Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c2/2fd023-e646-406a-84a5-bb6945a16fe7/1/MlBSt6Z4-qCX3L5lRxcMkVK0bPE.mft
File: MlBSt6Z4-qCX3L5lRxcMkVK0bPE.mft (raw, json)
Hash identifier: ObCAj75jVIzo+qqI3CGX6QJSAAJMOY9uFHI8ZP2McXs=
Subject key identifier: E5:69:80:37:B6:C1:53:C1:4B:A9:07:D2:A4:05:86:7F:AE:CA:02:20
Authority key identifier: 32:50:52:B7:A6:78:FA:A0:97:DC:BE:65:47:17:0C:91:52:B4:6C:F1
Certificate issuer: /CN=325052b7a678faa097dcbe6547170c9152b46cf1
Certificate serial: 01988B7C667A10B62F22E25D7CC905A2F082
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/MlBSt6Z4-qCX3L5lRxcMkVK0bPE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c2/2fd023-e646-406a-84a5-bb6945a16fe7/1/MlBSt6Z4-qCX3L5lRxcMkVK0bPE.mft
Manifest number: 15B2
Signing time: Fri 08 Aug 2025 21:00:42 +0000
Manifest this update: Fri 08 Aug 2025 21:00:42 +0000
Manifest next update: Sat 09 Aug 2025 21:00:42 +0000
Files and hashes: 1: MlBSt6Z4-qCX3L5lRxcMkVK0bPE.crl (hash: 2ttPwwLhVoWrPkBRYXVYrKwZU72287lk0HkZ2RO54eI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c2/2fd023-e646-406a-84a5-bb6945a16fe7/1/MlBSt6Z4-qCX3L5lRxcMkVK0bPE.crl
rsync://rpki.ripe.net/repository/DEFAULT/c2/2fd023-e646-406a-84a5-bb6945a16fe7/1/MlBSt6Z4-qCX3L5lRxcMkVK0bPE.mft
rsync://rpki.ripe.net/repository/DEFAULT/MlBSt6Z4-qCX3L5lRxcMkVK0bPE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 09 Aug 2025 20:00:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:8b:7c:66:7a:10:b6:2f:22:e2:5d:7c:c9:05:a2:f0:82
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=325052b7a678faa097dcbe6547170c9152b46cf1
Validity
Not Before: Aug 8 21:00:42 2025 GMT
Not After : Aug 9 21:00:42 2025 GMT
Subject: CN=e5698037b6c153c14ba907d2a405867faeca0220
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:92:22:ba:07:9a:36:47:ba:a4:c1:1d:46:a5:b5:
3e:c0:72:85:94:98:fe:46:ad:5c:38:55:db:bb:d2:
69:47:f7:05:43:5b:15:71:f5:ab:a6:0f:2d:aa:55:
a6:1f:2b:e0:8e:12:a7:e3:e6:41:a6:eb:f0:7c:1f:
95:27:49:2a:5c:58:e5:f6:b1:e5:65:8c:75:38:1a:
f9:46:f9:e5:f3:1a:50:62:23:8e:ff:34:6b:cb:56:
50:6a:da:2a:cc:ef:d4:b8:7a:d2:df:b3:40:8e:51:
bb:cd:45:35:76:4f:69:36:a7:7c:78:99:37:5e:d5:
9c:43:51:ba:26:56:21:b6:24:02:df:ff:a6:74:85:
39:20:e4:51:30:da:6c:bf:e9:ba:47:57:cd:15:e3:
a6:2b:13:36:52:23:d7:49:96:4f:6a:8f:7d:6f:c7:
cd:03:6a:ba:8b:5e:2c:e0:6b:09:63:6f:37:b8:b0:
82:b9:a0:c5:25:99:ce:e2:4f:c4:e7:d1:df:d6:66:
f4:f9:29:6b:fe:34:cd:7e:bd:40:2a:a0:dd:80:6c:
1e:5e:d4:08:3b:f8:d2:e0:65:96:f0:75:85:da:d8:
5b:75:04:c6:07:09:71:c2:29:79:65:c6:04:2b:6a:
c3:41:d3:20:60:a2:16:e1:54:09:69:8d:84:85:b7:
86:75
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E5:69:80:37:B6:C1:53:C1:4B:A9:07:D2:A4:05:86:7F:AE:CA:02:20
X509v3 Authority Key Identifier:
keyid:32:50:52:B7:A6:78:FA:A0:97:DC:BE:65:47:17:0C:91:52:B4:6C:F1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MlBSt6Z4-qCX3L5lRxcMkVK0bPE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c2/2fd023-e646-406a-84a5-bb6945a16fe7/1/MlBSt6Z4-qCX3L5lRxcMkVK0bPE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c2/2fd023-e646-406a-84a5-bb6945a16fe7/1/MlBSt6Z4-qCX3L5lRxcMkVK0bPE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
8e:29:db:8c:a2:d1:bf:b9:a3:84:e8:01:10:58:b3:2f:5e:86:
68:fd:bf:e5:f2:e2:0f:a3:05:b6:e9:a6:0c:d1:a4:73:22:56:
01:79:7b:2f:a8:ff:a8:dd:55:98:37:4b:db:3d:07:10:38:57:
dc:84:a6:34:c9:73:8e:3b:e1:94:dc:85:83:5a:25:39:15:aa:
a2:a6:54:8b:01:35:ae:96:91:ec:18:6c:b4:07:c3:39:58:e6:
d4:20:6a:99:09:db:46:45:c3:57:e3:22:59:fe:a4:2f:f3:a6:
3d:85:0c:92:90:93:d4:7e:62:4e:b0:96:c6:3f:42:5c:eb:aa:
18:49:77:c6:07:d1:fd:16:fb:ce:8c:58:8e:67:5e:5a:dc:f7:
8e:89:36:9d:7b:15:14:4c:62:5f:df:00:fc:ed:9f:c3:ab:86:
35:33:23:36:48:fc:a4:7e:ab:d3:8f:4c:2c:e8:8e:40:16:b8:
a7:68:45:23:6a:07:24:14:6a:cd:06:8c:51:23:7c:f6:c3:bc:
1c:e4:43:8f:f1:a7:15:5e:47:39:2d:c3:26:13:c4:f0:38:ca:
34:b9:2b:7f:6a:5b:30:c9:14:72:96:79:79:13:c2:23:1e:6a:
f4:b4:63:e0:b2:ee:e3:4b:0a:33:22:f9:d8:3a:2b:ab:30:3d:
c6:a0:a7:f9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 9 00:59:50 2025 by rpki-client