Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9c/f171be-9653-41d8-a344-fec15ab84135/1/Mp27RqTrdkXZlKDkuYT82sIEpIQ.mft
File: Mp27RqTrdkXZlKDkuYT82sIEpIQ.mft (raw, json)
Hash identifier: lF26EfW7m3I6VCKmwBYMyUkp7tOAAJzkEBnQbgVRbRw=
Subject key identifier: 66:D4:F6:33:6A:C4:C3:0F:D7:E5:59:7C:A2:FC:42:93:93:1B:F0:25
Authority key identifier: 32:9D:BB:46:A4:EB:76:45:D9:94:A0:E4:B9:84:FC:DA:C2:04:A4:84
Certificate issuer: /CN=329dbb46a4eb7645d994a0e4b984fcdac204a484
Certificate serial: 0197B88FF1CD352D29C3CB91FAAFEAB05A90
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Mp27RqTrdkXZlKDkuYT82sIEpIQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9c/f171be-9653-41d8-a344-fec15ab84135/1/Mp27RqTrdkXZlKDkuYT82sIEpIQ.mft
Manifest number: 0296
Signing time: Sat 28 Jun 2025 22:02:10 +0000
Manifest this update: Sat 28 Jun 2025 22:02:10 +0000
Manifest next update: Sun 29 Jun 2025 22:02:10 +0000
Files and hashes: 1: Mp27RqTrdkXZlKDkuYT82sIEpIQ.crl (hash: Xfgy/41Ja+s8iHxkrbqax5nIjwc6Mi1HYFNciACwzGI=)
2: ZyPIESuaSWPIuQmq_le4sKOKISE.roa (hash: ZskQdIcp36rlr+2ORbgrG1PrwisAu9ueRcvHTkIY4YM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/9c/f171be-9653-41d8-a344-fec15ab84135/1/Mp27RqTrdkXZlKDkuYT82sIEpIQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/9c/f171be-9653-41d8-a344-fec15ab84135/1/Mp27RqTrdkXZlKDkuYT82sIEpIQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/Mp27RqTrdkXZlKDkuYT82sIEpIQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 15:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b8:8f:f1:cd:35:2d:29:c3:cb:91:fa:af:ea:b0:5a:90
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=329dbb46a4eb7645d994a0e4b984fcdac204a484
Validity
Not Before: Jun 28 22:02:10 2025 GMT
Not After : Jun 29 22:02:10 2025 GMT
Subject: CN=66d4f6336ac4c30fd7e5597ca2fc4293931bf025
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:4a:d6:d4:b9:6f:c3:4a:3a:9b:67:ac:f4:36:
59:e5:82:90:d1:dd:44:ed:cf:fe:9a:b5:11:60:6c:
9a:49:ef:9e:a3:c1:0c:59:73:f4:9d:38:a3:4f:4d:
26:b2:59:55:b2:72:3b:5e:e7:e4:ca:03:62:16:84:
67:2b:3d:1e:58:88:3b:2d:6d:af:a2:41:cd:8c:5c:
dc:5b:64:fa:75:bb:7e:b7:f8:c8:52:03:91:a5:87:
37:99:49:f0:c8:a2:57:ae:1f:d8:9d:d4:68:5e:3e:
0e:c4:1e:0d:ad:ac:f5:bd:d8:87:96:c7:b4:50:ef:
9f:29:22:ac:82:4d:7c:a1:fe:b2:b6:59:e2:3c:88:
8f:67:a7:70:0d:53:48:95:2b:da:e5:a2:87:6c:c9:
80:e8:67:70:a8:58:05:92:2a:6b:5c:f5:fa:a4:5f:
13:76:98:0a:61:b0:57:4f:ae:9e:d7:8f:27:b2:d8:
f7:05:b4:eb:be:98:46:82:9f:25:bf:b0:b8:6e:d6:
ff:cb:ba:a2:32:75:26:3e:e0:e3:a7:84:77:ce:99:
92:7f:12:2c:d0:4d:44:df:07:a9:32:92:d4:f1:ee:
5d:33:74:0a:81:4c:99:b4:40:45:6e:97:b0:63:ba:
1e:f6:89:c5:ec:b3:a1:3d:80:37:87:fa:a5:91:f7:
43:7f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
66:D4:F6:33:6A:C4:C3:0F:D7:E5:59:7C:A2:FC:42:93:93:1B:F0:25
X509v3 Authority Key Identifier:
keyid:32:9D:BB:46:A4:EB:76:45:D9:94:A0:E4:B9:84:FC:DA:C2:04:A4:84
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Mp27RqTrdkXZlKDkuYT82sIEpIQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9c/f171be-9653-41d8-a344-fec15ab84135/1/Mp27RqTrdkXZlKDkuYT82sIEpIQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9c/f171be-9653-41d8-a344-fec15ab84135/1/Mp27RqTrdkXZlKDkuYT82sIEpIQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
6a:eb:c9:d1:80:1a:85:25:2e:4a:31:d1:01:b7:58:03:8c:b0:
39:65:03:23:04:e8:a3:12:8c:f4:80:da:71:03:e8:76:65:2f:
4e:d0:6d:2a:20:e6:5b:19:4e:08:14:5f:a1:5f:e2:08:57:65:
10:f2:00:be:91:ff:fe:f6:9b:66:b6:48:9c:ff:8f:d3:29:b3:
56:91:00:77:c5:d0:8d:5b:42:1d:be:63:c4:b3:75:03:73:db:
80:da:9e:b6:27:41:17:10:9c:10:2b:15:4c:18:fe:e0:ab:3b:
11:8d:70:b7:e2:2c:ec:d5:11:28:56:bc:e7:4b:14:17:cf:f2:
67:18:ba:06:a3:f2:03:2a:f6:9e:98:e3:d1:79:bd:ce:34:b1:
d3:d3:e1:35:38:0c:91:cd:27:22:e0:fd:3d:41:5a:57:a8:82:
00:7b:4e:0f:4b:b7:8d:14:8c:28:8b:8f:c2:ca:00:0b:04:6b:
77:3a:72:e7:7b:27:18:92:7d:20:59:a4:29:6b:df:4f:a0:62:
d5:28:be:21:42:e7:c3:97:e3:75:63:7f:f9:0a:9e:3d:69:ce:
cd:25:80:66:ba:95:63:ae:00:0d:83:cf:86:d1:23:d7:dc:f9:
d7:7d:85:50:d9:6d:9b:ce:98:b7:2f:71:92:69:ae:6d:47:9b:
ad:d9:1c:45
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 28 23:16:32 2025 by rpki-client