Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/43/3631e0-56d7-4c29-95c4-6682b07fa947/1/Mns0IMJQE3legioq5Q043B04J5M.mft
File: Mns0IMJQE3legioq5Q043B04J5M.mft (raw, json)
Hash identifier: 2/10DnvZneY9zu61O/NyjARXng3CGvvVw2OSIkDx/JM=
Subject key identifier: 87:69:F7:4B:06:E4:BD:9C:3B:4F:84:CE:A0:B7:EB:43:E2:E8:BC:5E
Authority key identifier: 32:7B:34:20:C2:50:13:79:5E:82:2A:2A:E5:0D:38:DC:1D:38:27:93
Certificate issuer: /CN=327b3420c25013795e822a2ae50d38dc1d382793
Certificate serial: 01976C621D536F1D1603AECBC860F0110D7A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Mns0IMJQE3legioq5Q043B04J5M.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/43/3631e0-56d7-4c29-95c4-6682b07fa947/1/Mns0IMJQE3legioq5Q043B04J5M.mft
Manifest number: 158F
Signing time: Sat 14 Jun 2025 03:00:58 +0000
Manifest this update: Sat 14 Jun 2025 03:00:58 +0000
Manifest next update: Sun 15 Jun 2025 03:00:58 +0000
Files and hashes: 1: Mns0IMJQE3legioq5Q043B04J5M.crl (hash: VGJzu68RGbQ/Pz+34d3ZNrBbi7dyeRCVqMUb9OtUuw0=)
2: v9geoE7KmWCRnCztGaTkN5bSNF0.roa (hash: yJ1Hvyh5t82gNQ9PRDa/lCyqTlzjssbfVD5EEeI11lA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/43/3631e0-56d7-4c29-95c4-6682b07fa947/1/Mns0IMJQE3legioq5Q043B04J5M.crl
rsync://rpki.ripe.net/repository/DEFAULT/43/3631e0-56d7-4c29-95c4-6682b07fa947/1/Mns0IMJQE3legioq5Q043B04J5M.mft
rsync://rpki.ripe.net/repository/DEFAULT/Mns0IMJQE3legioq5Q043B04J5M.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 15 Jun 2025 03:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:6c:62:1d:53:6f:1d:16:03:ae:cb:c8:60:f0:11:0d:7a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=327b3420c25013795e822a2ae50d38dc1d382793
Validity
Not Before: Jun 14 03:00:58 2025 GMT
Not After : Jun 15 03:00:58 2025 GMT
Subject: CN=8769f74b06e4bd9c3b4f84cea0b7eb43e2e8bc5e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:db:d0:0e:a4:6d:5d:df:4c:59:81:31:ab:aa:5a:
af:2e:16:27:b4:4b:44:ee:34:55:24:bf:53:7f:e8:
57:01:67:23:4d:a7:25:42:14:92:9f:86:76:8e:e3:
a6:d1:d9:46:00:2e:05:28:c8:e4:2b:fc:f2:2c:f9:
91:45:ea:74:62:7f:ad:36:7c:8f:df:0e:c6:4b:03:
0e:8b:6c:8d:6b:74:99:40:23:2d:0d:68:a6:12:cd:
11:7f:5e:dc:55:c3:3e:67:27:13:f6:e3:db:e4:07:
84:ca:7c:54:90:6e:4d:01:56:40:d0:3c:d5:09:92:
c5:b9:4a:bf:2c:a3:ad:f6:e9:fc:c8:80:f7:31:42:
a4:e7:e3:90:58:2e:80:7f:0b:96:4f:3c:b2:8b:3f:
89:0e:9d:6c:c3:02:1c:b8:d0:e7:c9:b4:31:02:8a:
30:f6:83:0a:b6:f5:6d:0b:07:0c:37:d1:d0:48:cf:
a4:ee:5b:70:fd:d8:b6:27:60:89:a0:89:cf:37:60:
30:7f:f6:c9:67:f2:27:11:17:2d:1c:cd:38:36:98:
25:5f:11:c5:fa:b2:8b:d6:33:63:0d:b4:31:57:82:
f1:03:44:90:88:f5:a1:dc:f3:96:f7:e9:60:0e:a7:
38:2d:7b:e7:42:cf:e1:0e:c7:c6:d3:f5:0e:b5:ec:
b0:37
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
87:69:F7:4B:06:E4:BD:9C:3B:4F:84:CE:A0:B7:EB:43:E2:E8:BC:5E
X509v3 Authority Key Identifier:
keyid:32:7B:34:20:C2:50:13:79:5E:82:2A:2A:E5:0D:38:DC:1D:38:27:93
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Mns0IMJQE3legioq5Q043B04J5M.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/43/3631e0-56d7-4c29-95c4-6682b07fa947/1/Mns0IMJQE3legioq5Q043B04J5M.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/43/3631e0-56d7-4c29-95c4-6682b07fa947/1/Mns0IMJQE3legioq5Q043B04J5M.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
89:96:2e:8f:55:3e:c5:4e:fa:ba:b0:8e:90:24:83:e0:fb:e4:
8a:b9:f7:67:fe:b3:b9:c6:27:fa:38:a4:fa:dc:ec:a7:de:3f:
5b:69:64:45:13:e1:00:93:d1:89:af:3a:e4:72:ae:18:a7:a8:
3c:74:0d:ba:c6:b9:7b:ea:73:9e:ed:3f:d9:04:15:80:0e:77:
03:d8:73:0a:38:5e:a6:54:45:74:d0:94:c5:6a:7b:0e:de:af:
13:ee:3d:80:41:db:e5:15:d2:61:7c:f0:dc:60:76:cf:9d:0d:
a4:bd:dc:5a:21:8d:35:ef:8b:7d:20:c8:00:d7:a3:3f:5d:40:
5c:3e:ef:69:ca:d6:45:c3:11:a5:69:cc:69:87:9f:a1:79:03:
12:a0:b4:6c:1a:c6:78:98:4b:3c:5b:47:9f:2b:6a:64:24:36:
c4:ef:67:a3:dc:b8:43:de:07:87:2b:9a:bc:cd:58:fa:0d:cc:
46:f0:d4:10:30:29:e2:df:71:38:54:3d:bf:33:f2:7e:2f:ba:
61:65:c8:42:0a:09:53:6c:f6:a0:1a:b9:ec:1f:da:63:3a:e4:
19:3e:5a:d1:8c:cc:02:4f:ca:cc:84:fe:4c:6a:16:2c:62:11:
7f:bd:0e:b0:0c:ad:8b:0b:d9:2a:d2:80:e4:48:3f:b3:cf:8e:
cc:b6:23:e2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 14 13:19:22 2025 by rpki-client