Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/42/6a5394-0b05-4538-b0cd-9f6890f92e60/1/mKUzMIdAu70he_adzpCz9UEghFc.mft
File: mKUzMIdAu70he_adzpCz9UEghFc.mft (raw, json)
Hash identifier: KRIpuDPkJRx4kiq4bnGS8kBIDxLXUatwH3Z7Bbrr+9k=
Subject key identifier: 04:29:96:80:15:9E:83:5B:00:A5:6B:3A:9B:0D:07:7C:A8:63:CF:99
Authority key identifier: 98:A5:33:30:87:40:BB:BD:21:7B:F6:9D:CE:90:B3:F5:41:20:84:57
Certificate issuer: /CN=98a533308740bbbd217bf69dce90b3f541208457
Certificate serial: 019750B379C533081A5BCB2CCADBAAEA1FB4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/mKUzMIdAu70he_adzpCz9UEghFc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/42/6a5394-0b05-4538-b0cd-9f6890f92e60/1/mKUzMIdAu70he_adzpCz9UEghFc.mft
Manifest number: 1583
Signing time: Sun 08 Jun 2025 18:00:28 +0000
Manifest this update: Sun 08 Jun 2025 18:00:28 +0000
Manifest next update: Mon 09 Jun 2025 18:00:28 +0000
Files and hashes: 1: 4hnUUt9Ys_eQWvU2fA6JemX65dw.roa (hash: ntUnKbzWvKshnrPe1olGFJu/nCj9Xb/2m4Wf2hJLEss=)
2: mKUzMIdAu70he_adzpCz9UEghFc.crl (hash: Bq7Wgdh21elMlY/xyJXk6ghqoTds2Zh2hfInmLZbvgQ=)
3: sfQ3GEtYzhBBWxqpfOQ0GcKpsbY.roa (hash: wrk4xF0OxGaC9MkY6FPvwbKzU+JxYtuzUOz5b0tcuxA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/42/6a5394-0b05-4538-b0cd-9f6890f92e60/1/mKUzMIdAu70he_adzpCz9UEghFc.crl
rsync://rpki.ripe.net/repository/DEFAULT/42/6a5394-0b05-4538-b0cd-9f6890f92e60/1/mKUzMIdAu70he_adzpCz9UEghFc.mft
rsync://rpki.ripe.net/repository/DEFAULT/mKUzMIdAu70he_adzpCz9UEghFc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 09 Jun 2025 17:19:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:50:b3:79:c5:33:08:1a:5b:cb:2c:ca:db:aa:ea:1f:b4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=98a533308740bbbd217bf69dce90b3f541208457
Validity
Not Before: Jun 8 18:00:28 2025 GMT
Not After : Jun 9 18:00:28 2025 GMT
Subject: CN=04299680159e835b00a56b3a9b0d077ca863cf99
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:e3:52:21:d9:2e:08:8f:76:a9:9e:d3:58:f5:
32:4b:32:28:76:b4:25:ed:a4:03:3e:c8:40:66:6c:
d6:d6:71:55:be:92:92:31:d5:a7:cb:9b:16:6e:57:
5f:9b:00:5b:ee:14:f1:2d:49:c8:e1:1b:20:d7:e8:
df:39:67:73:b6:ef:a9:e0:ad:4e:88:b4:6a:6a:19:
3b:4a:0a:47:56:e7:97:74:6f:2a:7a:1d:96:6e:7e:
49:8c:e0:bc:1f:8f:ee:71:b2:f0:3a:b9:db:ac:2c:
a1:e1:bf:7d:41:b0:e7:b5:c1:d2:5a:03:32:6f:a4:
f4:33:23:2c:b1:d7:db:17:7a:39:d3:66:74:8a:c6:
63:f4:5d:57:ce:55:d6:9e:87:73:31:a1:1f:7d:cf:
57:4e:01:86:04:73:32:d4:72:f8:0c:92:c4:77:2f:
79:87:76:a7:48:ce:71:1f:32:3d:a3:45:8e:30:ed:
58:df:57:26:b3:08:61:a3:96:5a:10:29:22:e3:ad:
ca:0b:19:bf:96:3a:c4:c7:dd:5f:87:cf:a1:c9:57:
0c:a2:a6:0d:a6:8c:fa:a7:33:af:e3:28:27:9d:7e:
5e:50:fb:ea:9d:4e:36:37:6a:6e:f3:be:48:3c:94:
d7:c3:7c:84:a4:50:42:45:d2:78:cb:9c:f3:c6:d0:
6f:c1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
04:29:96:80:15:9E:83:5B:00:A5:6B:3A:9B:0D:07:7C:A8:63:CF:99
X509v3 Authority Key Identifier:
keyid:98:A5:33:30:87:40:BB:BD:21:7B:F6:9D:CE:90:B3:F5:41:20:84:57
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/mKUzMIdAu70he_adzpCz9UEghFc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/42/6a5394-0b05-4538-b0cd-9f6890f92e60/1/mKUzMIdAu70he_adzpCz9UEghFc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/42/6a5394-0b05-4538-b0cd-9f6890f92e60/1/mKUzMIdAu70he_adzpCz9UEghFc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
4b:6d:c8:c0:85:6e:25:63:44:fa:d8:6a:73:72:95:af:23:92:
e6:b8:0a:6d:a6:df:a2:b4:da:78:e0:2d:8d:97:b9:93:b3:71:
75:9c:67:01:49:4a:95:7c:91:ef:d0:9f:09:32:1a:d6:f8:06:
7d:88:90:c5:5f:12:c5:32:f6:62:22:c7:2d:d0:95:1b:95:e4:
70:34:9c:35:26:d9:4d:33:f5:bb:86:f6:ef:cc:5c:87:55:58:
33:4d:6b:03:5c:10:b0:61:cb:74:b6:fc:c9:15:81:28:1f:ea:
80:19:a8:5b:b6:39:f6:1f:ec:ef:67:25:06:84:07:85:7b:d7:
5b:14:2d:eb:ad:ce:99:66:94:95:d8:c2:7a:18:70:33:15:b8:
f8:e9:42:a7:cc:ae:98:b8:8a:81:3f:08:72:2d:dd:84:f3:15:
3d:a4:1b:7c:11:c9:fb:54:d7:d4:8b:8d:cc:e2:dd:d7:c2:c0:
74:88:3b:61:b8:8d:3f:3a:cb:72:ca:e2:16:72:20:5e:9b:44:
da:8e:92:6f:c2:2c:cf:b5:6a:a7:6f:37:90:5e:bb:e3:89:21:
ba:41:b5:af:6a:d1:1a:4f:1b:e8:b2:d8:96:40:6d:91:12:93:
4a:c4:c5:d2:24:30:95:76:8b:e4:36:21:f8:48:b2:b9:f7:4d:
90:c5:30:0d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jun 9 00:56:10 2025 by rpki-client