Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/23/5811c0-6dae-4dd4-987c-d46ffc501f36/1/mRtUIs1VeNRxXr5MUJcgJSPdVlg.mft
File: mRtUIs1VeNRxXr5MUJcgJSPdVlg.mft (raw, json)
Hash identifier: /KClvbVYmorBJXBzu52UMIgiA9xUPDrgxMjGSGG/LyI=
Subject key identifier: 0C:2D:0D:77:F8:E5:0E:83:7D:B4:1E:94:82:CD:0E:E4:34:5D:06:E7
Authority key identifier: 99:1B:54:22:CD:55:78:D4:71:5E:BE:4C:50:97:20:25:23:DD:56:58
Certificate issuer: /CN=991b5422cd5578d4715ebe4c5097202523dd5658
Certificate serial: 0197C61369939CC8267B031AA1855600622D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/mRtUIs1VeNRxXr5MUJcgJSPdVlg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/23/5811c0-6dae-4dd4-987c-d46ffc501f36/1/mRtUIs1VeNRxXr5MUJcgJSPdVlg.mft
Manifest number: 1445
Signing time: Tue 01 Jul 2025 13:00:50 +0000
Manifest this update: Tue 01 Jul 2025 13:00:50 +0000
Manifest next update: Wed 02 Jul 2025 13:00:50 +0000
Files and hashes: 1: dUzHcv1qzeux_y2IL7xdvYNLLOQ.roa (hash: nSNOUC9fK3tMm0ddVALi9dbfVwMcfIB34jQG6rm/2t0=)
2: mRtUIs1VeNRxXr5MUJcgJSPdVlg.crl (hash: E/tm/jPFcbxhHbm/D7GdcqrU38Rcr7JZOazhVuk9EM0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/23/5811c0-6dae-4dd4-987c-d46ffc501f36/1/mRtUIs1VeNRxXr5MUJcgJSPdVlg.crl
rsync://rpki.ripe.net/repository/DEFAULT/23/5811c0-6dae-4dd4-987c-d46ffc501f36/1/mRtUIs1VeNRxXr5MUJcgJSPdVlg.mft
rsync://rpki.ripe.net/repository/DEFAULT/mRtUIs1VeNRxXr5MUJcgJSPdVlg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 02 Jul 2025 08:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:c6:13:69:93:9c:c8:26:7b:03:1a:a1:85:56:00:62:2d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=991b5422cd5578d4715ebe4c5097202523dd5658
Validity
Not Before: Jul 1 13:00:50 2025 GMT
Not After : Jul 2 13:00:50 2025 GMT
Subject: CN=0c2d0d77f8e50e837db41e9482cd0ee4345d06e7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:74:75:ac:56:35:51:ae:bb:57:af:ea:d1:fc:
33:4e:45:20:6e:3b:fa:6d:3e:ef:a8:1d:84:ca:c7:
f7:0b:a3:18:f0:f9:b0:ac:a0:88:20:64:99:c4:b7:
b0:d9:16:64:9d:42:85:23:4a:03:45:04:f9:b0:bf:
34:56:69:58:4e:8e:6d:4c:cf:b3:67:1a:6a:47:3a:
ab:ec:7e:1f:fc:b8:82:2c:07:52:d8:19:75:ee:e4:
b7:44:d6:bf:ee:39:d7:3c:c6:f4:f7:6c:29:0b:56:
af:05:cb:ee:3e:e6:7a:2d:9a:d1:c1:c9:38:6b:71:
b1:e5:af:b5:5c:01:83:9f:a3:46:49:b3:db:ac:c7:
fc:42:c2:bc:a6:7e:ff:8a:6c:dd:2d:1f:56:3a:93:
ba:cf:09:39:88:55:79:be:e8:0e:f4:c9:97:d3:fd:
1c:44:1f:e4:e3:b2:5e:86:49:4c:2a:4d:82:ca:94:
ae:0c:98:14:96:3c:d1:47:c7:73:a3:45:09:19:1d:
02:c2:d1:29:8e:89:a6:ff:19:b9:bf:3a:1d:ba:ad:
59:86:44:dc:22:0c:11:7d:66:cd:6c:88:79:b5:ac:
a9:97:8f:04:e4:b5:3f:7a:07:73:22:5f:3d:ca:14:
af:1e:97:e0:cc:8e:85:32:d4:c8:f0:66:53:44:ea:
0a:6d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0C:2D:0D:77:F8:E5:0E:83:7D:B4:1E:94:82:CD:0E:E4:34:5D:06:E7
X509v3 Authority Key Identifier:
keyid:99:1B:54:22:CD:55:78:D4:71:5E:BE:4C:50:97:20:25:23:DD:56:58
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/mRtUIs1VeNRxXr5MUJcgJSPdVlg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/23/5811c0-6dae-4dd4-987c-d46ffc501f36/1/mRtUIs1VeNRxXr5MUJcgJSPdVlg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/23/5811c0-6dae-4dd4-987c-d46ffc501f36/1/mRtUIs1VeNRxXr5MUJcgJSPdVlg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
31:0a:3a:7f:bb:b7:35:dc:3b:3e:3b:f5:c6:ae:74:50:ea:0e:
72:58:af:19:08:dd:4b:ea:04:aa:77:7d:c7:48:f6:24:55:5a:
88:ec:4d:4c:ec:45:54:68:50:d8:e3:90:20:d3:26:bb:4d:8b:
44:03:37:e2:c6:e1:7e:39:d9:e6:a7:f7:da:5e:15:6a:e7:4b:
35:c4:b8:74:3e:23:f3:94:ef:08:bf:9f:df:7a:86:78:63:87:
c9:25:c3:a2:b7:30:48:13:05:d2:b2:28:29:1c:94:21:06:e0:
49:ed:6d:c5:f1:e0:a8:b3:14:8b:32:d7:90:91:60:fb:e7:a9:
a6:3c:bd:52:9d:66:3a:8c:77:66:7d:e6:bf:ab:f9:d1:d1:14:
e2:05:40:4d:30:cc:7b:5d:9f:cc:b3:92:8d:dc:52:72:f1:63:
8e:3f:8f:81:2c:1e:11:c7:88:6b:9d:78:78:60:c5:88:2d:21:
59:8b:96:db:86:21:5d:ca:9f:b2:a3:93:19:d2:61:0c:c2:fe:
c0:2e:29:58:2a:4d:6c:50:ef:2d:e6:e1:93:58:90:64:fc:33:
a1:41:29:7b:be:0b:a3:d1:ea:b4:38:6d:95:11:e3:f9:7e:1a:
26:84:84:c4:5f:d0:98:a3:60:22:9f:a1:69:00:b1:f9:f2:a9:
c6:72:0f:4e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jul 1 16:13:40 2025 by rpki-client