Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6a/9f6233-782a-4140-b500-9971907a95a7/1/MRf9In6dzpeAXAPl8zACrqGMN90.mft
File: MRf9In6dzpeAXAPl8zACrqGMN90.mft (raw, json)
Hash identifier: P8BQexYet3s5PMUtG34KkGEDe+gn8xJr5BAmHrhhVQA=
Subject key identifier: F5:2E:AA:7E:4B:45:CE:9C:FA:26:D0:FC:48:37:E4:35:79:7D:6E:2E
Authority key identifier: 31:17:FD:22:7E:9D:CE:97:80:5C:03:E5:F3:30:02:AE:A1:8C:37:DD
Certificate issuer: /CN=3117fd227e9dce97805c03e5f33002aea18c37dd
Certificate serial: 01988DA22290DF393FFE22D3EAD891985CC4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/MRf9In6dzpeAXAPl8zACrqGMN90.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6a/9f6233-782a-4140-b500-9971907a95a7/1/MRf9In6dzpeAXAPl8zACrqGMN90.mft
Manifest number: 15B6
Signing time: Sat 09 Aug 2025 07:01:09 +0000
Manifest this update: Sat 09 Aug 2025 07:01:09 +0000
Manifest next update: Sun 10 Aug 2025 07:01:09 +0000
Files and hashes: 1: 8FKyt8eDnO1kLTJD9dF4kktBbnk.roa (hash: 9mNmQ05G/Q2P4wE3xyuelgcW7lRtN/p4eyiaB9oB3rE=)
2: MRf9In6dzpeAXAPl8zACrqGMN90.crl (hash: 7AasXxIcm06kVVPDewRdNhWa4JXK6JfTPLISkFeMKPQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/6a/9f6233-782a-4140-b500-9971907a95a7/1/MRf9In6dzpeAXAPl8zACrqGMN90.crl
rsync://rpki.ripe.net/repository/DEFAULT/6a/9f6233-782a-4140-b500-9971907a95a7/1/MRf9In6dzpeAXAPl8zACrqGMN90.mft
rsync://rpki.ripe.net/repository/DEFAULT/MRf9In6dzpeAXAPl8zACrqGMN90.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 10 Aug 2025 05:00:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:8d:a2:22:90:df:39:3f:fe:22:d3:ea:d8:91:98:5c:c4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3117fd227e9dce97805c03e5f33002aea18c37dd
Validity
Not Before: Aug 9 07:01:09 2025 GMT
Not After : Aug 10 07:01:09 2025 GMT
Subject: CN=f52eaa7e4b45ce9cfa26d0fc4837e435797d6e2e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:99:84:dd:8a:18:77:22:96:26:1b:64:8f:5a:ea:
32:06:f6:f7:a5:92:bd:ce:69:75:7b:85:40:17:e3:
3e:dd:b5:8b:16:2f:a1:c7:62:26:b2:ef:db:c5:a4:
16:1d:6d:84:da:2f:3c:1b:20:e1:0a:73:cc:89:4e:
46:b0:3a:1b:b3:b8:91:6c:c3:37:a2:c5:56:25:47:
51:ee:70:3f:99:8d:2e:32:1b:ef:b7:4f:7e:ad:dc:
0a:f2:19:25:96:30:9f:75:13:ef:6a:95:00:b0:bd:
70:8d:e7:3c:55:e4:86:5b:b5:35:87:84:ae:0c:b8:
24:6f:13:4a:ba:ff:72:c6:ce:5d:d2:92:49:f0:d4:
5d:5e:39:21:70:30:41:85:71:00:54:ea:d4:34:fe:
9c:16:0a:5b:d8:58:fc:59:5a:9a:cc:00:d0:4e:41:
1e:4e:fc:46:0e:57:de:58:af:8c:ff:c3:e9:1a:a2:
d8:79:46:62:17:38:88:11:72:b7:03:08:db:9d:2e:
e0:03:31:68:70:94:44:8a:08:4f:ca:08:9c:8a:bf:
bd:fe:53:65:ed:21:d6:57:b7:92:82:10:dc:c2:5a:
1d:46:c4:21:51:cb:ab:1b:31:88:52:a9:e7:ec:bf:
bd:16:a3:8f:aa:21:17:d7:d6:02:45:fb:35:be:45:
71:a5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F5:2E:AA:7E:4B:45:CE:9C:FA:26:D0:FC:48:37:E4:35:79:7D:6E:2E
X509v3 Authority Key Identifier:
keyid:31:17:FD:22:7E:9D:CE:97:80:5C:03:E5:F3:30:02:AE:A1:8C:37:DD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MRf9In6dzpeAXAPl8zACrqGMN90.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6a/9f6233-782a-4140-b500-9971907a95a7/1/MRf9In6dzpeAXAPl8zACrqGMN90.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6a/9f6233-782a-4140-b500-9971907a95a7/1/MRf9In6dzpeAXAPl8zACrqGMN90.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
b0:10:fb:fe:e3:c9:f9:23:2a:6e:a9:b1:5a:ff:66:d5:ea:15:
4a:af:80:30:fe:f1:58:55:0e:07:88:16:33:76:6a:78:91:a8:
4d:4f:72:6b:d1:5b:88:0d:d0:dd:6d:3b:0f:5d:d2:32:dc:0b:
2f:49:d7:1a:45:43:28:11:0a:e6:c1:7b:82:c1:e5:64:08:56:
0e:27:93:7e:ae:e7:7c:85:f5:5e:9e:08:7f:9a:64:b6:86:8d:
49:aa:90:cc:3b:17:1a:4e:32:bc:b9:38:29:40:4f:74:95:9c:
28:dd:30:ca:16:51:23:7c:3b:03:bd:dd:f5:6e:ff:1a:f4:03:
a6:43:24:ba:e7:4f:8d:5f:1e:ce:6c:15:df:63:ae:18:8a:fd:
90:b8:05:ef:c6:21:12:9b:01:be:be:a3:8e:82:c0:4f:5b:ad:
04:c8:4a:0e:2c:2b:ed:19:58:f2:bb:2c:23:55:f8:e4:5c:93:
29:85:76:28:64:da:a5:4e:7a:32:ec:c9:af:eb:bd:65:db:63:
1e:81:13:d9:2d:01:39:c3:cc:57:78:37:f2:5c:c7:46:48:bf:
d2:13:77:a8:5e:a7:30:b8:ad:ff:fb:ef:57:5e:9b:83:1d:f7:
25:97:58:df:a4:92:02:c1:ba:8f:0e:3b:ac:bd:57:ed:0f:64:
3b:98:06:38
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 9 14:26:17 2025 by rpki-client