Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2f/58a4e1-dfc1-4d81-b2c6-216597e03f11/1/MXBn6Bphoh_cFIWY72ull1f6A4A.mft
File: MXBn6Bphoh_cFIWY72ull1f6A4A.mft (raw, json)
Hash identifier: 0L0kMpcU1ezEJR3OCSMCU9DzuDXHT0C3crJod8dvKK8=
Subject key identifier: 28:17:00:20:7E:40:EE:13:ED:6D:2A:3A:1C:D7:E3:AE:3B:89:E7:10
Authority key identifier: 31:70:67:E8:1A:61:A2:1F:DC:14:85:98:EF:6B:A5:97:57:FA:03:80
Certificate issuer: /CN=317067e81a61a21fdc148598ef6ba59757fa0380
Certificate serial: 0197B70E8FFCA18BF18CF4F9D26E514E4A59
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/MXBn6Bphoh_cFIWY72ull1f6A4A.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2f/58a4e1-dfc1-4d81-b2c6-216597e03f11/1/MXBn6Bphoh_cFIWY72ull1f6A4A.mft
Manifest number: 083C
Signing time: Sat 28 Jun 2025 15:01:14 +0000
Manifest this update: Sat 28 Jun 2025 15:01:14 +0000
Manifest next update: Sun 29 Jun 2025 15:01:14 +0000
Files and hashes: 1: 1kHURLGCgDrhi9IHuZm9V5RPr7o.roa (hash: QOJumlfbHeKteqZFgdexa+53Le46L9xrcfm0BrIrj/w=)
2: MXBn6Bphoh_cFIWY72ull1f6A4A.crl (hash: buYbjuXG43CpYgrw0QkNaw965AzPnne6W5V1pgnXLW8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2f/58a4e1-dfc1-4d81-b2c6-216597e03f11/1/MXBn6Bphoh_cFIWY72ull1f6A4A.crl
rsync://rpki.ripe.net/repository/DEFAULT/2f/58a4e1-dfc1-4d81-b2c6-216597e03f11/1/MXBn6Bphoh_cFIWY72ull1f6A4A.mft
rsync://rpki.ripe.net/repository/DEFAULT/MXBn6Bphoh_cFIWY72ull1f6A4A.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 15:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b7:0e:8f:fc:a1:8b:f1:8c:f4:f9:d2:6e:51:4e:4a:59
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=317067e81a61a21fdc148598ef6ba59757fa0380
Validity
Not Before: Jun 28 15:01:14 2025 GMT
Not After : Jun 29 15:01:14 2025 GMT
Subject: CN=281700207e40ee13ed6d2a3a1cd7e3ae3b89e710
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:9a:05:6b:46:cf:0e:b8:cc:18:38:24:81:98:
31:68:75:cd:14:c9:0a:dd:bb:f6:32:32:b4:68:a9:
f6:82:bc:26:e7:da:d7:a6:7e:61:b4:9f:3c:af:be:
0f:82:26:ea:28:e8:3f:fd:e5:8b:5f:eb:65:0c:1e:
6e:f1:a4:62:e9:7a:9a:ab:38:a3:1a:4c:16:54:e8:
94:d5:fd:f8:21:4e:3b:02:d4:a6:a8:48:43:53:6b:
b9:f5:02:73:16:44:5e:d5:54:67:ad:00:77:19:09:
c2:70:bd:f7:17:48:e8:cf:af:5d:4e:72:3e:e7:b8:
dd:a7:9f:de:0e:4a:9a:5a:e4:3a:9f:c5:6e:56:86:
77:be:bc:5c:95:35:e7:a5:07:5c:79:43:54:8c:b2:
3c:18:31:08:bc:f3:10:80:77:7c:a6:64:fc:32:bc:
d3:63:1c:24:af:c7:a1:16:58:d2:81:6d:d6:97:3e:
42:f0:b4:03:ae:d2:34:9e:2e:5a:b1:99:23:11:f5:
ac:d6:d9:11:64:5a:fe:9f:02:7d:d6:a6:62:21:83:
f6:b4:a0:6d:c2:ca:cf:d9:a4:3d:04:3a:6a:e4:48:
a7:3c:b6:30:05:dc:43:93:bd:7d:9f:e5:ed:c2:46:
f7:f7:ac:2a:6a:8e:f5:b2:ca:a5:9b:6b:62:be:81:
f8:29
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
28:17:00:20:7E:40:EE:13:ED:6D:2A:3A:1C:D7:E3:AE:3B:89:E7:10
X509v3 Authority Key Identifier:
keyid:31:70:67:E8:1A:61:A2:1F:DC:14:85:98:EF:6B:A5:97:57:FA:03:80
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MXBn6Bphoh_cFIWY72ull1f6A4A.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2f/58a4e1-dfc1-4d81-b2c6-216597e03f11/1/MXBn6Bphoh_cFIWY72ull1f6A4A.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2f/58a4e1-dfc1-4d81-b2c6-216597e03f11/1/MXBn6Bphoh_cFIWY72ull1f6A4A.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
a9:00:51:1a:4b:ad:84:b4:50:5a:07:50:a6:55:8e:27:e4:24:
e4:8e:67:8c:9f:e5:e0:9e:4b:3d:5d:01:43:99:33:7d:52:64:
c6:8d:ca:b7:05:46:63:dd:ab:73:cc:87:40:b9:17:fb:1e:f1:
fa:d0:e0:c8:eb:2e:93:48:24:2e:ae:e0:aa:10:a5:45:a5:ea:
13:ec:6e:31:0a:4d:3d:4e:64:52:5a:c2:a3:b5:25:34:25:ef:
12:99:f8:6b:0f:5c:99:60:fd:7f:1a:36:a5:7c:02:3e:32:2c:
e7:0e:c6:b4:84:65:14:db:61:e8:9a:1f:8c:41:0b:bb:72:55:
f5:95:12:b4:5a:f7:fd:23:51:9f:c7:e5:02:40:0e:6b:99:ed:
0d:8a:da:ed:6c:a3:3f:84:98:be:7f:5e:10:96:ec:49:d0:18:
dc:72:c9:d5:74:64:72:36:2d:e0:0d:5d:f9:8c:3a:22:3d:30:
1e:40:ac:76:5f:a3:79:fc:2a:f1:09:6e:7b:df:4a:ae:d8:aa:
8d:fe:ba:0a:99:c9:58:a3:d2:ce:1a:43:ef:a1:07:d3:4d:2f:
37:35:d0:25:cb:b3:4f:26:11:6c:26:e4:57:40:08:17:b4:99:
ea:62:4b:b7:bf:f1:80:79:cf:9b:69:12:76:2b:80:82:ec:ed:
3c:9f:77:cc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 28 22:51:23 2025 by rpki-client