Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/09/2820d1-fd20-4889-834f-d527ce0d9930/1/MFxE6MlhoUUNCqshLw3scX0d77Y.mft
File: MFxE6MlhoUUNCqshLw3scX0d77Y.mft (raw, json)
Hash identifier: UHGOm5CsU349o/U6V41dit49SjsSZ4gRN0/Zv5TWXPI=
Subject key identifier: C5:B3:75:F4:DD:21:F7:98:F4:2B:74:E8:A2:71:81:64:22:6C:DF:F3
Authority key identifier: 30:5C:44:E8:C9:61:A1:45:0D:0A:AB:21:2F:0D:EC:71:7D:1D:EF:B6
Certificate issuer: /CN=305c44e8c961a1450d0aab212f0dec717d1defb6
Certificate serial: 01974C31DE9FE74B80E676EC9121937C01AE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/MFxE6MlhoUUNCqshLw3scX0d77Y.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/09/2820d1-fd20-4889-834f-d527ce0d9930/1/MFxE6MlhoUUNCqshLw3scX0d77Y.mft
Manifest number: 157E
Signing time: Sat 07 Jun 2025 21:00:26 +0000
Manifest this update: Sat 07 Jun 2025 21:00:26 +0000
Manifest next update: Sun 08 Jun 2025 21:00:26 +0000
Files and hashes: 1: MFxE6MlhoUUNCqshLw3scX0d77Y.crl (hash: 9A37jO8mMxsNvv+iuIxNRyMmdkweGl1MKpq9/Ss6E2E=)
2: mJgdj-dzJHYIwfc18P0iKUu6K8Q.roa (hash: BwFiGax6tDOHoiiFhGtxEO6XUIlUJlP+Zm+e5NhOWpg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/09/2820d1-fd20-4889-834f-d527ce0d9930/1/MFxE6MlhoUUNCqshLw3scX0d77Y.crl
rsync://rpki.ripe.net/repository/DEFAULT/09/2820d1-fd20-4889-834f-d527ce0d9930/1/MFxE6MlhoUUNCqshLw3scX0d77Y.mft
rsync://rpki.ripe.net/repository/DEFAULT/MFxE6MlhoUUNCqshLw3scX0d77Y.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 08 Jun 2025 18:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:4c:31:de:9f:e7:4b:80:e6:76:ec:91:21:93:7c:01:ae
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=305c44e8c961a1450d0aab212f0dec717d1defb6
Validity
Not Before: Jun 7 21:00:26 2025 GMT
Not After : Jun 8 21:00:26 2025 GMT
Subject: CN=c5b375f4dd21f798f42b74e8a2718164226cdff3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:42:a7:de:e4:69:7a:b6:38:64:bd:19:11:f3:
e0:ef:4e:cb:d9:c7:f3:ce:04:0c:b5:4c:31:09:99:
fe:19:9e:0c:3d:d7:3e:0c:d6:fb:92:f4:a0:74:af:
c5:2e:79:b0:4a:cd:87:00:17:3e:1b:69:fc:b6:65:
29:e7:ad:fd:f3:a5:e5:8e:86:e6:42:6d:2d:b1:6f:
24:55:55:bc:4c:0e:68:80:65:a7:4a:5e:ae:98:24:
1f:44:42:08:16:87:67:d9:3f:7a:b1:8f:bc:ec:7b:
72:7c:ba:3c:31:4e:5d:a7:86:eb:6e:1f:b5:98:e7:
58:76:24:97:d7:39:ea:f3:c7:3e:9c:9a:a3:45:ea:
27:b4:91:84:1b:7d:f9:b5:d8:62:14:91:9d:4f:f7:
63:79:3e:0b:3d:23:51:2c:37:18:74:b1:7d:dc:80:
92:9f:c6:42:2f:a5:7a:5f:79:bc:cb:0e:be:75:45:
ea:6b:38:e5:d8:ba:d5:17:33:70:57:fe:ff:0a:cc:
6c:56:93:20:3a:54:60:a7:05:29:c3:e7:99:63:6a:
dd:0c:d5:e2:29:03:80:70:28:34:56:42:a5:1d:5f:
4b:b3:56:bc:f8:e7:bc:58:95:a8:30:35:04:04:ef:
9e:16:b6:da:6b:8c:28:94:4a:66:1c:b8:93:97:c6:
b2:b1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C5:B3:75:F4:DD:21:F7:98:F4:2B:74:E8:A2:71:81:64:22:6C:DF:F3
X509v3 Authority Key Identifier:
keyid:30:5C:44:E8:C9:61:A1:45:0D:0A:AB:21:2F:0D:EC:71:7D:1D:EF:B6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MFxE6MlhoUUNCqshLw3scX0d77Y.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/09/2820d1-fd20-4889-834f-d527ce0d9930/1/MFxE6MlhoUUNCqshLw3scX0d77Y.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/09/2820d1-fd20-4889-834f-d527ce0d9930/1/MFxE6MlhoUUNCqshLw3scX0d77Y.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
6a:7e:46:6a:41:de:02:74:1a:22:a2:ed:3a:cb:07:c0:c3:83:
f5:99:19:b6:03:f2:90:ad:cb:1f:43:af:d2:f7:22:5f:0e:1e:
52:99:c6:78:23:fc:e0:c8:cd:c3:43:2f:5a:eb:ad:7f:be:77:
22:7a:a4:d2:7d:0b:2b:91:59:5c:bd:46:cf:88:74:27:dc:54:
88:32:12:75:e4:d7:5a:03:44:95:ee:51:76:c7:a8:22:f2:6f:
0d:d1:e4:04:a6:49:56:0a:26:69:f9:a7:f9:fb:85:14:4d:cf:
3e:5c:12:59:64:35:a9:24:ce:ec:a6:fc:d6:d1:7d:b5:86:3e:
66:8e:de:2d:46:49:72:9e:8b:84:75:c1:7c:49:c7:f5:67:cc:
7b:c5:12:fd:ec:79:dd:69:98:d9:39:78:93:90:d8:03:23:25:
de:a4:5f:9c:8f:50:a1:5d:c4:c2:c3:d1:80:54:05:de:50:b9:
d8:37:27:bd:7e:47:3e:d6:b6:68:8d:21:d4:5f:7c:83:b5:11:
12:6d:be:da:62:f1:84:94:c8:a4:04:be:d0:2a:1d:56:84:de:
8c:62:29:7d:64:12:d0:e9:e8:ea:dc:59:51:aa:94:7f:30:89:
6c:86:7d:4e:0e:48:fe:6b:38:15:0c:8f:fe:9f:68:bb:96:fc:
9e:07:2e:66
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 7 23:03:14 2025 by rpki-client