Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/95/820f17-37bb-4867-bc80-c7d3e96fd35b/1/MP2VzoDqznNONA3dcjEQ-lJS-jQ.mft
File: MP2VzoDqznNONA3dcjEQ-lJS-jQ.mft (raw, json)
Hash identifier: JLLxY1xkAm+AXkXadPm5GBq8GudmRtM8jm8L7lD5vCk=
Subject key identifier: 23:DE:15:64:12:0F:3E:FB:B1:3F:D9:FA:44:6E:76:EC:0A:1C:91:EA
Authority key identifier: 30:FD:95:CE:80:EA:CE:73:4E:34:0D:DD:72:31:10:FA:52:52:FA:34
Certificate issuer: /CN=30fd95ce80eace734e340ddd723110fa5252fa34
Certificate serial: 0198D6980562DBDD312E4EECB16A8E1FE86A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/MP2VzoDqznNONA3dcjEQ-lJS-jQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/95/820f17-37bb-4867-bc80-c7d3e96fd35b/1/MP2VzoDqznNONA3dcjEQ-lJS-jQ.mft
Manifest number: 1648
Signing time: Sat 23 Aug 2025 11:02:23 +0000
Manifest this update: Sat 23 Aug 2025 11:02:23 +0000
Manifest next update: Sun 24 Aug 2025 11:02:23 +0000
Files and hashes: 1: MP2VzoDqznNONA3dcjEQ-lJS-jQ.crl (hash: y6bgBs1hLcuZqA+SLi0DcVBjHvcWMHyXmCPJ/avxygo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/95/820f17-37bb-4867-bc80-c7d3e96fd35b/1/MP2VzoDqznNONA3dcjEQ-lJS-jQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/95/820f17-37bb-4867-bc80-c7d3e96fd35b/1/MP2VzoDqznNONA3dcjEQ-lJS-jQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/MP2VzoDqznNONA3dcjEQ-lJS-jQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 05:01:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d6:98:05:62:db:dd:31:2e:4e:ec:b1:6a:8e:1f:e8:6a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=30fd95ce80eace734e340ddd723110fa5252fa34
Validity
Not Before: Aug 23 11:02:23 2025 GMT
Not After : Aug 24 11:02:23 2025 GMT
Subject: CN=23de1564120f3efbb13fd9fa446e76ec0a1c91ea
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:18:0b:38:fb:ed:b9:ca:de:29:77:ac:81:62:
a1:b3:bc:a3:42:6f:e6:e1:92:00:1a:e0:43:33:ec:
52:05:c2:6a:38:dd:e1:ac:a9:00:9d:dc:80:73:ad:
ee:d8:80:a3:57:2c:0d:a1:32:08:44:97:70:a9:c5:
1c:fc:b0:ae:e8:00:73:e0:17:fd:1c:48:bd:75:13:
98:e7:6f:25:71:d1:e8:64:a5:87:23:90:60:56:d5:
4f:f3:17:0b:d7:a6:76:ed:46:cc:4e:2b:87:ba:fd:
83:ca:22:bf:88:4f:fb:11:7e:a2:71:35:f4:d3:0f:
38:45:3b:09:81:23:fc:71:11:1f:1b:ad:47:57:cc:
bc:4a:17:a2:11:2d:dc:0d:e5:78:e4:43:74:13:37:
d9:7c:5f:12:f1:41:e5:21:95:5b:8e:74:cc:49:48:
a1:c7:c2:95:fb:1c:6b:6b:1a:e5:b3:0c:7a:79:28:
12:e7:b2:6e:1e:ba:9d:2f:67:01:34:88:6d:1c:9a:
6e:e8:20:70:14:f8:f0:a6:02:9f:3d:6d:0e:79:4c:
07:1a:8e:e2:be:c9:5e:04:e3:f8:1d:2f:3c:99:1a:
50:0f:2b:3e:45:e4:92:2f:2a:d6:57:e9:6f:ed:e0:
12:11:96:c6:b2:3d:b6:df:de:f4:2b:d2:e2:87:02:
5a:c3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
23:DE:15:64:12:0F:3E:FB:B1:3F:D9:FA:44:6E:76:EC:0A:1C:91:EA
X509v3 Authority Key Identifier:
keyid:30:FD:95:CE:80:EA:CE:73:4E:34:0D:DD:72:31:10:FA:52:52:FA:34
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MP2VzoDqznNONA3dcjEQ-lJS-jQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/95/820f17-37bb-4867-bc80-c7d3e96fd35b/1/MP2VzoDqznNONA3dcjEQ-lJS-jQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/95/820f17-37bb-4867-bc80-c7d3e96fd35b/1/MP2VzoDqznNONA3dcjEQ-lJS-jQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
98:5b:4e:85:8d:fd:9f:de:7e:bf:96:eb:4a:1a:aa:9d:e6:c4:
12:7a:09:21:63:c2:ed:24:e1:b6:94:a0:b9:3d:c9:5f:13:bf:
88:65:77:19:46:7b:06:ba:2a:ca:d3:2f:bd:9a:81:fb:ba:dc:
ef:1c:a8:ad:bb:43:89:54:68:23:cf:bb:7d:5d:9f:da:3a:02:
5b:a1:79:71:4e:e4:46:0c:39:90:9a:ca:79:99:e4:36:0f:58:
35:e4:4a:e3:4c:e9:61:85:c2:fa:01:6b:1d:84:b3:fc:52:c7:
43:39:4f:39:53:51:dc:a2:b4:c5:22:5b:88:5b:70:1c:9a:e2:
0f:6d:3c:5c:86:88:a5:0d:2f:90:f1:f0:9b:6d:24:9e:f4:69:
da:44:d6:42:c5:e0:08:05:9b:ca:07:3e:64:63:cc:bc:8b:fe:
3f:13:c8:b7:3e:69:2f:46:51:34:4a:ad:0e:d2:2c:8c:55:0b:
cb:dc:e9:c4:2c:47:c4:81:cb:91:4a:bf:ac:e5:07:c6:d9:78:
9d:6a:c4:c0:d3:a8:92:79:da:ec:62:f5:39:b9:58:54:54:9d:
24:86:01:50:13:f2:ec:1a:cc:7c:fa:4c:53:03:0b:5e:c0:a8:
9e:d4:4f:c0:58:a8:53:61:bc:4d:cb:c2:9a:0c:8c:ba:fb:15:
20:6a:92:0e
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZjWmAVi290xLk7ssWqOH+hqMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDMwZmQ5NWNlODBlYWNlNzM0ZTM0MGRkZDcyMzExMGZhNTI1
MmZhMzQwHhcNMjUwODIzMTEwMjIzWhcNMjUwODI0MTEwMjIzWjAzMTEwLwYDVQQD
EygyM2RlMTU2NDEyMGYzZWZiYjEzZmQ5ZmE0NDZlNzZlYzBhMWM5MWVhMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsBgLOPvtucreKXesgWKhs7yjQm/m
4ZIAGuBDM+xSBcJqON3hrKkAndyAc63u2ICjVywNoTIIRJdwqcUc/LCu6ABz4Bf9
HEi9dROY528lcdHoZKWHI5BgVtVP8xcL16Z27UbMTiuHuv2DyiK/iE/7EX6icTX0
0w84RTsJgSP8cREfG61HV8y8SheiES3cDeV45EN0EzfZfF8S8UHlIZVbjnTMSUih
x8KV+xxraxrlswx6eSgS57JuHrqdL2cBNIhtHJpu6CBwFPjwpgKfPW0OeUwHGo7i
vsleBOP4HS88mRpQDys+ReSSLyrWV+lv7eASEZbGsj223970K9LihwJawwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFCPeFWQSDz77sT/Z+kRuduwKHJHqMB8GA1UdIwQY
MBaAFDD9lc6A6s5zTjQN3XIxEPpSUvo0MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvTVAyVnpvRHF6bk5PTkEzZGNqRVEtbEpTLWpRLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC85NS84MjBmMTctMzdiYi00ODY3LWJjODAt
YzdkM2U5NmZkMzViLzEvTVAyVnpvRHF6bk5PTkEzZGNqRVEtbEpTLWpRLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC85NS84MjBmMTctMzdiYi00ODY3LWJjODAtYzdkM2U5NmZkMzVi
LzEvTVAyVnpvRHF6bk5PTkEzZGNqRVEtbEpTLWpRLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAmFtOhY39
n95+v5brShqqnebEEnoJIWPC7SThtpSguT3JXxO/iGV3GUZ7BroqytMvvZqB+7rc
7xyorbtDiVRoI8+7fV2f2joCW6F5cU7kRgw5kJrKeZnkNg9YNeRK40zpYYXC+gFr
HYSz/FLHQzlPOVNR3KK0xSJbiFtwHJriD208XIaIpQ0vkPHwm20knvRp2kTWQsXg
CAWbygc+ZGPMvIv+PxPItz5pL0ZRNEqtDtIsjFULy9zpxCxHxIHLkUq/rOUHxtl4
nWrEwNOoknna7GL1OblYVFSdJIYBUBPy7BrMfPpMUwMLXsContRPwFioU2G8TcvC
mgyMuvsVIGqSDg==
-----END CERTIFICATE-----
Generated at Sat Aug 23 14:12:13 2025 by rpki-client