Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d5/9aff54-5971-402f-ab69-a419670d17e1/1/MKqwK2VOkVytyjOSkuKMFcR9-Fg.mft
File: MKqwK2VOkVytyjOSkuKMFcR9-Fg.mft (raw, json)
Hash identifier: ylnKCQ0Vfb4TPsIosACVNIrU2Yk+mVOs3mtWEEnMkA8=
Subject key identifier: F0:5E:0A:DE:50:3B:FF:60:D3:C2:91:67:66:61:BC:0F:2B:02:E4:9F
Authority key identifier: 30:AA:B0:2B:65:4E:91:5C:AD:CA:33:92:92:E2:8C:15:C4:7D:F8:58
Certificate issuer: /CN=30aab02b654e915cadca339292e28c15c47df858
Certificate serial: 01976A05ACED9A46713D3FACDBA44A952BFB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/MKqwK2VOkVytyjOSkuKMFcR9-Fg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d5/9aff54-5971-402f-ab69-a419670d17e1/1/MKqwK2VOkVytyjOSkuKMFcR9-Fg.mft
Manifest number: 03EF
Signing time: Fri 13 Jun 2025 16:00:46 +0000
Manifest this update: Fri 13 Jun 2025 16:00:46 +0000
Manifest next update: Sat 14 Jun 2025 16:00:46 +0000
Files and hashes: 1: MKqwK2VOkVytyjOSkuKMFcR9-Fg.crl (hash: 0BU/5RdUtQB2qvR/TJ5LDRhn1FTaU4vwjic2C0kJv7k=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d5/9aff54-5971-402f-ab69-a419670d17e1/1/MKqwK2VOkVytyjOSkuKMFcR9-Fg.crl
rsync://rpki.ripe.net/repository/DEFAULT/d5/9aff54-5971-402f-ab69-a419670d17e1/1/MKqwK2VOkVytyjOSkuKMFcR9-Fg.mft
rsync://rpki.ripe.net/repository/DEFAULT/MKqwK2VOkVytyjOSkuKMFcR9-Fg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 14 Jun 2025 13:55:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:6a:05:ac:ed:9a:46:71:3d:3f:ac:db:a4:4a:95:2b:fb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=30aab02b654e915cadca339292e28c15c47df858
Validity
Not Before: Jun 13 16:00:46 2025 GMT
Not After : Jun 14 16:00:46 2025 GMT
Subject: CN=f05e0ade503bff60d3c291676661bc0f2b02e49f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:a3:01:53:19:74:54:61:68:a8:b8:1d:bd:d5:
43:ca:ab:47:7f:1a:9b:e3:f1:6a:3c:40:43:0c:1f:
17:63:6e:3c:79:80:d2:bb:b3:a2:4f:bd:95:f5:9a:
b6:99:d3:bb:11:6e:b9:f1:59:28:4c:44:8e:7d:da:
b9:67:fe:45:9d:58:a9:44:70:2e:c9:18:d1:b1:b3:
fb:10:d6:46:40:72:40:1d:20:ea:2f:9b:53:86:3e:
e2:91:c4:b9:ca:61:6c:58:e2:f8:7a:2d:15:f8:82:
bd:da:cd:84:62:66:27:9c:9c:ba:b3:62:f6:33:74:
c5:e3:8a:69:cd:1f:18:d1:cc:bc:db:c1:87:10:61:
d8:ed:56:c6:6c:58:bf:5d:4c:ae:cf:39:ac:ce:e4:
9c:ae:68:51:85:86:b6:ad:e3:b9:75:f6:36:40:ce:
2e:db:82:10:fa:65:7a:13:b8:5c:f3:dd:af:e4:25:
3d:4b:79:35:8c:9e:8b:e7:b2:0d:88:2c:73:36:fb:
cd:05:49:11:84:cf:c8:ef:86:15:0e:e1:ae:d3:3a:
e0:72:67:b2:a1:91:35:fa:38:50:2b:d5:1a:13:5c:
e9:e2:86:67:ce:55:1e:34:9d:3f:4d:6a:71:d8:da:
05:17:5c:51:c6:6f:c5:20:3f:b9:5d:9e:96:ba:f8:
d2:01
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F0:5E:0A:DE:50:3B:FF:60:D3:C2:91:67:66:61:BC:0F:2B:02:E4:9F
X509v3 Authority Key Identifier:
keyid:30:AA:B0:2B:65:4E:91:5C:AD:CA:33:92:92:E2:8C:15:C4:7D:F8:58
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MKqwK2VOkVytyjOSkuKMFcR9-Fg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d5/9aff54-5971-402f-ab69-a419670d17e1/1/MKqwK2VOkVytyjOSkuKMFcR9-Fg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d5/9aff54-5971-402f-ab69-a419670d17e1/1/MKqwK2VOkVytyjOSkuKMFcR9-Fg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
9b:62:a9:f1:23:cd:7e:8b:d7:32:34:59:e8:37:52:9d:df:c1:
26:8d:06:8c:c5:a2:04:43:0c:7a:b9:97:c7:6f:47:62:d0:8b:
71:39:74:9a:10:e6:f4:b5:42:13:23:75:85:79:d8:40:af:23:
a3:ec:51:fe:05:ea:7a:84:a3:8b:63:84:7b:94:d9:15:38:e7:
f8:14:85:28:a1:00:88:53:dd:2b:7e:32:62:2a:37:81:bd:8c:
ca:6b:a1:dc:19:52:72:6f:fc:61:e0:bd:2b:60:9f:25:f6:6a:
c4:07:e2:c8:f5:d8:20:f9:93:99:9c:6e:bb:09:1e:b2:b2:41:
63:49:f4:51:a4:0d:61:66:54:d8:b2:b4:f3:9f:ee:d0:b6:da:
50:27:8c:0f:ff:42:21:52:bc:26:5a:f8:fe:46:27:ea:ac:d6:
ad:93:3c:e9:9c:53:95:a7:04:ba:55:4e:cb:cc:8b:a1:e4:3e:
62:8d:51:ba:99:56:52:fa:19:5c:27:33:53:7f:ed:08:e9:df:
d8:b4:1c:2f:cd:b0:66:da:cc:83:61:1f:53:fc:31:9c:ea:da:
db:74:5a:28:1e:e2:a7:64:97:48:e9:3d:1d:d9:dc:7e:cf:c1:
2f:40:b0:75:43:0d:48:bb:b9:94:76:cb:f6:bf:87:9e:6f:05:
c2:fb:e5:b4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jun 13 19:01:03 2025 by rpki-client