Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/05/c9c0d8-7013-46c3-9c28-434f9e0d750c/1/M2PXLN2TqwL-P3iNYh1xXZ79dpk.mft
File: M2PXLN2TqwL-P3iNYh1xXZ79dpk.mft (raw, json)
Hash identifier: zuJkVCgs+5zx8GMAQsnZQ+QIvPpgAzxv3TkbhOELHEc=
Subject key identifier: 09:A2:AF:A0:05:BF:D2:C3:76:65:7A:18:EE:91:40:C2:A5:32:4B:C9
Authority key identifier: 33:63:D7:2C:DD:93:AB:02:FE:3F:78:8D:62:1D:71:5D:9E:FD:76:99
Certificate issuer: /CN=3363d72cdd93ab02fe3f788d621d715d9efd7699
Certificate serial: 0198D660F865793B180517CE40FEA58EBE6D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/M2PXLN2TqwL-P3iNYh1xXZ79dpk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/05/c9c0d8-7013-46c3-9c28-434f9e0d750c/1/M2PXLN2TqwL-P3iNYh1xXZ79dpk.mft
Manifest number: 122F
Signing time: Sat 23 Aug 2025 10:02:15 +0000
Manifest this update: Sat 23 Aug 2025 10:02:15 +0000
Manifest next update: Sun 24 Aug 2025 10:02:15 +0000
Files and hashes: 1: M2PXLN2TqwL-P3iNYh1xXZ79dpk.crl (hash: fPKQ4vC9iafzp43g97HG6E834vYlGcA4+dm850CK+os=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/05/c9c0d8-7013-46c3-9c28-434f9e0d750c/1/M2PXLN2TqwL-P3iNYh1xXZ79dpk.crl
rsync://rpki.ripe.net/repository/DEFAULT/05/c9c0d8-7013-46c3-9c28-434f9e0d750c/1/M2PXLN2TqwL-P3iNYh1xXZ79dpk.mft
rsync://rpki.ripe.net/repository/DEFAULT/M2PXLN2TqwL-P3iNYh1xXZ79dpk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 10:02:15 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d6:60:f8:65:79:3b:18:05:17:ce:40:fe:a5:8e:be:6d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3363d72cdd93ab02fe3f788d621d715d9efd7699
Validity
Not Before: Aug 23 10:02:15 2025 GMT
Not After : Aug 24 10:02:15 2025 GMT
Subject: CN=09a2afa005bfd2c376657a18ee9140c2a5324bc9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e5:60:2a:f7:ae:18:28:0f:eb:15:f2:e3:bd:1d:
ce:be:c9:44:a9:f1:e5:41:18:e7:c7:05:b5:e5:8e:
a9:8e:a8:94:af:dd:55:28:fc:b0:62:0f:87:0b:f3:
f8:38:d2:c8:53:e4:df:df:8f:6f:fc:7d:4a:8b:30:
67:2d:7b:6d:c7:d6:3d:db:1f:27:64:00:85:f0:90:
b8:10:d5:5c:34:b4:0d:40:e9:91:8c:ba:b2:28:42:
0a:30:de:bd:82:02:53:1a:8d:65:63:59:38:67:74:
53:bf:e1:cf:d3:0a:a4:af:1c:65:15:cd:93:97:32:
52:a7:40:03:91:f0:85:b0:4c:a0:bc:dc:ec:1a:2d:
aa:f1:88:7d:0d:f3:52:31:98:f5:39:83:13:bd:7e:
f6:2d:5d:b7:1c:6e:10:4f:16:bd:03:d2:cd:5e:ae:
4b:27:72:2a:51:7d:56:bf:48:7a:06:5a:ca:99:93:
2a:3a:f0:e9:63:9a:b3:d0:ee:8e:e7:80:d9:77:21:
f9:4c:63:a1:53:ee:d6:cb:22:23:6d:94:c1:81:f8:
69:e8:04:d4:df:71:07:8a:d2:26:29:0f:fb:40:98:
67:41:15:72:2e:6d:a0:bf:c1:23:37:30:db:9b:03:
bf:5d:90:53:c7:26:e1:1e:d9:ab:ad:fe:79:1b:1b:
62:5d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
09:A2:AF:A0:05:BF:D2:C3:76:65:7A:18:EE:91:40:C2:A5:32:4B:C9
X509v3 Authority Key Identifier:
keyid:33:63:D7:2C:DD:93:AB:02:FE:3F:78:8D:62:1D:71:5D:9E:FD:76:99
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/M2PXLN2TqwL-P3iNYh1xXZ79dpk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/05/c9c0d8-7013-46c3-9c28-434f9e0d750c/1/M2PXLN2TqwL-P3iNYh1xXZ79dpk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/05/c9c0d8-7013-46c3-9c28-434f9e0d750c/1/M2PXLN2TqwL-P3iNYh1xXZ79dpk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
09:c1:d4:7e:34:a4:b0:42:7b:2a:29:bd:47:fd:48:fe:67:7e:
f5:4c:45:ce:be:ce:d9:d0:56:7d:f2:44:d5:7d:ac:2b:41:1a:
e9:68:be:01:70:05:60:e1:83:a2:da:74:c2:59:24:ea:20:1d:
0b:05:bb:c9:8f:55:29:87:5f:de:e0:86:2a:48:0d:c2:ec:9a:
7d:5b:61:d8:41:7d:45:65:22:e8:3a:64:ae:62:f4:60:f6:1f:
6c:21:7c:d9:46:32:0c:02:5e:52:4a:87:01:2a:89:38:de:33:
8d:b0:6a:59:ea:17:5d:d6:95:10:33:60:4c:f5:5a:44:08:68:
74:41:61:95:27:6a:89:6f:fa:4e:9c:df:91:af:dc:cd:3c:96:
e2:6a:5c:7f:ef:79:95:6a:29:23:e8:8f:d3:1c:13:e4:0a:13:
18:b2:c0:5e:0e:27:9e:a9:d1:77:0a:36:29:87:32:50:13:87:
bb:ee:0f:60:43:0c:ba:06:af:24:64:8d:a0:1a:35:4f:49:51:
b7:cc:fb:bb:bd:b2:51:bc:ce:d5:ff:fe:52:23:2d:4e:08:27:
e5:13:a8:f1:85:ee:f1:9e:63:56:77:c6:3d:b1:88:92:8c:bf:
44:30:ad:f7:b2:c3:64:82:7e:eb:20:da:79:3d:a1:ed:72:fa:
87:bd:df:c9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 20:20:58 2025 by rpki-client