Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9b/ecbe01-18ab-4fbd-9dc3-bcd52da15644/1/MbXwrK42UqU8caB0ojR6tvF_0_g.mft
File: MbXwrK42UqU8caB0ojR6tvF_0_g.mft (raw, json)
Hash identifier: 8Qx2Rxv3BBBWVybd2j44KW8seSDTyY9THK4dJa2kYkY=
Subject key identifier: 4C:B1:EC:E1:A0:05:91:FB:06:FD:53:0B:BC:90:9B:67:11:E7:59:5C
Authority key identifier: 31:B5:F0:AC:AE:36:52:A5:3C:71:A0:74:A2:34:7A:B6:F1:7F:D3:F8
Certificate issuer: /CN=31b5f0acae3652a53c71a074a2347ab6f17fd3f8
Certificate serial: 01977D8C4DC1DC5193A63E6376D777A65DC2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/MbXwrK42UqU8caB0ojR6tvF_0_g.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9b/ecbe01-18ab-4fbd-9dc3-bcd52da15644/1/MbXwrK42UqU8caB0ojR6tvF_0_g.mft
Manifest number: 1523
Signing time: Tue 17 Jun 2025 11:00:36 +0000
Manifest this update: Tue 17 Jun 2025 11:00:36 +0000
Manifest next update: Wed 18 Jun 2025 11:00:36 +0000
Files and hashes: 1: KlCag1k38E35giK2RwCL86wfRww.roa (hash: 3A8pcHf0/9mVDJ/I9xf+96E0LjYi6EEs2LRUfPZpiNc=)
2: MbXwrK42UqU8caB0ojR6tvF_0_g.crl (hash: s8eD7DgOKpTmE2l6onWktZOXYvGH5LbC+xEL/QlWFRU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/9b/ecbe01-18ab-4fbd-9dc3-bcd52da15644/1/MbXwrK42UqU8caB0ojR6tvF_0_g.crl
rsync://rpki.ripe.net/repository/DEFAULT/9b/ecbe01-18ab-4fbd-9dc3-bcd52da15644/1/MbXwrK42UqU8caB0ojR6tvF_0_g.mft
rsync://rpki.ripe.net/repository/DEFAULT/MbXwrK42UqU8caB0ojR6tvF_0_g.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 18 Jun 2025 08:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:7d:8c:4d:c1:dc:51:93:a6:3e:63:76:d7:77:a6:5d:c2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=31b5f0acae3652a53c71a074a2347ab6f17fd3f8
Validity
Not Before: Jun 17 11:00:36 2025 GMT
Not After : Jun 18 11:00:36 2025 GMT
Subject: CN=4cb1ece1a00591fb06fd530bbc909b6711e7595c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:ac:ed:3c:c8:2f:a1:9d:af:21:28:cf:9e:44:
90:ab:21:c6:53:9c:e5:f9:a5:66:23:dd:f3:29:2a:
41:cb:9c:0a:be:61:38:12:83:da:91:ab:c7:9f:86:
0f:69:6c:60:56:ef:c5:59:d5:52:95:20:f4:25:e4:
94:cc:72:bf:e1:a0:39:69:43:8b:3d:64:a9:48:e4:
ed:f7:75:19:0f:35:56:f1:14:e2:1f:3b:8c:b0:66:
d8:9c:2d:57:77:eb:00:40:a0:2b:bb:97:ac:e9:1b:
cf:41:f1:2a:aa:94:84:6f:c5:a7:8e:98:5f:fe:74:
ec:65:28:d5:28:02:e6:72:2c:2b:64:d7:01:eb:ac:
79:89:30:c9:ff:98:45:66:b8:13:c5:68:a1:e3:c7:
68:b5:91:1b:eb:d7:a5:67:c9:e7:34:87:11:0d:78:
a9:40:b0:b9:43:37:d6:40:9f:f0:ff:bc:ab:b3:88:
02:a0:3c:a0:b5:d9:56:67:89:8c:78:0d:52:92:1e:
d1:65:a6:f6:b2:77:26:ee:11:7c:35:43:9d:e5:10:
61:cb:8d:81:6c:32:a2:7e:65:7f:39:b5:e0:ef:da:
28:aa:0b:e7:74:6f:1a:81:63:94:53:cc:77:2b:b6:
17:3a:48:2f:a1:ab:9a:08:70:9c:25:45:50:da:4e:
fd:ff
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4C:B1:EC:E1:A0:05:91:FB:06:FD:53:0B:BC:90:9B:67:11:E7:59:5C
X509v3 Authority Key Identifier:
keyid:31:B5:F0:AC:AE:36:52:A5:3C:71:A0:74:A2:34:7A:B6:F1:7F:D3:F8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MbXwrK42UqU8caB0ojR6tvF_0_g.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9b/ecbe01-18ab-4fbd-9dc3-bcd52da15644/1/MbXwrK42UqU8caB0ojR6tvF_0_g.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9b/ecbe01-18ab-4fbd-9dc3-bcd52da15644/1/MbXwrK42UqU8caB0ojR6tvF_0_g.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
62:04:f7:a1:cb:87:3a:de:bd:fd:ad:79:a7:53:df:36:25:94:
1a:3d:d3:e7:7e:c4:ec:d5:2a:d6:ab:83:de:bd:1e:2e:26:cc:
01:7f:41:12:ce:f6:30:b3:79:2d:95:b7:8f:85:db:e9:a1:61:
eb:01:6f:a6:e6:a5:a0:3c:31:ae:48:ac:b4:7d:6d:47:be:45:
59:b3:77:cb:83:87:27:76:0b:62:f0:f7:0a:76:d3:d1:40:24:
13:65:96:2b:b6:c4:89:c5:cd:27:3c:b6:97:aa:82:b7:a5:d5:
31:3f:50:97:c9:c7:24:7f:0c:31:8e:7f:b9:ea:22:2e:93:9a:
cf:db:c2:b8:82:84:42:3c:8b:87:fd:2c:57:26:e1:fb:0a:a3:
c4:e7:0c:e6:76:a9:55:f6:3c:b4:a4:7d:2b:24:b5:f5:78:58:
a8:9d:29:f1:c6:f8:3c:2b:bd:1d:f5:99:9c:93:77:f2:29:18:
6c:af:33:04:09:87:9d:6b:53:15:dc:fb:34:1a:e7:87:e8:81:
48:fb:a2:9c:cf:5e:29:98:6a:3e:b3:eb:5b:6d:d8:54:52:db:
57:41:eb:af:d6:c7:9b:51:72:41:47:8e:61:36:dd:6a:0e:89:
74:a9:c1:4f:ac:ea:d6:d1:ad:62:02:18:92:3b:54:e0:fe:0f:
c8:1a:08:45
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jun 17 15:05:09 2025 by rpki-client