Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/21/2a7472-cbb8-4c99-be21-11b4afbede19/1/MAVrA3XYlLk8sOJtm01koIxYNx4.mft
File: MAVrA3XYlLk8sOJtm01koIxYNx4.mft (raw, json)
Hash identifier: al4mYMtKhxqrDsKLn52PI3QCDV4FKUfn+YxEh+tUfm8=
Subject key identifier: D6:A2:9E:89:90:5A:53:0C:C2:6C:15:8E:BE:73:59:C5:02:15:83:6F
Authority key identifier: 30:05:6B:03:75:D8:94:B9:3C:B0:E2:6D:9B:4D:64:A0:8C:58:37:1E
Certificate issuer: /CN=30056b0375d894b93cb0e26d9b4d64a08c58371e
Certificate serial: 019741E58B518618ECC75775FB026069868E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/MAVrA3XYlLk8sOJtm01koIxYNx4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/21/2a7472-cbb8-4c99-be21-11b4afbede19/1/MAVrA3XYlLk8sOJtm01koIxYNx4.mft
Manifest number: 0B02
Signing time: Thu 05 Jun 2025 21:00:51 +0000
Manifest this update: Thu 05 Jun 2025 21:00:51 +0000
Manifest next update: Fri 06 Jun 2025 21:00:51 +0000
Files and hashes: 1: 3O6Y3eQ5OpGsAft35AyeyfVjQ6o.roa (hash: u+uYD6/L10KdiWIH/nhFz7IkGG28050DGlwgSDFBhnk=)
2: MAVrA3XYlLk8sOJtm01koIxYNx4.crl (hash: 84XfrBT+uC3z4nPUdCCht7+RwBzk9aHzZSF9Gq5Sm64=)
3: vQwx6cGSIAT7m9K8R35GzUVPtvc.roa (hash: zbCFg7Xh1dqpHRv2DApSfzHkCmAjvg9jJtigoE/GHhk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/21/2a7472-cbb8-4c99-be21-11b4afbede19/1/MAVrA3XYlLk8sOJtm01koIxYNx4.crl
rsync://rpki.ripe.net/repository/DEFAULT/21/2a7472-cbb8-4c99-be21-11b4afbede19/1/MAVrA3XYlLk8sOJtm01koIxYNx4.mft
rsync://rpki.ripe.net/repository/DEFAULT/MAVrA3XYlLk8sOJtm01koIxYNx4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 06 Jun 2025 20:42:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:41:e5:8b:51:86:18:ec:c7:57:75:fb:02:60:69:86:8e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=30056b0375d894b93cb0e26d9b4d64a08c58371e
Validity
Not Before: Jun 5 21:00:51 2025 GMT
Not After : Jun 6 21:00:51 2025 GMT
Subject: CN=d6a29e89905a530cc26c158ebe7359c50215836f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:93:9c:81:b6:91:ce:f7:64:03:16:2e:ff:6b:93:
92:50:3f:79:02:fd:f1:ea:6a:e4:57:68:82:b0:d6:
db:c4:4b:d6:f7:a7:37:3b:ad:07:f8:c7:39:fe:cd:
82:47:3d:59:fa:8e:d6:94:40:ae:60:e0:ba:90:49:
ce:1f:00:94:26:55:70:ce:21:4b:f7:dd:35:5d:1b:
15:dd:2f:8d:24:92:04:5d:d6:c0:67:ff:70:76:7b:
22:fd:25:f1:62:a8:d1:bc:24:6f:f6:3e:a5:e2:e7:
88:e9:78:e8:35:82:ba:c4:f1:9b:33:14:1c:83:99:
1a:ea:45:3e:e8:e8:54:2f:d9:af:c8:f4:d1:4b:9e:
aa:8e:d1:d1:06:73:b6:fd:1f:94:c7:cc:73:d3:f3:
34:82:9b:44:79:c5:a9:dc:48:d3:c7:12:97:e0:c6:
c8:6b:6c:65:f0:f3:96:2b:8b:c8:62:ff:ab:9c:3e:
43:37:05:b8:d8:49:97:7a:c6:c4:5a:c3:63:ba:a8:
9a:9a:a7:aa:17:0a:04:5c:e9:1b:f1:23:23:cd:d8:
05:41:db:1f:07:9c:2d:44:08:bc:13:30:38:f0:fb:
22:46:18:82:f8:f8:fd:14:6f:96:a7:cf:4e:7e:72:
39:a2:fb:34:5d:32:3b:10:5d:ed:3d:0d:01:a9:39:
1c:27
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D6:A2:9E:89:90:5A:53:0C:C2:6C:15:8E:BE:73:59:C5:02:15:83:6F
X509v3 Authority Key Identifier:
keyid:30:05:6B:03:75:D8:94:B9:3C:B0:E2:6D:9B:4D:64:A0:8C:58:37:1E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MAVrA3XYlLk8sOJtm01koIxYNx4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/21/2a7472-cbb8-4c99-be21-11b4afbede19/1/MAVrA3XYlLk8sOJtm01koIxYNx4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/21/2a7472-cbb8-4c99-be21-11b4afbede19/1/MAVrA3XYlLk8sOJtm01koIxYNx4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
05:65:bd:57:07:ff:f0:ab:c0:91:a6:20:c5:c9:8e:43:70:8f:
df:6e:67:7a:01:2d:e4:6f:5a:81:2f:ed:43:69:f5:0b:ed:1c:
2d:be:31:eb:a9:e9:71:d1:bc:a8:01:9d:12:e1:a4:04:5a:ec:
2c:47:a4:33:eb:7c:22:83:62:1c:a5:66:22:8b:0a:fc:39:26:
a5:31:ce:73:01:4a:ff:7d:99:e7:ab:b4:97:88:c5:cb:ce:53:
3f:cb:02:a0:1e:fb:76:4e:f5:07:25:03:79:0e:df:18:f4:e9:
00:10:80:8c:92:48:7a:ce:9d:20:d3:17:75:a5:de:b2:27:e4:
d1:a8:28:57:0b:8f:f9:e6:23:59:f8:99:2f:b3:28:08:fd:19:
2b:30:86:43:80:7c:18:c8:17:65:1f:3e:50:03:de:7a:bd:37:
be:0f:71:f9:41:27:04:d4:42:be:0d:55:e0:56:a0:a3:96:e2:
51:ce:a4:9b:16:7e:73:31:b9:f3:65:0a:50:d6:4c:85:8a:e0:
9d:e1:83:0e:d8:9e:12:b0:39:c4:0a:9d:50:2d:d2:19:e9:82:
32:cf:2b:77:b1:e6:5c:54:d1:f8:1d:95:1e:b4:cc:58:80:ad:
19:06:72:34:64:cc:0c:ad:cf:6c:2a:55:a1:04:09:b3:1d:e4:
42:b8:a1:ee
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jun 6 04:58:28 2025 by rpki-client