Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/81/16eb03-414a-4852-81da-db261aa46f21/1/Mk2diwUEVVZ2uRjuOR3BU6mH44o.mft
File: Mk2diwUEVVZ2uRjuOR3BU6mH44o.mft (raw, json)
Hash identifier: itG2CSDZ5ZyUDt0vz2Ax7PnqGQBFLHd6s6FRHZK1bW8=
Subject key identifier: B4:DA:FE:51:DE:32:77:7C:DE:E3:69:B8:A3:1A:C5:D1:D7:0E:D1:10
Authority key identifier: 32:4D:9D:8B:05:04:55:56:76:B9:18:EE:39:1D:C1:53:A9:87:E3:8A
Certificate issuer: /CN=324d9d8b0504555676b918ee391dc153a987e38a
Certificate serial: 019879AE2D91C0C0F8506726B44EE9D87C04
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Mk2diwUEVVZ2uRjuOR3BU6mH44o.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/81/16eb03-414a-4852-81da-db261aa46f21/1/Mk2diwUEVVZ2uRjuOR3BU6mH44o.mft
Manifest number: 103E
Signing time: Tue 05 Aug 2025 10:01:54 +0000
Manifest this update: Tue 05 Aug 2025 10:01:54 +0000
Manifest next update: Wed 06 Aug 2025 10:01:54 +0000
Files and hashes: 1: Mk2diwUEVVZ2uRjuOR3BU6mH44o.crl (hash: WHLz5COO5po9RBcsY0lvH3tMeY40v0jKVSm9L+ecV9I=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/81/16eb03-414a-4852-81da-db261aa46f21/1/Mk2diwUEVVZ2uRjuOR3BU6mH44o.crl
rsync://rpki.ripe.net/repository/DEFAULT/81/16eb03-414a-4852-81da-db261aa46f21/1/Mk2diwUEVVZ2uRjuOR3BU6mH44o.mft
rsync://rpki.ripe.net/repository/DEFAULT/Mk2diwUEVVZ2uRjuOR3BU6mH44o.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 06 Aug 2025 10:01:54 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:79:ae:2d:91:c0:c0:f8:50:67:26:b4:4e:e9:d8:7c:04
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=324d9d8b0504555676b918ee391dc153a987e38a
Validity
Not Before: Aug 5 10:01:54 2025 GMT
Not After : Aug 6 10:01:54 2025 GMT
Subject: CN=b4dafe51de32777cdee369b8a31ac5d1d70ed110
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:47:c6:39:86:b0:5f:22:f7:8a:a8:6f:0a:47:
e4:37:3a:5e:b5:0c:b5:65:17:b4:a6:4e:54:03:e7:
52:5c:28:b6:4e:31:71:02:7c:a7:90:01:23:b7:05:
4e:b2:09:d0:b9:b7:4a:2e:cc:a2:c1:7f:67:8a:6d:
23:e1:2d:d0:e5:e2:a8:17:98:fe:ee:39:dd:15:98:
1e:a7:a6:08:81:6d:8c:0b:70:6d:ef:e1:69:3f:54:
42:b2:78:a5:31:9c:f6:c7:35:a8:7a:12:ba:b0:85:
c3:1b:b3:cb:d9:7e:b9:1e:f9:f5:41:37:f1:cd:cb:
f3:b5:0b:fe:d2:0e:3a:9d:5e:36:00:26:de:04:45:
3f:ca:4e:c9:9c:cd:92:68:a3:b8:a3:39:5f:69:66:
46:cd:79:30:67:cd:eb:e6:3e:22:f3:83:36:35:13:
c6:20:ee:f4:8c:1d:34:ff:f6:68:24:ed:e1:ab:12:
0f:47:b6:e3:3e:4f:24:31:3f:3b:0c:74:2f:5b:72:
73:82:dd:a3:26:b7:40:ab:a3:01:f4:11:0a:15:d3:
5b:03:29:d2:a3:6d:28:9b:fe:cb:40:c9:fc:c7:86:
7b:85:55:3a:cd:39:94:68:f9:01:23:47:78:72:c5:
79:21:5f:1e:bd:7a:9f:0f:5f:db:b3:9f:83:c2:2b:
79:49
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B4:DA:FE:51:DE:32:77:7C:DE:E3:69:B8:A3:1A:C5:D1:D7:0E:D1:10
X509v3 Authority Key Identifier:
keyid:32:4D:9D:8B:05:04:55:56:76:B9:18:EE:39:1D:C1:53:A9:87:E3:8A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Mk2diwUEVVZ2uRjuOR3BU6mH44o.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/81/16eb03-414a-4852-81da-db261aa46f21/1/Mk2diwUEVVZ2uRjuOR3BU6mH44o.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/81/16eb03-414a-4852-81da-db261aa46f21/1/Mk2diwUEVVZ2uRjuOR3BU6mH44o.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
2b:bb:1a:e2:aa:16:77:c9:4b:e4:f0:0e:89:ae:92:3b:49:da:
5a:0e:5e:14:33:93:85:d0:44:24:81:4e:d1:99:9e:1f:cb:79:
a0:f8:bd:a2:87:b9:d6:a0:13:07:f2:fc:ba:f1:89:ff:4a:2e:
6d:bc:32:e3:18:5e:7d:e7:a5:2c:4d:39:8b:94:5a:14:37:e5:
f2:4a:ab:75:97:ce:a2:2c:24:b6:9b:40:6d:da:f7:99:a5:b4:
0c:79:4b:f9:c0:0c:3a:20:80:eb:18:0a:01:4d:e8:bd:d9:87:
76:3a:8c:f0:6c:e6:41:bd:e2:bd:70:24:4d:06:75:f7:1f:19:
b6:dd:7d:d6:6d:f2:6c:c0:e2:26:3d:6b:b1:4c:6a:52:d9:49:
76:e6:2d:73:a4:2f:21:7e:35:e8:29:60:9b:fd:0e:06:ad:87:
22:58:ee:85:52:a4:63:20:77:9c:5a:a8:02:ea:06:55:97:70:
6e:cf:83:c6:6b:67:93:8b:52:3d:f5:f8:a6:37:fe:a9:ce:ba:
fa:e3:55:29:37:e4:f8:f9:7c:ff:fb:18:46:6a:17:e4:85:08:
44:bb:79:c0:2c:b3:e6:33:0f:03:06:54:e7:a6:20:25:35:de:
96:f1:bd:a1:9f:ae:0a:4d:6a:57:89:c6:fc:a3:45:ed:b1:12:
18:a1:fd:da
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Aug 5 17:13:46 2025 by rpki-client