Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/43/3631e0-56d7-4c29-95c4-6682b07fa947/1/Mns0IMJQE3legioq5Q043B04J5M.mft
File: Mns0IMJQE3legioq5Q043B04J5M.mft (raw, json)
Hash identifier: 3d/e4PiHkr3CbclmUy9bQ+Dbs/foJYqgWfIRbhjzORQ=
Subject key identifier: C7:E5:6D:1B:91:37:F2:D8:54:A5:D4:FD:56:C7:33:6F:C1:DD:92:02
Authority key identifier: 32:7B:34:20:C2:50:13:79:5E:82:2A:2A:E5:0D:38:DC:1D:38:27:93
Certificate issuer: /CN=327b3420c25013795e822a2ae50d38dc1d382793
Certificate serial: 01988A32E52FFF4ECE8958112598D1525045
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Mns0IMJQE3legioq5Q043B04J5M.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/43/3631e0-56d7-4c29-95c4-6682b07fa947/1/Mns0IMJQE3legioq5Q043B04J5M.mft
Manifest number: 1623
Signing time: Fri 08 Aug 2025 15:00:47 +0000
Manifest this update: Fri 08 Aug 2025 15:00:47 +0000
Manifest next update: Sat 09 Aug 2025 15:00:47 +0000
Files and hashes: 1: Mns0IMJQE3legioq5Q043B04J5M.crl (hash: K8BzHwI0ykQk6BpXrK9nH4PhaIfRuHHsV7blJh32yDA=)
2: v9geoE7KmWCRnCztGaTkN5bSNF0.roa (hash: yJ1Hvyh5t82gNQ9PRDa/lCyqTlzjssbfVD5EEeI11lA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/43/3631e0-56d7-4c29-95c4-6682b07fa947/1/Mns0IMJQE3legioq5Q043B04J5M.crl
rsync://rpki.ripe.net/repository/DEFAULT/43/3631e0-56d7-4c29-95c4-6682b07fa947/1/Mns0IMJQE3legioq5Q043B04J5M.mft
rsync://rpki.ripe.net/repository/DEFAULT/Mns0IMJQE3legioq5Q043B04J5M.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 09 Aug 2025 15:00:47 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:8a:32:e5:2f:ff:4e:ce:89:58:11:25:98:d1:52:50:45
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=327b3420c25013795e822a2ae50d38dc1d382793
Validity
Not Before: Aug 8 15:00:47 2025 GMT
Not After : Aug 9 15:00:47 2025 GMT
Subject: CN=c7e56d1b9137f2d854a5d4fd56c7336fc1dd9202
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:96:c6:1d:c2:53:31:fc:05:82:3f:5b:0c:bf:68:
f6:e9:04:08:45:a3:cf:3d:88:07:53:94:20:02:e4:
bd:5b:07:51:2f:95:9f:32:39:cc:43:6a:76:38:b7:
82:9a:2c:b5:1e:ca:97:76:0e:8a:36:be:4a:01:09:
17:08:17:b5:c0:b1:06:aa:e4:df:51:a2:58:ac:08:
f2:65:de:45:73:95:57:d0:a5:61:d0:d9:70:8b:13:
1d:d6:51:54:b5:aa:2b:3b:6b:ac:02:ed:73:b6:01:
06:34:67:12:54:2d:50:bf:6d:65:fd:56:28:34:ca:
81:0e:9f:f4:a8:1d:2d:a1:24:a6:c0:e5:21:3e:7d:
b6:cb:8a:45:e7:6f:ff:18:be:94:54:98:b5:55:16:
87:13:0c:1b:3f:2c:08:a8:39:3f:5d:59:0b:1f:ab:
7b:0f:5c:c8:f5:de:1d:52:95:ba:f8:db:53:2a:6a:
47:d3:65:4b:d6:8c:75:65:37:5a:04:ea:cc:70:1c:
6c:38:0f:c9:0e:93:fb:bc:2e:4d:94:ae:24:44:28:
55:2c:b6:6a:5e:8b:a0:70:a6:34:f1:a6:cd:a0:77:
f6:7f:c1:2f:64:14:91:23:3e:06:4f:6c:cd:72:f6:
57:f6:43:c4:ee:cf:00:3f:e6:1c:29:ae:4c:63:4c:
eb:6f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C7:E5:6D:1B:91:37:F2:D8:54:A5:D4:FD:56:C7:33:6F:C1:DD:92:02
X509v3 Authority Key Identifier:
keyid:32:7B:34:20:C2:50:13:79:5E:82:2A:2A:E5:0D:38:DC:1D:38:27:93
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Mns0IMJQE3legioq5Q043B04J5M.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/43/3631e0-56d7-4c29-95c4-6682b07fa947/1/Mns0IMJQE3legioq5Q043B04J5M.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/43/3631e0-56d7-4c29-95c4-6682b07fa947/1/Mns0IMJQE3legioq5Q043B04J5M.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
e1:45:8d:68:c5:14:17:50:07:37:e7:e6:6b:c2:ec:7c:db:67:
e7:18:7f:46:9e:af:36:0c:b2:f1:a8:e6:d0:d9:01:6b:24:ea:
26:f3:0a:c4:32:0b:e4:71:51:89:f6:ad:13:0c:ed:ba:2f:c7:
33:f8:a2:96:bb:1c:29:a6:8c:a2:fc:a1:f7:1f:2f:4e:78:f6:
0d:88:3e:80:34:a6:d0:5c:be:08:63:b8:00:1f:f4:ca:28:e5:
3b:b7:15:ae:9b:c9:85:64:44:4c:28:7f:2e:af:43:e5:ce:c2:
06:2b:c2:95:e5:ae:78:14:73:46:ae:67:3e:60:4f:42:6f:1b:
37:45:cb:ba:d8:90:32:45:aa:72:7a:a9:e7:52:6a:0c:1d:e6:
50:2f:7c:42:d3:73:d7:9e:06:92:13:ec:c4:cc:a1:75:3c:c6:
b3:d6:9d:ea:ac:4f:9a:d3:4e:2d:b2:11:ba:a5:56:63:f9:7b:
ee:61:96:ff:6f:36:f9:13:3b:1b:ef:3f:a9:8b:56:4f:58:26:
cf:5b:5a:32:6a:16:af:fe:4b:0e:5d:5e:e9:5f:cd:64:95:14:
c9:2f:64:81:69:6d:f4:55:b3:3d:ea:16:31:11:46:7c:63:0e:
54:b8:28:f2:1f:e2:1a:41:80:b3:9e:4c:f0:b9:20:2a:6e:cb:
7c:b6:3f:f5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 9 01:19:37 2025 by rpki-client