Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/65/b792cc-ab96-456e-9d3e-a1ee440ffe3e/1/MCbiQi-nIkVOYIMX0hhitmqjfTM.mft
File: MCbiQi-nIkVOYIMX0hhitmqjfTM.mft (raw, json)
Hash identifier: dQUfBMAyRvhHTxS3haznBZBp+cDv7R88Qj1hlwlj90s=
Subject key identifier: 7E:C0:E8:27:F4:56:5E:29:F1:44:DE:B8:BB:2F:89:03:43:1B:85:BC
Authority key identifier: 30:26:E2:42:2F:A7:22:45:4E:60:83:17:D2:18:62:B6:6A:A3:7D:33
Certificate issuer: /CN=3026e2422fa722454e608317d21862b66aa37d33
Certificate serial: 0198D4746867274840CA2B75676A3AA9BBD5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/MCbiQi-nIkVOYIMX0hhitmqjfTM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/65/b792cc-ab96-456e-9d3e-a1ee440ffe3e/1/MCbiQi-nIkVOYIMX0hhitmqjfTM.mft
Manifest number: 1599
Signing time: Sat 23 Aug 2025 01:04:15 +0000
Manifest this update: Sat 23 Aug 2025 01:04:15 +0000
Manifest next update: Sun 24 Aug 2025 01:04:15 +0000
Files and hashes: 1: MCbiQi-nIkVOYIMX0hhitmqjfTM.crl (hash: JlH9gekfFEAHEedNiiShcInfCWGXMR44KNhFgylYTP0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/65/b792cc-ab96-456e-9d3e-a1ee440ffe3e/1/MCbiQi-nIkVOYIMX0hhitmqjfTM.crl
rsync://rpki.ripe.net/repository/DEFAULT/65/b792cc-ab96-456e-9d3e-a1ee440ffe3e/1/MCbiQi-nIkVOYIMX0hhitmqjfTM.mft
rsync://rpki.ripe.net/repository/DEFAULT/MCbiQi-nIkVOYIMX0hhitmqjfTM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 01:04:15 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d4:74:68:67:27:48:40:ca:2b:75:67:6a:3a:a9:bb:d5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3026e2422fa722454e608317d21862b66aa37d33
Validity
Not Before: Aug 23 01:04:15 2025 GMT
Not After : Aug 24 01:04:15 2025 GMT
Subject: CN=7ec0e827f4565e29f144deb8bb2f8903431b85bc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:4d:7a:69:bf:ef:ad:09:ac:1e:06:87:ce:17:
77:85:bb:64:9d:d3:35:4b:37:23:56:2d:ac:3f:f3:
ef:cc:7a:d3:1b:48:c6:a5:4f:0d:5d:2c:e0:cd:86:
99:7f:69:49:7f:f4:28:19:c8:5d:ae:7b:25:ef:60:
e0:45:cd:89:0a:cf:d1:bd:d0:00:c4:d3:fd:ef:22:
4a:ff:a4:06:e8:7f:13:46:b8:5a:f1:e3:b5:cf:11:
56:47:2e:7c:b8:2d:c5:c6:1a:0e:1d:10:02:24:39:
0f:1a:fe:1f:11:38:ec:45:0b:27:4f:ed:5d:17:64:
b0:d5:6a:db:dc:e4:7e:5d:cd:d5:2b:54:00:81:3d:
f4:19:36:10:b8:15:14:ea:be:f9:70:a5:00:db:9e:
32:0b:2e:04:ad:87:f6:8f:67:56:c0:41:17:f1:5a:
54:1b:56:05:d2:94:fa:8f:bd:6b:d4:1e:21:77:0e:
4d:bc:a2:cf:c5:a0:7f:7a:eb:ef:40:a1:45:bf:cb:
df:c6:07:76:da:61:eb:18:e6:97:d2:ea:e4:6c:4d:
9e:77:a9:3d:90:18:14:8a:bc:4e:88:1b:23:85:5e:
85:2e:0f:33:3b:a9:68:8e:e3:c7:92:11:12:82:2a:
79:b3:85:0c:f7:f7:f5:91:23:12:09:a9:e7:40:32:
af:db
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7E:C0:E8:27:F4:56:5E:29:F1:44:DE:B8:BB:2F:89:03:43:1B:85:BC
X509v3 Authority Key Identifier:
keyid:30:26:E2:42:2F:A7:22:45:4E:60:83:17:D2:18:62:B6:6A:A3:7D:33
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MCbiQi-nIkVOYIMX0hhitmqjfTM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/65/b792cc-ab96-456e-9d3e-a1ee440ffe3e/1/MCbiQi-nIkVOYIMX0hhitmqjfTM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/65/b792cc-ab96-456e-9d3e-a1ee440ffe3e/1/MCbiQi-nIkVOYIMX0hhitmqjfTM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
44:87:eb:1d:d2:86:c7:3d:1e:bb:03:b7:9d:10:25:19:ae:01:
39:f6:0e:54:14:9c:37:94:28:62:17:c5:2c:75:f4:93:46:d7:
f0:b9:bf:fe:35:f9:52:83:82:e3:f1:d3:92:84:a4:58:e1:ee:
39:3f:d1:1b:64:62:63:96:d9:91:47:a4:03:50:02:fb:ab:df:
e1:09:0f:d5:7c:d5:da:36:63:ed:bb:6d:c4:72:f4:48:cc:3c:
e8:a5:56:02:97:5d:c2:f5:33:8b:99:77:cf:ca:a3:1c:a0:31:
5b:b2:81:02:1d:e6:d8:96:ac:63:85:d5:74:e8:97:aa:e8:85:
d7:f1:01:79:cd:6c:a1:a2:95:48:8a:d2:c9:18:a2:7e:af:22:
73:38:3a:b9:f3:e7:1f:4f:d7:d5:60:2c:7e:c8:ed:66:05:0a:
f0:4a:9c:71:96:95:a8:5e:20:bc:ad:8b:d5:bc:09:86:cd:3b:
b6:75:c5:fb:d8:18:4c:16:48:7f:bc:fd:96:dd:4f:78:8f:b5:
10:7f:97:37:a1:ae:5a:44:bf:2e:bc:4c:9b:b6:d4:b4:5d:8c:
a8:07:42:59:0f:bf:2b:0f:cd:77:d6:7c:69:2a:84:82:18:05:
40:76:a4:86:69:40:22:96:dd:2e:7f:90:c8:ba:5d:b5:64:6b:
52:fd:11:03
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 11:35:20 2025 by rpki-client