Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6a/9f6233-782a-4140-b500-9971907a95a7/1/MRf9In6dzpeAXAPl8zACrqGMN90.mft
File: MRf9In6dzpeAXAPl8zACrqGMN90.mft (raw, json)
Hash identifier: uz9T3oluNDdMXbs1TAr2yZ2gd6KEUZcFTVT7Er3RJdE=
Subject key identifier: 48:49:E8:D3:D8:06:E7:85:4B:85:65:FE:2B:BE:BF:8A:F0:DF:A9:40
Authority key identifier: 31:17:FD:22:7E:9D:CE:97:80:5C:03:E5:F3:30:02:AE:A1:8C:37:DD
Certificate issuer: /CN=3117fd227e9dce97805c03e5f33002aea18c37dd
Certificate serial: 0197850ED06BC5BEE2B09D314B984A51C8CF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/MRf9In6dzpeAXAPl8zACrqGMN90.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6a/9f6233-782a-4140-b500-9971907a95a7/1/MRf9In6dzpeAXAPl8zACrqGMN90.mft
Manifest number: 152D
Signing time: Wed 18 Jun 2025 22:00:29 +0000
Manifest this update: Wed 18 Jun 2025 22:00:29 +0000
Manifest next update: Thu 19 Jun 2025 22:00:29 +0000
Files and hashes: 1: 8FKyt8eDnO1kLTJD9dF4kktBbnk.roa (hash: 9mNmQ05G/Q2P4wE3xyuelgcW7lRtN/p4eyiaB9oB3rE=)
2: MRf9In6dzpeAXAPl8zACrqGMN90.crl (hash: jXOWnQn0MTKWUHAaxwc2Z/TUQkVjHIeFHljB6sj3Rlo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/6a/9f6233-782a-4140-b500-9971907a95a7/1/MRf9In6dzpeAXAPl8zACrqGMN90.crl
rsync://rpki.ripe.net/repository/DEFAULT/6a/9f6233-782a-4140-b500-9971907a95a7/1/MRf9In6dzpeAXAPl8zACrqGMN90.mft
rsync://rpki.ripe.net/repository/DEFAULT/MRf9In6dzpeAXAPl8zACrqGMN90.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 19 Jun 2025 22:00:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:85:0e:d0:6b:c5:be:e2:b0:9d:31:4b:98:4a:51:c8:cf
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3117fd227e9dce97805c03e5f33002aea18c37dd
Validity
Not Before: Jun 18 22:00:29 2025 GMT
Not After : Jun 19 22:00:29 2025 GMT
Subject: CN=4849e8d3d806e7854b8565fe2bbebf8af0dfa940
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:71:fd:f1:86:b2:26:77:31:11:9a:0a:2f:a8:
a6:18:12:6b:b6:bb:5e:0e:06:b0:e6:61:91:c3:38:
f6:9a:28:5f:7f:39:a2:73:78:66:87:22:c6:ae:83:
15:91:68:6b:5a:5d:65:44:c4:48:88:72:45:37:98:
51:18:78:1d:e6:1c:67:ee:70:97:5b:34:05:ab:52:
98:55:ab:ff:e4:f0:ab:20:5a:7b:1d:8a:d4:ca:17:
87:45:0e:8d:6c:c4:22:b2:8e:bc:d1:66:9f:e5:21:
15:2d:97:84:12:43:36:3e:49:17:71:51:41:a6:d9:
4a:45:89:b5:d3:f9:d6:38:d0:c5:cd:2f:04:5c:7d:
a4:69:f1:9d:21:93:a9:13:25:dd:48:64:89:fe:9b:
de:2e:59:cb:49:d5:64:26:73:ff:fe:cc:39:d0:18:
61:f9:d0:9a:9e:76:73:bd:6a:eb:38:15:2b:cd:da:
2b:e8:4f:9a:ef:e1:d7:e5:d4:ea:86:f8:27:21:43:
f4:9f:f4:50:60:65:37:99:64:d6:a6:0f:74:25:85:
64:9c:13:4b:65:99:4e:84:8c:45:1a:7c:99:19:1a:
5c:da:bf:99:28:51:e9:4e:dc:e2:09:13:75:c4:43:
26:3a:05:b2:0f:d6:59:05:52:d7:8d:c1:36:35:0d:
82:8d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
48:49:E8:D3:D8:06:E7:85:4B:85:65:FE:2B:BE:BF:8A:F0:DF:A9:40
X509v3 Authority Key Identifier:
keyid:31:17:FD:22:7E:9D:CE:97:80:5C:03:E5:F3:30:02:AE:A1:8C:37:DD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MRf9In6dzpeAXAPl8zACrqGMN90.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6a/9f6233-782a-4140-b500-9971907a95a7/1/MRf9In6dzpeAXAPl8zACrqGMN90.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6a/9f6233-782a-4140-b500-9971907a95a7/1/MRf9In6dzpeAXAPl8zACrqGMN90.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
1a:40:aa:10:7b:02:92:48:4e:04:91:dd:ef:0a:83:3b:8a:8b:
14:64:76:90:94:ae:3a:d4:ca:ca:bc:86:eb:12:a6:68:d7:87:
8f:66:f7:02:c0:37:e5:8c:5f:f2:71:54:9f:05:74:f2:56:c3:
00:85:2d:eb:06:ad:24:58:04:40:0b:93:a4:b2:88:9a:b0:d7:
d8:67:e4:23:53:3d:33:28:95:c8:7e:58:b1:d6:36:1b:62:44:
84:7c:c2:2a:9f:21:f5:7e:b7:be:74:27:a1:fe:bf:f7:cd:16:
b6:3e:1b:a7:f3:6f:e0:49:7b:49:7e:68:e2:26:57:e0:54:94:
8d:a8:e5:9a:b4:7c:38:d0:45:3a:f6:af:b2:88:d4:5e:3a:93:
99:1a:7f:1e:f0:b6:2b:27:b0:19:89:46:6f:4f:a5:22:03:05:
e0:d6:3a:0e:5b:46:cd:0a:d1:ec:d8:15:38:52:60:41:d2:df:
9e:88:89:25:97:71:f1:49:6a:c2:86:96:6b:65:e3:14:b8:22:
f4:b9:04:00:84:07:5c:fb:53:18:c5:64:5f:24:21:97:f1:d2:
50:75:11:a7:30:b1:b6:cc:ea:d6:db:7a:c3:1f:f7:e2:6d:81:
93:8b:cf:d5:c0:0e:fe:5c:40:55:59:86:9d:ef:cd:25:5b:86:
69:a8:80:f0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 19 06:30:27 2025 by rpki-client