Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2f/58a4e1-dfc1-4d81-b2c6-216597e03f11/1/MXBn6Bphoh_cFIWY72ull1f6A4A.mft
File: MXBn6Bphoh_cFIWY72ull1f6A4A.mft (raw, json)
Hash identifier: Al8pXDTOhfFrYFvgCvtWM0RR4xCgT+ApecKFFOOEvkQ=
Subject key identifier: 73:47:0D:69:36:BE:62:4D:F4:2A:FF:CF:92:5F:AB:35:5D:EF:C3:FA
Authority key identifier: 31:70:67:E8:1A:61:A2:1F:DC:14:85:98:EF:6B:A5:97:57:FA:03:80
Certificate issuer: /CN=317067e81a61a21fdc148598ef6ba59757fa0380
Certificate serial: 01974EC542038393F3D6FA7855EF603C1A87
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/MXBn6Bphoh_cFIWY72ull1f6A4A.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2f/58a4e1-dfc1-4d81-b2c6-216597e03f11/1/MXBn6Bphoh_cFIWY72ull1f6A4A.mft
Manifest number: 0806
Signing time: Sun 08 Jun 2025 09:00:39 +0000
Manifest this update: Sun 08 Jun 2025 09:00:39 +0000
Manifest next update: Mon 09 Jun 2025 09:00:39 +0000
Files and hashes: 1: 1kHURLGCgDrhi9IHuZm9V5RPr7o.roa (hash: QOJumlfbHeKteqZFgdexa+53Le46L9xrcfm0BrIrj/w=)
2: MXBn6Bphoh_cFIWY72ull1f6A4A.crl (hash: PtJYIKXoXZZ8ykB7VsyuHquF7d6NE0ThVycLtVC4aFM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2f/58a4e1-dfc1-4d81-b2c6-216597e03f11/1/MXBn6Bphoh_cFIWY72ull1f6A4A.crl
rsync://rpki.ripe.net/repository/DEFAULT/2f/58a4e1-dfc1-4d81-b2c6-216597e03f11/1/MXBn6Bphoh_cFIWY72ull1f6A4A.mft
rsync://rpki.ripe.net/repository/DEFAULT/MXBn6Bphoh_cFIWY72ull1f6A4A.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 09 Jun 2025 03:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:4e:c5:42:03:83:93:f3:d6:fa:78:55:ef:60:3c:1a:87
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=317067e81a61a21fdc148598ef6ba59757fa0380
Validity
Not Before: Jun 8 09:00:39 2025 GMT
Not After : Jun 9 09:00:39 2025 GMT
Subject: CN=73470d6936be624df42affcf925fab355defc3fa
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:ef:ce:ed:ab:be:dd:92:87:00:62:02:a1:cb:
15:34:c9:b3:bd:da:e1:f4:28:e8:5a:d2:05:d2:cb:
13:ce:56:99:be:7c:ea:39:11:f1:2f:7b:18:e0:47:
25:08:19:a6:71:5f:d7:f8:01:4e:45:39:d7:46:39:
67:65:9c:fe:67:c1:ef:ec:90:7e:f7:36:4b:08:1f:
43:c9:6e:a2:73:79:2d:0a:47:f8:13:4c:a6:ba:10:
43:cf:03:c5:0e:e8:b5:6c:85:d2:15:47:12:34:e4:
84:c2:96:20:1c:2e:b3:4c:40:47:9c:93:f4:9a:20:
fe:b8:38:d7:52:15:fa:80:37:0d:2f:e2:7e:4c:10:
4e:c6:da:9f:57:4e:15:ff:31:a2:8b:07:f9:2f:68:
3a:99:ab:bb:e8:e8:99:07:aa:7d:51:78:54:23:63:
ba:08:30:15:fb:c1:fb:b6:57:02:57:d5:be:16:6d:
b5:45:31:c7:0f:aa:c2:54:c4:39:a6:83:4b:67:2c:
30:d1:9e:11:ad:f6:4d:d8:31:04:84:96:09:e4:8e:
b2:95:88:32:69:d3:28:d2:1f:78:77:e7:d7:78:2e:
6c:56:5b:99:a2:fc:55:0f:50:57:2d:96:08:9f:40:
5e:bf:70:35:70:e7:bb:8e:5f:bd:69:b2:c5:69:84:
eb:71
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
73:47:0D:69:36:BE:62:4D:F4:2A:FF:CF:92:5F:AB:35:5D:EF:C3:FA
X509v3 Authority Key Identifier:
keyid:31:70:67:E8:1A:61:A2:1F:DC:14:85:98:EF:6B:A5:97:57:FA:03:80
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MXBn6Bphoh_cFIWY72ull1f6A4A.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2f/58a4e1-dfc1-4d81-b2c6-216597e03f11/1/MXBn6Bphoh_cFIWY72ull1f6A4A.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2f/58a4e1-dfc1-4d81-b2c6-216597e03f11/1/MXBn6Bphoh_cFIWY72ull1f6A4A.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
48:40:3d:8d:e6:df:e1:11:8f:da:86:7e:15:46:0b:5f:94:a8:
d3:16:87:c4:a6:1a:b5:38:fa:e5:c7:18:75:60:b6:34:8d:59:
8f:dc:d3:13:98:00:60:88:fc:0a:b3:b6:37:38:ee:e1:19:0a:
a2:b7:95:9c:63:42:bc:5f:16:9a:1a:e8:91:40:fd:d6:19:9c:
20:3f:62:ae:f4:88:74:14:61:8c:21:8f:ea:ae:96:e9:a6:d0:
8e:73:4c:27:46:b1:f5:90:75:66:d4:94:f0:fe:b7:0d:e7:51:
8a:72:d8:22:77:4c:c5:91:f3:bb:49:46:75:d3:a9:6e:d5:29:
99:cb:0a:a7:4d:51:64:31:6b:a4:37:71:76:c4:1a:00:25:dd:
98:64:96:b5:35:41:8a:74:dc:6d:db:01:15:b6:14:05:30:cb:
59:cf:8a:b8:94:0f:44:0c:5b:34:e2:73:c7:b7:3d:d8:fa:19:
43:f8:f2:3d:f7:58:b7:1d:aa:1d:a8:c2:44:84:eb:a9:85:56:
b7:bd:41:30:26:fc:f5:e1:f7:7f:25:7e:4e:9c:3f:a6:92:06:
b2:a7:8f:2f:fe:dd:28:14:e0:45:c3:68:fe:73:8c:7d:1f:57:
9d:13:65:40:5c:c4:38:be:76:47:c3:f7:e5:38:b6:b3:be:e8:
2a:27:a7:30
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 8 12:46:01 2025 by rpki-client