Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bd/f0358f-0d50-4704-85cf-262da883c8e2/1/MjFs1IgVYto785JbSRi24R12UUw.mft
File: MjFs1IgVYto785JbSRi24R12UUw.mft (raw, json)
Hash identifier: WGuhEeuirFBY+iECZj/885EEJDcd2DkDpYivE0b/HxQ=
Subject key identifier: 0B:0D:AA:C9:B6:38:4A:F4:50:D2:D5:1E:3D:E3:D2:18:3C:EB:97:42
Authority key identifier: 32:31:6C:D4:88:15:62:DA:3B:F3:92:5B:49:18:B6:E1:1D:76:51:4C
Certificate issuer: /CN=32316cd4881562da3bf3925b4918b6e11d76514c
Certificate serial: 0196C12677FFE9244D342491AFEA07CAB0BF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/MjFs1IgVYto785JbSRi24R12UUw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bd/f0358f-0d50-4704-85cf-262da883c8e2/1/MjFs1IgVYto785JbSRi24R12UUw.mft
Manifest number: 0C92
Signing time: Sun 11 May 2025 21:00:45 +0000
Manifest this update: Sun 11 May 2025 21:00:45 +0000
Manifest next update: Mon 12 May 2025 21:00:45 +0000
Files and hashes: 1: MjFs1IgVYto785JbSRi24R12UUw.crl (hash: g8ebUIPiTKbPtDr4lYqn4+8SW5VesRGayEzYxacMMXw=)
2: O3osI0EMQ6lE3X_ye8aviCt4iTA.roa (hash: 9DOrDt/vfxy297yCahpwE4Xa/8MH6AlQc6vnFQ987B0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/bd/f0358f-0d50-4704-85cf-262da883c8e2/1/MjFs1IgVYto785JbSRi24R12UUw.crl
rsync://rpki.ripe.net/repository/DEFAULT/bd/f0358f-0d50-4704-85cf-262da883c8e2/1/MjFs1IgVYto785JbSRi24R12UUw.mft
rsync://rpki.ripe.net/repository/DEFAULT/MjFs1IgVYto785JbSRi24R12UUw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 12 May 2025 16:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:c1:26:77:ff:e9:24:4d:34:24:91:af:ea:07:ca:b0:bf
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=32316cd4881562da3bf3925b4918b6e11d76514c
Validity
Not Before: May 11 21:00:45 2025 GMT
Not After : May 12 21:00:45 2025 GMT
Subject: CN=0b0daac9b6384af450d2d51e3de3d2183ceb9742
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:5f:50:c7:32:71:11:f9:88:27:85:57:a0:42:
f2:30:51:40:87:bf:65:55:70:0b:03:d9:38:97:0c:
c6:2c:96:5e:20:3f:8a:27:3e:53:42:f3:b2:a9:5f:
54:d0:5e:2a:ca:a3:ee:eb:78:a4:94:8a:13:4b:69:
b0:4a:ee:c8:c8:cf:10:53:7d:f4:f3:4a:a9:02:c8:
c4:6f:40:52:e4:d1:44:2b:ec:bc:b9:32:d9:c2:ba:
3f:73:ce:db:33:b3:f2:5c:74:09:07:fc:ac:7f:ef:
1b:cb:b2:eb:b9:c0:38:35:40:2a:97:69:c2:55:03:
c4:48:68:78:24:c0:07:d5:55:db:74:7e:f5:00:f7:
e0:d2:37:28:42:fc:18:2c:f3:dd:4b:9a:1e:94:44:
1a:6d:73:d9:5d:ed:0b:e2:a5:23:14:b8:ef:51:6d:
f0:0c:10:71:0e:a8:d9:32:b7:40:5a:c3:73:83:f1:
79:bb:76:ea:05:37:9a:6b:b2:fb:3e:4b:f0:2a:62:
6e:9d:01:b8:7e:13:55:5a:20:a7:5c:fb:c6:7b:eb:
91:16:a2:6e:68:30:69:34:6d:67:12:59:0b:e5:27:
5c:f4:5c:a1:af:4e:e2:ad:85:79:8e:a3:89:90:d1:
e7:b8:d4:4d:f9:c7:c1:44:98:a8:26:1c:c8:84:0d:
61:73
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0B:0D:AA:C9:B6:38:4A:F4:50:D2:D5:1E:3D:E3:D2:18:3C:EB:97:42
X509v3 Authority Key Identifier:
keyid:32:31:6C:D4:88:15:62:DA:3B:F3:92:5B:49:18:B6:E1:1D:76:51:4C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MjFs1IgVYto785JbSRi24R12UUw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bd/f0358f-0d50-4704-85cf-262da883c8e2/1/MjFs1IgVYto785JbSRi24R12UUw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bd/f0358f-0d50-4704-85cf-262da883c8e2/1/MjFs1IgVYto785JbSRi24R12UUw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
85:5f:2a:1e:ff:f5:b8:cc:ca:62:1e:2b:e0:b5:dd:6a:37:12:
be:b7:35:8a:66:cd:52:59:15:2e:7e:1b:ca:15:d4:29:42:42:
8b:f8:6a:01:93:27:ce:48:24:0e:07:5b:cc:a7:17:cf:89:74:
74:5f:4e:65:d9:bb:d6:ab:b5:eb:33:4f:4c:20:08:92:5f:7d:
cd:74:e2:20:98:4e:04:77:8e:5c:d6:8e:4b:31:9a:1e:e5:ac:
50:33:a1:dc:1b:6f:e2:96:79:1c:fe:6a:f2:a4:3d:0e:3f:24:
a3:e2:e5:d9:59:32:a6:1e:07:26:dc:40:39:bd:e7:77:0f:e5:
a1:63:59:c4:b9:5d:b8:da:27:7e:7b:87:31:12:5b:34:c7:ff:
1a:ea:a0:13:48:93:90:5a:82:f8:15:84:60:44:57:87:65:3d:
b2:c7:c7:90:e2:f8:80:50:a4:7b:a0:f7:65:a6:bb:50:09:fd:
05:61:c3:d4:73:ee:fe:ce:a4:93:b7:b8:77:9c:b4:43:a7:67:
32:c7:5c:ff:39:0c:d5:f4:6e:e2:b0:a5:a6:89:56:c2:1c:77:
d9:b9:5d:34:de:af:2c:82:94:27:e1:73:d2:f6:1d:25:a7:03:
50:b8:ef:82:8c:c3:cb:d4:4d:40:21:be:2e:a2:a3:17:3c:10:
2c:fd:aa:4d
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZbBJnf/6SRNNCSRr+oHyrC/MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDMyMzE2Y2Q0ODgxNTYyZGEzYmYzOTI1YjQ5MThiNmUxMWQ3
NjUxNGMwHhcNMjUwNTExMjEwMDQ1WhcNMjUwNTEyMjEwMDQ1WjAzMTEwLwYDVQQD
EygwYjBkYWFjOWI2Mzg0YWY0NTBkMmQ1MWUzZGUzZDIxODNjZWI5NzQyMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAuF9QxzJxEfmIJ4VXoELyMFFAh79l
VXALA9k4lwzGLJZeID+KJz5TQvOyqV9U0F4qyqPu63iklIoTS2mwSu7IyM8QU330
80qpAsjEb0BS5NFEK+y8uTLZwro/c87bM7PyXHQJB/ysf+8by7LrucA4NUAql2nC
VQPESGh4JMAH1VXbdH71APfg0jcoQvwYLPPdS5oelEQabXPZXe0L4qUjFLjvUW3w
DBBxDqjZMrdAWsNzg/F5u3bqBTeaa7L7PkvwKmJunQG4fhNVWiCnXPvGe+uRFqJu
aDBpNG1nElkL5Sdc9Fyhr07irYV5jqOJkNHnuNRN+cfBRJioJhzIhA1hcwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFAsNqsm2OEr0UNLVHj3j0hg865dCMB8GA1UdIwQY
MBaAFDIxbNSIFWLaO/OSW0kYtuEddlFMMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvTWpGczFJZ1ZZdG83ODVKYlNSaTI0UjEyVVV3LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iZC9mMDM1OGYtMGQ1MC00NzA0LTg1Y2Yt
MjYyZGE4ODNjOGUyLzEvTWpGczFJZ1ZZdG83ODVKYlNSaTI0UjEyVVV3Lm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9iZC9mMDM1OGYtMGQ1MC00NzA0LTg1Y2YtMjYyZGE4ODNjOGUy
LzEvTWpGczFJZ1ZZdG83ODVKYlNSaTI0UjEyVVV3LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAhV8qHv/1
uMzKYh4r4LXdajcSvrc1imbNUlkVLn4byhXUKUJCi/hqAZMnzkgkDgdbzKcXz4l0
dF9OZdm71qu16zNPTCAIkl99zXTiIJhOBHeOXNaOSzGaHuWsUDOh3Btv4pZ5HP5q
8qQ9Dj8ko+Ll2Vkyph4HJtxAOb3ndw/loWNZxLlduNonfnuHMRJbNMf/GuqgE0iT
kFqC+BWEYERXh2U9ssfHkOL4gFCke6D3Zaa7UAn9BWHD1HPu/s6kk7e4d5y0Q6dn
Msdc/zkM1fRu4rClpolWwhx32bldNN6vLIKUJ+Fz0vYdJacDULjvgozDy9RNQCG+
LqKjFzwQLP2qTQ==
-----END CERTIFICATE-----
Generated at Mon May 12 01:32:11 2025 by rpki-client