Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5d/40c8d7-f570-4992-ad18-15bc9b25dfc0/1/MUzpW6I83J1gmXwjDWNZrTHBpZ0.mft
File: MUzpW6I83J1gmXwjDWNZrTHBpZ0.mft (raw, json)
Hash identifier: 8hWeS2FvFn/Znten/h0+PbiKgpaDRLiUy1UBpXsC4Ow=
Subject key identifier: 0E:06:73:6E:81:C1:88:5E:73:C6:E6:AE:06:82:70:12:FC:63:4E:DE
Authority key identifier: 31:4C:E9:5B:A2:3C:DC:9D:60:99:7C:23:0D:63:59:AD:31:C1:A5:9D
Certificate issuer: /CN=314ce95ba23cdc9d60997c230d6359ad31c1a59d
Certificate serial: 0198A083A23BCC2C4B70BBD96DF6B2AEC2E7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/MUzpW6I83J1gmXwjDWNZrTHBpZ0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5d/40c8d7-f570-4992-ad18-15bc9b25dfc0/1/MUzpW6I83J1gmXwjDWNZrTHBpZ0.mft
Manifest number: 057A
Signing time: Tue 12 Aug 2025 23:00:37 +0000
Manifest this update: Tue 12 Aug 2025 23:00:37 +0000
Manifest next update: Wed 13 Aug 2025 23:00:37 +0000
Files and hashes: 1: MUzpW6I83J1gmXwjDWNZrTHBpZ0.crl (hash: 2OI5muHcQpyy3xB8uFPeFDTQPrrzjnb61mNx8Jj9TZc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5d/40c8d7-f570-4992-ad18-15bc9b25dfc0/1/MUzpW6I83J1gmXwjDWNZrTHBpZ0.crl
rsync://rpki.ripe.net/repository/DEFAULT/5d/40c8d7-f570-4992-ad18-15bc9b25dfc0/1/MUzpW6I83J1gmXwjDWNZrTHBpZ0.mft
rsync://rpki.ripe.net/repository/DEFAULT/MUzpW6I83J1gmXwjDWNZrTHBpZ0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 13 Aug 2025 22:00:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:a0:83:a2:3b:cc:2c:4b:70:bb:d9:6d:f6:b2:ae:c2:e7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=314ce95ba23cdc9d60997c230d6359ad31c1a59d
Validity
Not Before: Aug 12 23:00:37 2025 GMT
Not After : Aug 13 23:00:37 2025 GMT
Subject: CN=0e06736e81c1885e73c6e6ae06827012fc634ede
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:bb:9c:51:36:3c:e2:87:cc:60:8e:bf:ca:f5:
57:bc:fd:37:26:b6:6a:45:d7:b1:e7:7f:67:7d:ea:
73:c3:e5:2c:a0:11:51:e1:53:4e:76:b9:b8:94:58:
fc:ea:53:db:f0:e1:26:2a:80:6e:f9:c7:06:81:70:
c1:4c:da:aa:99:18:60:42:ff:51:04:9b:2a:12:91:
aa:df:91:2a:c2:52:19:41:44:ca:ca:ed:56:e9:91:
a1:85:38:a0:45:7a:33:b8:e9:5d:ec:40:e9:ae:98:
e1:d1:49:fa:93:d9:42:46:ec:33:ee:f3:dc:e8:8e:
0b:27:54:e3:df:a4:e0:fa:6b:09:95:71:d0:c5:c8:
17:ff:2c:15:68:f4:04:16:d8:d0:06:18:2c:f2:27:
8b:d5:c2:7c:05:fa:ca:75:a4:6c:f9:33:b6:0e:1a:
be:cb:9a:97:47:ed:d1:b6:f5:dc:4e:04:37:30:a8:
4b:27:1f:5b:91:ad:fc:d0:b1:ff:a4:b8:b9:89:c8:
d8:c8:75:05:6a:45:1a:97:0c:04:bb:be:c6:14:3d:
f7:7c:89:26:ca:dd:f4:d7:c5:c4:44:d3:45:0e:35:
1e:b7:67:be:49:09:aa:dc:23:f2:8f:57:89:8a:31:
be:56:57:a8:05:0c:08:55:54:a4:ed:12:38:f3:5f:
97:61
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0E:06:73:6E:81:C1:88:5E:73:C6:E6:AE:06:82:70:12:FC:63:4E:DE
X509v3 Authority Key Identifier:
keyid:31:4C:E9:5B:A2:3C:DC:9D:60:99:7C:23:0D:63:59:AD:31:C1:A5:9D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MUzpW6I83J1gmXwjDWNZrTHBpZ0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5d/40c8d7-f570-4992-ad18-15bc9b25dfc0/1/MUzpW6I83J1gmXwjDWNZrTHBpZ0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5d/40c8d7-f570-4992-ad18-15bc9b25dfc0/1/MUzpW6I83J1gmXwjDWNZrTHBpZ0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
42:c0:78:0c:79:f3:e0:65:59:fc:d9:db:93:53:fd:31:82:4b:
da:a1:c4:1d:6b:02:85:37:98:0d:ee:70:91:c2:08:ba:e0:e4:
d5:c3:37:b4:6a:35:6e:31:3d:27:1a:a1:15:c1:c6:34:e3:fa:
31:61:3b:b5:63:77:ee:cc:23:76:2e:69:b0:d0:da:14:92:2f:
63:46:17:2b:f8:5e:5d:aa:52:ed:4f:cf:75:cc:80:67:01:6b:
c5:84:3c:e2:3c:af:7e:60:02:b4:ad:68:28:43:61:a4:81:1c:
3c:87:32:5f:5f:e7:3f:40:53:74:9e:e0:02:06:06:ac:9c:b9:
f0:51:ce:8a:9a:06:f9:fc:70:01:ee:d8:b5:dc:bc:43:b7:90:
d2:72:82:e3:6c:87:8f:27:d2:a7:f5:c1:1d:f8:9e:de:07:58:
a0:57:b8:5a:87:f6:70:18:85:bc:ff:b1:56:59:71:cc:8f:3f:
b6:d7:1d:00:9b:1b:2d:09:60:52:cd:9c:7a:29:27:05:47:fd:
74:53:ff:73:1a:4e:99:be:99:3b:45:36:56:16:87:3c:17:90:
c8:43:c9:ef:52:04:1b:f9:dd:06:3c:55:93:cd:53:6b:74:ad:
4a:6b:59:f0:01:70:58:05:f0:dc:cf:7f:83:7c:dc:96:20:bd:
91:ef:25:e7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Aug 13 02:43:03 2025 by rpki-client