Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/95/820f17-37bb-4867-bc80-c7d3e96fd35b/1/MP2VzoDqznNONA3dcjEQ-lJS-jQ.mft
File: MP2VzoDqznNONA3dcjEQ-lJS-jQ.mft (raw, json)
Hash identifier: HjsZ1OiGauHmMU/IqTpjWHjQcxMEAByg6CbhSL+sSZQ=
Subject key identifier: 5C:32:CC:2D:AD:4A:15:9C:45:9C:0F:CA:C9:AB:2D:52:33:E6:37:D2
Authority key identifier: 30:FD:95:CE:80:EA:CE:73:4E:34:0D:DD:72:31:10:FA:52:52:FA:34
Certificate issuer: /CN=30fd95ce80eace734e340ddd723110fa5252fa34
Certificate serial: 01976D748875AFE7B84C4DDAE51D95B31B87
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/MP2VzoDqznNONA3dcjEQ-lJS-jQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/95/820f17-37bb-4867-bc80-c7d3e96fd35b/1/MP2VzoDqznNONA3dcjEQ-lJS-jQ.mft
Manifest number: 158D
Signing time: Sat 14 Jun 2025 08:00:43 +0000
Manifest this update: Sat 14 Jun 2025 08:00:43 +0000
Manifest next update: Sun 15 Jun 2025 08:00:43 +0000
Files and hashes: 1: MP2VzoDqznNONA3dcjEQ-lJS-jQ.crl (hash: 8IV7NI8siZNVV57xQqRHV+/h0MEI0Gj66sCaJ0fkd/g=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/95/820f17-37bb-4867-bc80-c7d3e96fd35b/1/MP2VzoDqznNONA3dcjEQ-lJS-jQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/95/820f17-37bb-4867-bc80-c7d3e96fd35b/1/MP2VzoDqznNONA3dcjEQ-lJS-jQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/MP2VzoDqznNONA3dcjEQ-lJS-jQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 15 Jun 2025 01:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:6d:74:88:75:af:e7:b8:4c:4d:da:e5:1d:95:b3:1b:87
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=30fd95ce80eace734e340ddd723110fa5252fa34
Validity
Not Before: Jun 14 08:00:43 2025 GMT
Not After : Jun 15 08:00:43 2025 GMT
Subject: CN=5c32cc2dad4a159c459c0fcac9ab2d5233e637d2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:a5:78:78:db:4a:05:5c:ce:cb:05:5e:a6:61:
63:58:d6:af:47:22:64:f0:70:29:cd:6b:80:82:7e:
47:4f:fb:44:f9:04:91:03:5e:13:b0:cf:4c:20:f1:
54:4a:a5:ee:34:95:1c:06:d5:aa:2b:53:ad:a9:9e:
00:76:28:a6:b3:73:f2:f8:1e:25:f6:21:e8:1f:19:
2e:9a:e5:fd:2b:82:49:7e:58:8a:fb:e7:94:4a:f5:
39:fb:28:b3:14:43:81:e5:b3:7f:8b:df:34:83:d0:
b3:c7:3e:d4:39:48:e4:2e:5e:72:95:99:40:07:5c:
08:1e:12:1f:78:8f:f8:6a:d8:ce:72:c1:ec:1d:75:
17:bd:70:4c:76:ff:c9:95:dc:11:c2:aa:12:95:a7:
3d:8e:58:a2:7b:9b:16:9d:98:a4:7b:5b:90:ba:ac:
25:f0:7c:ef:66:c6:ed:80:3f:97:40:3d:dc:b0:8e:
26:d6:44:16:6d:a5:f2:ac:77:52:10:fd:cc:3a:c6:
33:13:92:7a:4e:ab:d0:3f:00:de:78:e8:fb:3e:7a:
90:0a:b9:0d:1f:43:e1:5a:79:aa:e8:c1:fd:05:d0:
06:2b:90:29:bb:b9:80:d7:35:a0:81:42:d0:49:c4:
bd:9e:6c:ef:b2:26:a0:51:dd:9f:f7:89:11:df:b0:
a7:95
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5C:32:CC:2D:AD:4A:15:9C:45:9C:0F:CA:C9:AB:2D:52:33:E6:37:D2
X509v3 Authority Key Identifier:
keyid:30:FD:95:CE:80:EA:CE:73:4E:34:0D:DD:72:31:10:FA:52:52:FA:34
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MP2VzoDqznNONA3dcjEQ-lJS-jQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/95/820f17-37bb-4867-bc80-c7d3e96fd35b/1/MP2VzoDqznNONA3dcjEQ-lJS-jQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/95/820f17-37bb-4867-bc80-c7d3e96fd35b/1/MP2VzoDqznNONA3dcjEQ-lJS-jQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
00:09:88:ba:48:e5:c0:1f:1e:d5:1f:3d:06:12:9f:8e:26:23:
bb:c4:ec:ba:2c:d3:33:94:1e:42:22:e2:94:fd:39:8b:66:cf:
27:eb:ea:e2:77:4b:a7:58:bd:41:0c:1d:22:23:35:1a:63:42:
ca:f7:98:1f:c5:a0:29:1a:e9:c2:28:25:5a:42:92:ac:86:1a:
58:77:d5:6d:a8:d6:c5:e5:ef:82:d8:1e:37:74:e2:a1:ec:3c:
fb:da:ea:d7:db:f8:b6:83:f2:8c:73:33:38:56:88:3d:4f:04:
ff:80:3c:49:4c:97:52:9d:b1:41:ee:3f:6a:ad:78:94:78:cc:
63:88:06:ca:68:69:ee:80:3f:d7:04:c1:3d:15:76:c2:18:fb:
17:22:5c:20:09:8e:b8:2f:6a:71:bf:81:8c:1e:4f:7e:ae:d7:
da:20:a2:8f:51:04:87:f2:3a:12:73:93:fe:28:cc:15:44:3b:
01:51:9f:b5:6b:66:cf:24:26:3a:fb:f6:38:40:44:80:2c:6a:
c7:c9:8d:6e:20:fc:8f:53:5a:85:65:22:fe:24:c5:5d:ec:28:
31:61:09:e2:87:3f:d3:4c:03:e3:2c:ff:c7:ef:79:ff:80:34:
55:32:8c:33:7f:2c:e7:7b:8b:8b:01:a9:2a:c7:da:3f:93:39:
92:69:13:f5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 14 12:10:04 2025 by rpki-client