Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6d/3a9dbf-01d2-4f10-813d-eab61ddb898a/1/MhbvzNFel4pwQKXUt5xBf7lmvyg.mft
File: MhbvzNFel4pwQKXUt5xBf7lmvyg.mft (raw, json)
Hash identifier: KLnxaMEfzeRXnFPNaHzX5d6TWTOyiWTRRy7OwXgJIvw=
Subject key identifier: EB:E5:80:04:56:70:63:C6:DA:05:D9:23:98:13:B9:A7:61:41:6D:DE
Authority key identifier: 32:16:EF:CC:D1:5E:97:8A:70:40:A5:D4:B7:9C:41:7F:B9:66:BF:28
Certificate issuer: /CN=3216efccd15e978a7040a5d4b79c417fb966bf28
Certificate serial: 019923D5EC67C754447DC46884A7C7CC5008
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/MhbvzNFel4pwQKXUt5xBf7lmvyg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6d/3a9dbf-01d2-4f10-813d-eab61ddb898a/1/MhbvzNFel4pwQKXUt5xBf7lmvyg.mft
Manifest number: DE
Signing time: Sun 07 Sep 2025 11:00:46 +0000
Manifest this update: Sun 07 Sep 2025 11:00:46 +0000
Manifest next update: Mon 08 Sep 2025 11:00:46 +0000
Files and hashes: 1: G_QAj13053ZQmqPjvoFu7lprfls.roa (hash: v8AAmxC8K2fmbWdzfzNZzKaQdWure2gG3MF9k3IbA6o=)
2: MhbvzNFel4pwQKXUt5xBf7lmvyg.crl (hash: PfYe5DXkXN5OLBHMCfmt3N7Y8kBkPOVuNDp3JT4B3Sg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/6d/3a9dbf-01d2-4f10-813d-eab61ddb898a/1/MhbvzNFel4pwQKXUt5xBf7lmvyg.crl
rsync://rpki.ripe.net/repository/DEFAULT/6d/3a9dbf-01d2-4f10-813d-eab61ddb898a/1/MhbvzNFel4pwQKXUt5xBf7lmvyg.mft
rsync://rpki.ripe.net/repository/DEFAULT/MhbvzNFel4pwQKXUt5xBf7lmvyg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 08 Sep 2025 05:00:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:23:d5:ec:67:c7:54:44:7d:c4:68:84:a7:c7:cc:50:08
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3216efccd15e978a7040a5d4b79c417fb966bf28
Validity
Not Before: Sep 7 11:00:46 2025 GMT
Not After : Sep 8 11:00:46 2025 GMT
Subject: CN=ebe58004567063c6da05d9239813b9a761416dde
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9c:55:cf:f3:c1:1e:cc:6b:a4:a1:a5:10:36:8f:
dd:52:4a:ee:7c:dc:a7:01:98:87:4f:24:ee:f3:c6:
3a:35:40:5d:b2:cf:71:fe:0b:43:43:c9:d9:b9:1c:
2e:66:de:d2:ec:c4:38:95:8d:5f:3a:af:8a:d5:e3:
5f:84:df:f0:53:76:56:3d:2e:e2:af:eb:5d:40:9b:
39:d3:10:58:1e:de:52:0d:be:13:50:48:8b:f0:68:
60:e4:1a:0e:81:27:65:65:88:21:b0:f7:09:49:11:
35:c3:04:7c:5e:70:1b:9e:0d:aa:b4:00:37:c9:a6:
c2:d9:69:48:72:b1:a0:91:0b:d0:b7:42:18:dc:66:
41:c9:f0:3c:d0:a4:8a:98:e6:b5:34:73:8b:46:55:
15:c5:b2:b9:8c:32:59:34:70:21:8b:eb:20:c6:d8:
70:97:20:53:0d:64:10:67:f3:a5:58:bd:81:4f:62:
bb:a4:2f:bd:f4:0f:8a:dd:40:6e:61:8b:84:22:03:
8a:81:70:b1:b9:73:ce:34:a4:1c:d6:9e:43:6d:c7:
71:e6:17:1d:64:fb:2d:61:f1:f5:69:93:15:23:14:
53:33:35:99:38:e2:92:ed:06:cc:17:f3:a3:61:9c:
97:9f:50:50:33:b2:91:22:7f:02:ae:af:27:77:e0:
49:4b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EB:E5:80:04:56:70:63:C6:DA:05:D9:23:98:13:B9:A7:61:41:6D:DE
X509v3 Authority Key Identifier:
keyid:32:16:EF:CC:D1:5E:97:8A:70:40:A5:D4:B7:9C:41:7F:B9:66:BF:28
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MhbvzNFel4pwQKXUt5xBf7lmvyg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6d/3a9dbf-01d2-4f10-813d-eab61ddb898a/1/MhbvzNFel4pwQKXUt5xBf7lmvyg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6d/3a9dbf-01d2-4f10-813d-eab61ddb898a/1/MhbvzNFel4pwQKXUt5xBf7lmvyg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
2d:72:01:3d:9d:8c:8f:4a:b4:47:a9:5e:7f:d2:5b:fe:0c:5e:
2d:11:71:31:6c:51:d9:3b:0c:7e:d7:67:0e:b4:db:06:06:c9:
7d:19:6e:91:b4:6b:8d:22:c3:3a:cd:b7:5a:3b:91:09:e9:e1:
34:c9:f1:6c:ce:1c:fd:72:00:fd:44:bb:94:3d:ea:4c:f5:a7:
77:5f:f2:0d:16:1a:26:b4:9b:90:bf:08:b9:a4:6b:e9:7e:d2:
8b:15:9f:17:50:ce:40:7c:61:b9:ac:b4:f6:83:cb:13:02:cc:
27:01:81:09:ed:28:25:6f:4a:12:26:ab:d2:b4:bb:c2:78:69:
9f:a3:4e:02:25:6e:75:8e:2d:8a:2d:d7:d4:78:aa:c4:93:56:
7a:82:53:07:48:64:1b:3a:31:b8:f7:1b:c8:99:0b:3b:f9:be:
43:c2:06:8c:b8:91:15:8d:38:ba:65:8a:4f:c8:c9:cb:1c:ff:
17:3c:74:aa:9c:a9:2e:3a:91:2c:e9:60:29:1b:15:03:31:22:
de:8e:5a:f1:a5:69:cd:8c:00:96:9f:9c:23:6b:b2:3f:49:07:
4f:97:de:89:9e:ff:8c:41:18:92:59:8e:42:36:22:ec:44:07:
0e:72:fa:6a:e6:3c:c7:c7:de:ad:3e:9d:00:fa:f5:d2:61:0f:
a8:a3:b6:99
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Sep 7 12:20:21 2025 by rpki-client