Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2b/20602c-8de4-4dec-8b24-6614632723b9/1/MbFiHOKMu_7wOKvXVJ_Gy1DnEWs.mft
File: MbFiHOKMu_7wOKvXVJ_Gy1DnEWs.mft (raw, json)
Hash identifier: M95lpjG9RES8fIbXu4ucRVEVJAmh7rKp0gWBn16D7dM=
Subject key identifier: B0:ED:BD:61:4B:53:9B:D2:C4:0C:7F:40:57:41:2A:24:D5:47:14:21
Authority key identifier: 31:B1:62:1C:E2:8C:BB:FE:F0:38:AB:D7:54:9F:C6:CB:50:E7:11:6B
Certificate issuer: /CN=31b1621ce28cbbfef038abd7549fc6cb50e7116b
Certificate serial: 0199FC58EC88FFB703AEA26CA3DD7A969D47
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/MbFiHOKMu_7wOKvXVJ_Gy1DnEWs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2b/20602c-8de4-4dec-8b24-6614632723b9/1/MbFiHOKMu_7wOKvXVJ_Gy1DnEWs.mft
Manifest number: 09D3
Signing time: Sun 19 Oct 2025 12:01:50 +0000
Manifest this update: Sun 19 Oct 2025 12:01:50 +0000
Manifest next update: Mon 20 Oct 2025 12:01:50 +0000
Files and hashes: 1: MbFiHOKMu_7wOKvXVJ_Gy1DnEWs.crl (hash: t2nhMXFmFdpCx8EBdyrqurqjibXg8gJGvdXHW83wGXY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2b/20602c-8de4-4dec-8b24-6614632723b9/1/MbFiHOKMu_7wOKvXVJ_Gy1DnEWs.crl
rsync://rpki.ripe.net/repository/DEFAULT/2b/20602c-8de4-4dec-8b24-6614632723b9/1/MbFiHOKMu_7wOKvXVJ_Gy1DnEWs.mft
rsync://rpki.ripe.net/repository/DEFAULT/MbFiHOKMu_7wOKvXVJ_Gy1DnEWs.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 11:18:59 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fc:58:ec:88:ff:b7:03:ae:a2:6c:a3:dd:7a:96:9d:47
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=31b1621ce28cbbfef038abd7549fc6cb50e7116b
Validity
Not Before: Oct 19 12:01:50 2025 GMT
Not After : Oct 20 12:01:50 2025 GMT
Subject: CN=b0edbd614b539bd2c40c7f4057412a24d5471421
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d1:17:73:70:fb:d9:f7:f0:90:97:5e:2e:c4:a4:
ca:aa:6a:43:9e:18:d2:8d:32:54:0b:79:f5:67:f7:
f2:1d:24:d7:d1:1f:34:9c:96:47:14:f3:2e:3b:e0:
05:f8:2d:07:43:9d:bb:e7:60:11:32:cd:84:e3:40:
b0:ea:b5:e5:cc:97:af:12:1d:61:d5:55:34:22:74:
8d:e7:be:e9:89:97:51:41:11:1f:23:3f:2a:8d:ab:
3e:c5:ad:7f:7c:33:b1:1c:e6:1c:f7:87:bb:fc:48:
8e:da:99:12:e4:bc:a6:ed:64:9f:49:7f:04:a8:8c:
87:ec:f7:0c:ee:2a:16:c9:76:3e:5b:b4:6c:b2:bd:
1a:ce:db:7b:2c:21:c3:17:d5:52:a0:03:72:5b:f2:
8a:b4:49:38:1b:38:9a:bb:82:69:66:fb:82:02:62:
16:0d:32:58:6a:99:2a:78:a8:69:32:96:f5:9d:60:
28:93:66:7b:c8:cc:97:8a:0c:3d:33:50:62:4f:e2:
65:c0:8d:5b:3d:ae:6b:88:70:e9:ab:15:79:51:29:
75:e6:33:8c:7a:c5:0d:86:a5:34:2a:a5:88:2a:86:
8f:89:66:9e:03:28:68:21:a0:fa:48:ea:3d:99:28:
87:5e:cd:15:77:f0:2d:b7:b4:f4:fa:b1:37:64:93:
0b:a1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B0:ED:BD:61:4B:53:9B:D2:C4:0C:7F:40:57:41:2A:24:D5:47:14:21
X509v3 Authority Key Identifier:
keyid:31:B1:62:1C:E2:8C:BB:FE:F0:38:AB:D7:54:9F:C6:CB:50:E7:11:6B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MbFiHOKMu_7wOKvXVJ_Gy1DnEWs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2b/20602c-8de4-4dec-8b24-6614632723b9/1/MbFiHOKMu_7wOKvXVJ_Gy1DnEWs.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2b/20602c-8de4-4dec-8b24-6614632723b9/1/MbFiHOKMu_7wOKvXVJ_Gy1DnEWs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
71:e5:af:1e:d0:e1:d4:67:49:71:a1:a7:08:2d:e7:63:49:81:
78:57:07:b6:08:f8:79:56:7a:54:5f:fb:88:de:be:64:60:20:
24:69:bc:1a:c8:d2:f8:dd:16:d1:46:f3:29:0d:57:67:2e:dd:
c3:4e:04:e0:35:d2:72:4a:50:8b:4a:91:ec:35:bb:80:90:ca:
52:e3:cb:7b:c8:6b:01:90:c6:98:08:bf:2a:4f:31:c5:3c:da:
1f:93:ac:cd:07:2a:82:1a:e4:7a:ff:2d:9e:a8:b6:9c:78:a2:
e1:8b:6f:9e:9f:e2:b1:c5:f6:c5:fe:de:f9:c7:a8:58:8c:52:
a6:bb:3f:13:be:da:83:9a:63:e2:86:91:3f:bc:bf:a7:0b:27:
11:76:3c:8d:80:da:9c:71:1b:36:81:93:4a:b0:9b:82:fc:e0:
d1:3d:6e:7c:42:1e:50:e0:cc:09:a5:8f:36:22:e8:2f:94:5e:
32:15:14:0f:84:fd:d7:85:b7:5b:b5:a4:ea:55:ed:2a:d5:7a:
b5:c6:d7:66:2b:db:4e:49:08:3d:5e:6a:90:e4:a5:7a:16:85:
ae:f5:fe:02:b1:18:84:fa:e2:87:bd:13:5e:36:46:b9:97:d9:
c2:8f:cc:42:3f:04:cd:59:65:28:86:45:e9:2e:c2:01:8d:cf:
cc:5a:02:7b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 19 20:30:59 2025 by rpki-client