Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/81/332c23-d793-4553-84ea-afa99b3fffe3/1/MQitUnxyDreXB7P7excsiLczsTM.mft
File: MQitUnxyDreXB7P7excsiLczsTM.mft (raw, json)
Hash identifier: oObXwk/CN4quYDbZfcDYQD3QXFmO0aDfz/hOLZ1u8W4=
Subject key identifier: A4:BF:DB:8D:8F:49:1F:AB:4D:37:F9:B3:79:3A:C3:56:6B:FF:4F:98
Authority key identifier: 31:08:AD:52:7C:72:0E:B7:97:07:B3:FB:7B:17:2C:88:B7:33:B1:33
Certificate issuer: /CN=3108ad527c720eb79707b3fb7b172c88b733b133
Certificate serial: 01974AB1788CF2D295E7565DDA1026E4F87D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/MQitUnxyDreXB7P7excsiLczsTM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/81/332c23-d793-4553-84ea-afa99b3fffe3/1/MQitUnxyDreXB7P7excsiLczsTM.mft
Manifest number: 0E02
Signing time: Sat 07 Jun 2025 14:00:34 +0000
Manifest this update: Sat 07 Jun 2025 14:00:34 +0000
Manifest next update: Sun 08 Jun 2025 14:00:34 +0000
Files and hashes: 1: MQitUnxyDreXB7P7excsiLczsTM.crl (hash: 57zI6e/861GjJ237SqaM5kSY0TCbxwcCP36BjdjDWME=)
2: OGw2yB1lmfdeIQ__eoRb9wYC8RQ.roa (hash: JOUk6p+/wA2qQIBr9IDvKPlXjqY5EY6hF28kxv/1jpc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/81/332c23-d793-4553-84ea-afa99b3fffe3/1/MQitUnxyDreXB7P7excsiLczsTM.crl
rsync://rpki.ripe.net/repository/DEFAULT/81/332c23-d793-4553-84ea-afa99b3fffe3/1/MQitUnxyDreXB7P7excsiLczsTM.mft
rsync://rpki.ripe.net/repository/DEFAULT/MQitUnxyDreXB7P7excsiLczsTM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 08 Jun 2025 09:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:4a:b1:78:8c:f2:d2:95:e7:56:5d:da:10:26:e4:f8:7d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3108ad527c720eb79707b3fb7b172c88b733b133
Validity
Not Before: Jun 7 14:00:34 2025 GMT
Not After : Jun 8 14:00:34 2025 GMT
Subject: CN=a4bfdb8d8f491fab4d37f9b3793ac3566bff4f98
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9d:a8:7b:32:62:00:be:41:5b:ee:0c:77:d6:3f:
58:77:15:b5:93:52:60:43:66:57:4a:cc:eb:50:e5:
db:71:79:8e:f6:75:5d:50:24:1e:47:da:0d:6c:19:
91:fe:38:d3:e2:3c:5f:92:44:33:66:92:1e:61:b2:
49:76:c6:11:67:d7:4d:23:aa:73:af:b3:4d:b8:ab:
a4:73:53:16:35:a5:ff:93:c8:78:b9:90:6c:97:f4:
21:e2:65:88:37:55:36:ef:de:7e:97:12:7c:82:24:
b5:e1:db:93:5b:51:2c:61:27:de:c7:d7:4b:af:f3:
e9:00:fa:b2:f5:04:23:6f:8d:9b:09:3d:06:25:99:
ce:91:57:04:3e:ec:b8:a2:45:de:cd:03:1a:78:6c:
1a:15:5d:ce:8d:de:6d:f6:90:d9:04:83:72:b7:0a:
0f:0b:fc:5a:11:72:95:6d:fb:67:9c:2b:1b:98:f7:
42:88:1f:45:c1:3c:65:c8:06:ed:d0:53:11:15:67:
eb:1c:86:47:85:0a:eb:ca:60:0d:d2:13:0b:dc:8c:
17:39:1e:8b:f9:96:fa:9c:b1:a6:3a:57:39:5e:97:
4a:5f:c9:68:ed:16:11:f1:52:b9:90:1e:00:f6:e8:
62:51:e8:5f:6a:ad:11:82:d2:a7:70:ce:30:53:67:
fa:2d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A4:BF:DB:8D:8F:49:1F:AB:4D:37:F9:B3:79:3A:C3:56:6B:FF:4F:98
X509v3 Authority Key Identifier:
keyid:31:08:AD:52:7C:72:0E:B7:97:07:B3:FB:7B:17:2C:88:B7:33:B1:33
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MQitUnxyDreXB7P7excsiLczsTM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/81/332c23-d793-4553-84ea-afa99b3fffe3/1/MQitUnxyDreXB7P7excsiLczsTM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/81/332c23-d793-4553-84ea-afa99b3fffe3/1/MQitUnxyDreXB7P7excsiLczsTM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
14:8a:10:aa:f2:23:71:f9:2d:80:3c:dc:1a:16:73:8b:57:a9:
c3:53:e0:37:c5:9e:dc:5c:a5:69:80:4a:d7:03:32:83:a3:53:
4a:85:40:f8:c6:d1:61:cc:1a:0f:1f:6b:71:62:b4:2b:8b:c9:
d9:d5:0b:4e:2f:40:47:c9:6e:c6:d3:9c:38:1d:b2:a6:9a:9d:
d7:8f:e0:8f:ef:ed:9c:3a:16:ba:41:f1:50:86:58:9a:cd:82:
f3:d4:5c:03:ad:48:c2:62:9f:8f:d0:19:6d:b6:f4:23:fd:e4:
3f:44:ae:e6:8e:9e:7b:88:b9:5d:06:74:35:55:27:4c:4e:96:
9d:c3:2e:2d:59:17:8c:82:6a:fa:7e:e1:52:cb:48:ab:86:20:
98:a8:3f:01:d3:5d:f9:18:81:c0:43:dc:26:6f:98:48:5c:1e:
d0:47:c6:c7:68:84:7a:73:1a:e0:a9:94:83:35:fd:63:2e:39:
fa:58:03:c2:db:49:cc:b0:ec:f3:ff:68:ec:be:08:ff:03:eb:
2f:ca:14:7d:42:4e:d7:c2:23:62:de:de:aa:fb:d2:1b:a8:c6:
0c:8c:98:6f:c4:18:32:7e:f4:54:91:0f:fb:f2:80:8e:51:f6:
37:03:0b:63:11:3c:43:9d:2a:45:94:86:8e:c2:e9:3c:b8:b9:
09:21:81:3b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 7 15:32:13 2025 by rpki-client