sat 14 Jun 2025 09:00:42 +0000
Manifest this update: Sat 14 Jun 2025 09:00:42 +0000
Manifest next update: Sun 15 Jun 2025 09:00:42 +0000
Files and hashes: 1: 1kHURLGCgDrhi9IHuZm9V5RPr7o.roa (hash: QOJumlfbHeKteqZFgdexa+53Le46L9xrcfm0BrIrj/w=)
2: MXBn6Bphoh_cFIWY72ull1f6A4A.crl (hash: d7KuUZ704SmWQW0ENLdZJqzSxUIdpGEwgoMPpvO1CWQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2f/58a4e1-dfc1-4d81-b2c6-216597e03f11/1/MXBn6Bphoh_cFIWY72ull1f6A4A.crl
rsync://rpki.ripe.net/repository/DEFAULT/2f/58a4e1-dfc1-4d81-b2c6-216597e03f11/1/MXBn6Bphoh_cFIWY72ull1f6A4A.mft
rsync://rpki.ripe.net/repository/DEFAULT/MXBn6Bphoh_cFIWY72ull1f6A4A.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 15 Jun 2025 01:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:6d:ab:73:ba:17:d4:60:6b:4b:c2:57:fa:d2:ab:4e:58
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=317067e81a61a21fdc148598ef6ba59757fa0380
Validity
Not Before: Jun 14 09:00:42 2025 GMT
Not After : Jun 15 09:00:42 2025 GMT
Subject: CN=1d71cb859c09ce9712f0811f5e3bfbb521c4b805
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:07:b8:bf:9b:ac:e5:90:4c:af:b8:01:ff:9a:
dd:db:08:9f:4e:a9:5f:8e:85:4e:21:3f:35:fd:46:
42:50:2c:a3:a3:fd:61:ba:6d:56:7a:ca:83:39:41:
ba:61:87:66:f1:dd:54:37:20:9f:e8:7a:a8:77:a8:
4e:99:b9:dc:d2:7a:37:eb:1b:99:74:ee:43:47:65:
9d:0f:df:cc:ef:aa:6d:b8:76:42:84:ff:26:a9:2b:
d7:4d:a6:59:e5:7a:e6:3c:d4:e7:99:b4:66:e1:0d:
e2:c1:b2:de:71:8a:f1:df:20:82:01:00:0b:21:5d:
a7:4f:6b:41:59:bc:75:e9:16:8f:bc:b4:70:68:60:
ea:3f:95:69:54:bb:0d:56:f4:82:d2:fa:9d:ca:ba:
0a:68:95:b2:8c:b4:44:ea:6d:42:0c:98:01:ca:95:
e1:9e:f2:21:a2:e1:a9:09:b9:0c:86:32:d3:cf:52:
32:21:7d:71:25:e4:1d:2d:43:b6:a1:3f:df:83:bf:
10:fd:0d:08:88:d0:fb:ed:8c:91:cf:5f:07:d0:f4:
17:fa:28:21:c0:a1:80:21:da:15:c3:c1:64:39:4e:
7d:26:5a:56:ec:9f:85:c8:0f:00:89:b4:83:bf:02:
8f:89:8a:03:0c:ab:95:e3:ae:88:9d:58:1b:bb:93:
84:9b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1D:71:CB:85:9C:09:CE:97:12:F0:81:1F:5E:3B:FB:B5:21:C4:B8:05
X509v3 Authority Key Identifier:
keyid:31:70:67:E8:1A:61:A2:1F:DC:14:85:98:EF:6B:A5:97:57:FA:03:80
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MXBn6Bphoh_cFIWY72ull1f6A4A.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2f/58a4e1-dfc1-4d81-b2c6-216597e03f11/1/MXBn6Bphoh_cFIWY72ull1f6A4A.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2f/58a4e1-dfc1-4d81-b2c6-216597e03f11/1/MXBn6Bphoh_cFIWY72ull1f6A4A.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
5e:2a:39:90:7d:88:a2:64:de:9b:6c:bc:e3:c6:0c:2f:28:95:
fa:e3:8d:66:8d:7c:18:29:f3:4b:39:1f:24:55:b2:03:5b:a8:
9c:e5:e3:83:f1:f0:d9:71:e1:f8:2e:0c:68:49:3c:7d:a0:f9:
82:4a:34:ef:e5:bc:34:1d:1b:6e:6f:bf:15:60:fc:80:2a:37:
61:d0:fe:03:18:b4:83:ed:cd:21:27:4a:c2:3a:10:34:ec:b1:
e0:21:e7:cf:44:3c:9c:1b:16:94:5a:88:73:46:11:5f:4a:18:
0a:d2:1e:98:f2:be:d8:ef:8e:dc:88:af:9f:7f:31:48:b5:ca:
e8:62:cb:57:6d:2a:c7:34:f2:c5:18:3c:1e:da:c2:ad:8e:d2:
0f:fa:1b:40:91:fb:66:e5:35:04:51:63:10:b7:8d:2d:b4:2f:
e4:a1:83:2c:a9:b8:40:c2:e8:eb:e3:1a:b0:97:d4:1b:11:d6:
98:33:06:1e:3a:ab:de:6f:2a:b0:ed:4e:a7:b4:89:6c:67:a6:
65:b9:61:4d:9b:ea:63:44:13:b9:db:f8:04:16:d7:62:f8:42:
5b:eb:f3:51:f1:1a:fa:e5:86:4e:df:24:ce:07:61:58:fd:25:
54:c0:c9:94:2e:59:71:af:0f:b4:15:52:e5:78:47:13:26:ea:
f4:9b:4c:d5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 14 12:17:57 2025 by rpki-client