Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b5/55d3cc-bcf0-425e-983d-4f3c46f17737/1/MuFdOEw49IcrD_k1L_GcTW37ZMY.mft
File: MuFdOEw49IcrD_k1L_GcTW37ZMY.mft (raw, json)
Hash identifier: gH2ZwHpsxWcNA8v7+eThPFRVFtL71zoGJk32iC/lJW4=
Subject key identifier: F5:7F:E4:7D:9E:75:01:C5:0F:E6:E3:E1:0D:50:D1:F3:69:0A:89:B5
Authority key identifier: 32:E1:5D:38:4C:38:F4:87:2B:0F:F9:35:2F:F1:9C:4D:6D:FB:64:C6
Certificate issuer: /CN=32e15d384c38f4872b0ff9352ff19c4d6dfb64c6
Certificate serial: 01984A4191FDA56F4A75267DA87F67F04091
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/MuFdOEw49IcrD_k1L_GcTW37ZMY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b5/55d3cc-bcf0-425e-983d-4f3c46f17737/1/MuFdOEw49IcrD_k1L_GcTW37ZMY.mft
Manifest number: 0D13
Signing time: Sun 27 Jul 2025 05:01:07 +0000
Manifest this update: Sun 27 Jul 2025 05:01:07 +0000
Manifest next update: Mon 28 Jul 2025 05:01:07 +0000
Files and hashes: 1: MuFdOEw49IcrD_k1L_GcTW37ZMY.crl (hash: B1H7CaHUOFr17bB0IFcwEG9Yr53iO+E54MrKfe5J+O4=)
2: nLlnLzhBW0q3Q45Kky0hHNKYV40.roa (hash: RNNKG+Zuzj9PpdwsoSPFqXxYXZoCjXiQJtMmCaWRm20=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b5/55d3cc-bcf0-425e-983d-4f3c46f17737/1/MuFdOEw49IcrD_k1L_GcTW37ZMY.crl
rsync://rpki.ripe.net/repository/DEFAULT/b5/55d3cc-bcf0-425e-983d-4f3c46f17737/1/MuFdOEw49IcrD_k1L_GcTW37ZMY.mft
rsync://rpki.ripe.net/repository/DEFAULT/MuFdOEw49IcrD_k1L_GcTW37ZMY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 28 Jul 2025 00:00:05 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:4a:41:91:fd:a5:6f:4a:75:26:7d:a8:7f:67:f0:40:91
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=32e15d384c38f4872b0ff9352ff19c4d6dfb64c6
Validity
Not Before: Jul 27 05:01:07 2025 GMT
Not After : Jul 28 05:01:07 2025 GMT
Subject: CN=f57fe47d9e7501c50fe6e3e10d50d1f3690a89b5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:c7:56:c1:3c:3d:2f:fa:37:03:15:e4:d4:9b:
cb:c9:74:0a:66:cc:c2:31:72:9d:70:0e:b0:8b:f9:
e8:5a:27:5c:63:10:52:2a:6b:cb:49:d4:53:2a:16:
ee:6f:81:85:af:59:de:b2:ed:a7:0a:a5:87:2f:45:
a2:62:22:a2:cb:2e:a0:ce:7e:52:13:83:5c:1f:fb:
e3:47:7d:9a:c5:71:eb:24:28:d9:af:8e:53:8c:c6:
2e:2b:ae:92:15:35:b5:93:b5:69:ff:66:ce:ff:bc:
03:96:32:23:a6:b9:6a:3a:07:90:31:7d:3c:7a:f6:
f6:58:06:1c:4a:73:91:cf:bd:f0:29:d0:94:91:86:
34:3a:e2:6d:e6:0d:75:56:43:7f:25:ca:b5:f0:4a:
43:60:fa:0e:a0:93:b8:fc:8c:6d:55:e5:97:82:4b:
65:cb:0c:69:54:b3:01:51:16:16:3f:55:ff:a0:e1:
8f:36:46:e9:d4:2a:e5:ce:93:93:26:69:87:5f:e6:
21:68:93:a3:aa:8a:67:5c:a4:b9:00:d6:45:62:42:
40:9a:ac:06:c1:e3:fe:64:2b:23:69:4e:9b:0b:d0:
4c:e1:07:98:31:77:96:68:0e:19:bc:e5:e0:55:35:
b4:cd:80:5c:63:95:db:f1:14:86:1d:ef:23:e1:84:
86:9d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F5:7F:E4:7D:9E:75:01:C5:0F:E6:E3:E1:0D:50:D1:F3:69:0A:89:B5
X509v3 Authority Key Identifier:
keyid:32:E1:5D:38:4C:38:F4:87:2B:0F:F9:35:2F:F1:9C:4D:6D:FB:64:C6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MuFdOEw49IcrD_k1L_GcTW37ZMY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b5/55d3cc-bcf0-425e-983d-4f3c46f17737/1/MuFdOEw49IcrD_k1L_GcTW37ZMY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b5/55d3cc-bcf0-425e-983d-4f3c46f17737/1/MuFdOEw49IcrD_k1L_GcTW37ZMY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
0a:75:cb:c0:aa:22:52:47:00:00:60:24:72:18:8d:1f:d0:cf:
b5:98:0c:1e:54:d3:25:30:9a:9c:c1:a3:19:8d:2b:4c:66:53:
bd:e8:9e:f8:5e:ee:73:6c:64:44:c6:a5:34:13:c8:33:4d:1a:
16:ed:57:5d:04:ad:a6:c9:54:7f:12:44:a6:69:9c:e9:eb:6c:
ea:0d:03:79:42:79:84:c8:8f:0d:8b:2f:4b:e4:c6:d4:08:13:
f0:fb:56:90:b6:57:f5:af:c6:1a:de:f1:b3:ef:e4:b3:a4:36:
75:fc:e4:e7:8b:6c:5d:3e:01:b4:ab:1c:f4:9c:bc:e0:4d:d1:
b7:11:cc:ce:d2:60:61:d3:0d:87:b5:31:7c:c5:b7:3b:04:ba:
ee:3e:85:78:de:b9:33:bd:6b:77:0c:73:a9:6a:0d:6c:19:83:
47:46:0f:d7:66:13:9c:5e:66:1c:76:ea:91:47:68:8f:6e:37:
da:0d:6a:25:2e:aa:16:ad:43:43:e8:ef:2e:eb:9b:c9:f4:62:
7c:57:54:c1:7d:86:ea:17:f4:92:96:37:2d:50:cb:9c:0d:d9:
a3:a3:1d:ef:07:dc:58:d9:90:e1:32:b2:78:35:5f:17:8d:a9:
d5:b4:a5:33:82:cb:5f:48:97:74:93:0d:e4:75:63:69:c2:0e:
44:27:8e:ae
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jul 27 07:16:08 2025 by rpki-client