Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/03/07d146-ef22-4e5c-bd5c-42ed3e373679/1/MXvyYLzaMCviwgdijPsWRHhhT-U.mft
File: MXvyYLzaMCviwgdijPsWRHhhT-U.mft (raw, json)
Hash identifier: JCs/Cn8NL1kiOV/NsLWui8m2TICbikMGBEHmMfIuWhY=
Subject key identifier: C2:F8:09:1A:B2:DB:AF:CC:E6:0F:DC:E0:63:5E:B7:55:2D:6D:10:8A
Authority key identifier: 31:7B:F2:60:BC:DA:30:2B:E2:C2:07:62:8C:FB:16:44:78:61:4F:E5
Certificate issuer: /CN=317bf260bcda302be2c207628cfb164478614fe5
Certificate serial: 0198D4E0463F4AD30B709EF4B2C8AEA4365D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/MXvyYLzaMCviwgdijPsWRHhhT-U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/03/07d146-ef22-4e5c-bd5c-42ed3e373679/1/MXvyYLzaMCviwgdijPsWRHhhT-U.mft
Manifest number: 0DBD
Signing time: Sat 23 Aug 2025 03:02:04 +0000
Manifest this update: Sat 23 Aug 2025 03:02:04 +0000
Manifest next update: Sun 24 Aug 2025 03:02:04 +0000
Files and hashes: 1: MXvyYLzaMCviwgdijPsWRHhhT-U.crl (hash: JwQnVRC5UYrmCz1hbXKySQhi7w/3Q4bDPX2aLySLJ+Y=)
2: penXvalgbMBLZqcx96rUayqK3NQ.roa (hash: vb/Iw29Kb6TCjGenAwHcr/Ra62ZOMD3/iU+HDEP/27c=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/03/07d146-ef22-4e5c-bd5c-42ed3e373679/1/MXvyYLzaMCviwgdijPsWRHhhT-U.crl
rsync://rpki.ripe.net/repository/DEFAULT/03/07d146-ef22-4e5c-bd5c-42ed3e373679/1/MXvyYLzaMCviwgdijPsWRHhhT-U.mft
rsync://rpki.ripe.net/repository/DEFAULT/MXvyYLzaMCviwgdijPsWRHhhT-U.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 03:02:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d4:e0:46:3f:4a:d3:0b:70:9e:f4:b2:c8:ae:a4:36:5d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=317bf260bcda302be2c207628cfb164478614fe5
Validity
Not Before: Aug 23 03:02:04 2025 GMT
Not After : Aug 24 03:02:04 2025 GMT
Subject: CN=c2f8091ab2dbafcce60fdce0635eb7552d6d108a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:48:3d:4a:4b:73:70:e7:71:18:d4:0a:b9:27:
11:3e:72:ee:28:76:4b:25:28:e7:c8:9a:31:d0:f9:
32:9f:e6:3f:67:08:21:82:4e:ee:1c:db:ff:b2:57:
82:a5:a8:d2:82:87:82:44:58:3b:14:71:f1:82:52:
67:56:35:6e:05:a6:12:6e:d8:c9:54:ae:ef:2f:a3:
56:73:1a:75:35:94:f1:4f:41:98:e8:a2:81:af:bd:
0b:97:f9:fd:28:5b:9c:51:0b:1b:ca:5f:fc:4b:3d:
aa:50:1a:46:70:8e:b2:94:ab:19:47:09:f2:29:41:
40:32:6b:7f:7c:5f:89:6a:b9:fd:ea:85:ed:91:ba:
46:c8:90:14:ac:93:15:94:89:1b:be:89:fb:a8:83:
b8:09:94:8c:15:f0:f4:2a:8f:71:13:25:9c:10:22:
67:90:bb:d2:e1:56:76:4e:8d:84:2c:d4:f2:df:0f:
b9:54:8c:15:16:df:c6:d8:2d:b9:ff:77:7b:86:00:
9e:4b:a2:78:89:e4:61:b3:f5:d2:db:41:b0:3b:af:
f5:0c:4c:93:aa:91:69:51:24:b4:27:b0:c1:c2:13:
20:1f:ea:21:49:62:e1:d0:e8:e9:1c:35:e4:8a:90:
4d:bb:7e:8d:d7:44:48:56:e0:5f:3e:aa:d2:08:08:
96:7b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C2:F8:09:1A:B2:DB:AF:CC:E6:0F:DC:E0:63:5E:B7:55:2D:6D:10:8A
X509v3 Authority Key Identifier:
keyid:31:7B:F2:60:BC:DA:30:2B:E2:C2:07:62:8C:FB:16:44:78:61:4F:E5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MXvyYLzaMCviwgdijPsWRHhhT-U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/03/07d146-ef22-4e5c-bd5c-42ed3e373679/1/MXvyYLzaMCviwgdijPsWRHhhT-U.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/03/07d146-ef22-4e5c-bd5c-42ed3e373679/1/MXvyYLzaMCviwgdijPsWRHhhT-U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
6a:32:4b:61:22:90:37:0e:27:fc:1c:1b:e6:09:19:d4:d6:48:
84:12:ef:83:64:6a:b3:b2:28:a5:f6:a5:f3:7d:8d:bb:3c:01:
1b:48:d8:26:68:3e:2d:11:69:bc:1d:bf:0c:a1:17:22:47:95:
c8:bf:b2:fe:26:4f:50:92:81:09:95:d7:99:28:5a:f0:4c:eb:
95:a7:b4:78:41:ca:dd:8e:35:0a:4e:d3:3d:c6:f8:5f:8d:04:
b9:c9:49:70:ee:8b:af:c1:02:1d:1d:66:dc:da:2a:f5:d6:64:
fd:07:9e:23:f3:46:4b:a5:67:fc:a1:70:0f:c8:92:f2:bd:49:
9c:9f:e9:bd:1a:8d:46:24:56:e1:b3:8c:b6:5b:22:2b:22:c3:
e8:f0:4a:5e:46:82:cd:e4:cf:6e:c1:c7:4d:67:4c:95:47:fc:
95:d6:99:68:b5:46:24:e8:df:72:23:da:d2:2e:f0:75:ad:20:
01:d2:fd:c0:f3:d0:b1:71:fb:ae:2c:9a:5f:8f:a8:1c:e7:25:
3c:21:a6:27:b6:f0:a5:42:6c:fc:b2:5a:48:96:27:9b:9a:b5:
a4:8f:49:63:99:63:aa:63:89:8a:e9:e2:d6:f0:e6:0e:01:76:
84:80:54:5f:bd:01:79:ea:f7:db:53:cb:01:0b:48:f0:27:e4:
88:c7:c7:52
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZjU4EY/StMLcJ70ssiupDZdMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDMxN2JmMjYwYmNkYTMwMmJlMmMyMDc2MjhjZmIxNjQ0Nzg2
MTRmZTUwHhcNMjUwODIzMDMwMjA0WhcNMjUwODI0MDMwMjA0WjAzMTEwLwYDVQQD
EyhjMmY4MDkxYWIyZGJhZmNjZTYwZmRjZTA2MzVlYjc1NTJkNmQxMDhhMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAy0g9SktzcOdxGNQKuScRPnLuKHZL
JSjnyJox0Pkyn+Y/Zwghgk7uHNv/sleCpajSgoeCRFg7FHHxglJnVjVuBaYSbtjJ
VK7vL6NWcxp1NZTxT0GY6KKBr70Ll/n9KFucUQsbyl/8Sz2qUBpGcI6ylKsZRwny
KUFAMmt/fF+Jarn96oXtkbpGyJAUrJMVlIkbvon7qIO4CZSMFfD0Ko9xEyWcECJn
kLvS4VZ2To2ELNTy3w+5VIwVFt/G2C25/3d7hgCeS6J4ieRhs/XS20GwO6/1DEyT
qpFpUSS0J7DBwhMgH+ohSWLh0OjpHDXkipBNu36N10RIVuBfPqrSCAiWewIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFML4CRqy26/M5g/c4GNet1UtbRCKMB8GA1UdIwQY
MBaAFDF78mC82jAr4sIHYoz7FkR4YU/lMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvTVh2eVlMemFNQ3Zpd2dkaWpQc1dSSGhoVC1VLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wMy8wN2QxNDYtZWYyMi00ZTVjLWJkNWMt
NDJlZDNlMzczNjc5LzEvTVh2eVlMemFNQ3Zpd2dkaWpQc1dSSGhoVC1VLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8wMy8wN2QxNDYtZWYyMi00ZTVjLWJkNWMtNDJlZDNlMzczNjc5
LzEvTVh2eVlMemFNQ3Zpd2dkaWpQc1dSSGhoVC1VLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAajJLYSKQ
Nw4n/Bwb5gkZ1NZIhBLvg2Rqs7Iopfal832NuzwBG0jYJmg+LRFpvB2/DKEXIkeV
yL+y/iZPUJKBCZXXmSha8Ezrlae0eEHK3Y41Ck7TPcb4X40EuclJcO6Lr8ECHR1m
3Noq9dZk/QeeI/NGS6Vn/KFwD8iS8r1JnJ/pvRqNRiRW4bOMtlsiKyLD6PBKXkaC
zeTPbsHHTWdMlUf8ldaZaLVGJOjfciPa0i7wda0gAdL9wPPQsXH7riyaX4+oHOcl
PCGmJ7bwpUJs/LJaSJYnm5q1pI9JY5ljqmOJiuni1vDmDgF2hIBUX70Beer321PL
AQtI8CfkiMfHUg==
-----END CERTIFICATE-----
Generated at Sat Aug 23 12:27:19 2025 by rpki-client