Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8c/4a523b-7244-422d-9004-c4aa9db1abb5/1/MCX9M5qmRQTyiaAMQXPFWgAC60Q.mft
File: MCX9M5qmRQTyiaAMQXPFWgAC60Q.mft (raw, json)
Hash identifier: iEB6tJ6/Csu0NikW8meKqBymBGhKwL31Tfln/cf1dT4=
Subject key identifier: 2C:A8:1F:60:09:99:E5:AA:44:94:07:3D:3D:80:1B:46:55:66:00:04
Authority key identifier: 30:25:FD:33:9A:A6:45:04:F2:89:A0:0C:41:73:C5:5A:00:02:EB:44
Certificate issuer: /CN=3025fd339aa64504f289a00c4173c55a0002eb44
Certificate serial: 019768F31B1B75BB82820A1DEEB5614C8CBA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/MCX9M5qmRQTyiaAMQXPFWgAC60Q.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8c/4a523b-7244-422d-9004-c4aa9db1abb5/1/MCX9M5qmRQTyiaAMQXPFWgAC60Q.mft
Manifest number: 0F55
Signing time: Fri 13 Jun 2025 11:00:51 +0000
Manifest this update: Fri 13 Jun 2025 11:00:51 +0000
Manifest next update: Sat 14 Jun 2025 11:00:51 +0000
Files and hashes: 1: DPz87dZS9HseddW8gbD-vS7fq9g.roa (hash: 4BW75SF0KzzzYTTCKr54E2E3BA1EBeDyvFumW+QYO5M=)
2: MCX9M5qmRQTyiaAMQXPFWgAC60Q.crl (hash: sZ3pAOr811bQcRREo9HHvjrXlUHgOh6gw0L0SfAyKIo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/8c/4a523b-7244-422d-9004-c4aa9db1abb5/1/MCX9M5qmRQTyiaAMQXPFWgAC60Q.crl
rsync://rpki.ripe.net/repository/DEFAULT/8c/4a523b-7244-422d-9004-c4aa9db1abb5/1/MCX9M5qmRQTyiaAMQXPFWgAC60Q.mft
rsync://rpki.ripe.net/repository/DEFAULT/MCX9M5qmRQTyiaAMQXPFWgAC60Q.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 14 Jun 2025 07:00:18 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:68:f3:1b:1b:75:bb:82:82:0a:1d:ee:b5:61:4c:8c:ba
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3025fd339aa64504f289a00c4173c55a0002eb44
Validity
Not Before: Jun 13 11:00:51 2025 GMT
Not After : Jun 14 11:00:51 2025 GMT
Subject: CN=2ca81f600999e5aa4494073d3d801b4655660004
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:9f:2f:f0:b5:aa:af:7b:26:ef:db:85:0a:58:
08:0a:32:7c:3c:0e:4a:66:14:27:a3:f6:16:cc:22:
e7:a8:cc:a7:00:9a:74:43:cc:4a:43:84:ae:23:3d:
7f:80:c7:44:a5:ed:ce:9b:b3:80:b5:1c:13:b5:54:
5a:0f:cf:0c:19:a7:7c:ed:ef:5e:de:30:b8:ac:cf:
2f:5f:37:6c:9a:d7:3d:a2:d0:85:18:00:11:d4:54:
d1:36:0f:32:49:00:f9:d3:41:1b:cb:f9:ea:bc:12:
2f:52:56:25:b3:14:7b:ef:5d:12:bb:2a:09:19:8b:
b3:2f:00:46:e6:c6:a1:5d:64:7d:42:10:1c:f4:a5:
fa:d5:a8:1b:59:ff:94:01:91:7a:f5:66:51:25:cb:
15:34:10:e1:38:d0:21:a7:5e:fa:fb:aa:73:2b:af:
64:64:54:74:84:c0:1e:88:0f:11:c6:7f:78:8b:04:
6b:4e:a2:04:ef:46:89:42:54:4e:24:06:71:ce:5f:
d5:f3:39:fe:c9:a5:33:28:5e:68:52:e2:2a:3a:93:
fb:c6:c5:bb:34:7d:0e:57:81:b0:3d:b7:0d:df:c2:
eb:58:36:bb:2d:f5:84:32:cf:2c:76:5b:65:da:d6:
ca:31:6e:e2:c9:85:a9:38:43:74:39:be:ad:84:be:
db:bd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2C:A8:1F:60:09:99:E5:AA:44:94:07:3D:3D:80:1B:46:55:66:00:04
X509v3 Authority Key Identifier:
keyid:30:25:FD:33:9A:A6:45:04:F2:89:A0:0C:41:73:C5:5A:00:02:EB:44
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MCX9M5qmRQTyiaAMQXPFWgAC60Q.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8c/4a523b-7244-422d-9004-c4aa9db1abb5/1/MCX9M5qmRQTyiaAMQXPFWgAC60Q.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8c/4a523b-7244-422d-9004-c4aa9db1abb5/1/MCX9M5qmRQTyiaAMQXPFWgAC60Q.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
45:77:b1:bd:78:2e:27:62:6c:00:eb:e1:13:a1:22:b8:4d:00:
75:86:1c:f9:bf:31:cf:bf:97:8b:9f:2f:4c:52:9f:84:b4:82:
0d:bc:97:5e:ac:04:8a:68:d2:b8:e0:54:f6:26:a1:17:9d:5a:
14:7b:0a:5c:09:41:16:41:e5:65:0c:69:70:a6:3b:41:7c:4c:
3a:0c:ba:4e:e2:50:da:9e:1d:eb:4e:47:7d:68:74:82:09:5d:
50:65:4b:57:2a:2a:58:4d:46:10:97:30:b2:a3:c7:9e:4e:0b:
d4:71:dc:ff:5f:b5:1f:2d:ee:fa:72:dd:be:f6:7e:73:7c:74:
99:1c:74:01:d0:1e:b3:cb:fe:88:23:c8:44:33:67:70:66:ed:
7f:22:f7:ef:78:70:c9:5a:5f:12:ac:64:c9:a1:e4:06:16:e9:
75:69:44:77:2f:3c:21:cf:6e:0b:4f:d1:d5:45:e8:20:d1:95:
14:2c:68:50:98:4d:f8:1b:22:d3:0a:29:9d:7d:de:a9:0d:18:
7f:b7:15:8c:ab:9e:13:4e:bd:a2:7f:7d:22:56:b3:cd:25:c4:
1b:5c:f5:48:67:74:53:ff:1c:a2:d0:3f:1f:c0:b7:56:f4:ae:
28:33:bb:6d:11:45:e1:b0:b1:24:03:fd:bf:e4:0d:2a:10:60:
69:34:6f:ae
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jun 13 14:59:24 2025 by rpki-client