Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/14/5a448a-5e7a-47e0-87da-cdcfbb100447/1/MZX3NBnoIjKXlM8X-6fpPzdTdKk.mft
File: MZX3NBnoIjKXlM8X-6fpPzdTdKk.mft (raw, json)
Hash identifier: /y3UXFX0pFYmCg/APQfmbDKrT2BC1Bv0DaGlJ/NKoXM=
Subject key identifier: FC:48:37:C5:CE:2B:94:4C:DB:52:29:95:45:63:93:91:E0:B0:39:9F
Authority key identifier: 31:95:F7:34:19:E8:22:32:97:94:CF:17:FB:A7:E9:3F:37:53:74:A9
Certificate issuer: /CN=3195f73419e822329794cf17fba7e93f375374a9
Certificate serial: 019750B3CD3B8269667DDD799ACAB3403DBB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/MZX3NBnoIjKXlM8X-6fpPzdTdKk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/14/5a448a-5e7a-47e0-87da-cdcfbb100447/1/MZX3NBnoIjKXlM8X-6fpPzdTdKk.mft
Manifest number: 1126
Signing time: Sun 08 Jun 2025 18:00:50 +0000
Manifest this update: Sun 08 Jun 2025 18:00:50 +0000
Manifest next update: Mon 09 Jun 2025 18:00:50 +0000
Files and hashes: 1: MZX3NBnoIjKXlM8X-6fpPzdTdKk.crl (hash: O/lY0X/Kp9oJf+0dtrezIYS6sYxhoSIANS/hYhKK588=)
2: SCHcZAvBuEDabGE8ZnvuGrNm6LM.roa (hash: +7HN05BMaB78AnyjOqZ5Q8EXtIVzWFh5zSmSPi10HzA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/14/5a448a-5e7a-47e0-87da-cdcfbb100447/1/MZX3NBnoIjKXlM8X-6fpPzdTdKk.crl
rsync://rpki.ripe.net/repository/DEFAULT/14/5a448a-5e7a-47e0-87da-cdcfbb100447/1/MZX3NBnoIjKXlM8X-6fpPzdTdKk.mft
rsync://rpki.ripe.net/repository/DEFAULT/MZX3NBnoIjKXlM8X-6fpPzdTdKk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 09 Jun 2025 17:19:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:50:b3:cd:3b:82:69:66:7d:dd:79:9a:ca:b3:40:3d:bb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3195f73419e822329794cf17fba7e93f375374a9
Validity
Not Before: Jun 8 18:00:50 2025 GMT
Not After : Jun 9 18:00:50 2025 GMT
Subject: CN=fc4837c5ce2b944cdb52299545639391e0b0399f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9c:87:f4:25:3d:ce:95:22:5f:e2:34:55:6a:f6:
26:84:c9:ee:43:f2:9e:65:ea:ad:69:d4:e1:04:14:
44:0b:0f:2e:c6:5c:02:67:f4:76:24:c9:08:7b:9e:
c3:2f:9c:72:41:f8:74:6b:35:01:a7:7f:76:bc:af:
c6:1d:eb:02:f7:65:1d:c9:de:d8:08:fb:e4:13:b8:
7a:18:59:81:f9:7d:55:f6:75:8a:28:6c:18:41:ae:
09:4c:68:26:ae:d3:4c:5f:36:bd:30:43:98:50:f9:
60:64:9b:18:88:e8:fd:ac:39:a9:72:cf:78:e2:3e:
75:90:a5:a0:5d:72:93:65:f6:a5:2c:1f:9b:d2:18:
a3:c2:2a:b6:b8:3f:86:3f:f4:e2:b1:ad:46:7e:e1:
16:f9:bd:29:1c:53:cb:88:4e:66:ad:fe:58:02:1d:
01:d9:29:de:1c:8e:60:73:4c:eb:3c:15:1d:f1:f3:
69:ef:4e:36:61:fa:07:be:d5:9a:6a:67:50:2b:56:
7c:68:06:f5:d8:63:9d:c5:00:70:7b:43:61:b0:ff:
34:b0:88:74:85:4b:c2:64:8e:b8:d8:70:62:8a:3b:
2d:f0:00:7d:e4:f2:8b:49:b4:f1:c4:dd:40:c3:8a:
48:3b:82:d5:18:b5:75:43:be:dc:1b:89:23:81:bf:
90:0d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FC:48:37:C5:CE:2B:94:4C:DB:52:29:95:45:63:93:91:E0:B0:39:9F
X509v3 Authority Key Identifier:
keyid:31:95:F7:34:19:E8:22:32:97:94:CF:17:FB:A7:E9:3F:37:53:74:A9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MZX3NBnoIjKXlM8X-6fpPzdTdKk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/14/5a448a-5e7a-47e0-87da-cdcfbb100447/1/MZX3NBnoIjKXlM8X-6fpPzdTdKk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/14/5a448a-5e7a-47e0-87da-cdcfbb100447/1/MZX3NBnoIjKXlM8X-6fpPzdTdKk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
7b:bc:e1:c0:a4:ac:fa:37:5c:11:bb:5e:60:8d:34:00:d2:f1:
d8:22:a0:b3:7d:6b:a0:ec:7a:59:5b:82:89:33:b0:95:b7:ef:
01:ae:db:57:1b:c2:4c:85:8c:e1:86:96:a9:29:61:1e:3d:0b:
96:ad:5e:26:af:a7:9f:e8:a5:cc:28:a2:c9:9d:ea:f2:1f:3b:
fc:c9:51:37:64:39:e5:02:03:b9:d4:8f:5c:6e:2f:fb:30:a2:
52:02:75:11:c1:7f:fe:dd:21:0f:78:98:e6:f0:d3:99:9a:d2:
11:8e:f2:f6:05:2d:a4:f1:fa:2f:f7:f0:69:b6:7c:c6:0d:18:
9d:a5:15:60:f3:37:90:49:33:58:00:f2:04:e0:33:eb:dd:df:
e5:9a:81:4e:83:ae:5f:9a:fe:74:b0:a6:32:cb:19:5d:a1:eb:
52:68:11:93:58:52:71:eb:80:92:ca:b9:ac:42:8f:a4:ec:82:
8b:ac:b9:42:38:61:73:c4:16:0b:dd:06:0b:fd:6d:8e:57:9a:
d7:55:f6:8e:a8:c6:00:50:e6:13:bb:e3:2d:42:aa:99:3c:9e:
64:66:c4:06:50:fd:f5:a9:e2:27:b5:d5:e6:65:2b:6b:25:56:
88:06:ff:ea:44:f3:85:0b:e0:e3:c3:96:1e:c3:98:02:6b:60:
47:0d:39:74
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 8 23:24:15 2025 by rpki-client