Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2f/58a4e1-dfc1-4d81-b2c6-216597e03f11/1/MXBn6Bphoh_cFIWY72ull1f6A4A.mft
File: MXBn6Bphoh_cFIWY72ull1f6A4A.mft (raw, json)
Hash identifier: CZhSoV1YeioevZ6g4TEMiIE7vhM5oYVeGM/LJtmX2nU=
Subject key identifier: 4E:52:0E:61:37:28:C6:1F:15:CB:C0:37:90:F2:D2:A1:20:90:2B:8F
Authority key identifier: 31:70:67:E8:1A:61:A2:1F:DC:14:85:98:EF:6B:A5:97:57:FA:03:80
Certificate issuer: /CN=317067e81a61a21fdc148598ef6ba59757fa0380
Certificate serial: 0198D4E02295708EF1202C59C72749EC370B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/MXBn6Bphoh_cFIWY72ull1f6A4A.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2f/58a4e1-dfc1-4d81-b2c6-216597e03f11/1/MXBn6Bphoh_cFIWY72ull1f6A4A.mft
Manifest number: 08D0
Signing time: Sat 23 Aug 2025 03:01:55 +0000
Manifest this update: Sat 23 Aug 2025 03:01:55 +0000
Manifest next update: Sun 24 Aug 2025 03:01:55 +0000
Files and hashes: 1: 1kHURLGCgDrhi9IHuZm9V5RPr7o.roa (hash: QOJumlfbHeKteqZFgdexa+53Le46L9xrcfm0BrIrj/w=)
2: MXBn6Bphoh_cFIWY72ull1f6A4A.crl (hash: rTiFEcNYXY0rsE1sCcuYw397zTpcUQfsPb8L1tILY5Q=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2f/58a4e1-dfc1-4d81-b2c6-216597e03f11/1/MXBn6Bphoh_cFIWY72ull1f6A4A.crl
rsync://rpki.ripe.net/repository/DEFAULT/2f/58a4e1-dfc1-4d81-b2c6-216597e03f11/1/MXBn6Bphoh_cFIWY72ull1f6A4A.mft
rsync://rpki.ripe.net/repository/DEFAULT/MXBn6Bphoh_cFIWY72ull1f6A4A.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 03:01:55 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d4:e0:22:95:70:8e:f1:20:2c:59:c7:27:49:ec:37:0b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=317067e81a61a21fdc148598ef6ba59757fa0380
Validity
Not Before: Aug 23 03:01:55 2025 GMT
Not After : Aug 24 03:01:55 2025 GMT
Subject: CN=4e520e613728c61f15cbc03790f2d2a120902b8f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e0:b4:2a:96:6f:30:1f:03:14:0f:71:aa:bd:5c:
d9:c8:a8:11:a2:ec:83:ee:06:93:a2:85:74:c3:06:
0c:84:10:cf:1e:77:5e:59:d7:eb:71:ea:3e:31:1a:
b4:63:e4:bf:1c:3f:f2:82:e6:5e:94:e1:eb:df:8a:
41:1a:7e:8a:a6:a7:c2:af:10:af:80:b3:08:22:38:
0e:74:75:5c:73:1e:84:8e:39:ac:e7:23:46:3b:bb:
cd:2e:e6:a7:d5:ed:5c:5c:72:b1:63:be:4e:19:76:
da:7a:c7:d2:07:f6:eb:75:19:9a:43:e3:58:57:8c:
c0:0a:1f:c6:de:39:ae:43:2e:b0:63:f8:ba:27:af:
6a:39:74:30:01:23:2f:25:53:22:06:a7:b4:dd:3c:
82:a0:0b:33:cd:36:5d:8c:f7:2e:5d:c3:7f:f0:3f:
36:c6:17:ab:e1:64:f3:af:5a:26:c0:d5:dc:83:b2:
b7:31:7c:c1:52:4e:c6:10:0c:9c:8a:5b:fc:5a:65:
f8:01:ad:2d:ac:61:87:36:1c:23:da:42:36:20:4b:
24:b2:38:4b:a5:85:d1:81:5c:61:b2:8b:fd:c9:57:
77:71:8f:8f:86:44:66:b8:1f:93:b5:81:1f:e2:bf:
2f:90:dd:27:00:41:4d:bf:28:f1:44:d6:d1:68:51:
56:5b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4E:52:0E:61:37:28:C6:1F:15:CB:C0:37:90:F2:D2:A1:20:90:2B:8F
X509v3 Authority Key Identifier:
keyid:31:70:67:E8:1A:61:A2:1F:DC:14:85:98:EF:6B:A5:97:57:FA:03:80
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MXBn6Bphoh_cFIWY72ull1f6A4A.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2f/58a4e1-dfc1-4d81-b2c6-216597e03f11/1/MXBn6Bphoh_cFIWY72ull1f6A4A.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2f/58a4e1-dfc1-4d81-b2c6-216597e03f11/1/MXBn6Bphoh_cFIWY72ull1f6A4A.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
3b:df:7d:be:36:de:43:6e:ff:6a:19:71:2b:7c:53:cc:86:78:
4c:61:c9:c9:57:3c:e7:b0:e1:22:18:af:af:bc:ed:39:82:2b:
33:8b:7c:29:20:e4:6a:1b:0c:b6:95:02:cd:b5:6b:2e:ba:d8:
e6:d5:ba:4f:73:01:d0:69:37:cc:4b:51:28:da:35:c2:33:0c:
b0:92:00:97:8c:47:80:ae:48:e8:94:b3:3c:54:61:a2:80:11:
61:48:9a:6a:9b:75:e7:79:4d:00:d2:3d:b9:aa:81:86:cd:77:
8c:f9:69:d4:4d:38:a3:d9:e8:17:89:f9:ca:79:7e:56:e1:88:
b2:82:2b:37:c2:9b:20:c1:d1:90:ee:c7:ff:d5:a1:bd:fb:02:
28:03:be:81:35:89:43:45:94:83:55:22:8b:3f:47:09:ed:ed:
7c:7f:a8:76:c1:4f:c1:0c:dd:5f:93:d7:fe:03:e2:a7:91:d2:
c7:62:1d:15:b2:b3:47:c3:51:7c:01:ff:05:28:be:85:22:29:
a2:ba:a8:ae:bd:ad:ef:20:0c:f1:16:86:9c:d0:b6:2a:79:fd:
63:6a:87:2c:7c:1e:c8:db:e6:80:c8:88:fb:ce:74:8b:18:42:
79:a9:b1:98:d9:de:36:08:11:95:25:c2:18:94:92:73:c1:4a:
cd:24:b6:a2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 14:04:05 2025 by rpki-client