Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/99/0a206e-1788-436b-9728-bed4b99a7bb4/1/MrG5Swc8VHmRwg-ELq3sFn7BnjQ.mft
File: MrG5Swc8VHmRwg-ELq3sFn7BnjQ.mft (raw, json)
Hash identifier: 4njUQ/n1IndakclOKExFoCPoP5o2qHB8DhASzLYkLpI=
Subject key identifier: 45:8F:89:D9:F1:40:15:10:50:C9:41:B4:CB:1A:01:71:20:17:5B:79
Authority key identifier: 32:B1:B9:4B:07:3C:54:79:91:C2:0F:84:2E:AD:EC:16:7E:C1:9E:34
Certificate issuer: /CN=32b1b94b073c547991c20f842eadec167ec19e34
Certificate serial: 019759EE740124DA075C25F9995EE54570F9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/MrG5Swc8VHmRwg-ELq3sFn7BnjQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/99/0a206e-1788-436b-9728-bed4b99a7bb4/1/MrG5Swc8VHmRwg-ELq3sFn7BnjQ.mft
Manifest number: 01FB
Signing time: Tue 10 Jun 2025 13:01:28 +0000
Manifest this update: Tue 10 Jun 2025 13:01:28 +0000
Manifest next update: Wed 11 Jun 2025 13:01:28 +0000
Files and hashes: 1: HTiETFMnseisEeoALFIWItsK6gc.roa (hash: iulklaFZv7FQZ4kyFEEaoOlUffIGv7CCXTbtxR93AS4=)
2: MrG5Swc8VHmRwg-ELq3sFn7BnjQ.crl (hash: DIIvxLdw/BsB4GasEHklIoXxwv+B5oGWBEo4Adaj1qY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/99/0a206e-1788-436b-9728-bed4b99a7bb4/1/MrG5Swc8VHmRwg-ELq3sFn7BnjQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/99/0a206e-1788-436b-9728-bed4b99a7bb4/1/MrG5Swc8VHmRwg-ELq3sFn7BnjQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/MrG5Swc8VHmRwg-ELq3sFn7BnjQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 11 Jun 2025 13:01:28 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:59:ee:74:01:24:da:07:5c:25:f9:99:5e:e5:45:70:f9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=32b1b94b073c547991c20f842eadec167ec19e34
Validity
Not Before: Jun 10 13:01:28 2025 GMT
Not After : Jun 11 13:01:28 2025 GMT
Subject: CN=458f89d9f140151050c941b4cb1a017120175b79
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8b:47:f2:bd:2a:dd:b7:de:be:9d:20:83:cb:08:
90:19:bf:ed:ef:09:98:d6:29:13:ba:a7:93:fb:7d:
bc:82:99:31:72:8c:ad:c7:3c:2e:06:ae:14:f9:1c:
78:af:0f:d5:2b:78:bc:a3:3d:a6:bc:d8:73:19:db:
31:0c:51:61:fd:e5:a4:9a:14:b1:48:15:2b:8a:78:
a5:73:fd:eb:28:a3:7a:5e:42:65:ea:c4:de:8e:2c:
54:74:b6:90:48:f6:e8:44:49:c7:c7:aa:8d:b5:d5:
11:7f:1f:db:f4:6a:ce:3a:50:b9:21:30:4a:24:f6:
5f:88:c7:b8:d7:92:b0:79:66:e6:19:7b:0e:5b:39:
f9:12:56:60:b7:24:d7:55:c5:7d:07:2c:7b:b0:23:
47:41:d6:54:cd:cd:e0:e3:fc:c8:f4:c1:70:2d:b2:
c8:17:45:7f:b0:51:f5:02:e6:71:d0:d7:86:a9:47:
e9:ec:3c:13:d8:1c:b6:dd:9e:3e:6f:58:08:c8:12:
6a:2d:0c:d3:89:55:ed:a4:5c:31:3d:38:d5:2f:f1:
8f:77:32:82:28:98:19:f4:e2:bc:6a:cd:15:ca:ff:
50:c5:ff:d7:0c:1e:89:2d:0d:2b:6d:61:b4:83:66:
da:da:3d:e8:9d:31:df:f8:94:72:cc:97:f1:78:8f:
b9:4d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
45:8F:89:D9:F1:40:15:10:50:C9:41:B4:CB:1A:01:71:20:17:5B:79
X509v3 Authority Key Identifier:
keyid:32:B1:B9:4B:07:3C:54:79:91:C2:0F:84:2E:AD:EC:16:7E:C1:9E:34
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MrG5Swc8VHmRwg-ELq3sFn7BnjQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/99/0a206e-1788-436b-9728-bed4b99a7bb4/1/MrG5Swc8VHmRwg-ELq3sFn7BnjQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/99/0a206e-1788-436b-9728-bed4b99a7bb4/1/MrG5Swc8VHmRwg-ELq3sFn7BnjQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
33:91:31:46:56:90:1c:90:22:82:f6:40:73:3f:a8:1d:e7:05:
aa:d7:4d:df:ca:e8:7a:7b:be:bd:0d:b0:e4:17:53:60:24:34:
9c:1a:af:60:11:85:98:e4:67:d1:14:6a:34:69:96:61:de:60:
27:7a:2d:c5:4c:be:1d:0a:5f:09:c0:4c:bb:d0:4f:6a:05:23:
20:9f:7b:37:21:7b:02:d0:d3:0d:46:5b:d0:22:fd:c3:71:5b:
93:a3:7b:7d:14:93:0c:2a:0b:a9:97:42:4c:4c:51:70:40:0e:
73:ec:98:dc:5b:19:ce:ed:61:03:52:db:f6:cf:0e:fe:b1:75:
fe:b2:ec:60:89:34:a0:df:52:69:48:a6:cc:a4:03:5a:d2:12:
42:63:c1:98:2c:09:da:78:75:fd:8e:8d:55:85:dc:93:a4:94:
d7:1f:24:20:d6:39:6f:3b:c9:48:eb:42:80:b2:5a:d3:6e:02:
63:9e:49:e4:c1:09:66:58:7e:ae:b5:7f:35:d4:85:8b:48:a7:
49:36:cc:b7:12:b3:63:9e:d0:d0:48:1f:f7:5e:f3:c2:b5:04:
d0:64:c0:86:31:2f:db:d8:a4:93:54:a6:6a:35:3a:71:b7:cc:
07:01:4f:7d:e6:f0:7b:8d:df:82:ae:25:e4:76:fc:ae:89:36:
f5:1c:c4:d0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jun 10 17:49:06 2025 by rpki-client