Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/56/125b9d-2a1f-463a-965e-7cfeaf086e14/1/MkxxBGxUn7PH1OvEz5UZ0ALnbfE.mft
File: MkxxBGxUn7PH1OvEz5UZ0ALnbfE.mft (raw, json)
Hash identifier: V6hWZbcG788ZQXg0swXkA4qC8AoFHmU6siO25zz8BQc=
Subject key identifier: 7D:01:20:8A:43:0D:84:02:81:AE:D8:69:C4:B5:D3:92:D2:99:5E:6A
Authority key identifier: 32:4C:71:04:6C:54:9F:B3:C7:D4:EB:C4:CF:95:19:D0:02:E7:6D:F1
Certificate issuer: /CN=324c71046c549fb3c7d4ebc4cf9519d002e76df1
Certificate serial: 019770AC3D412BE1C87D889472EC3474D65D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/MkxxBGxUn7PH1OvEz5UZ0ALnbfE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/56/125b9d-2a1f-463a-965e-7cfeaf086e14/1/MkxxBGxUn7PH1OvEz5UZ0ALnbfE.mft
Manifest number: 0A59
Signing time: Sat 14 Jun 2025 23:00:25 +0000
Manifest this update: Sat 14 Jun 2025 23:00:25 +0000
Manifest next update: Sun 15 Jun 2025 23:00:25 +0000
Files and hashes: 1: 2W4Y0bQNlvS93LoW6fNHPM7BKLQ.roa (hash: I9C4k+xseXfObTJ4huNUkRHHI0jQTaqLFqDJffjcwOE=)
2: MkxxBGxUn7PH1OvEz5UZ0ALnbfE.crl (hash: KVIAVNVERUMfuO09lRzokmfcY80rVIbuP8/rfWU50C0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/56/125b9d-2a1f-463a-965e-7cfeaf086e14/1/MkxxBGxUn7PH1OvEz5UZ0ALnbfE.crl
rsync://rpki.ripe.net/repository/DEFAULT/56/125b9d-2a1f-463a-965e-7cfeaf086e14/1/MkxxBGxUn7PH1OvEz5UZ0ALnbfE.mft
rsync://rpki.ripe.net/repository/DEFAULT/MkxxBGxUn7PH1OvEz5UZ0ALnbfE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 15 Jun 2025 19:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:70:ac:3d:41:2b:e1:c8:7d:88:94:72:ec:34:74:d6:5d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=324c71046c549fb3c7d4ebc4cf9519d002e76df1
Validity
Not Before: Jun 14 23:00:25 2025 GMT
Not After : Jun 15 23:00:25 2025 GMT
Subject: CN=7d01208a430d840281aed869c4b5d392d2995e6a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:be:e2:37:6d:28:35:f0:1b:db:5a:0f:cc:32:
4f:b5:ba:09:a7:76:33:e4:6c:0f:8a:9c:2a:50:73:
a8:f6:f9:3d:f1:e1:f0:fc:be:2a:69:6d:99:59:27:
f1:74:15:69:0b:46:73:7a:53:d4:d3:8f:55:e0:ad:
61:08:a0:79:9a:34:88:eb:6b:c0:d6:ca:3f:6b:0b:
e7:d0:c9:5b:87:c3:69:b0:e6:e3:fc:28:35:a1:88:
84:1b:c7:8e:4c:2e:50:bf:c5:0e:29:1a:b4:83:16:
24:84:4e:92:df:27:fe:1e:c0:0d:83:cd:cd:ec:0d:
93:f5:8e:4b:86:39:43:6c:80:63:2d:63:50:0c:02:
b2:3b:86:63:4c:56:32:7e:a4:1a:aa:ef:57:b5:6f:
53:69:4a:c8:27:34:f0:d7:9e:5f:b6:0f:e5:4b:1f:
ab:e2:c0:41:de:c7:89:9d:e1:ad:25:f0:de:ea:83:
27:23:c0:5d:1f:83:b3:10:4e:1d:31:4b:c6:3f:3d:
6a:8a:9a:b6:79:a5:1d:fd:ba:64:0b:36:99:d3:3a:
07:0c:c5:58:b1:c4:78:68:e2:19:32:95:74:0a:a8:
60:10:f5:7b:73:3e:5e:67:06:73:ec:86:bf:0e:b3:
17:5d:2f:d1:ba:cf:4e:fb:71:a9:7e:24:5e:c1:9b:
87:4f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7D:01:20:8A:43:0D:84:02:81:AE:D8:69:C4:B5:D3:92:D2:99:5E:6A
X509v3 Authority Key Identifier:
keyid:32:4C:71:04:6C:54:9F:B3:C7:D4:EB:C4:CF:95:19:D0:02:E7:6D:F1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MkxxBGxUn7PH1OvEz5UZ0ALnbfE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/56/125b9d-2a1f-463a-965e-7cfeaf086e14/1/MkxxBGxUn7PH1OvEz5UZ0ALnbfE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/56/125b9d-2a1f-463a-965e-7cfeaf086e14/1/MkxxBGxUn7PH1OvEz5UZ0ALnbfE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
24:af:ee:01:0f:48:2c:0c:fc:e1:e7:dc:28:41:49:f6:17:5c:
5d:dd:5d:57:de:20:f1:91:49:bf:20:25:91:47:67:6b:85:90:
95:91:59:e7:17:74:50:f7:15:3c:37:3c:9e:48:06:ae:fa:66:
21:7c:c3:66:84:72:1c:97:ba:93:08:05:7b:b9:5b:af:60:25:
d8:15:19:f2:50:b1:c5:9c:1e:9e:ed:a9:30:47:0a:79:41:31:
00:3e:ec:9b:2f:1d:32:71:40:e5:91:e5:72:6b:bf:71:43:2e:
6b:1a:40:56:91:09:58:4c:c1:b5:92:50:40:5d:df:8d:5e:93:
f3:9d:84:49:41:cc:21:dc:37:62:a1:d9:41:4d:df:5e:3f:35:
2f:55:66:bd:25:d4:e9:4d:e8:c9:1e:6b:e4:d0:72:29:6e:89:
9b:e7:a5:c7:23:24:90:23:71:aa:91:65:c6:c2:1b:4c:5b:e7:
4e:08:b9:03:de:56:0a:ec:63:d8:07:fa:32:e5:fa:5b:2f:83:
b7:bf:a4:32:c3:3d:34:31:14:25:d6:06:2f:38:6a:27:38:0c:
31:0f:5e:04:d5:7d:64:ce:bd:ba:09:76:64:b4:c3:98:dd:cc:
18:ed:5c:8f:a6:57:b2:e0:47:d0:73:c3:3d:3d:51:fa:dc:ff:
b4:af:d9:32
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 15 04:08:30 2025 by rpki-client