Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/51/8d64d1-4940-40e7-895c-5312a133b94e/1/MAhC2wg32vMRozS3IjGOcLWIsAk.mft
File: MAhC2wg32vMRozS3IjGOcLWIsAk.mft (raw, json)
Hash identifier: 7NWvi91DIoBQyWYnqpv1lhe6i0seUhNvDb5mP1uEXiA=
Subject key identifier: 63:F1:F9:9E:89:F2:B1:50:3C:7C:5C:43:8C:18:12:58:B8:00:BF:45
Authority key identifier: 30:08:42:DB:08:37:DA:F3:11:A3:34:B7:22:31:8E:70:B5:88:B0:09
Certificate issuer: /CN=300842db0837daf311a334b722318e70b588b009
Certificate serial: 0197B6A08B12FD86A05092A8CBA27AAFAE9E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/MAhC2wg32vMRozS3IjGOcLWIsAk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/51/8d64d1-4940-40e7-895c-5312a133b94e/1/MAhC2wg32vMRozS3IjGOcLWIsAk.mft
Manifest number: 15B2
Signing time: Sat 28 Jun 2025 13:01:04 +0000
Manifest this update: Sat 28 Jun 2025 13:01:04 +0000
Manifest next update: Sun 29 Jun 2025 13:01:04 +0000
Files and hashes: 1: MAhC2wg32vMRozS3IjGOcLWIsAk.crl (hash: bDaRKKOpubb37fA1BoDIPXEmv90dhKesPuLwTEJKEuE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/51/8d64d1-4940-40e7-895c-5312a133b94e/1/MAhC2wg32vMRozS3IjGOcLWIsAk.crl
rsync://rpki.ripe.net/repository/DEFAULT/51/8d64d1-4940-40e7-895c-5312a133b94e/1/MAhC2wg32vMRozS3IjGOcLWIsAk.mft
rsync://rpki.ripe.net/repository/DEFAULT/MAhC2wg32vMRozS3IjGOcLWIsAk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 10:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b6:a0:8b:12:fd:86:a0:50:92:a8:cb:a2:7a:af:ae:9e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=300842db0837daf311a334b722318e70b588b009
Validity
Not Before: Jun 28 13:01:04 2025 GMT
Not After : Jun 29 13:01:04 2025 GMT
Subject: CN=63f1f99e89f2b1503c7c5c438c181258b800bf45
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:9a:df:69:2f:99:2d:b3:58:c0:0d:db:f2:cc:
7f:70:35:53:87:32:45:c9:6b:9d:69:1d:47:5d:54:
4f:65:b0:15:1e:fb:0c:3c:3f:c0:73:7f:26:6a:43:
86:22:ee:75:09:07:f8:e4:0b:01:b1:74:9c:c3:52:
20:41:82:6a:6d:69:35:e6:b7:35:f0:42:fc:75:bb:
ec:46:34:b0:6c:7f:fd:95:e2:e9:6f:0f:86:e9:d6:
f0:7f:77:ae:14:06:ef:37:9f:60:d6:ad:23:3e:b1:
a3:87:48:3a:a4:c5:d0:31:bb:b6:09:a6:02:d0:18:
0a:ec:ad:64:1c:4c:5f:33:3d:93:b2:18:94:26:8b:
5b:fd:a9:82:49:26:d7:20:21:f1:58:e7:3c:b7:5b:
8d:8c:a4:1b:7b:8e:cc:c9:2f:2f:43:68:f8:1e:b7:
aa:d0:49:c2:c5:4a:3c:9a:a0:88:c5:15:1b:79:43:
fd:57:59:47:a3:eb:48:78:fe:23:93:d0:19:52:63:
09:4e:59:08:1b:a2:41:fa:7f:3a:d6:9f:bb:eb:bf:
54:de:8d:52:4e:4a:67:d6:0a:c1:f1:f2:0c:7d:bf:
aa:86:eb:08:43:c2:3e:6c:7e:f6:a2:5f:75:5e:df:
de:0a:f4:02:62:6a:37:12:06:e2:a5:0c:d8:fa:da:
f9:99
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
63:F1:F9:9E:89:F2:B1:50:3C:7C:5C:43:8C:18:12:58:B8:00:BF:45
X509v3 Authority Key Identifier:
keyid:30:08:42:DB:08:37:DA:F3:11:A3:34:B7:22:31:8E:70:B5:88:B0:09
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MAhC2wg32vMRozS3IjGOcLWIsAk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/51/8d64d1-4940-40e7-895c-5312a133b94e/1/MAhC2wg32vMRozS3IjGOcLWIsAk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/51/8d64d1-4940-40e7-895c-5312a133b94e/1/MAhC2wg32vMRozS3IjGOcLWIsAk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
33:19:c1:1f:c7:88:a1:96:df:07:5c:c2:a3:9b:b2:58:c8:f4:
65:bf:61:7f:7d:30:d6:2a:2d:9a:cb:1e:0a:c4:bc:bf:26:8c:
6f:51:39:b6:5e:ec:49:e2:18:9c:1c:81:2f:ee:1d:bd:68:9d:
e4:46:aa:7d:9f:4b:24:6c:6c:e9:89:d2:60:d1:5d:ab:0d:1c:
46:7d:ba:92:27:a8:b4:39:3b:75:f1:7f:d5:b1:44:34:4b:b8:
81:82:c2:65:4c:7c:eb:3b:d3:ff:01:cd:f6:51:17:24:31:dc:
f8:5b:9d:8b:f2:8c:3d:47:96:98:e2:d2:e0:ab:d2:8c:11:96:
10:27:ca:7d:ac:03:d7:fd:00:ea:e6:55:16:79:1a:00:05:27:
a1:a4:17:8d:05:9c:14:a7:86:29:26:57:9c:0e:77:38:c0:55:
87:8c:64:87:ad:d7:64:8f:0f:5d:85:4f:44:f4:4f:6c:52:7d:
1b:df:e8:98:d0:d6:ea:7e:a6:99:ce:58:19:37:5a:5f:0e:c9:
c3:0b:b8:f0:d9:51:6e:8b:f1:53:3d:fe:df:50:96:09:fe:ad:
fe:03:5a:e7:da:b2:ad:fb:21:e9:1f:0a:3f:5f:90:f5:4b:67:
6c:cd:b5:ed:78:22:cf:ec:e4:28:12:da:e9:38:0b:4f:36:e8:
a1:04:95:3a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 28 19:35:41 2025 by rpki-client