Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0f/524bfe-c5ae-4f67-8413-2748c4002c2e/1/MZLFLzYKOnL-IkQaw_x-DlIl7pE.mft
File: MZLFLzYKOnL-IkQaw_x-DlIl7pE.mft (raw, json)
Hash identifier: /S27W7qu0z52PLJIfIOvK/tSm4sQxlU/Ftvtj4NJ8JE=
Subject key identifier: EE:D5:2E:CE:DF:B6:C4:28:41:40:3C:1A:EB:DD:61:DE:00:3F:B8:C2
Authority key identifier: 31:92:C5:2F:36:0A:3A:72:FE:22:44:1A:C3:FC:7E:0E:52:25:EE:91
Certificate issuer: /CN=3192c52f360a3a72fe22441ac3fc7e0e5225ee91
Certificate serial: 01974FD7E8C779275B9A454ED9A72B057FBC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/MZLFLzYKOnL-IkQaw_x-DlIl7pE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0f/524bfe-c5ae-4f67-8413-2748c4002c2e/1/MZLFLzYKOnL-IkQaw_x-DlIl7pE.mft
Manifest number: 14D5
Signing time: Sun 08 Jun 2025 14:00:39 +0000
Manifest this update: Sun 08 Jun 2025 14:00:39 +0000
Manifest next update: Mon 09 Jun 2025 14:00:39 +0000
Files and hashes: 1: LgelsY-16hZE8VmZ4UWScnrAkQA.roa (hash: 5MPF2K6ZagDsXMwY0mVJRSAJCcCewM4ZcbU+TqCGJzs=)
2: MZLFLzYKOnL-IkQaw_x-DlIl7pE.crl (hash: 6wl+5F9FtMcrojOBgGnF5ezohfavwgJxr0/chnndSJM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0f/524bfe-c5ae-4f67-8413-2748c4002c2e/1/MZLFLzYKOnL-IkQaw_x-DlIl7pE.crl
rsync://rpki.ripe.net/repository/DEFAULT/0f/524bfe-c5ae-4f67-8413-2748c4002c2e/1/MZLFLzYKOnL-IkQaw_x-DlIl7pE.mft
rsync://rpki.ripe.net/repository/DEFAULT/MZLFLzYKOnL-IkQaw_x-DlIl7pE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 09 Jun 2025 14:00:39 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:4f:d7:e8:c7:79:27:5b:9a:45:4e:d9:a7:2b:05:7f:bc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3192c52f360a3a72fe22441ac3fc7e0e5225ee91
Validity
Not Before: Jun 8 14:00:39 2025 GMT
Not After : Jun 9 14:00:39 2025 GMT
Subject: CN=eed52ecedfb6c42841403c1aebdd61de003fb8c2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ef:21:82:17:79:d1:9d:31:6b:97:3d:36:fe:0a:
81:68:76:fa:da:c7:f4:f8:df:ce:1d:55:ec:53:c5:
3e:41:af:ce:a9:03:e8:30:a4:30:8b:31:02:5b:b3:
36:8d:17:9d:fa:d5:5b:b7:53:15:f3:8c:4e:80:46:
32:4d:5f:b5:41:6d:cf:9b:85:67:37:0f:64:d1:e6:
41:e1:61:62:ec:b2:8e:ff:5b:fc:7b:1b:06:eb:00:
77:5d:70:99:a4:74:d8:ee:d1:12:a3:62:3e:a1:d5:
b5:35:cd:86:2e:a8:36:6f:34:c5:c4:ed:82:2b:32:
0f:76:fb:e1:7f:c1:bd:c9:26:89:9f:b6:09:7c:27:
ff:c4:ae:fe:ac:16:ee:d0:c0:aa:99:f0:71:34:1f:
ee:6f:0d:ab:50:15:3b:4e:ca:b7:71:df:e4:90:c8:
f8:cd:e4:1d:a9:2a:30:29:88:df:34:6f:8e:6b:7c:
75:50:22:37:d2:a9:39:06:f7:3c:e8:e7:3e:31:b2:
ee:07:1d:9d:e4:f6:37:cb:0c:39:36:1c:2e:ee:b1:
3c:c9:47:91:25:df:52:b6:68:9b:fd:f9:79:e2:2d:
70:14:c5:21:82:da:e0:f5:f7:1a:9d:ee:9b:d9:c2:
cb:d3:ca:68:fd:75:67:ad:ac:e5:b9:bc:5e:bd:cf:
1f:91
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EE:D5:2E:CE:DF:B6:C4:28:41:40:3C:1A:EB:DD:61:DE:00:3F:B8:C2
X509v3 Authority Key Identifier:
keyid:31:92:C5:2F:36:0A:3A:72:FE:22:44:1A:C3:FC:7E:0E:52:25:EE:91
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MZLFLzYKOnL-IkQaw_x-DlIl7pE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0f/524bfe-c5ae-4f67-8413-2748c4002c2e/1/MZLFLzYKOnL-IkQaw_x-DlIl7pE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0f/524bfe-c5ae-4f67-8413-2748c4002c2e/1/MZLFLzYKOnL-IkQaw_x-DlIl7pE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
16:11:d2:47:c3:e2:d8:76:d2:04:d9:5b:21:d9:d0:38:58:48:
18:27:cd:b1:87:04:0b:be:e6:95:e0:d8:72:9c:6e:6f:24:2c:
a0:d1:cb:b9:05:41:3e:f4:aa:bf:f2:4b:5b:b5:21:50:d8:b5:
ba:ae:30:54:87:32:3c:42:73:27:16:23:61:a0:f7:91:71:85:
88:60:15:e1:a2:dc:43:e6:60:d0:1d:a7:8f:9c:60:43:66:10:
25:fa:bd:65:53:58:bf:3e:b6:06:33:22:c4:1e:46:43:40:69:
4d:db:7d:2a:3b:20:12:f7:32:c1:0b:95:98:d1:ac:d4:c0:e1:
02:dd:90:1a:53:c7:bc:37:81:e8:3f:a8:f1:9f:b3:9b:50:51:
17:6f:95:b1:29:b2:45:e3:2c:0a:34:0f:85:74:8a:97:04:95:
45:85:21:c6:f2:57:5f:e5:64:15:4d:ab:c7:cf:5d:e6:c6:36:
a7:30:4e:60:27:f7:0e:2d:f1:46:68:d5:59:e5:5f:fc:91:cf:
06:fa:c5:4b:d5:f7:3f:c2:35:bb:0b:76:a7:9c:33:60:91:31:
25:a1:fd:ed:e6:9d:a4:8b:2d:83:af:f2:7d:00:62:db:39:13:
0b:37:42:30:39:4a:56:c0:c3:af:58:10:5a:ba:ee:88:f8:29:
88:63:7c:77
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jun 9 00:12:25 2025 by rpki-client