Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f9/408e37-fae2-48b5-bd15-73d94cb54526/1/MzBvg92caNG7WukbUMJukpyB0v0.mft
File: MzBvg92caNG7WukbUMJukpyB0v0.mft (raw, json)
Hash identifier: OzpNAOdX+1neOZrmnvi5H6hSnAQeUSmH34rgePBcqMc=
Subject key identifier: 26:0B:E9:D0:C0:54:45:25:18:B2:74:2D:0E:1F:09:3E:91:8F:6C:4E
Authority key identifier: 33:30:6F:83:DD:9C:68:D1:BB:5A:E9:1B:50:C2:6E:92:9C:81:D2:FD
Certificate issuer: /CN=33306f83dd9c68d1bb5ae91b50c26e929c81d2fd
Certificate serial: 01976C6205A557AA36A520095968F37807E0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/MzBvg92caNG7WukbUMJukpyB0v0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f9/408e37-fae2-48b5-bd15-73d94cb54526/1/MzBvg92caNG7WukbUMJukpyB0v0.mft
Manifest number: E3
Signing time: Sat 14 Jun 2025 03:00:52 +0000
Manifest this update: Sat 14 Jun 2025 03:00:52 +0000
Manifest next update: Sun 15 Jun 2025 03:00:52 +0000
Files and hashes: 1: 0-WwVD2zFPGNgQhhntKyco3wY3I.roa (hash: bPryhs2CIXqAzaBTX4TIyszyma7cGcWiYG+PS79estE=)
2: MzBvg92caNG7WukbUMJukpyB0v0.crl (hash: SwaTN+7woY7OtkIzbSmW54Kjr0bcc1PXyq6GrjcrttQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f9/408e37-fae2-48b5-bd15-73d94cb54526/1/MzBvg92caNG7WukbUMJukpyB0v0.crl
rsync://rpki.ripe.net/repository/DEFAULT/f9/408e37-fae2-48b5-bd15-73d94cb54526/1/MzBvg92caNG7WukbUMJukpyB0v0.mft
rsync://rpki.ripe.net/repository/DEFAULT/MzBvg92caNG7WukbUMJukpyB0v0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 15 Jun 2025 01:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:6c:62:05:a5:57:aa:36:a5:20:09:59:68:f3:78:07:e0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=33306f83dd9c68d1bb5ae91b50c26e929c81d2fd
Validity
Not Before: Jun 14 03:00:52 2025 GMT
Not After : Jun 15 03:00:52 2025 GMT
Subject: CN=260be9d0c054452518b2742d0e1f093e918f6c4e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:1e:af:ab:df:88:23:5d:05:c0:92:04:91:bf:
cf:3e:b4:d8:dc:cd:2a:8a:3f:81:eb:3d:a8:ab:39:
08:e5:de:31:5f:34:11:84:21:41:b9:4e:c5:b1:62:
2a:07:de:ce:e6:23:0d:f5:81:7c:b2:9e:bb:b5:13:
09:2c:42:4c:6f:8d:e3:c8:c3:2c:63:3a:2a:9b:aa:
b1:97:c6:ea:5c:c3:58:dd:52:00:5e:a1:91:cc:17:
7d:96:a3:6c:a4:d3:bd:ee:23:5c:90:e7:04:2b:3b:
df:d2:29:6d:89:34:89:ca:1e:c2:e8:c2:a2:b0:20:
17:4c:58:6a:04:39:0e:42:4b:6c:3e:ca:c1:d0:a8:
27:c9:4c:e5:ea:c9:52:46:f0:83:74:a5:a9:ef:d2:
e1:8d:da:95:90:cf:97:7a:36:9d:b3:d3:33:d6:e8:
47:ab:a9:2c:f4:8d:a1:04:c9:0c:5f:6a:83:52:21:
c2:bf:a3:0a:53:9f:e1:05:88:17:06:74:bd:78:c0:
bb:b7:af:af:80:f9:c0:1f:e6:df:f4:80:42:0a:3c:
9e:aa:ee:ea:e8:42:82:0c:7a:da:34:d2:f9:77:7b:
24:77:c3:d0:72:32:8a:66:34:62:50:bc:cd:18:b4:
4e:f6:90:2c:6b:a0:1e:40:af:92:0a:ae:c7:c4:db:
8d:b3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
26:0B:E9:D0:C0:54:45:25:18:B2:74:2D:0E:1F:09:3E:91:8F:6C:4E
X509v3 Authority Key Identifier:
keyid:33:30:6F:83:DD:9C:68:D1:BB:5A:E9:1B:50:C2:6E:92:9C:81:D2:FD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MzBvg92caNG7WukbUMJukpyB0v0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f9/408e37-fae2-48b5-bd15-73d94cb54526/1/MzBvg92caNG7WukbUMJukpyB0v0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f9/408e37-fae2-48b5-bd15-73d94cb54526/1/MzBvg92caNG7WukbUMJukpyB0v0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
af:20:44:9d:9d:ea:ef:1e:cd:7d:43:66:8f:6b:e5:25:05:ab:
b7:86:b1:ff:7a:e6:cb:12:a6:3e:0b:1c:90:36:92:c7:0f:48:
c6:8c:e3:af:be:cc:31:69:fd:fc:58:41:81:83:ec:c4:83:8b:
26:3b:b7:ad:4b:a8:9f:4e:56:8a:cb:a7:b4:0a:2a:5f:ae:9b:
59:b2:71:20:29:74:a2:97:85:14:9c:4f:b4:38:5c:34:13:d3:
92:2b:41:ab:0c:f3:cc:1c:40:f1:32:ff:f5:b9:d4:73:5e:2f:
30:f5:d3:51:2b:ac:4f:0c:a2:75:e9:70:9d:4e:1c:46:a7:77:
26:e5:5b:03:4f:29:b0:48:2c:f2:86:e8:85:01:4d:06:93:58:
01:de:59:a5:8e:b9:93:f9:c7:fd:31:f5:c1:63:51:e2:14:48:
db:e8:6f:63:9e:81:5f:5c:bb:90:50:86:d5:8f:09:3a:81:6f:
ac:86:6b:6b:c9:32:cc:19:fd:20:76:f8:df:91:63:55:69:14:
cd:2e:26:d4:94:eb:d7:74:7b:32:31:e1:66:2c:d9:70:b6:9c:
32:f4:bf:79:fc:cb:2e:d3:cd:63:db:89:43:13:b3:6c:39:c3:
94:ad:5a:61:89:4a:9b:3b:02:f6:f4:5d:3a:99:a8:fb:65:d9:
af:cc:58:f4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 14 09:10:49 2025 by rpki-client