Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6a/9a36cc-6dca-4a2a-bf6f-d47bd7d0192f/1/MZ7ds2aRntdfRmDPsOC25fxAFhM.mft
File: MZ7ds2aRntdfRmDPsOC25fxAFhM.mft (raw, json)
Hash identifier: AATG3C+KtCm8MTlAgr+0v4tslUZB2sXj1vDrDvYWcGI=
Subject key identifier: 34:AB:F6:B4:21:A9:18:68:D6:5B:F9:BF:59:35:8D:8B:C0:4B:07:62
Authority key identifier: 31:9E:DD:B3:66:91:9E:D7:5F:46:60:CF:B0:E0:B6:E5:FC:40:16:13
Certificate issuer: /CN=319eddb366919ed75f4660cfb0e0b6e5fc401613
Certificate serial: 0198744FFAAB06A4630E818CA19CD844BD5C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/MZ7ds2aRntdfRmDPsOC25fxAFhM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6a/9a36cc-6dca-4a2a-bf6f-d47bd7d0192f/1/MZ7ds2aRntdfRmDPsOC25fxAFhM.mft
Manifest number: 0CE9
Signing time: Mon 04 Aug 2025 09:00:55 +0000
Manifest this update: Mon 04 Aug 2025 09:00:55 +0000
Manifest next update: Tue 05 Aug 2025 09:00:55 +0000
Files and hashes: 1: BYjgxdL3ddXOTmm0stHvKsFPd4k.roa (hash: 4MJkG6H0wdaazlb0EpHV2G+H4iKJ78151mJpo0/ddyA=)
2: MZ7ds2aRntdfRmDPsOC25fxAFhM.crl (hash: j+3idKJUB+0gPfPvw2A3xaDbUkYm0hX6A2Ip+zHVu9Q=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/6a/9a36cc-6dca-4a2a-bf6f-d47bd7d0192f/1/MZ7ds2aRntdfRmDPsOC25fxAFhM.crl
rsync://rpki.ripe.net/repository/DEFAULT/6a/9a36cc-6dca-4a2a-bf6f-d47bd7d0192f/1/MZ7ds2aRntdfRmDPsOC25fxAFhM.mft
rsync://rpki.ripe.net/repository/DEFAULT/MZ7ds2aRntdfRmDPsOC25fxAFhM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 05 Aug 2025 03:00:28 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:74:4f:fa:ab:06:a4:63:0e:81:8c:a1:9c:d8:44:bd:5c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=319eddb366919ed75f4660cfb0e0b6e5fc401613
Validity
Not Before: Aug 4 09:00:55 2025 GMT
Not After : Aug 5 09:00:55 2025 GMT
Subject: CN=34abf6b421a91868d65bf9bf59358d8bc04b0762
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d9:03:35:71:f5:89:28:6b:16:55:24:a4:52:ad:
a2:43:3a:d1:8e:06:56:19:eb:4c:ff:22:cc:c4:5e:
f6:d5:e6:32:c1:a0:0b:8a:7a:55:bb:ec:b1:a7:d7:
0c:a2:01:0f:5e:2d:84:ba:12:84:8d:5c:7d:82:69:
20:dc:e8:37:85:3c:ee:2e:2f:da:40:75:16:a6:f8:
40:ef:49:9d:3a:72:86:ba:3c:fe:ed:18:53:ae:da:
27:0a:f4:8d:e5:0d:ed:2a:ed:3b:e6:9d:33:2d:e1:
a5:c1:89:75:7c:bd:c0:16:0f:b3:6e:3c:3b:bc:47:
31:bb:00:da:ca:0d:45:6f:1f:6f:e6:86:f9:78:78:
4c:05:c5:ff:c9:91:e7:a8:58:cb:e5:1c:e2:e3:b2:
df:56:95:fa:e0:1d:a0:43:8c:76:15:ae:21:1c:81:
59:6b:a3:c4:eb:b4:4e:c9:18:f3:27:58:03:09:56:
c0:5b:3d:a2:93:ac:4f:67:94:36:3a:1f:16:90:12:
93:9b:9e:9e:3a:44:e8:1d:78:61:85:5a:2e:4e:c6:
27:6a:3c:6e:48:36:0e:9b:aa:bd:08:66:9f:57:6a:
cd:4a:b4:9b:33:c6:95:59:9e:de:4d:95:35:c3:34:
02:35:e3:9e:cd:71:18:f6:9a:60:f8:f7:de:38:73:
ad:03
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
34:AB:F6:B4:21:A9:18:68:D6:5B:F9:BF:59:35:8D:8B:C0:4B:07:62
X509v3 Authority Key Identifier:
keyid:31:9E:DD:B3:66:91:9E:D7:5F:46:60:CF:B0:E0:B6:E5:FC:40:16:13
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MZ7ds2aRntdfRmDPsOC25fxAFhM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6a/9a36cc-6dca-4a2a-bf6f-d47bd7d0192f/1/MZ7ds2aRntdfRmDPsOC25fxAFhM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6a/9a36cc-6dca-4a2a-bf6f-d47bd7d0192f/1/MZ7ds2aRntdfRmDPsOC25fxAFhM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
1a:8b:b1:cd:a8:73:0d:24:80:89:2d:e0:64:3a:e2:bc:cb:3d:
93:37:02:3f:18:5a:4a:b0:ba:2f:67:85:29:f6:f8:b6:5e:74:
68:f3:8e:dc:0d:1a:55:8f:d2:8a:8e:ad:9d:ce:fa:82:1b:44:
fc:76:91:54:3b:f9:b3:7f:c0:1d:89:aa:df:e4:60:01:bc:5e:
e9:dc:d4:f0:60:6f:91:7d:50:49:32:b0:f8:05:12:05:3b:9a:
2f:28:f8:50:68:96:0b:df:1e:5c:f0:d2:de:93:e6:0c:cd:28:
42:d2:cd:ba:7b:fa:9c:b8:f6:0d:e4:b5:c5:67:fc:04:f9:69:
4e:d8:4c:36:a9:dc:0a:e1:df:3e:eb:3f:b4:30:a4:d0:54:81:
c4:fc:03:d8:5f:e4:75:40:e1:40:21:7a:b2:21:33:5f:ad:8c:
b0:1a:3f:9b:56:ca:e0:2c:c0:9f:3a:67:da:da:7a:bd:45:69:
43:8e:e8:b3:e3:54:97:e9:83:ac:32:18:27:b5:cc:88:4d:ae:
9a:82:de:5a:7a:41:cd:eb:a8:61:35:19:95:ff:a9:b6:a7:02:
4a:17:e8:25:ad:82:69:da:ef:28:7f:48:08:79:ad:07:6f:70:
1f:ca:bc:80:f7:29:b3:b2:a4:34:69:8d:61:85:5e:c2:ff:41:
c9:ec:ff:b6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Aug 4 11:26:39 2025 by rpki-client