Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/13/a400b2-bab4-4119-a3d1-89981c8f9e7b/1/MHXYfBl6D6BNqPIlNY0_r3hvfQs.mft
File: MHXYfBl6D6BNqPIlNY0_r3hvfQs.mft (raw, json)
Hash identifier: x7g5y0BJwTPjnA0C/DHrkbD9vvPnORbf+ZDU1ABANck=
Subject key identifier: CC:57:47:98:95:CA:03:B9:68:36:92:90:A5:41:6E:DB:A2:9D:22:FA
Authority key identifier: 30:75:D8:7C:19:7A:0F:A0:4D:A8:F2:25:35:8D:3F:AF:78:6F:7D:0B
Certificate issuer: /CN=3075d87c197a0fa04da8f225358d3faf786f7d0b
Certificate serial: 0197B5FBB8FF15EB2034E77FCCB244A13FF2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/MHXYfBl6D6BNqPIlNY0_r3hvfQs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/13/a400b2-bab4-4119-a3d1-89981c8f9e7b/1/MHXYfBl6D6BNqPIlNY0_r3hvfQs.mft
Manifest number: 039F
Signing time: Sat 28 Jun 2025 10:01:02 +0000
Manifest this update: Sat 28 Jun 2025 10:01:02 +0000
Manifest next update: Sun 29 Jun 2025 10:01:02 +0000
Files and hashes: 1: MHXYfBl6D6BNqPIlNY0_r3hvfQs.crl (hash: Iyz8E6Uy8CTs4niWbOpV39ktPJzVBN7IF+n2x/zTDY4=)
2: _Op4bSAp0gWDx4UfTJUc97va5qw.roa (hash: tJEKSC7Hrru5HEiTFvhI8vLaAa+FAs4tPlo2cnkUBAA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/13/a400b2-bab4-4119-a3d1-89981c8f9e7b/1/MHXYfBl6D6BNqPIlNY0_r3hvfQs.crl
rsync://rpki.ripe.net/repository/DEFAULT/13/a400b2-bab4-4119-a3d1-89981c8f9e7b/1/MHXYfBl6D6BNqPIlNY0_r3hvfQs.mft
rsync://rpki.ripe.net/repository/DEFAULT/MHXYfBl6D6BNqPIlNY0_r3hvfQs.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 10:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b5:fb:b8:ff:15:eb:20:34:e7:7f:cc:b2:44:a1:3f:f2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3075d87c197a0fa04da8f225358d3faf786f7d0b
Validity
Not Before: Jun 28 10:01:02 2025 GMT
Not After : Jun 29 10:01:02 2025 GMT
Subject: CN=cc57479895ca03b968369290a5416edba29d22fa
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d3:85:4a:34:a6:3a:27:6d:88:48:8b:ad:b5:d6:
e1:a1:2c:9b:87:01:8d:c0:5b:19:d5:62:76:39:55:
50:e4:80:11:8b:e0:20:12:dd:7b:fb:b2:ad:61:47:
4f:15:cb:27:5a:59:93:be:3c:5f:bf:cf:d5:42:f3:
58:dd:db:9c:1a:78:7d:cc:75:70:c2:72:87:c0:4b:
c9:62:3e:de:3c:46:04:3b:f3:09:c9:e2:c2:d2:48:
54:50:3a:97:04:dd:88:f4:7d:63:11:ef:23:30:ae:
a7:db:b7:b6:f1:12:1d:62:2f:63:eb:a8:d8:90:6a:
7b:b6:1f:e1:c4:39:d8:cb:02:21:96:a8:48:7a:2c:
c8:6e:db:3a:0b:ca:e7:41:61:a5:5c:a6:05:31:ab:
7d:f0:dc:d6:b5:71:27:c6:51:1f:e7:27:54:46:ac:
c3:d9:dc:26:02:67:b8:c2:4d:cf:d2:bf:77:7d:4d:
05:e7:9b:6e:f5:53:0b:57:48:4b:97:2c:cd:0c:2b:
dc:43:11:c4:9a:b4:cf:a5:d3:09:26:a9:4b:b0:dd:
ce:72:17:96:96:e5:bb:26:21:26:45:ed:fb:32:01:
e0:30:a1:5b:4d:e9:10:3b:b4:b0:c7:0f:04:ce:af:
0d:90:a9:d2:a4:0c:8f:78:ec:db:07:17:61:4f:27:
6c:6b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CC:57:47:98:95:CA:03:B9:68:36:92:90:A5:41:6E:DB:A2:9D:22:FA
X509v3 Authority Key Identifier:
keyid:30:75:D8:7C:19:7A:0F:A0:4D:A8:F2:25:35:8D:3F:AF:78:6F:7D:0B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MHXYfBl6D6BNqPIlNY0_r3hvfQs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/13/a400b2-bab4-4119-a3d1-89981c8f9e7b/1/MHXYfBl6D6BNqPIlNY0_r3hvfQs.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/13/a400b2-bab4-4119-a3d1-89981c8f9e7b/1/MHXYfBl6D6BNqPIlNY0_r3hvfQs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
98:b7:20:67:9f:69:f0:e2:34:9b:08:95:33:4a:d3:45:3c:f5:
c2:37:30:2b:da:41:d5:37:9c:5a:73:bd:3b:1f:f8:9a:b2:78:
00:7e:a3:d1:10:47:45:da:ac:36:7a:75:88:d1:c1:46:d6:51:
51:47:79:e2:38:fb:f7:ee:d0:c5:e7:f4:89:14:77:db:9b:62:
e0:99:3b:a2:32:7e:af:d1:2d:c8:24:62:74:2c:c9:69:ff:15:
52:03:2a:9f:66:eb:51:df:70:f4:b0:af:33:2d:e5:dc:c8:6a:
5c:00:ec:0c:5d:30:37:b6:1e:45:25:94:ab:2b:89:26:c5:83:
a5:bb:0d:c7:59:6f:31:c8:fc:e8:7f:c0:e9:28:bc:55:8e:5a:
6f:bb:3f:4e:1c:53:4a:fc:0e:bb:b5:84:14:1c:41:46:07:79:
5b:83:20:30:2c:5e:59:4e:49:46:dd:ab:e6:a1:07:e5:60:e3:
4a:42:73:4f:c4:84:65:38:5d:97:9f:f4:66:d1:80:5a:b5:e5:
0f:d6:9e:6d:1f:42:e5:4b:2d:7a:31:15:cd:6b:3a:4d:2d:a1:
04:3a:db:c3:93:9d:2f:d6:ea:39:03:e9:55:eb:93:d6:8b:aa:
e2:22:07:fc:32:b1:86:84:98:5b:f4:0c:3c:b5:e2:1d:f2:16:
14:a2:03:5a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 28 19:09:42 2025 by rpki-client