Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/14/35b49b-03a3-4101-a3fe-1d8e19df4a62/1/MtOVxX39MMDNLDD0IziuTBSnUKE.mft
File: MtOVxX39MMDNLDD0IziuTBSnUKE.mft (raw, json)
Hash identifier: HvajB8qp4RhQquPY2lUuSUawGvfXtb4sjHKVgC6oETs=
Subject key identifier: D8:C0:FA:95:42:05:DB:95:96:D9:F9:B0:13:5E:2B:16:E8:CC:62:7C
Authority key identifier: 32:D3:95:C5:7D:FD:30:C0:CD:2C:30:F4:23:38:AE:4C:14:A7:50:A1
Certificate issuer: /CN=32d395c57dfd30c0cd2c30f42338ae4c14a750a1
Certificate serial: 0197B745353EB4FB105269221874E210F2DE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/MtOVxX39MMDNLDD0IziuTBSnUKE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/14/35b49b-03a3-4101-a3fe-1d8e19df4a62/1/MtOVxX39MMDNLDD0IziuTBSnUKE.mft
Manifest number: 0A9E
Signing time: Sat 28 Jun 2025 16:00:55 +0000
Manifest this update: Sat 28 Jun 2025 16:00:55 +0000
Manifest next update: Sun 29 Jun 2025 16:00:55 +0000
Files and hashes: 1: MtOVxX39MMDNLDD0IziuTBSnUKE.crl (hash: ouxU2+T9Y1p1Tw2R6rPOYeer873lCdCoaFNZ78uVhZc=)
2: SwDsrRhvfBw9F4XGJ9jQ9aLMXmM.roa (hash: 3d2l7JTHz6vbNzzhkSjJTHAcnYSSZFmoaOBcI2qRo/o=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/14/35b49b-03a3-4101-a3fe-1d8e19df4a62/1/MtOVxX39MMDNLDD0IziuTBSnUKE.crl
rsync://rpki.ripe.net/repository/DEFAULT/14/35b49b-03a3-4101-a3fe-1d8e19df4a62/1/MtOVxX39MMDNLDD0IziuTBSnUKE.mft
rsync://rpki.ripe.net/repository/DEFAULT/MtOVxX39MMDNLDD0IziuTBSnUKE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 15:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b7:45:35:3e:b4:fb:10:52:69:22:18:74:e2:10:f2:de
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=32d395c57dfd30c0cd2c30f42338ae4c14a750a1
Validity
Not Before: Jun 28 16:00:55 2025 GMT
Not After : Jun 29 16:00:55 2025 GMT
Subject: CN=d8c0fa954205db9596d9f9b0135e2b16e8cc627c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:ae:b0:9b:ec:dd:25:3e:c3:1c:b8:3b:cc:5a:
de:c3:28:5d:7d:fc:57:54:d2:8c:bc:7d:30:eb:26:
4f:c7:19:6d:ec:23:a0:10:bc:6a:78:68:92:42:9b:
3a:f8:7b:4f:17:fa:b5:a5:14:e4:cf:fd:10:19:4b:
b7:da:fd:73:ff:03:ac:cb:65:9f:23:ba:77:7f:99:
3a:d8:7c:a4:1d:f5:8b:5b:53:93:18:c8:96:3d:4b:
12:5e:1e:c7:11:fa:99:76:5d:64:8c:de:b5:a6:4a:
af:18:62:80:54:78:54:78:20:b4:8b:f0:82:62:72:
7a:0e:32:33:a3:56:00:c5:43:f1:f6:0e:5c:7e:53:
4b:59:7f:3b:04:c4:1d:c2:67:07:d8:29:fd:14:ac:
25:e2:7b:82:22:0d:42:ff:42:a8:27:27:4c:a6:c1:
e6:ea:7e:31:60:81:00:e4:ec:62:b8:ab:06:af:4c:
40:63:d0:cd:23:3c:f8:c3:29:ea:35:fd:73:24:49:
68:e9:cd:c7:b9:5c:0f:59:a0:37:48:0e:8c:17:0c:
0e:cf:5e:2a:99:d7:aa:0f:9f:1c:5b:77:fc:d2:9d:
8e:97:f6:6c:4e:b3:3a:86:f7:c3:08:3d:e9:ac:3b:
cd:26:35:49:81:d3:f6:ec:7f:9c:d5:41:26:c8:ec:
ff:8d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D8:C0:FA:95:42:05:DB:95:96:D9:F9:B0:13:5E:2B:16:E8:CC:62:7C
X509v3 Authority Key Identifier:
keyid:32:D3:95:C5:7D:FD:30:C0:CD:2C:30:F4:23:38:AE:4C:14:A7:50:A1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MtOVxX39MMDNLDD0IziuTBSnUKE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/14/35b49b-03a3-4101-a3fe-1d8e19df4a62/1/MtOVxX39MMDNLDD0IziuTBSnUKE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/14/35b49b-03a3-4101-a3fe-1d8e19df4a62/1/MtOVxX39MMDNLDD0IziuTBSnUKE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
23:56:d6:28:f2:c5:87:5a:a4:3f:69:d1:f7:24:d6:d2:1a:e3:
7e:4d:3e:0b:5a:b2:9d:3c:b2:43:f4:78:d3:fb:de:96:b4:bd:
cd:bb:96:39:43:16:5b:da:f8:45:5a:4d:4c:0f:9c:c7:86:e9:
0f:62:59:6d:2b:72:44:2a:99:16:d7:06:05:54:e8:10:b2:65:
0c:fb:c5:2b:1c:f4:c6:10:f7:36:b5:3b:13:02:bc:e7:2e:95:
b9:9a:7c:6c:a4:c9:10:9c:95:07:27:6e:42:e9:1a:96:1e:50:
e1:a6:55:82:29:72:df:79:41:dd:e8:68:90:21:7b:f3:18:7e:
0e:c2:b1:c1:d5:b8:f6:c9:69:0c:ed:5e:06:f3:c2:d8:e2:9f:
b6:48:38:9a:02:60:51:57:5e:59:38:d6:f1:8c:5a:10:22:a1:
06:a9:67:47:9e:2a:69:6d:1c:15:22:0d:93:89:d0:10:53:dd:
32:3d:9c:47:95:6f:b7:50:08:e8:99:a2:cb:b6:96:16:f1:c1:
02:51:e8:b9:33:a4:5c:bd:6c:c1:17:19:a3:25:ba:f9:f1:08:
49:ea:e0:e0:24:80:24:3c:84:52:2a:fb:da:cd:ed:a4:48:f0:
0e:7b:46:54:ca:f0:6e:fa:e1:8c:35:3f:ea:84:3f:ca:2f:2b:
a9:cb:8e:75
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 28 22:00:22 2025 by rpki-client