Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/24/a75507-5c5c-4842-a1c4-8d56ddcfa4b8/1/bMfzcUDRMXn5pckglknIDDfGpxM.mft
File: bMfzcUDRMXn5pckglknIDDfGpxM.mft (raw, json)
Hash identifier: Vo2ykQPBNCQ7xwOSipDwO/eil3bGLDUSCAbGoaDGwiE=
Subject key identifier: E6:DD:A2:A6:5B:B5:11:38:16:59:9B:68:32:90:4A:B0:93:31:1E:8F
Authority key identifier: 6C:C7:F3:71:40:D1:31:79:F9:A5:C9:20:96:49:C8:0C:37:C6:A7:13
Certificate issuer: /CN=6cc7f37140d13179f9a5c9209649c80c37c6a713
Certificate serial: 0197CC4C889E72C93B50A054783912396BF4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bMfzcUDRMXn5pckglknIDDfGpxM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/24/a75507-5c5c-4842-a1c4-8d56ddcfa4b8/1/bMfzcUDRMXn5pckglknIDDfGpxM.mft
Manifest number: 11D8
Signing time: Wed 02 Jul 2025 18:00:57 +0000
Manifest this update: Wed 02 Jul 2025 18:00:57 +0000
Manifest next update: Thu 03 Jul 2025 18:00:57 +0000
Files and hashes: 1: bMfzcUDRMXn5pckglknIDDfGpxM.crl (hash: 9NYhjdlScZWM4iuCk5RhPLG/t3afbXNDkCOiMZWGqDs=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/24/a75507-5c5c-4842-a1c4-8d56ddcfa4b8/1/bMfzcUDRMXn5pckglknIDDfGpxM.crl
rsync://rpki.ripe.net/repository/DEFAULT/24/a75507-5c5c-4842-a1c4-8d56ddcfa4b8/1/bMfzcUDRMXn5pckglknIDDfGpxM.mft
rsync://rpki.ripe.net/repository/DEFAULT/bMfzcUDRMXn5pckglknIDDfGpxM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 03 Jul 2025 18:00:57 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:cc:4c:88:9e:72:c9:3b:50:a0:54:78:39:12:39:6b:f4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6cc7f37140d13179f9a5c9209649c80c37c6a713
Validity
Not Before: Jul 2 18:00:57 2025 GMT
Not After : Jul 3 18:00:57 2025 GMT
Subject: CN=e6dda2a65bb5113816599b6832904ab093311e8f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:d2:b0:c6:14:be:83:df:46:43:ba:a1:97:6f:
e7:a3:3f:d9:96:c0:6d:99:70:25:6b:d3:66:57:c4:
b4:5d:db:18:ee:d8:f2:c5:b9:ca:06:89:f1:4d:ab:
02:6d:db:30:0a:ab:f1:6d:64:5a:a2:ef:54:4d:74:
f8:cb:f5:df:b2:ef:ef:76:3b:80:29:df:9a:8e:11:
2d:12:ac:cf:ce:98:c7:59:5d:49:54:9b:f0:a9:c0:
25:86:4a:48:fc:7a:ad:81:ad:92:3b:ba:0f:b4:4c:
46:8c:c1:92:9b:71:21:1a:c3:70:e1:84:87:64:1b:
ec:5b:95:d6:fe:72:93:97:06:75:cf:aa:bc:36:db:
a8:25:b6:4d:ab:65:ef:dd:04:d6:c7:37:a6:5a:a0:
82:b2:8a:a0:e3:57:b4:dc:1e:67:fb:20:75:32:21:
06:67:bf:16:9e:87:57:97:33:03:48:f1:fa:71:a1:
e3:d7:85:d5:e6:62:d2:4f:aa:e4:b9:05:34:81:1e:
7f:21:f0:81:3f:e3:84:64:f9:e6:52:23:f6:c5:4f:
6c:f4:fe:4c:d0:a6:19:ec:e1:b8:85:71:a6:6c:8f:
3a:e0:ac:53:89:03:fe:7b:6e:42:60:d4:7d:ca:b2:
f4:1f:46:a6:0a:ea:5e:17:15:8c:92:49:27:a6:85:
76:05
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E6:DD:A2:A6:5B:B5:11:38:16:59:9B:68:32:90:4A:B0:93:31:1E:8F
X509v3 Authority Key Identifier:
keyid:6C:C7:F3:71:40:D1:31:79:F9:A5:C9:20:96:49:C8:0C:37:C6:A7:13
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bMfzcUDRMXn5pckglknIDDfGpxM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/24/a75507-5c5c-4842-a1c4-8d56ddcfa4b8/1/bMfzcUDRMXn5pckglknIDDfGpxM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/24/a75507-5c5c-4842-a1c4-8d56ddcfa4b8/1/bMfzcUDRMXn5pckglknIDDfGpxM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
4e:1f:19:01:e2:6b:43:f6:1f:46:72:e0:a0:bb:55:79:34:37:
b5:bb:68:f6:0f:a5:5b:f3:06:99:4b:8e:b2:15:5f:80:10:2c:
07:cc:38:40:50:0f:17:77:a6:12:57:45:2f:b4:c8:58:a4:01:
80:73:6b:0e:6c:23:78:b1:89:3e:19:d0:30:41:d6:23:de:5e:
94:d3:35:32:71:ba:33:75:27:42:18:27:d3:41:27:cd:4f:df:
fd:a6:e1:d7:ae:9c:24:3a:4d:6c:86:2c:ca:e0:fb:95:c3:00:
34:1c:6a:c8:a4:6f:57:6a:7d:ee:48:f8:3d:ab:45:fd:f9:97:
f0:54:80:18:23:4b:42:db:38:d8:78:90:8e:37:5c:09:18:9f:
44:fe:50:e4:82:87:96:d4:df:6b:9d:a8:24:94:0f:99:fe:ac:
a3:b9:8c:1d:71:3d:b6:a7:5f:9b:9d:0f:34:b0:38:cf:e2:ce:
c0:ce:20:1a:7b:c4:d3:24:62:88:c7:1c:e4:75:56:f3:2e:e1:
32:92:c1:d9:77:3d:7b:5b:ee:f9:8c:82:7c:65:b1:85:e7:33:
9e:fa:fe:e5:67:2f:f9:98:b9:17:f2:81:09:e1:84:d5:e1:52:
66:32:23:5a:a8:3a:d1:83:d4:0a:5d:f8:b3:99:27:e1:49:fb:
74:5c:68:5f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 3 03:56:07 2025 by rpki-client