Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f9/41ccce-acd8-4fb8-b148-a79510e613e8/1/1MDWlNWdfTa6QhowUPTsfdN4Hv0.mft
File: 1MDWlNWdfTa6QhowUPTsfdN4Hv0.mft (raw, json)
Hash identifier: 2cfd6uzJvLAS7cxNivCLFjygP/w1A3SV/St3gDLZxVU=
Subject key identifier: 47:13:BE:01:E9:C2:31:A0:29:A7:59:2A:3B:C1:5B:52:FD:D0:B5:35
Authority key identifier: D4:C0:D6:94:D5:9D:7D:36:BA:42:1A:30:50:F4:EC:7D:D3:78:1E:FD
Certificate issuer: /CN=d4c0d694d59d7d36ba421a3050f4ec7dd3781efd
Certificate serial: 0197B63271C62E0B3A6DCD3FF10C7E3A736B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1MDWlNWdfTa6QhowUPTsfdN4Hv0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f9/41ccce-acd8-4fb8-b148-a79510e613e8/1/1MDWlNWdfTa6QhowUPTsfdN4Hv0.mft
Manifest number: 0AFC
Signing time: Sat 28 Jun 2025 11:00:48 +0000
Manifest this update: Sat 28 Jun 2025 11:00:48 +0000
Manifest next update: Sun 29 Jun 2025 11:00:48 +0000
Files and hashes: 1: 1MDWlNWdfTa6QhowUPTsfdN4Hv0.crl (hash: uYdBxX3+Otux4zGk0zsgUQB+MEh8FolLqiCNNPnRHg8=)
2: It-Yns2Nwvw18OgbQ81pWbtQZ7M.roa (hash: 7H+X0erT0owXhcTltBjLEsiIIl6BxhT41pVVMePz04w=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f9/41ccce-acd8-4fb8-b148-a79510e613e8/1/1MDWlNWdfTa6QhowUPTsfdN4Hv0.crl
rsync://rpki.ripe.net/repository/DEFAULT/f9/41ccce-acd8-4fb8-b148-a79510e613e8/1/1MDWlNWdfTa6QhowUPTsfdN4Hv0.mft
rsync://rpki.ripe.net/repository/DEFAULT/1MDWlNWdfTa6QhowUPTsfdN4Hv0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 10:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b6:32:71:c6:2e:0b:3a:6d:cd:3f:f1:0c:7e:3a:73:6b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d4c0d694d59d7d36ba421a3050f4ec7dd3781efd
Validity
Not Before: Jun 28 11:00:48 2025 GMT
Not After : Jun 29 11:00:48 2025 GMT
Subject: CN=4713be01e9c231a029a7592a3bc15b52fdd0b535
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:96:d0:e0:b7:a8:12:df:b3:c7:5b:cb:98:20:5f:
31:b3:8a:3d:32:5b:1b:88:f5:32:cf:a4:0c:28:8f:
1d:cc:a2:1e:37:2d:f9:f4:de:9e:87:e9:d0:57:a1:
ae:16:5a:97:ff:dc:a1:e3:21:43:9a:14:14:ad:4e:
b0:d1:a0:28:0d:6b:9b:67:50:8a:24:7e:f8:12:b1:
75:bd:f4:76:ea:cd:ea:36:e0:34:91:cc:be:f8:2d:
f8:13:4b:0c:9e:d3:11:25:ee:66:19:58:38:0e:89:
df:7d:56:ff:72:f9:17:3b:e8:be:1a:7d:02:7b:c1:
2b:94:01:56:ac:f4:11:41:8a:9c:11:dc:5c:b0:36:
2f:90:36:5e:8a:e2:a6:23:d6:54:3a:f6:ba:b8:34:
7e:7a:48:48:e1:10:aa:06:c6:36:a7:fb:56:98:ef:
72:84:bf:0a:17:bf:4a:e1:6a:0c:54:70:26:b6:bf:
c8:d4:a0:2a:4d:39:3d:49:67:19:e2:ea:a5:0b:8c:
17:18:72:f5:e2:cf:a5:ca:5a:21:1b:51:c3:28:ec:
b0:b2:ca:a8:5c:40:5e:00:78:13:c9:79:94:47:86:
43:31:24:37:ce:09:98:c4:21:fa:e1:22:a6:ec:bc:
29:71:b9:6a:62:87:1f:58:9f:f6:21:24:dc:f3:18:
19:63
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
47:13:BE:01:E9:C2:31:A0:29:A7:59:2A:3B:C1:5B:52:FD:D0:B5:35
X509v3 Authority Key Identifier:
keyid:D4:C0:D6:94:D5:9D:7D:36:BA:42:1A:30:50:F4:EC:7D:D3:78:1E:FD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1MDWlNWdfTa6QhowUPTsfdN4Hv0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f9/41ccce-acd8-4fb8-b148-a79510e613e8/1/1MDWlNWdfTa6QhowUPTsfdN4Hv0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f9/41ccce-acd8-4fb8-b148-a79510e613e8/1/1MDWlNWdfTa6QhowUPTsfdN4Hv0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
52:63:9b:45:32:f9:ec:e6:d5:8c:f9:9f:b2:2f:be:32:12:87:
fe:e5:a6:f5:11:62:59:f1:dc:97:d0:a1:3c:29:50:1c:e8:80:
d0:2c:77:30:32:f4:a4:34:01:94:d6:ee:b1:4c:85:fd:27:b2:
38:53:0f:f9:8f:78:6f:b0:f6:f0:f1:40:05:af:47:a6:f4:54:
27:38:d6:ee:68:02:f0:62:13:75:45:17:4d:68:f7:43:8f:ef:
a7:04:fd:26:dd:4b:c9:1a:34:d5:75:61:a8:ac:88:3e:ee:a1:
8b:00:42:0a:3c:8f:10:08:f8:42:83:f6:ef:b6:39:03:0c:7d:
40:28:1f:f8:e6:ed:a4:56:c5:3e:f1:84:28:7b:1d:1e:f7:b0:
cd:a0:33:2f:ee:01:6b:a6:d0:52:21:12:92:89:d8:f1:e5:9b:
29:4b:16:54:96:b1:c2:d5:71:bc:b2:f0:b4:6d:ae:49:0a:98:
e1:6a:9d:6a:ee:05:3c:85:25:99:70:ae:9f:33:90:73:64:41:
8c:1e:6b:98:8a:2c:ff:38:5a:c7:03:fd:57:90:bc:87:91:f4:
cc:c1:29:b6:83:0f:83:8b:ac:50:b8:a7:7e:79:a1:c0:22:d0:
0e:2f:4e:6c:6b:09:0d:a4:1c:db:dd:cb:35:15:c4:2e:5b:07:
87:39:1b:52
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 28 18:59:52 2025 by rpki-client