Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5e/07a487-26cb-4b18-bb39-15fe06fff8bc/1/mrL5l1qR5xN52hAOyEvUSgooDZs.mft
File: mrL5l1qR5xN52hAOyEvUSgooDZs.mft (raw, json)
Hash identifier: 2pzg2baGGULZCIh4jzqZXWliZv9eBxjN5+J71Itc0Q0=
Subject key identifier: 59:11:4C:FC:65:69:58:BF:B3:CD:C4:EB:5C:01:FB:2A:81:B9:0E:76
Authority key identifier: 9A:B2:F9:97:5A:91:E7:13:79:DA:10:0E:C8:4B:D4:4A:0A:28:0D:9B
Certificate issuer: /CN=9ab2f9975a91e71379da100ec84bd44a0a280d9b
Certificate serial: 01975791290971E2E54FFF9BE8A1D7B5D728
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/mrL5l1qR5xN52hAOyEvUSgooDZs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5e/07a487-26cb-4b18-bb39-15fe06fff8bc/1/mrL5l1qR5xN52hAOyEvUSgooDZs.mft
Manifest number: 12C8
Signing time: Tue 10 Jun 2025 02:00:20 +0000
Manifest this update: Tue 10 Jun 2025 02:00:20 +0000
Manifest next update: Wed 11 Jun 2025 02:00:20 +0000
Files and hashes: 1: PbBhRej558nP-vCP2i5bq2vF02I.roa (hash: k4y0Lkz3mWSRjZ9l7iXnliVmD502EHJIpmvxtHIQNOU=)
2: mrL5l1qR5xN52hAOyEvUSgooDZs.crl (hash: hN1pkA0mW2wsc0xB4EJ2FXc079T84d4NJDlYDz0IjIk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5e/07a487-26cb-4b18-bb39-15fe06fff8bc/1/mrL5l1qR5xN52hAOyEvUSgooDZs.crl
rsync://rpki.ripe.net/repository/DEFAULT/5e/07a487-26cb-4b18-bb39-15fe06fff8bc/1/mrL5l1qR5xN52hAOyEvUSgooDZs.mft
rsync://rpki.ripe.net/repository/DEFAULT/mrL5l1qR5xN52hAOyEvUSgooDZs.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 11 Jun 2025 00:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:57:91:29:09:71:e2:e5:4f:ff:9b:e8:a1:d7:b5:d7:28
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9ab2f9975a91e71379da100ec84bd44a0a280d9b
Validity
Not Before: Jun 10 02:00:20 2025 GMT
Not After : Jun 11 02:00:20 2025 GMT
Subject: CN=59114cfc656958bfb3cdc4eb5c01fb2a81b90e76
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:7f:a1:57:ed:60:12:0e:76:fd:3b:dc:a3:df:
14:ac:9d:13:5f:f2:bc:50:ec:5c:f1:c2:47:9d:d6:
85:ab:b5:cf:99:ef:23:ec:ec:07:e4:ad:e0:43:0d:
9e:a9:92:65:64:78:5e:28:49:f7:0a:56:1b:f0:84:
d7:fe:4b:49:25:58:09:ea:b8:cf:a0:29:e4:15:7b:
4f:15:0a:b8:e9:4e:42:9d:87:52:e6:db:82:ec:02:
20:15:85:33:aa:61:f7:c0:b4:25:03:fa:76:83:df:
c6:1f:b7:79:94:c2:25:12:a6:7b:49:5e:3a:35:81:
70:5b:83:76:65:00:cc:0d:bf:17:7f:ab:8d:be:93:
0f:61:8f:85:16:b5:04:58:18:00:7c:ab:bc:00:00:
48:a1:41:49:dc:9b:f5:4c:c0:cf:bd:c9:7a:14:5d:
6c:7b:a2:e1:2e:92:a5:b6:52:0c:68:a9:6b:aa:04:
7e:49:af:bc:ed:6d:31:3f:83:54:8e:06:b1:11:74:
22:26:65:c4:0e:eb:7b:c5:d0:c9:d5:21:6c:57:1b:
9b:c4:0c:9e:35:9f:9b:31:01:54:8d:be:34:f3:4d:
fb:08:ce:43:96:5f:a2:88:29:db:e9:59:b1:82:64:
4c:33:8d:4e:69:55:da:cd:e1:bc:bd:85:66:95:79:
d6:a1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
59:11:4C:FC:65:69:58:BF:B3:CD:C4:EB:5C:01:FB:2A:81:B9:0E:76
X509v3 Authority Key Identifier:
keyid:9A:B2:F9:97:5A:91:E7:13:79:DA:10:0E:C8:4B:D4:4A:0A:28:0D:9B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/mrL5l1qR5xN52hAOyEvUSgooDZs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5e/07a487-26cb-4b18-bb39-15fe06fff8bc/1/mrL5l1qR5xN52hAOyEvUSgooDZs.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5e/07a487-26cb-4b18-bb39-15fe06fff8bc/1/mrL5l1qR5xN52hAOyEvUSgooDZs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
19:b9:72:62:38:5d:70:ba:d6:c3:c7:d0:09:8d:a1:60:17:1d:
61:c7:1f:2d:59:52:d1:17:c7:08:a5:e5:db:3c:1a:87:e0:60:
27:a5:6f:19:87:2b:2c:b1:2e:6a:92:30:ea:5c:71:a9:33:42:
62:7f:ea:d5:50:50:24:92:de:56:ac:f4:12:de:4e:05:e1:ae:
db:ec:60:f1:33:9c:14:b1:e5:90:fa:12:35:16:5f:b6:40:35:
ab:fb:21:ad:98:e5:9f:d8:e7:63:35:e8:8b:e6:75:7d:14:8b:
48:15:46:bf:92:27:67:61:22:c5:d5:0c:05:3f:10:72:8c:34:
bb:8f:01:28:a7:a0:3a:a9:2b:a7:53:66:b6:b1:01:32:1d:5d:
9a:63:0f:94:b0:27:2d:c4:03:41:23:cd:63:cc:5e:f5:5c:d7:
94:08:8c:09:c6:5f:19:60:dd:1f:de:4e:cf:dd:e5:7e:e8:68:
30:6e:c5:1f:f6:fe:9a:95:5e:38:05:cc:76:2f:1a:93:87:ea:
4e:18:13:1f:03:23:c0:42:3b:e8:30:0b:fb:e4:f1:49:54:a0:
6b:6f:a1:3f:4e:3d:4d:51:60:f8:32:e6:f1:64:47:73:ff:b3:
1e:49:70:f9:c3:de:29:07:85:6a:ff:aa:06:19:4e:f4:92:6c:
8e:c3:94:18
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jun 10 08:58:09 2025 by rpki-client