Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6d/3a9dbf-01d2-4f10-813d-eab61ddb898a/1/MhbvzNFel4pwQKXUt5xBf7lmvyg.mft
File: MhbvzNFel4pwQKXUt5xBf7lmvyg.mft (raw, json)
Hash identifier: lHngZFrq4fJ030Yw/m6oeEYTPe28CH3viA3VkI/OtXg=
Subject key identifier: FB:C5:EE:18:83:C6:51:99:C8:DD:92:8B:A3:B8:7A:04:1B:EA:40:D9
Authority key identifier: 32:16:EF:CC:D1:5E:97:8A:70:40:A5:D4:B7:9C:41:7F:B9:66:BF:28
Certificate issuer: /CN=3216efccd15e978a7040a5d4b79c417fb966bf28
Certificate serial: 0197CA279AA884D2FBDA1F8144FA92B6A720
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/MhbvzNFel4pwQKXUt5xBf7lmvyg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6d/3a9dbf-01d2-4f10-813d-eab61ddb898a/1/MhbvzNFel4pwQKXUt5xBf7lmvyg.mft
Manifest number: 2B
Signing time: Wed 02 Jul 2025 08:01:22 +0000
Manifest this update: Wed 02 Jul 2025 08:01:22 +0000
Manifest next update: Thu 03 Jul 2025 08:01:22 +0000
Files and hashes: 1: G_QAj13053ZQmqPjvoFu7lprfls.roa (hash: v8AAmxC8K2fmbWdzfzNZzKaQdWure2gG3MF9k3IbA6o=)
2: MhbvzNFel4pwQKXUt5xBf7lmvyg.crl (hash: 8nvFIh8Awn/81LcXR2UTdYHGCZkT70602UJIng+86nQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/6d/3a9dbf-01d2-4f10-813d-eab61ddb898a/1/MhbvzNFel4pwQKXUt5xBf7lmvyg.crl
rsync://rpki.ripe.net/repository/DEFAULT/6d/3a9dbf-01d2-4f10-813d-eab61ddb898a/1/MhbvzNFel4pwQKXUt5xBf7lmvyg.mft
rsync://rpki.ripe.net/repository/DEFAULT/MhbvzNFel4pwQKXUt5xBf7lmvyg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 03 Jul 2025 02:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:ca:27:9a:a8:84:d2:fb:da:1f:81:44:fa:92:b6:a7:20
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3216efccd15e978a7040a5d4b79c417fb966bf28
Validity
Not Before: Jul 2 08:01:22 2025 GMT
Not After : Jul 3 08:01:22 2025 GMT
Subject: CN=fbc5ee1883c65199c8dd928ba3b87a041bea40d9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cf:d8:ae:b9:0c:8b:e7:d8:cf:f6:6d:9a:d4:15:
86:04:02:71:32:45:33:b0:f1:a0:e9:a0:c2:2c:75:
0b:e2:d2:d6:73:64:09:29:30:00:7f:0f:15:94:c7:
3a:ea:e0:0a:57:65:e8:47:87:66:85:e5:fd:b5:2c:
42:e8:0c:61:15:9c:56:f7:5c:3e:c2:fc:0c:f4:fe:
bb:3e:01:fa:91:59:ff:4c:06:62:da:73:0b:df:59:
85:6f:f9:85:5d:66:54:38:82:66:20:4a:54:53:7f:
dc:60:a8:dd:15:9f:f6:1e:b7:f6:2f:64:00:d3:b0:
cf:be:f0:d6:09:4c:e6:65:db:1a:48:97:9f:6c:50:
1c:f3:50:8c:0a:3a:dd:9b:0f:fe:7c:89:db:e7:bf:
e2:6b:f9:54:2b:a7:00:77:de:96:b2:36:9e:d8:82:
7c:c0:8e:f3:6c:51:86:4a:df:11:34:0c:5d:1a:4e:
ce:e6:fa:6b:57:a2:77:30:98:d7:37:65:6b:a0:4c:
ae:9f:0c:d3:e0:34:f7:a9:b8:96:ce:14:42:22:1b:
b2:76:a5:13:b6:ef:84:8f:27:fe:76:15:3e:29:05:
ca:2a:e9:16:a0:4d:69:59:32:d1:87:66:80:3e:44:
2b:de:60:8e:b4:f1:2a:16:9f:3d:28:25:67:c9:e3:
f0:79
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FB:C5:EE:18:83:C6:51:99:C8:DD:92:8B:A3:B8:7A:04:1B:EA:40:D9
X509v3 Authority Key Identifier:
keyid:32:16:EF:CC:D1:5E:97:8A:70:40:A5:D4:B7:9C:41:7F:B9:66:BF:28
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MhbvzNFel4pwQKXUt5xBf7lmvyg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6d/3a9dbf-01d2-4f10-813d-eab61ddb898a/1/MhbvzNFel4pwQKXUt5xBf7lmvyg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6d/3a9dbf-01d2-4f10-813d-eab61ddb898a/1/MhbvzNFel4pwQKXUt5xBf7lmvyg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
3a:06:55:31:68:c9:c0:c7:f1:ca:47:39:f8:60:4a:67:b9:78:
ac:7c:23:2d:28:a5:7e:6e:9c:71:0b:d4:2d:f8:c1:e9:8f:d5:
23:5c:bb:3b:42:13:e2:61:06:8b:b2:42:12:5c:f7:00:94:fe:
d0:a7:90:83:ed:b7:b3:6e:ac:99:96:a5:72:cf:63:76:8f:c7:
14:20:c5:39:e5:64:d3:11:ac:df:e4:4a:df:b5:3f:37:10:22:
9b:ff:d6:98:ba:f0:86:51:56:c3:c9:1e:a5:9e:24:68:ea:33:
d2:0a:02:b4:3e:ec:d0:4e:aa:90:f1:a2:77:6a:88:cc:14:e8:
46:24:c7:15:ed:40:1a:61:ba:83:4a:a4:b3:3a:a0:21:f9:76:
ab:82:04:81:1e:8c:4a:93:98:d4:ce:5d:e1:f9:14:bf:c0:b7:
c6:70:d6:12:17:b9:7d:a1:ff:4d:92:d9:eb:b9:2a:6c:3a:d0:
90:af:98:78:c8:1c:27:6a:74:8d:97:4a:16:65:58:55:c5:34:
28:5a:6e:b2:d0:d6:52:28:69:21:ed:38:00:57:33:59:57:6d:
d1:8b:bc:43:4c:59:64:ff:d3:29:c2:26:c2:69:10:3c:bf:cb:
fe:f1:8d:28:cf:50:42:01:fc:54:1c:ff:da:28:94:2b:7e:98:
26:a2:36:36
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 2 10:44:58 2025 by rpki-client