Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2b/20602c-8de4-4dec-8b24-6614632723b9/1/MbFiHOKMu_7wOKvXVJ_Gy1DnEWs.mft
File: MbFiHOKMu_7wOKvXVJ_Gy1DnEWs.mft (raw, json)
Hash identifier: aEq0Vt9huB1fdQ+o3degh/OPxqATfg/Ed7TAZkahcY8=
Subject key identifier: F4:F4:8D:A8:5C:6D:95:D5:96:A6:5D:D9:24:3E:FF:88:76:77:2B:76
Authority key identifier: 31:B1:62:1C:E2:8C:BB:FE:F0:38:AB:D7:54:9F:C6:CB:50:E7:11:6B
Certificate issuer: /CN=31b1621ce28cbbfef038abd7549fc6cb50e7116b
Certificate serial: 0197B70E8BC5D0CE93D7DC7EF0E1CC00985B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/MbFiHOKMu_7wOKvXVJ_Gy1DnEWs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2b/20602c-8de4-4dec-8b24-6614632723b9/1/MbFiHOKMu_7wOKvXVJ_Gy1DnEWs.mft
Manifest number: 08A6
Signing time: Sat 28 Jun 2025 15:01:13 +0000
Manifest this update: Sat 28 Jun 2025 15:01:13 +0000
Manifest next update: Sun 29 Jun 2025 15:01:13 +0000
Files and hashes: 1: MbFiHOKMu_7wOKvXVJ_Gy1DnEWs.crl (hash: KeBMal4dSuwsamOBDIUQqx/hs7P4W3NJ7P0hoKqhwnU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2b/20602c-8de4-4dec-8b24-6614632723b9/1/MbFiHOKMu_7wOKvXVJ_Gy1DnEWs.crl
rsync://rpki.ripe.net/repository/DEFAULT/2b/20602c-8de4-4dec-8b24-6614632723b9/1/MbFiHOKMu_7wOKvXVJ_Gy1DnEWs.mft
rsync://rpki.ripe.net/repository/DEFAULT/MbFiHOKMu_7wOKvXVJ_Gy1DnEWs.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 15:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b7:0e:8b:c5:d0:ce:93:d7:dc:7e:f0:e1:cc:00:98:5b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=31b1621ce28cbbfef038abd7549fc6cb50e7116b
Validity
Not Before: Jun 28 15:01:13 2025 GMT
Not After : Jun 29 15:01:13 2025 GMT
Subject: CN=f4f48da85c6d95d596a65dd9243eff8876772b76
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:db:67:6b:44:91:2b:11:21:fe:f9:3c:cb:ae:62:
a3:65:2a:07:b3:ec:2c:96:bb:5e:6e:d2:ea:76:40:
b4:09:f1:9e:33:c6:bf:e9:c4:9c:7c:a0:25:9a:44:
07:4a:5e:c5:d4:12:fc:1f:ed:22:be:cc:a4:8e:fd:
61:ab:2a:42:08:4c:66:aa:2e:3e:a1:52:a8:dd:91:
8a:96:18:77:6e:5c:6c:cd:e5:76:6a:d3:1e:28:4a:
be:0b:6b:d9:c4:18:e6:be:e5:4a:af:4b:e6:6b:b2:
88:7a:fd:75:3d:61:10:43:8f:97:ad:c5:1e:28:e5:
0c:e2:43:8a:39:81:e1:73:4f:25:fd:a9:34:ad:d4:
a0:5e:48:60:f7:4f:42:4b:73:69:ad:08:4a:74:24:
55:4e:d8:3c:ab:62:38:f2:d3:67:2e:c0:d0:ab:9a:
03:74:e9:83:c3:ec:4e:b6:a4:03:2a:a1:fa:b1:14:
d1:27:d2:93:87:3c:0e:43:be:0f:a5:19:06:99:f8:
21:cb:95:84:92:73:38:ec:d9:75:08:ef:b2:95:00:
2d:22:88:4a:88:06:7c:ff:a8:d1:0f:2a:b5:57:44:
a4:8c:15:33:12:b0:c7:a9:12:af:b4:7e:a6:52:08:
84:98:1d:2c:26:82:ac:21:8c:7d:50:60:dd:83:dc:
ac:fd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F4:F4:8D:A8:5C:6D:95:D5:96:A6:5D:D9:24:3E:FF:88:76:77:2B:76
X509v3 Authority Key Identifier:
keyid:31:B1:62:1C:E2:8C:BB:FE:F0:38:AB:D7:54:9F:C6:CB:50:E7:11:6B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MbFiHOKMu_7wOKvXVJ_Gy1DnEWs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2b/20602c-8de4-4dec-8b24-6614632723b9/1/MbFiHOKMu_7wOKvXVJ_Gy1DnEWs.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2b/20602c-8de4-4dec-8b24-6614632723b9/1/MbFiHOKMu_7wOKvXVJ_Gy1DnEWs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
50:2f:fd:38:82:31:16:e6:9e:33:84:50:f3:62:f3:54:53:cb:
94:c8:75:5f:d7:d2:cb:95:31:64:0d:3a:af:5c:11:ee:e5:3a:
7f:fd:85:5c:ac:24:c3:01:6e:2a:d5:24:0a:df:79:13:4e:d3:
2d:5f:b6:dd:aa:04:b5:c1:65:2c:7a:e4:4b:46:ca:ec:92:a3:
db:15:c2:d1:7b:22:38:b5:42:a6:57:d3:51:e1:81:65:33:9a:
a4:2c:c7:01:36:76:3f:63:55:c2:33:f9:69:71:f1:0c:e4:46:
62:57:74:1f:40:8d:7c:6e:a0:d3:a9:43:c8:5c:e9:9d:d0:f0:
4d:d3:5f:ab:f9:cd:ed:ee:94:ac:28:b0:7c:47:4d:71:ce:6e:
91:10:ba:5c:02:80:83:3a:9a:a1:34:55:2c:64:6e:b6:96:26:
89:33:ce:02:c9:73:24:c3:8d:5f:f1:60:9c:87:af:62:0e:0b:
a2:07:c5:ca:d2:b4:b1:43:85:5b:5f:0c:ec:3b:38:12:b0:73:
a5:97:69:1e:ff:da:e6:b8:bc:ea:29:37:90:ca:61:c3:47:c9:
9b:8a:2a:be:c7:ec:55:bb:af:a1:b4:84:57:0b:f5:ea:cb:eb:
44:f9:f4:2c:b8:13:5e:01:1f:44:f5:e8:41:b1:0b:4d:ba:e5:
a0:32:1d:25
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 28 20:37:30 2025 by rpki-client