Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bd/f0358f-0d50-4704-85cf-262da883c8e2/1/MjFs1IgVYto785JbSRi24R12UUw.mft
File: MjFs1IgVYto785JbSRi24R12UUw.mft (raw, json)
Hash identifier: dz9PrTbVbVqdmrQcppzSGBN6/2LM5LuTyU8JDvMDPow=
Subject key identifier: 1A:07:DC:0D:82:17:29:FF:62:5C:20:38:DB:25:5A:01:F6:85:92:FD
Authority key identifier: 32:31:6C:D4:88:15:62:DA:3B:F3:92:5B:49:18:B6:E1:1D:76:51:4C
Certificate issuer: /CN=32316cd4881562da3bf3925b4918b6e11d76514c
Certificate serial: 0198D660E61A2A259250BB6801EE859B115C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/MjFs1IgVYto785JbSRi24R12UUw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bd/f0358f-0d50-4704-85cf-262da883c8e2/1/MjFs1IgVYto785JbSRi24R12UUw.mft
Manifest number: 0DA6
Signing time: Sat 23 Aug 2025 10:02:11 +0000
Manifest this update: Sat 23 Aug 2025 10:02:11 +0000
Manifest next update: Sun 24 Aug 2025 10:02:11 +0000
Files and hashes: 1: MjFs1IgVYto785JbSRi24R12UUw.crl (hash: ngGhUaqVJXhkXrU5Ilxk04exjiVVLE0FnOZ+3otbcmM=)
2: O3osI0EMQ6lE3X_ye8aviCt4iTA.roa (hash: 9DOrDt/vfxy297yCahpwE4Xa/8MH6AlQc6vnFQ987B0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/bd/f0358f-0d50-4704-85cf-262da883c8e2/1/MjFs1IgVYto785JbSRi24R12UUw.crl
rsync://rpki.ripe.net/repository/DEFAULT/bd/f0358f-0d50-4704-85cf-262da883c8e2/1/MjFs1IgVYto785JbSRi24R12UUw.mft
rsync://rpki.ripe.net/repository/DEFAULT/MjFs1IgVYto785JbSRi24R12UUw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 05:01:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d6:60:e6:1a:2a:25:92:50:bb:68:01:ee:85:9b:11:5c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=32316cd4881562da3bf3925b4918b6e11d76514c
Validity
Not Before: Aug 23 10:02:11 2025 GMT
Not After : Aug 24 10:02:11 2025 GMT
Subject: CN=1a07dc0d821729ff625c2038db255a01f68592fd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:ae:f5:b7:ca:99:07:77:ce:2b:e4:47:28:36:
bb:1f:09:5e:44:78:a1:f0:68:17:6d:7d:85:80:f7:
25:ae:1b:dc:26:24:fd:64:89:1a:2c:4b:92:a4:1f:
03:6f:2a:8d:ce:01:34:bc:93:d6:62:8a:4e:26:39:
07:dd:fe:90:eb:12:64:27:14:c2:fc:f2:3b:df:39:
0c:27:b0:90:67:dc:11:ed:f6:73:cb:f9:42:fe:d0:
3d:1d:aa:0d:1c:02:75:91:bf:a6:c5:e7:fe:d2:cc:
d5:a9:e7:74:c3:c8:4f:b6:cc:b1:ba:4b:84:45:69:
64:c4:84:1a:dd:d8:f7:ef:fb:7b:e8:af:1c:f5:3b:
35:a8:b6:e2:f0:e4:e7:89:74:6c:49:87:07:2a:cf:
36:b4:e9:9a:32:67:d8:d7:fb:bd:10:78:81:60:52:
3f:37:ae:13:7b:3a:81:52:da:66:08:9c:45:1d:a2:
1c:42:74:b1:5a:d8:b2:0d:87:ee:a6:d9:ee:dd:a2:
8e:94:f7:f4:a0:2a:5f:5f:ae:be:fa:98:84:a6:cf:
d1:2f:42:43:64:0c:29:ed:62:c1:2c:12:e1:25:b3:
30:a4:19:1e:0c:c3:b2:79:79:00:ec:b4:ba:c3:53:
0e:20:3d:68:23:fa:6b:d5:89:2b:24:ca:56:d2:9a:
ab:87
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1A:07:DC:0D:82:17:29:FF:62:5C:20:38:DB:25:5A:01:F6:85:92:FD
X509v3 Authority Key Identifier:
keyid:32:31:6C:D4:88:15:62:DA:3B:F3:92:5B:49:18:B6:E1:1D:76:51:4C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MjFs1IgVYto785JbSRi24R12UUw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bd/f0358f-0d50-4704-85cf-262da883c8e2/1/MjFs1IgVYto785JbSRi24R12UUw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bd/f0358f-0d50-4704-85cf-262da883c8e2/1/MjFs1IgVYto785JbSRi24R12UUw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
a0:1d:fb:53:b7:4d:19:3b:d8:88:99:70:25:54:24:9d:26:a5:
66:75:fb:64:ce:d1:ba:44:a5:0d:8d:dd:67:98:fe:47:d5:fd:
b6:c3:9f:cf:2e:f8:c1:3b:37:f5:28:71:87:53:26:5c:68:a4:
ee:04:ef:70:00:fe:ef:4a:1a:86:26:ae:fc:74:a5:f2:33:a7:
a3:19:e0:37:88:d8:45:dd:a0:d2:e2:dc:b1:08:30:ad:04:3b:
6c:c3:6d:2f:5a:fb:7d:a2:77:c9:bc:b1:9b:0e:73:bb:16:fc:
74:db:e7:52:a0:30:85:c4:57:1d:c4:e1:fc:cd:e1:b4:42:9a:
35:61:c1:12:94:0e:2f:9f:65:ec:43:77:ee:74:4e:71:13:9f:
f4:f2:f7:35:bc:56:d6:d0:2e:ee:7d:db:66:3b:38:53:28:e0:
53:9f:4f:4e:2a:3a:44:d3:1e:c5:45:8e:d2:d5:ab:41:5d:dc:
2d:5e:98:03:20:a6:fa:81:7b:cd:32:b0:de:6e:ba:69:36:e3:
9a:d5:ec:ec:2f:52:71:be:6c:2b:f7:e0:c7:91:d5:74:38:e6:
ba:2f:6c:71:a8:bd:95:dc:af:fc:b1:de:07:fa:bd:f7:9d:34:
66:84:ed:d0:82:ef:33:5b:70:ec:52:c3:d5:08:ab:ff:05:be:
d3:92:5e:50
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 14:29:14 2025 by rpki-client