Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6a/9a36cc-6dca-4a2a-bf6f-d47bd7d0192f/1/MZ7ds2aRntdfRmDPsOC25fxAFhM.mft
File: MZ7ds2aRntdfRmDPsOC25fxAFhM.mft (raw, json)
Hash identifier: oICK3BPt8vAGY+8ScCQO2PX9SId/6Eubp27gg9M1yRU=
Subject key identifier: C1:B3:D9:7E:93:75:D5:8A:A8:63:43:BC:5A:C6:3B:03:62:4A:20:40
Authority key identifier: 31:9E:DD:B3:66:91:9E:D7:5F:46:60:CF:B0:E0:B6:E5:FC:40:16:13
Certificate issuer: /CN=319eddb366919ed75f4660cfb0e0b6e5fc401613
Certificate serial: 01976DAB30592A32D610BFA98D63196C26B6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/MZ7ds2aRntdfRmDPsOC25fxAFhM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6a/9a36cc-6dca-4a2a-bf6f-d47bd7d0192f/1/MZ7ds2aRntdfRmDPsOC25fxAFhM.mft
Manifest number: 0C61
Signing time: Sat 14 Jun 2025 09:00:24 +0000
Manifest this update: Sat 14 Jun 2025 09:00:24 +0000
Manifest next update: Sun 15 Jun 2025 09:00:24 +0000
Files and hashes: 1: BYjgxdL3ddXOTmm0stHvKsFPd4k.roa (hash: 4MJkG6H0wdaazlb0EpHV2G+H4iKJ78151mJpo0/ddyA=)
2: MZ7ds2aRntdfRmDPsOC25fxAFhM.crl (hash: driCZuca2jrbzi5DjChFwGCtYIKS8fvN962g8MeQV6c=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/6a/9a36cc-6dca-4a2a-bf6f-d47bd7d0192f/1/MZ7ds2aRntdfRmDPsOC25fxAFhM.crl
rsync://rpki.ripe.net/repository/DEFAULT/6a/9a36cc-6dca-4a2a-bf6f-d47bd7d0192f/1/MZ7ds2aRntdfRmDPsOC25fxAFhM.mft
rsync://rpki.ripe.net/repository/DEFAULT/MZ7ds2aRntdfRmDPsOC25fxAFhM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 15 Jun 2025 09:00:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:6d:ab:30:59:2a:32:d6:10:bf:a9:8d:63:19:6c:26:b6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=319eddb366919ed75f4660cfb0e0b6e5fc401613
Validity
Not Before: Jun 14 09:00:24 2025 GMT
Not After : Jun 15 09:00:24 2025 GMT
Subject: CN=c1b3d97e9375d58aa86343bc5ac63b03624a2040
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:84:fc:81:27:84:57:bc:b9:cb:2d:0e:3e:b7:
f8:87:6a:1a:46:e2:d0:7f:fd:10:20:67:2b:07:3d:
64:95:5a:d2:4b:a6:a0:4e:94:a3:76:97:15:20:0b:
99:59:10:51:28:1a:8c:bf:d8:e7:e6:e3:72:bd:07:
f5:9d:07:ec:21:a1:5d:fb:b3:61:c3:42:21:6d:13:
e8:98:5c:14:23:86:21:6f:be:e8:97:fd:16:a6:d5:
a3:0e:5b:83:f0:6c:d4:d4:2c:98:6e:54:17:64:ba:
b1:66:47:03:a2:b4:cf:a7:2c:2f:0d:be:bf:f1:7b:
2d:15:2f:f6:c5:12:79:ac:39:17:f3:dc:5a:38:eb:
d0:ec:bf:9c:68:89:06:65:9e:24:6a:69:18:2b:ee:
d2:36:d0:51:ea:18:78:9d:b4:d3:aa:88:72:92:f0:
ec:9a:04:cf:c1:5d:b0:d5:9a:54:0e:df:60:21:1f:
4c:41:83:b6:f3:64:c4:c1:90:d2:fa:0f:89:f7:18:
4f:81:a3:d9:1b:33:1b:66:81:c9:e0:e2:c3:4d:37:
07:c4:f7:56:b7:72:53:4b:7f:16:71:4d:cc:a0:c1:
3a:78:38:91:c8:10:cf:e4:4d:53:7c:da:09:65:23:
20:72:ae:47:4c:39:52:53:3c:82:ec:61:cf:34:7c:
22:25
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C1:B3:D9:7E:93:75:D5:8A:A8:63:43:BC:5A:C6:3B:03:62:4A:20:40
X509v3 Authority Key Identifier:
keyid:31:9E:DD:B3:66:91:9E:D7:5F:46:60:CF:B0:E0:B6:E5:FC:40:16:13
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MZ7ds2aRntdfRmDPsOC25fxAFhM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6a/9a36cc-6dca-4a2a-bf6f-d47bd7d0192f/1/MZ7ds2aRntdfRmDPsOC25fxAFhM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6a/9a36cc-6dca-4a2a-bf6f-d47bd7d0192f/1/MZ7ds2aRntdfRmDPsOC25fxAFhM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
7e:33:ac:d4:6d:76:22:f4:83:e5:e9:ef:3d:4a:72:32:a7:c7:
b3:b9:50:15:c7:28:29:e7:94:22:1e:37:74:41:d2:15:3b:f9:
a8:bb:f9:b0:db:fc:6e:0a:0d:c2:c9:d9:c3:c8:44:fd:00:cb:
dc:f0:d1:07:0c:12:50:cd:ca:ff:82:af:90:4f:cc:88:37:eb:
95:a7:13:b6:6e:40:cc:99:e4:af:bc:68:14:1a:34:f3:f1:29:
a1:c0:c9:eb:10:82:65:a7:d2:0c:c9:78:4b:5a:f8:95:cc:6c:
a4:f2:4c:17:d9:b3:9c:db:63:93:5d:39:8d:1c:3f:41:a7:63:
87:60:40:1e:e2:d5:2c:61:2c:2f:58:0a:18:a9:d5:d8:93:13:
9d:66:03:c2:f9:4b:6c:ec:68:87:f5:37:2f:c9:1b:89:59:de:
c9:89:b9:07:59:4c:a7:1d:16:4c:2f:ad:8b:63:66:54:0f:29:
92:4e:52:f3:3e:4a:ee:e4:1c:c5:04:69:fe:26:2f:3a:c8:e2:
08:3d:2d:38:e3:8d:26:bb:ce:ff:49:20:ad:bd:33:10:24:a8:
74:7c:65:b7:3f:94:a3:4f:89:9d:92:72:29:28:93:a2:d4:69:
9f:e7:80:ad:e0:5c:0c:a1:38:a0:e3:3e:53:51:dc:0a:24:a9:
44:fe:2d:43
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 14 19:57:48 2025 by rpki-client