Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/03/07d146-ef22-4e5c-bd5c-42ed3e373679/1/MXvyYLzaMCviwgdijPsWRHhhT-U.mft
File: MXvyYLzaMCviwgdijPsWRHhhT-U.mft (raw, json)
Hash identifier: 0R6amy5sS+Bfl4I+AsWDFINXTixEclSoP2yHnLOqBfs=
Subject key identifier: 71:59:C0:C6:91:9A:3E:5F:C8:40:C2:53:EE:53:7F:C5:7F:50:2E:B2
Authority key identifier: 31:7B:F2:60:BC:DA:30:2B:E2:C2:07:62:8C:FB:16:44:78:61:4F:E5
Certificate issuer: /CN=317bf260bcda302be2c207628cfb164478614fe5
Certificate serial: 0197B70F45541E1BED9B25F646A209653CF3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/MXvyYLzaMCviwgdijPsWRHhhT-U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/03/07d146-ef22-4e5c-bd5c-42ed3e373679/1/MXvyYLzaMCviwgdijPsWRHhhT-U.mft
Manifest number: 0D29
Signing time: Sat 28 Jun 2025 15:02:00 +0000
Manifest this update: Sat 28 Jun 2025 15:02:00 +0000
Manifest next update: Sun 29 Jun 2025 15:02:00 +0000
Files and hashes: 1: MXvyYLzaMCviwgdijPsWRHhhT-U.crl (hash: jjnS/NI85safKNpr42d/+rwRNKLTcFwMQ3Pickm02z8=)
2: penXvalgbMBLZqcx96rUayqK3NQ.roa (hash: vb/Iw29Kb6TCjGenAwHcr/Ra62ZOMD3/iU+HDEP/27c=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/03/07d146-ef22-4e5c-bd5c-42ed3e373679/1/MXvyYLzaMCviwgdijPsWRHhhT-U.crl
rsync://rpki.ripe.net/repository/DEFAULT/03/07d146-ef22-4e5c-bd5c-42ed3e373679/1/MXvyYLzaMCviwgdijPsWRHhhT-U.mft
rsync://rpki.ripe.net/repository/DEFAULT/MXvyYLzaMCviwgdijPsWRHhhT-U.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 15:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b7:0f:45:54:1e:1b:ed:9b:25:f6:46:a2:09:65:3c:f3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=317bf260bcda302be2c207628cfb164478614fe5
Validity
Not Before: Jun 28 15:02:00 2025 GMT
Not After : Jun 29 15:02:00 2025 GMT
Subject: CN=7159c0c6919a3e5fc840c253ee537fc57f502eb2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:2f:6b:cf:8d:23:82:84:b2:ea:2f:fe:cd:31:
e0:65:d9:88:cd:ec:c2:b5:5c:3c:56:64:c8:3d:f7:
29:27:26:b9:ea:66:78:bd:49:d5:9d:e9:a7:31:65:
a5:d5:27:d8:92:10:04:08:e6:02:04:9b:e9:ca:c5:
a1:f2:7c:3e:fd:14:8a:0e:5c:bb:83:06:6b:52:c5:
c6:73:1c:98:48:80:7f:8d:95:7e:d4:a3:7f:7f:db:
e5:bb:d0:fe:34:47:d8:4b:e4:aa:ce:d2:42:ce:bc:
39:a5:08:cc:59:ba:4f:c3:b4:5f:2e:c9:94:90:70:
a5:95:78:7b:86:fe:dc:34:bb:5f:28:6b:57:6b:5f:
54:cf:40:a6:2a:86:02:70:fc:f7:9f:9f:5f:4a:23:
42:86:bf:89:3a:61:4e:a9:ce:cf:b1:9d:17:97:81:
70:16:7a:2f:2e:77:9b:41:4c:d7:32:ac:71:bc:70:
f4:fa:df:0a:74:ca:83:f1:b7:51:6b:16:e7:20:52:
59:6c:2f:4d:c7:7a:d6:cf:cd:62:63:c4:3d:0d:92:
c7:13:ec:01:21:da:4a:89:43:f5:f2:93:e9:81:b6:
6c:81:14:5b:90:7a:25:87:f5:c3:2a:f8:e1:00:35:
0e:fd:dc:c5:a6:dc:00:1c:eb:0a:81:6a:b5:08:4e:
06:d9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
71:59:C0:C6:91:9A:3E:5F:C8:40:C2:53:EE:53:7F:C5:7F:50:2E:B2
X509v3 Authority Key Identifier:
keyid:31:7B:F2:60:BC:DA:30:2B:E2:C2:07:62:8C:FB:16:44:78:61:4F:E5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MXvyYLzaMCviwgdijPsWRHhhT-U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/03/07d146-ef22-4e5c-bd5c-42ed3e373679/1/MXvyYLzaMCviwgdijPsWRHhhT-U.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/03/07d146-ef22-4e5c-bd5c-42ed3e373679/1/MXvyYLzaMCviwgdijPsWRHhhT-U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
8f:8d:cc:75:db:ee:61:87:28:cb:0c:3a:fa:42:98:9b:d2:10:
d9:73:50:c6:4c:09:e1:a1:e9:2d:bd:9e:51:1a:37:35:7a:1f:
ad:d6:8a:0f:77:f5:c4:ec:90:38:e7:b9:34:8e:e5:d4:30:1d:
61:e4:f7:eb:73:69:3f:81:92:8f:29:dc:bb:77:de:38:18:00:
16:ea:af:51:64:df:cb:07:ad:d5:f6:24:29:2d:33:5b:62:2b:
0f:fc:44:6a:a3:13:5d:18:4d:9d:86:22:e3:24:13:4d:64:38:
67:98:2d:78:dc:c5:73:1d:a8:6f:78:da:c7:a1:f4:f5:c1:7f:
1b:9f:56:19:e8:3e:8c:ab:71:dc:ad:a6:30:f0:54:ea:d7:a7:
68:b4:45:04:9f:00:e7:36:2c:c8:c5:20:8b:16:68:3f:d5:c6:
e8:ad:16:52:ba:66:89:c9:95:e0:9f:fc:87:00:b4:8e:22:45:
dc:90:11:14:af:76:32:22:17:76:8a:6c:e1:28:06:58:09:fd:
0d:ac:54:df:7f:b2:34:4e:b8:a0:0c:93:63:12:b8:27:d1:2a:
fc:96:b4:20:f8:86:19:93:dc:95:78:19:e5:c3:21:75:dc:95:
76:6a:57:7d:e1:8a:51:29:20:3e:c6:fc:a0:ea:4e:de:5e:82:
19:da:28:75
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 28 23:00:14 2025 by rpki-client