Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/77/a96094-db94-4546-a424-8908f0ab185b/1/MfxYQJK_niCslRtZUN1PpxMgPMM.mft
File: MfxYQJK_niCslRtZUN1PpxMgPMM.mft (raw, json)
Hash identifier: Ho66pvumjl0bqh5yXbFtkFPbb/u+kwf+7HoPLxeBvas=
Subject key identifier: A2:C4:A3:EB:9A:04:B5:AB:ED:78:E3:0C:BA:74:CA:84:DE:B2:71:6B
Authority key identifier: 31:FC:58:40:92:BF:9E:20:AC:95:1B:59:50:DD:4F:A7:13:20:3C:C3
Certificate issuer: /CN=31fc584092bf9e20ac951b5950dd4fa713203cc3
Certificate serial: 0198D660AFC8C5E06E5129906C6CF5D6B52C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/MfxYQJK_niCslRtZUN1PpxMgPMM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/77/a96094-db94-4546-a424-8908f0ab185b/1/MfxYQJK_niCslRtZUN1PpxMgPMM.mft
Manifest number: 1068
Signing time: Sat 23 Aug 2025 10:01:57 +0000
Manifest this update: Sat 23 Aug 2025 10:01:57 +0000
Manifest next update: Sun 24 Aug 2025 10:01:57 +0000
Files and hashes: 1: MfxYQJK_niCslRtZUN1PpxMgPMM.crl (hash: iO61bcb3xxpKOQHcIy0QSWfYkXCrnX53dCZ2mf76FQc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/77/a96094-db94-4546-a424-8908f0ab185b/1/MfxYQJK_niCslRtZUN1PpxMgPMM.crl
rsync://rpki.ripe.net/repository/DEFAULT/77/a96094-db94-4546-a424-8908f0ab185b/1/MfxYQJK_niCslRtZUN1PpxMgPMM.mft
rsync://rpki.ripe.net/repository/DEFAULT/MfxYQJK_niCslRtZUN1PpxMgPMM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 10:01:57 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d6:60:af:c8:c5:e0:6e:51:29:90:6c:6c:f5:d6:b5:2c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=31fc584092bf9e20ac951b5950dd4fa713203cc3
Validity
Not Before: Aug 23 10:01:57 2025 GMT
Not After : Aug 24 10:01:57 2025 GMT
Subject: CN=a2c4a3eb9a04b5abed78e30cba74ca84deb2716b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:05:12:e5:ce:e3:89:28:2b:b1:99:e8:4a:ef:
20:33:b7:77:94:06:8b:88:c9:46:7c:b0:c6:74:74:
7c:f0:0d:51:5a:bb:f3:10:ec:f2:45:17:a0:26:88:
c2:fd:68:18:a7:ae:fa:e1:bd:6f:a7:08:3f:98:d4:
9c:d3:e4:a4:42:8e:4d:4f:0e:ca:d6:c0:70:5b:45:
57:d7:52:37:fd:1b:ae:84:a3:60:43:d4:0d:bd:19:
67:27:9a:94:4c:7b:07:c0:70:f8:93:76:81:61:c0:
3b:bb:ab:16:97:ae:8a:31:7a:e7:5c:d7:bf:39:5e:
46:5a:d3:a5:20:81:4e:61:af:37:23:51:97:fe:39:
5e:40:b0:de:91:a4:ef:43:3a:22:c2:4d:17:44:6c:
e4:76:43:50:69:84:dd:89:c0:94:f9:80:41:fa:7a:
54:24:82:84:52:a5:c7:67:34:b1:25:97:78:6f:2f:
80:a3:fc:1a:14:98:e5:2d:51:d6:31:a7:f4:4d:59:
29:43:97:bc:fc:a0:ce:c8:dc:37:b0:db:ea:e3:68:
b8:ef:5d:54:68:2e:19:0d:53:07:62:24:b4:25:bd:
3d:e4:58:7b:ed:59:e6:5c:1b:2a:0c:0c:7c:ec:2a:
1b:5c:95:14:b6:07:b9:40:85:fa:f4:89:8e:0c:60:
fc:fd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A2:C4:A3:EB:9A:04:B5:AB:ED:78:E3:0C:BA:74:CA:84:DE:B2:71:6B
X509v3 Authority Key Identifier:
keyid:31:FC:58:40:92:BF:9E:20:AC:95:1B:59:50:DD:4F:A7:13:20:3C:C3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MfxYQJK_niCslRtZUN1PpxMgPMM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/77/a96094-db94-4546-a424-8908f0ab185b/1/MfxYQJK_niCslRtZUN1PpxMgPMM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/77/a96094-db94-4546-a424-8908f0ab185b/1/MfxYQJK_niCslRtZUN1PpxMgPMM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
a8:7a:e2:1d:36:4d:f1:2e:e4:57:56:15:a1:e1:b9:9a:ff:0e:
0c:6b:cb:ac:3d:ed:a4:1c:21:04:64:dd:4b:9e:45:fa:be:f4:
30:15:08:35:9b:c1:7e:a0:0a:0e:cb:c2:c6:ca:ba:cb:4c:51:
e4:1b:d0:4c:bc:ac:93:cd:cc:eb:ff:02:38:ce:fd:87:7f:8a:
22:9e:76:e4:b7:dc:3e:b7:6b:fe:a7:19:06:dd:ae:f6:15:c1:
28:d0:f4:40:c8:34:57:f0:18:97:d6:a4:4b:02:3f:85:45:49:
7f:80:4b:ad:8f:96:37:84:ed:03:e8:3f:74:b6:29:73:12:06:
80:bc:2e:d2:4c:a5:e9:3f:03:05:ac:dc:0e:d4:26:66:e3:4b:
ec:0a:41:6f:e4:ab:45:f8:16:23:da:7e:ac:20:2f:d6:90:9e:
73:92:9f:e5:ea:e9:a7:16:27:cb:42:c7:c0:da:3d:c6:99:e4:
79:2b:5d:b5:4f:e3:d5:52:b4:04:96:cf:7d:3b:05:bd:cc:96:
d0:5a:26:a9:cc:1c:76:51:d1:37:42:66:50:d2:5d:1f:04:e1:
68:e4:ff:04:d4:5f:94:0e:0e:bd:32:9a:86:20:1a:e4:39:27:
70:9f:08:ed:0a:26:3b:61:ef:56:27:31:4a:83:0c:5b:50:ad:
71:90:cb:06
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 19:03:41 2025 by rpki-client