Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f9/408e37-fae2-48b5-bd15-73d94cb54526/1/MzBvg92caNG7WukbUMJukpyB0v0.mft
File: MzBvg92caNG7WukbUMJukpyB0v0.mft (raw, json)
Hash identifier: nAK0x1omg3sMsBu0eF57gV9Tc/myHqgc53AUAGdOaQA=
Subject key identifier: 5F:B8:B3:6A:E5:84:4F:CD:F7:3A:1A:BE:4F:3E:42:E5:2B:A2:B9:7E
Authority key identifier: 33:30:6F:83:DD:9C:68:D1:BB:5A:E9:1B:50:C2:6E:92:9C:81:D2:FD
Certificate issuer: /CN=33306f83dd9c68d1bb5ae91b50c26e929c81d2fd
Certificate serial: 019874F4DFF58A238850188EC336A6AE79F7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/MzBvg92caNG7WukbUMJukpyB0v0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f9/408e37-fae2-48b5-bd15-73d94cb54526/1/MzBvg92caNG7WukbUMJukpyB0v0.mft
Manifest number: 016C
Signing time: Mon 04 Aug 2025 12:01:01 +0000
Manifest this update: Mon 04 Aug 2025 12:01:01 +0000
Manifest next update: Tue 05 Aug 2025 12:01:01 +0000
Files and hashes: 1: 0-WwVD2zFPGNgQhhntKyco3wY3I.roa (hash: bPryhs2CIXqAzaBTX4TIyszyma7cGcWiYG+PS79estE=)
2: MzBvg92caNG7WukbUMJukpyB0v0.crl (hash: CySEqIdrYzrraXB/6hbJVMpJuz5T486yQkqtpNJa0IQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f9/408e37-fae2-48b5-bd15-73d94cb54526/1/MzBvg92caNG7WukbUMJukpyB0v0.crl
rsync://rpki.ripe.net/repository/DEFAULT/f9/408e37-fae2-48b5-bd15-73d94cb54526/1/MzBvg92caNG7WukbUMJukpyB0v0.mft
rsync://rpki.ripe.net/repository/DEFAULT/MzBvg92caNG7WukbUMJukpyB0v0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 05 Aug 2025 11:52:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:74:f4:df:f5:8a:23:88:50:18:8e:c3:36:a6:ae:79:f7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=33306f83dd9c68d1bb5ae91b50c26e929c81d2fd
Validity
Not Before: Aug 4 12:01:01 2025 GMT
Not After : Aug 5 12:01:01 2025 GMT
Subject: CN=5fb8b36ae5844fcdf73a1abe4f3e42e52ba2b97e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:b9:76:33:6a:fc:be:80:53:36:03:4b:4f:f4:
29:e4:b0:93:68:9e:4e:48:4e:5b:f9:1f:ae:16:20:
a1:96:e2:a8:7d:0f:0a:f3:8f:44:b5:34:09:1c:c1:
10:f1:ee:d2:f1:68:a5:ba:24:85:0b:44:fb:b4:ab:
e7:5b:b7:12:8a:40:e6:56:d3:3f:59:5d:96:b1:94:
07:92:1e:26:ca:15:63:23:c8:e8:f5:37:dd:05:07:
5b:c1:02:34:ef:2d:15:e3:9f:6b:77:46:ca:89:60:
29:64:24:8e:a1:64:d9:d2:91:12:27:d2:58:a3:35:
78:06:62:7e:e0:4f:6a:35:9f:8f:d1:05:c5:ab:ca:
43:b6:f1:01:97:63:35:4c:90:cb:22:84:c5:93:35:
28:90:51:66:f4:40:3a:b8:23:73:c7:b9:ba:d1:9c:
0a:2a:32:35:e6:5d:4c:83:34:73:91:24:51:99:27:
98:31:21:41:07:be:c4:de:5c:81:a5:54:ab:67:17:
23:18:ac:7f:df:c0:d3:08:cd:fa:3f:4d:f8:b2:a1:
99:d8:76:72:a4:1f:85:bb:b9:aa:b5:ab:6e:28:d8:
f6:98:bc:6c:1e:bf:be:fe:2e:e6:a3:73:be:f1:90:
d8:b6:b7:b5:fd:1d:44:ff:07:eb:7a:63:99:93:a9:
fb:39
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5F:B8:B3:6A:E5:84:4F:CD:F7:3A:1A:BE:4F:3E:42:E5:2B:A2:B9:7E
X509v3 Authority Key Identifier:
keyid:33:30:6F:83:DD:9C:68:D1:BB:5A:E9:1B:50:C2:6E:92:9C:81:D2:FD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MzBvg92caNG7WukbUMJukpyB0v0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f9/408e37-fae2-48b5-bd15-73d94cb54526/1/MzBvg92caNG7WukbUMJukpyB0v0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f9/408e37-fae2-48b5-bd15-73d94cb54526/1/MzBvg92caNG7WukbUMJukpyB0v0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
37:3e:21:1d:2e:4f:29:da:3c:07:59:a7:f0:ef:71:4f:81:10:
a8:ff:a6:72:c4:4d:c3:20:82:f9:b2:76:29:66:58:69:c2:d3:
35:89:64:3b:eb:73:5c:d5:5d:45:1a:f1:88:e8:15:49:b0:4c:
96:25:e3:d6:84:30:1b:51:76:1b:39:4c:5a:0e:09:8e:21:a7:
a9:cc:e0:cb:32:df:8c:1f:6c:a5:5c:fc:70:37:9f:f2:e7:9f:
c4:e3:b9:12:f7:db:bb:59:c2:af:2b:70:18:4e:7f:63:09:fd:
61:d6:fc:c9:de:3a:70:2a:ec:b4:a5:07:20:71:e5:da:6e:da:
fb:17:59:f7:9a:01:c2:92:36:90:f8:5d:e0:40:1a:46:75:46:
01:77:01:98:5a:95:6c:59:50:c0:f3:dd:d5:23:75:0a:3b:ee:
f1:63:64:20:d0:a1:6e:8f:8e:21:53:21:f4:f7:ac:01:15:21:
b4:d0:83:5a:ca:8b:60:3a:5c:d7:8e:46:4f:f6:1c:06:1a:98:
20:56:bc:49:36:a1:21:3b:0f:03:fa:3e:40:88:94:05:a9:57:
60:f7:6a:09:4a:12:9d:a1:cf:f4:99:5d:53:b0:19:03:37:43:
4b:eb:3f:90:93:4b:0c:81:0b:73:98:6f:57:bd:b8:6c:2a:26:
34:23:0c:ca
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Aug 4 14:00:03 2025 by rpki-client