Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/99/0a206e-1788-436b-9728-bed4b99a7bb4/1/MrG5Swc8VHmRwg-ELq3sFn7BnjQ.mft
File: MrG5Swc8VHmRwg-ELq3sFn7BnjQ.mft (raw, json)
Hash identifier: fFtMMOM1LfzM7enBATnTfLn0w8lZW33WNSTmYtFZ9Po=
Subject key identifier: D7:F0:B6:76:6B:EB:6E:43:87:50:BD:2F:3E:F7:41:53:FA:94:52:33
Authority key identifier: 32:B1:B9:4B:07:3C:54:79:91:C2:0F:84:2E:AD:EC:16:7E:C1:9E:34
Certificate issuer: /CN=32b1b94b073c547991c20f842eadec167ec19e34
Certificate serial: 019936F0C576A4F8AD5F700C5F286CA3BC2E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/MrG5Swc8VHmRwg-ELq3sFn7BnjQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/99/0a206e-1788-436b-9728-bed4b99a7bb4/1/MrG5Swc8VHmRwg-ELq3sFn7BnjQ.mft
Manifest number: 02F2
Signing time: Thu 11 Sep 2025 04:02:52 +0000
Manifest this update: Thu 11 Sep 2025 04:02:52 +0000
Manifest next update: Fri 12 Sep 2025 04:02:52 +0000
Files and hashes: 1: HTiETFMnseisEeoALFIWItsK6gc.roa (hash: iulklaFZv7FQZ4kyFEEaoOlUffIGv7CCXTbtxR93AS4=)
2: MrG5Swc8VHmRwg-ELq3sFn7BnjQ.crl (hash: BZI48KMLOhqB/8t172WBZlj84MovHHnhP9Do+CLHD+U=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/99/0a206e-1788-436b-9728-bed4b99a7bb4/1/MrG5Swc8VHmRwg-ELq3sFn7BnjQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/99/0a206e-1788-436b-9728-bed4b99a7bb4/1/MrG5Swc8VHmRwg-ELq3sFn7BnjQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/MrG5Swc8VHmRwg-ELq3sFn7BnjQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 12 Sep 2025 04:02:52 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:36:f0:c5:76:a4:f8:ad:5f:70:0c:5f:28:6c:a3:bc:2e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=32b1b94b073c547991c20f842eadec167ec19e34
Validity
Not Before: Sep 11 04:02:52 2025 GMT
Not After : Sep 12 04:02:52 2025 GMT
Subject: CN=d7f0b6766beb6e438750bd2f3ef74153fa945233
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d8:84:69:41:d9:1e:a7:a3:3d:40:36:2e:9a:98:
b6:f9:c2:83:4e:fc:a5:a5:4f:8c:cb:82:e1:a6:3b:
9b:2b:55:50:a4:05:39:57:d8:a3:ee:c2:41:0a:33:
0e:15:57:42:35:7c:57:3c:8c:7e:ab:f6:1d:27:f1:
88:c7:c8:0b:3e:1a:dd:33:c2:46:53:03:85:53:19:
81:c7:d8:a1:a7:1c:59:b4:64:d9:cb:96:42:3a:0e:
65:92:1f:dd:3b:1e:06:8c:68:c4:cb:9c:8e:47:03:
8e:00:9e:30:8f:23:19:11:23:1f:42:6f:85:08:69:
27:2f:7a:0f:16:2a:b1:4d:e4:cf:15:cc:ca:0d:22:
f5:69:1f:94:9d:03:b1:86:c0:e4:18:0d:2d:c9:ce:
1a:f0:33:d7:e3:0e:9a:bd:93:53:87:90:6c:d0:fa:
a1:5d:4f:4c:a4:53:90:52:43:91:56:86:52:a2:7c:
d4:5d:a8:01:06:32:3b:4a:a5:16:d3:87:a5:6f:43:
41:47:79:8e:8a:0b:c3:ee:f0:00:d5:f2:cf:ae:46:
03:69:14:41:9e:b7:64:bc:d2:f9:8a:ec:4d:ac:04:
6e:fe:c6:1d:ab:2d:89:3a:9e:3c:fa:5e:d3:ab:8e:
ab:05:ab:e2:9c:9a:24:31:40:b6:73:28:04:bf:48:
47:27
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D7:F0:B6:76:6B:EB:6E:43:87:50:BD:2F:3E:F7:41:53:FA:94:52:33
X509v3 Authority Key Identifier:
keyid:32:B1:B9:4B:07:3C:54:79:91:C2:0F:84:2E:AD:EC:16:7E:C1:9E:34
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MrG5Swc8VHmRwg-ELq3sFn7BnjQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/99/0a206e-1788-436b-9728-bed4b99a7bb4/1/MrG5Swc8VHmRwg-ELq3sFn7BnjQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/99/0a206e-1788-436b-9728-bed4b99a7bb4/1/MrG5Swc8VHmRwg-ELq3sFn7BnjQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
0e:e5:94:84:41:ea:7c:6b:f0:ed:f8:80:9b:74:a3:d3:94:fa:
a6:af:38:cd:bc:97:a9:6b:33:93:f3:85:8f:05:24:b1:ca:e2:
b3:74:6b:25:d5:75:a0:16:0e:e7:7b:23:c0:ce:a2:44:09:bf:
db:b6:05:7e:2b:fe:69:7e:01:89:d6:cf:a4:c4:74:60:d9:a9:
5f:7f:ed:be:82:0d:aa:f1:24:13:5d:c3:24:eb:33:00:d8:46:
1c:8a:6e:9c:e9:d7:9f:85:df:aa:92:3f:6f:9a:ea:ef:95:55:
0f:ab:39:da:b3:8a:7e:d9:d0:dc:7a:92:0b:15:4d:71:8f:f4:
4c:f6:15:5c:45:14:a9:df:4b:82:f0:60:4e:96:b0:f6:b7:e5:
92:52:1a:b1:35:9e:a3:e1:91:2a:20:5a:d6:70:8c:15:24:30:
ab:fa:58:f5:5f:31:f5:93:ad:1a:bd:63:88:86:43:01:c4:c8:
73:b2:09:1d:12:3d:3e:ee:71:d6:ce:91:50:5c:2d:48:68:e4:
b5:34:ac:c5:73:b8:a5:e9:56:71:7b:2a:e2:0e:22:80:d9:3d:
71:d3:6b:ef:e3:71:0a:b3:df:b7:92:35:96:b6:29:52:41:9a:
4e:5a:a8:42:3c:58:03:c9:a7:20:71:5d:ad:4f:60:6d:ae:88:
bb:b5:63:01
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Sep 11 12:44:59 2025 by rpki-client