
Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5e/07a487-26cb-4b18-bb39-15fe06fff8bc/1/mrL5l1qR5xN52hAOyEvUSgooDZs.mft
File: mrL5l1qR5xN52hAOyEvUSgooDZs.mft (raw, json)
Hash identifier: mlG394VhayphKP/1K3lWIeLOfTnCrRUVgUsfSDMlbfw=
Subject key identifier: EF:AF:62:FC:78:B4:73:5C:B4:BE:8F:85:DA:6B:51:25:78:71:45:13
Authority key identifier: 9A:B2:F9:97:5A:91:E7:13:79:DA:10:0E:C8:4B:D4:4A:0A:28:0D:9B
Certificate issuer: /CN=9ab2f9975a91e71379da100ec84bd44a0a280d9b
Certificate serial: 01975B6E074A754D85E1625D1F44B58E85EA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/mrL5l1qR5xN52hAOyEvUSgooDZs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5e/07a487-26cb-4b18-bb39-15fe06fff8bc/1/mrL5l1qR5xN52hAOyEvUSgooDZs.mft
Manifest number: 12CA
Signing time: Tue 10 Jun 2025 20:00:26 +0000
Manifest this update: Tue 10 Jun 2025 20:00:26 +0000
Manifest next update: Wed 11 Jun 2025 20:00:26 +0000
Files and hashes: 1: PbBhRej558nP-vCP2i5bq2vF02I.roa (hash: k4y0Lkz3mWSRjZ9l7iXnliVmD502EHJIpmvxtHIQNOU=)
2: mrL5l1qR5xN52hAOyEvUSgooDZs.crl (hash: Q0BZ6SVAr9eJOEsqZvttgxVAi2fXkNcjZbVPmQaIq50=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5e/07a487-26cb-4b18-bb39-15fe06fff8bc/1/mrL5l1qR5xN52hAOyEvUSgooDZs.crl
rsync://rpki.ripe.net/repository/DEFAULT/5e/07a487-26cb-4b18-bb39-15fe06fff8bc/1/mrL5l1qR5xN52hAOyEvUSgooDZs.mft
rsync://rpki.ripe.net/repository/DEFAULT/mrL5l1qR5xN52hAOyEvUSgooDZs.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 11 Jun 2025 20:00:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:5b:6e:07:4a:75:4d:85:e1:62:5d:1f:44:b5:8e:85:ea
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9ab2f9975a91e71379da100ec84bd44a0a280d9b
Validity
Not Before: Jun 10 20:00:26 2025 GMT
Not After : Jun 11 20:00:26 2025 GMT
Subject: CN=efaf62fc78b4735cb4be8f85da6b512578714513
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9e:47:64:ae:15:25:07:a7:83:e2:63:23:c8:e6:
cd:f4:da:09:be:2e:c8:85:31:ba:b1:fe:8d:78:40:
7f:95:33:bf:0b:46:78:47:5d:4e:1b:58:13:a4:54:
bc:30:61:1a:b6:35:2b:b9:3d:47:9c:14:c7:af:20:
27:68:9e:d4:16:c1:4a:c5:97:24:bc:2b:76:d3:a2:
1f:82:56:9b:5c:c1:13:20:65:f2:cf:9d:a2:71:52:
3c:a3:de:50:ae:bf:70:e1:dd:32:e1:98:09:52:77:
c0:6c:a7:c7:80:8b:bb:01:19:d7:d0:7c:3b:02:7d:
c6:f0:c0:09:8d:da:aa:81:11:82:22:9e:e0:3e:13:
54:ac:3b:74:37:d3:33:e5:ce:4a:0e:43:b1:ea:c8:
b7:1c:db:1d:25:73:49:54:bd:9e:43:ad:54:06:57:
79:09:19:76:63:51:5e:ff:c8:ed:6e:f7:25:28:53:
01:75:8f:48:a2:a5:2d:2b:0c:d6:30:de:ba:9f:62:
d3:46:fd:ba:ff:97:d1:31:47:d3:e6:09:fc:b5:85:
75:5a:9f:2d:fd:a5:57:bf:a2:82:1f:da:7d:a6:a8:
b2:b0:f6:f2:35:43:2b:6e:d8:dd:6f:44:b2:d9:54:
56:37:9a:2e:0b:8c:77:03:37:a7:24:fa:6c:34:12:
f0:17
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EF:AF:62:FC:78:B4:73:5C:B4:BE:8F:85:DA:6B:51:25:78:71:45:13
X509v3 Authority Key Identifier:
keyid:9A:B2:F9:97:5A:91:E7:13:79:DA:10:0E:C8:4B:D4:4A:0A:28:0D:9B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/mrL5l1qR5xN52hAOyEvUSgooDZs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5e/07a487-26cb-4b18-bb39-15fe06fff8bc/1/mrL5l1qR5xN52hAOyEvUSgooDZs.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5e/07a487-26cb-4b18-bb39-15fe06fff8bc/1/mrL5l1qR5xN52hAOyEvUSgooDZs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
08:d4:51:fa:02:94:c3:66:40:a2:5c:14:f7:fe:93:e7:c7:81:
32:1f:f2:4a:a2:4e:07:ac:f2:d3:34:1c:51:1d:36:6b:c0:0d:
61:72:03:cd:54:0b:68:55:08:79:3c:2d:74:b2:5f:6f:9a:55:
2b:03:f4:49:11:57:db:a1:31:b9:e3:db:92:1f:c0:5d:bb:f8:
72:e7:c8:8f:b4:f9:79:be:5c:1b:12:c1:71:d0:64:dd:d0:99:
ad:b5:66:fc:89:84:8b:ac:d7:e2:ce:c8:81:84:f2:60:9f:9d:
e5:e6:95:20:ef:e1:41:ab:8d:34:ac:b4:37:55:86:e3:fd:49:
76:3e:9d:d8:58:39:b4:68:57:55:3e:98:e0:af:48:b5:d1:8b:
a8:91:f5:df:c5:ad:10:6f:34:f1:0e:ec:05:be:d2:2f:58:e8:
5b:95:ae:de:8e:66:e2:19:ad:d6:f6:d4:d6:66:58:21:37:a5:
3d:45:f6:0f:09:2b:4e:dc:5d:f6:f2:99:35:4c:11:6e:14:4b:
d9:85:bc:d0:60:1b:76:5c:54:76:15:33:2f:69:42:53:c9:b6:
4c:2c:cb:b3:06:a6:70:30:53:52:f7:0f:0a:00:32:5f:30:f9:
a4:0d:6b:d7:89:c0:ec:9e:a0:3b:c8:2b:e5:07:93:c5:e2:2e:
61:30:42:26
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jun 11 06:09:22 2025 by rpki-client