Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/44/88e482-8277-4280-9f5b-8144b140edf9/1/MNZrZqOYLSCoHvIB3HVe0zU7FqQ.mft
File: MNZrZqOYLSCoHvIB3HVe0zU7FqQ.mft (raw, json)
Hash identifier: hbzSTW+btarLKbHgZQEFrvBurW8Epj8tPQcPbmcx4ow=
Subject key identifier: 1D:E0:54:42:92:2A:9E:A4:02:2B:5D:38:8D:6F:26:C4:2B:F7:1A:B7
Authority key identifier: 30:D6:6B:66:A3:98:2D:20:A8:1E:F2:01:DC:75:5E:D3:35:3B:16:A4
Certificate issuer: /CN=30d66b66a3982d20a81ef201dc755ed3353b16a4
Certificate serial: 01988B7C93CE9B29EA3D2D527023A29FCB46
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/MNZrZqOYLSCoHvIB3HVe0zU7FqQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/44/88e482-8277-4280-9f5b-8144b140edf9/1/MNZrZqOYLSCoHvIB3HVe0zU7FqQ.mft
Manifest number: 0F99
Signing time: Fri 08 Aug 2025 21:00:53 +0000
Manifest this update: Fri 08 Aug 2025 21:00:53 +0000
Manifest next update: Sat 09 Aug 2025 21:00:53 +0000
Files and hashes: 1: MNZrZqOYLSCoHvIB3HVe0zU7FqQ.crl (hash: aEEmyrAXVQrLI59YQHYI5R+PNX8OVcIRMggwt+z0g3M=)
2: hfNN3XiVLhZTBEzmZ9kxsFWjtgU.roa (hash: rdvuWCnmeSdDSQrFfaBCbjsr2zsTzqKaLeEHczQ6fHw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/44/88e482-8277-4280-9f5b-8144b140edf9/1/MNZrZqOYLSCoHvIB3HVe0zU7FqQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/44/88e482-8277-4280-9f5b-8144b140edf9/1/MNZrZqOYLSCoHvIB3HVe0zU7FqQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/MNZrZqOYLSCoHvIB3HVe0zU7FqQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 09 Aug 2025 20:00:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:8b:7c:93:ce:9b:29:ea:3d:2d:52:70:23:a2:9f:cb:46
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=30d66b66a3982d20a81ef201dc755ed3353b16a4
Validity
Not Before: Aug 8 21:00:53 2025 GMT
Not After : Aug 9 21:00:53 2025 GMT
Subject: CN=1de05442922a9ea4022b5d388d6f26c42bf71ab7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:4b:1e:67:e8:5b:74:45:db:9e:88:5f:11:50:
f4:95:61:e0:13:d6:a8:fe:14:4f:53:a5:ad:ee:28:
43:fb:55:93:18:ae:a3:43:e1:fb:ab:5a:09:91:99:
38:92:02:68:66:e6:2a:3f:7c:ec:ce:41:1e:11:dd:
ff:21:3b:da:1e:38:4e:e5:b5:d1:2e:da:b3:2d:eb:
fe:1f:f6:e6:4d:b6:55:e5:59:e8:82:f9:aa:51:4b:
eb:7d:cd:6b:be:c0:4c:16:1d:f0:a9:71:93:d5:40:
76:c3:44:be:9f:b7:7c:30:01:91:eb:ae:a2:42:31:
58:f6:4b:13:b1:3f:3b:a9:7f:f4:3d:6f:93:16:be:
87:24:e5:3d:1a:28:fd:d2:d9:e3:d5:02:0f:38:7e:
14:48:06:da:da:75:1d:aa:4c:c2:0a:74:89:97:0b:
a5:e1:50:c7:8e:aa:ff:31:6a:62:74:90:6c:b0:e6:
eb:ba:9f:70:9c:48:4e:f6:9a:e3:83:3b:b7:95:78:
b3:6d:4d:c4:4b:0c:ed:ff:71:88:74:a3:6b:2f:74:
7b:cd:46:fb:df:b4:db:79:ac:b2:10:90:f5:21:67:
8d:1c:63:83:f8:92:40:24:ca:aa:54:5f:c5:b7:63:
e4:92:e7:38:f4:be:5d:c9:2b:a8:45:fa:09:3b:38:
49:e1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1D:E0:54:42:92:2A:9E:A4:02:2B:5D:38:8D:6F:26:C4:2B:F7:1A:B7
X509v3 Authority Key Identifier:
keyid:30:D6:6B:66:A3:98:2D:20:A8:1E:F2:01:DC:75:5E:D3:35:3B:16:A4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MNZrZqOYLSCoHvIB3HVe0zU7FqQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/44/88e482-8277-4280-9f5b-8144b140edf9/1/MNZrZqOYLSCoHvIB3HVe0zU7FqQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/44/88e482-8277-4280-9f5b-8144b140edf9/1/MNZrZqOYLSCoHvIB3HVe0zU7FqQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
47:ba:70:2a:16:39:99:83:6d:81:2f:eb:41:f9:d6:67:1a:4f:
3e:96:81:39:5c:87:89:23:11:34:36:2d:84:d0:d2:58:6c:f3:
36:bd:69:d8:94:8c:a5:de:3f:d0:03:a8:f2:de:39:6b:98:0c:
98:7f:4d:fd:05:ff:bc:45:46:37:b1:7d:31:83:c4:0f:97:36:
d0:5b:30:94:59:aa:32:67:d6:1c:94:97:fc:0e:8d:5d:d4:84:
ba:09:c5:2a:af:ea:21:38:10:98:43:90:c8:51:2e:73:8e:51:
dc:dd:77:68:4f:1b:70:65:89:40:99:b5:bb:59:8c:7e:e5:d2:
e9:45:8a:86:18:55:ec:67:7c:d9:1b:2d:0e:7d:0c:eb:f3:8e:
f3:11:a3:bb:45:37:a5:5a:cc:33:ec:eb:2a:28:fb:f0:0d:c6:
4d:15:67:22:b5:85:7e:80:a9:e0:56:02:65:7a:d5:2d:40:f8:
22:51:33:43:1f:49:ee:56:48:51:fa:9f:ba:89:16:e5:4e:cd:
04:05:57:b2:3b:b2:6a:23:fc:d0:a6:8d:2b:94:2c:a9:7f:24:
df:0d:d5:8f:09:2e:94:24:4a:32:10:df:15:ef:fe:e7:c0:20:
ba:0d:b2:49:82:04:19:93:0f:83:ff:72:88:ce:1c:a4:0b:fb:
00:50:8c:31
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 9 05:45:21 2025 by rpki-client