Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/56/125b9d-2a1f-463a-965e-7cfeaf086e14/1/MkxxBGxUn7PH1OvEz5UZ0ALnbfE.mft
File: MkxxBGxUn7PH1OvEz5UZ0ALnbfE.mft (raw, json)
Hash identifier: hktL8sD6BOZrs6hI/StqIsTE3yU6ZNbec/kg/bIvMUU=
Subject key identifier: 53:7F:16:6C:0A:82:6B:A8:E0:2A:44:F1:07:1C:DD:14:5B:04:CD:3C
Authority key identifier: 32:4C:71:04:6C:54:9F:B3:C7:D4:EB:C4:CF:95:19:D0:02:E7:6D:F1
Certificate issuer: /CN=324c71046c549fb3c7d4ebc4cf9519d002e76df1
Certificate serial: 01974FD81FF500E039D8E1F30C0AA371FD70
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/MkxxBGxUn7PH1OvEz5UZ0ALnbfE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/56/125b9d-2a1f-463a-965e-7cfeaf086e14/1/MkxxBGxUn7PH1OvEz5UZ0ALnbfE.mft
Manifest number: 0A48
Signing time: Sun 08 Jun 2025 14:00:53 +0000
Manifest this update: Sun 08 Jun 2025 14:00:53 +0000
Manifest next update: Mon 09 Jun 2025 14:00:53 +0000
Files and hashes: 1: 2W4Y0bQNlvS93LoW6fNHPM7BKLQ.roa (hash: I9C4k+xseXfObTJ4huNUkRHHI0jQTaqLFqDJffjcwOE=)
2: MkxxBGxUn7PH1OvEz5UZ0ALnbfE.crl (hash: rjp/fXkONeNYHGuKrUuXhIN3k8ajWGfpn09wWhZdKRg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/56/125b9d-2a1f-463a-965e-7cfeaf086e14/1/MkxxBGxUn7PH1OvEz5UZ0ALnbfE.crl
rsync://rpki.ripe.net/repository/DEFAULT/56/125b9d-2a1f-463a-965e-7cfeaf086e14/1/MkxxBGxUn7PH1OvEz5UZ0ALnbfE.mft
rsync://rpki.ripe.net/repository/DEFAULT/MkxxBGxUn7PH1OvEz5UZ0ALnbfE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 09 Jun 2025 14:00:53 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:4f:d8:1f:f5:00:e0:39:d8:e1:f3:0c:0a:a3:71:fd:70
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=324c71046c549fb3c7d4ebc4cf9519d002e76df1
Validity
Not Before: Jun 8 14:00:53 2025 GMT
Not After : Jun 9 14:00:53 2025 GMT
Subject: CN=537f166c0a826ba8e02a44f1071cdd145b04cd3c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:b1:22:ff:51:03:b9:a4:a0:dc:4c:c3:32:67:
1c:39:c1:df:9a:ed:dd:76:a3:1f:87:7e:3d:71:30:
e0:e1:51:38:17:3f:28:9e:9e:84:75:6b:58:e0:54:
83:36:a7:da:2b:68:25:31:fb:42:e0:0d:1b:4b:ef:
d1:c7:5b:67:9d:3a:05:22:31:7c:26:95:ab:9f:40:
56:ce:46:29:c2:e6:dc:ea:40:ed:2e:a6:64:ef:7e:
b9:04:b2:ad:85:ee:bf:ab:a2:07:01:4f:6e:c6:5e:
41:13:a1:f0:a1:dd:9f:48:4b:ff:53:74:59:bf:7c:
da:4c:bc:fd:57:b3:4e:a2:e7:0e:87:4f:9e:23:7c:
cd:f1:1c:b4:da:c7:a6:a1:9a:13:cb:66:4e:27:37:
36:e8:b3:78:37:3a:66:b0:06:8c:73:48:67:5b:38:
f0:4a:11:ec:bd:6d:65:c8:f9:0d:13:e3:fe:b5:db:
b1:b9:0c:e7:be:ce:9f:07:19:69:be:e8:db:9c:51:
21:1c:0c:06:f0:b1:6a:3d:3c:98:90:8b:0f:86:5e:
25:a4:9d:d4:f9:d8:30:de:60:1e:2b:1b:68:36:f5:
07:42:2f:95:f5:c3:0e:e7:c6:76:bc:51:67:47:22:
ec:28:af:20:c9:a1:ba:bf:b2:0d:20:1c:1d:ef:0e:
2e:67
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
53:7F:16:6C:0A:82:6B:A8:E0:2A:44:F1:07:1C:DD:14:5B:04:CD:3C
X509v3 Authority Key Identifier:
keyid:32:4C:71:04:6C:54:9F:B3:C7:D4:EB:C4:CF:95:19:D0:02:E7:6D:F1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MkxxBGxUn7PH1OvEz5UZ0ALnbfE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/56/125b9d-2a1f-463a-965e-7cfeaf086e14/1/MkxxBGxUn7PH1OvEz5UZ0ALnbfE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/56/125b9d-2a1f-463a-965e-7cfeaf086e14/1/MkxxBGxUn7PH1OvEz5UZ0ALnbfE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
5f:9b:cb:cc:8b:20:6d:74:a5:11:67:dd:a1:98:55:70:66:16:
55:f8:f1:94:09:fe:18:ed:9d:bd:e1:cb:7c:52:6c:39:d8:a6:
58:c0:b6:7e:e8:86:56:89:df:04:ab:be:9b:66:07:b6:49:45:
bd:2b:5e:11:1b:d5:d5:82:47:19:10:a6:bc:f7:78:0a:3a:9e:
18:2c:f6:d7:9a:67:ed:7b:b8:67:9d:e9:2a:ab:06:08:73:d9:
ff:e5:ab:c7:dc:43:3d:25:f3:17:ac:11:65:3b:c6:77:61:ab:
9e:70:b0:44:4f:75:0f:de:5c:96:48:26:47:be:0e:ee:97:ad:
aa:74:be:ed:be:b1:c7:42:1a:53:8f:35:82:ee:39:b7:e4:08:
a1:49:2e:6e:04:51:b0:47:26:6a:5d:61:f5:fc:fb:29:80:00:
3e:d2:67:8b:1e:73:32:5d:63:01:2e:f4:1a:38:ac:44:94:d4:
25:74:4c:0d:e6:c1:e8:45:1e:04:23:dc:57:34:5d:81:16:8f:
b3:c4:93:3f:c1:51:76:8e:08:1c:2e:8f:ae:36:7f:69:da:d3:
64:01:c3:12:79:18:49:9f:61:d8:da:33:55:12:cd:1c:0c:ba:
d8:1d:db:fc:06:6d:52:60:00:05:b7:a2:3e:18:cb:57:86:70:
2f:f5:86:a8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 8 23:23:41 2025 by rpki-client