Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bd/f0358f-0d50-4704-85cf-262da883c8e2/1/MjFs1IgVYto785JbSRi24R12UUw.mft
File: MjFs1IgVYto785JbSRi24R12UUw.mft (raw, json)
Hash identifier: 3aRRL6iwcgZF9xSsZ0SVHFZHU7qa+53N15GNZCNPENw=
Subject key identifier: 63:70:8B:07:25:E8:94:00:97:ED:B2:98:F6:B5:17:66:9C:F5:CD:F7
Authority key identifier: 32:31:6C:D4:88:15:62:DA:3B:F3:92:5B:49:18:B6:E1:1D:76:51:4C
Certificate issuer: /CN=32316cd4881562da3bf3925b4918b6e11d76514c
Certificate serial: 019894B6D8326D8AC1A34F3D8B7C4879096C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/MjFs1IgVYto785JbSRi24R12UUw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bd/f0358f-0d50-4704-85cf-262da883c8e2/1/MjFs1IgVYto785JbSRi24R12UUw.mft
Manifest number: 0D84
Signing time: Sun 10 Aug 2025 16:01:07 +0000
Manifest this update: Sun 10 Aug 2025 16:01:07 +0000
Manifest next update: Mon 11 Aug 2025 16:01:07 +0000
Files and hashes: 1: MjFs1IgVYto785JbSRi24R12UUw.crl (hash: 3oLA6lAPGBrb9pL8SIWg1SEaEGEHwOnPdFloT5TTWgI=)
2: O3osI0EMQ6lE3X_ye8aviCt4iTA.roa (hash: 9DOrDt/vfxy297yCahpwE4Xa/8MH6AlQc6vnFQ987B0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/bd/f0358f-0d50-4704-85cf-262da883c8e2/1/MjFs1IgVYto785JbSRi24R12UUw.crl
rsync://rpki.ripe.net/repository/DEFAULT/bd/f0358f-0d50-4704-85cf-262da883c8e2/1/MjFs1IgVYto785JbSRi24R12UUw.mft
rsync://rpki.ripe.net/repository/DEFAULT/MjFs1IgVYto785JbSRi24R12UUw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 11 Aug 2025 16:01:07 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:94:b6:d8:32:6d:8a:c1:a3:4f:3d:8b:7c:48:79:09:6c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=32316cd4881562da3bf3925b4918b6e11d76514c
Validity
Not Before: Aug 10 16:01:07 2025 GMT
Not After : Aug 11 16:01:07 2025 GMT
Subject: CN=63708b0725e8940097edb298f6b517669cf5cdf7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:b6:ee:26:07:75:36:0c:b4:8f:4e:bb:32:fc:
6b:50:39:8c:98:32:77:17:b3:05:fe:03:2e:31:ee:
a4:42:b6:61:e7:ec:0d:c5:3f:90:6c:ee:60:6c:5d:
ac:ce:d9:ed:9c:9a:7e:3e:96:97:2d:40:c3:15:22:
aa:d9:f6:34:2a:1a:60:7f:79:7e:a3:f9:35:59:99:
15:7c:fd:ff:ee:04:80:86:67:13:9e:23:a7:82:c2:
a0:2f:50:c0:00:1e:9e:e2:a9:b0:82:91:3d:7b:45:
66:ae:cb:b7:ad:9b:17:2e:0e:31:63:5b:75:91:de:
ef:91:8f:f3:1c:c8:2e:34:d7:ba:ea:fd:bb:3f:df:
06:b3:cc:b4:e6:21:c1:98:89:45:3a:dd:06:5a:18:
d1:cd:a0:fc:a2:18:7b:4b:c2:16:37:39:0a:4a:1d:
73:82:cc:81:87:43:d6:b1:69:c3:c6:07:79:d0:9f:
16:62:f2:6e:61:8e:07:a0:3a:88:25:42:a2:93:76:
c1:f7:e5:48:e5:4b:87:87:00:38:d6:2a:6d:29:f7:
a0:dd:d6:e2:c1:d2:85:42:52:f7:74:a2:9c:b8:14:
a4:a6:18:db:ce:05:a7:62:c3:44:14:15:72:47:05:
2b:6c:d6:c6:ae:b8:e1:54:92:0f:60:51:42:bf:88:
b6:9d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
63:70:8B:07:25:E8:94:00:97:ED:B2:98:F6:B5:17:66:9C:F5:CD:F7
X509v3 Authority Key Identifier:
keyid:32:31:6C:D4:88:15:62:DA:3B:F3:92:5B:49:18:B6:E1:1D:76:51:4C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MjFs1IgVYto785JbSRi24R12UUw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bd/f0358f-0d50-4704-85cf-262da883c8e2/1/MjFs1IgVYto785JbSRi24R12UUw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bd/f0358f-0d50-4704-85cf-262da883c8e2/1/MjFs1IgVYto785JbSRi24R12UUw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
2b:23:e7:cd:e5:98:31:49:4c:f3:42:c2:be:ba:33:2d:67:7a:
7a:c7:8b:28:96:8b:66:c5:2a:10:7f:8a:3a:03:bd:2d:28:60:
87:09:7a:cd:aa:cf:65:b3:94:cb:36:3d:11:d6:24:99:43:e2:
fe:ba:dc:0c:b0:83:90:3f:7c:30:97:9b:9f:86:58:4d:f7:9e:
ec:a2:04:4e:1e:28:19:ba:69:08:6c:fc:89:87:b8:82:26:11:
1d:90:ad:05:f6:e1:03:4c:c4:04:3c:4a:35:85:6c:9c:ca:77:
07:10:13:a7:82:7a:cf:52:0a:93:5d:d3:88:7a:03:b4:05:dc:
97:5a:a1:85:9d:1f:23:a6:50:f2:ba:3a:cf:c0:03:af:b4:05:
7d:69:28:87:d8:13:8a:be:16:35:e2:62:bd:65:d3:56:1a:e6:
a3:38:3c:3d:0c:ce:ce:af:96:14:d1:1f:4d:0e:20:2d:f7:22:
0b:80:50:f9:41:d8:2c:02:a3:75:3a:b6:fb:12:29:56:7c:96:
00:5c:f5:73:d9:c2:a8:b6:c1:e7:bf:9b:f8:d7:fc:ff:cd:1d:
76:46:cb:51:38:7f:ee:b0:f4:c3:97:24:0c:68:a3:69:a7:bd:
3d:0a:c8:ca:f7:18:1b:27:f7:b5:db:18:35:da:cf:66:4a:41:
8d:2e:af:e9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Aug 10 20:59:21 2025 by rpki-client