Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/77/a96094-db94-4546-a424-8908f0ab185b/1/MfxYQJK_niCslRtZUN1PpxMgPMM.mft
File: MfxYQJK_niCslRtZUN1PpxMgPMM.mft (raw, json)
Hash identifier: ySeYLw31YwJH0nLVeVBwGYfUvxZDg2qRE5WlplktuVo=
Subject key identifier: 59:40:8F:11:EA:D3:5E:2C:BF:8D:6E:03:45:14:86:86:B8:AA:FE:AF
Authority key identifier: 31:FC:58:40:92:BF:9E:20:AC:95:1B:59:50:DD:4F:A7:13:20:3C:C3
Certificate issuer: /CN=31fc584092bf9e20ac951b5950dd4fa713203cc3
Certificate serial: 0197B88F00DC05CA3D0ED3731C614C8B4085
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/MfxYQJK_niCslRtZUN1PpxMgPMM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/77/a96094-db94-4546-a424-8908f0ab185b/1/MfxYQJK_niCslRtZUN1PpxMgPMM.mft
Manifest number: 0FD4
Signing time: Sat 28 Jun 2025 22:01:09 +0000
Manifest this update: Sat 28 Jun 2025 22:01:09 +0000
Manifest next update: Sun 29 Jun 2025 22:01:09 +0000
Files and hashes: 1: MfxYQJK_niCslRtZUN1PpxMgPMM.crl (hash: aITkXx9rG6UmLti/d+CXHkMp8zGkK6P/EUvXbmJNMZc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/77/a96094-db94-4546-a424-8908f0ab185b/1/MfxYQJK_niCslRtZUN1PpxMgPMM.crl
rsync://rpki.ripe.net/repository/DEFAULT/77/a96094-db94-4546-a424-8908f0ab185b/1/MfxYQJK_niCslRtZUN1PpxMgPMM.mft
rsync://rpki.ripe.net/repository/DEFAULT/MfxYQJK_niCslRtZUN1PpxMgPMM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 15:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b8:8f:00:dc:05:ca:3d:0e:d3:73:1c:61:4c:8b:40:85
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=31fc584092bf9e20ac951b5950dd4fa713203cc3
Validity
Not Before: Jun 28 22:01:09 2025 GMT
Not After : Jun 29 22:01:09 2025 GMT
Subject: CN=59408f11ead35e2cbf8d6e0345148686b8aafeaf
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:80:c9:94:12:d5:56:5d:22:00:c7:63:3e:b8:
b0:15:94:34:53:4e:dc:77:4c:3d:25:aa:1f:08:7e:
ed:c3:6e:6b:7c:2f:ac:30:b1:f0:fd:80:2b:f7:62:
0a:99:bb:ad:2d:69:ef:03:1e:f7:c5:1d:54:57:43:
33:61:10:d7:47:6a:4a:b8:63:59:89:c1:e5:9c:f8:
45:57:7f:b2:d2:41:f7:1d:b7:69:98:1c:88:23:4c:
5d:c1:a3:c5:2d:95:75:7c:98:ce:ab:c3:a3:42:25:
de:aa:29:eb:d2:fb:e2:22:2c:01:61:fa:92:41:50:
b7:d1:2a:66:d0:b6:66:67:d5:df:3d:d0:81:13:80:
69:a7:8c:14:b0:58:e7:94:57:83:f8:56:31:7e:44:
3d:2c:98:a9:c1:bf:98:59:d3:da:44:5e:b2:3e:53:
98:b5:1d:84:f3:f7:2f:d7:f3:6f:5c:07:82:33:86:
96:13:01:c9:b5:f9:7c:d5:1e:bb:ef:1c:d9:c9:cf:
6b:55:3e:83:67:fb:b4:07:88:75:8b:93:91:e4:ce:
bc:0f:e2:6a:79:6f:df:e5:7c:e8:a1:3f:5d:82:f2:
f1:cc:3f:70:89:5f:3a:eb:01:84:62:e8:83:9c:80:
35:a4:b7:9a:c2:fb:ba:9a:e7:65:3d:80:8d:57:5e:
47:bd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
59:40:8F:11:EA:D3:5E:2C:BF:8D:6E:03:45:14:86:86:B8:AA:FE:AF
X509v3 Authority Key Identifier:
keyid:31:FC:58:40:92:BF:9E:20:AC:95:1B:59:50:DD:4F:A7:13:20:3C:C3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MfxYQJK_niCslRtZUN1PpxMgPMM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/77/a96094-db94-4546-a424-8908f0ab185b/1/MfxYQJK_niCslRtZUN1PpxMgPMM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/77/a96094-db94-4546-a424-8908f0ab185b/1/MfxYQJK_niCslRtZUN1PpxMgPMM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
32:ac:cf:2b:6c:8a:02:ba:a2:b5:40:40:31:87:17:d4:e8:b0:
b5:f7:4f:98:6a:32:4d:b6:04:c4:6c:80:c8:d9:79:49:67:9c:
d1:07:4c:90:7d:52:e3:ce:6b:6c:05:16:1b:23:95:82:de:18:
02:c2:d7:a3:69:e2:d8:d0:fd:bf:39:f9:f1:a5:12:e9:bc:01:
ee:68:fb:19:89:73:66:ce:ce:e7:9a:a1:00:fd:6d:26:f2:ef:
48:6c:fb:53:8c:a3:da:d7:93:ae:ae:dc:8d:fe:64:2a:06:f6:
47:65:eb:0c:e4:47:0e:33:e8:5c:eb:b2:dd:16:01:ea:6d:92:
29:38:4a:cf:f4:b0:5f:d6:32:f5:40:bc:61:b7:ba:93:a6:b2:
dc:a6:cf:f9:ae:f9:51:a7:48:92:9b:66:88:e9:86:ed:7d:f1:
27:cf:7f:f7:8d:8c:33:47:5e:94:1f:33:b2:c2:b5:8d:9f:16:
88:30:f7:96:04:0f:f0:31:41:4e:4b:88:00:a7:aa:ed:da:56:
6f:37:f4:1b:9a:46:4f:f2:7a:40:42:dc:f3:08:01:21:fb:de:
25:4c:64:30:12:1c:ce:fb:46:49:df:5b:3c:db:95:cc:b2:c8:
cc:2c:c4:7a:11:76:ea:f9:71:48:d4:e9:91:57:e7:1b:b1:5f:
7c:4a:83:69
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 28 23:33:50 2025 by rpki-client