Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9c/f171be-9653-41d8-a344-fec15ab84135/1/Mp27RqTrdkXZlKDkuYT82sIEpIQ.mft
File: Mp27RqTrdkXZlKDkuYT82sIEpIQ.mft (raw, json)
Hash identifier: mHsYFgR3jBVsvkmyX74TOSeNt4RSH4H8655KSqzkoMI=
Subject key identifier: 39:F6:0D:37:B9:C3:B9:89:2E:8A:E2:0D:8A:B6:A9:1C:49:DD:93:B6
Authority key identifier: 32:9D:BB:46:A4:EB:76:45:D9:94:A0:E4:B9:84:FC:DA:C2:04:A4:84
Certificate issuer: /CN=329dbb46a4eb7645d994a0e4b984fcdac204a484
Certificate serial: 01974E5867867686D0E7723085CB9FB19ED6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Mp27RqTrdkXZlKDkuYT82sIEpIQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9c/f171be-9653-41d8-a344-fec15ab84135/1/Mp27RqTrdkXZlKDkuYT82sIEpIQ.mft
Manifest number: 025F
Signing time: Sun 08 Jun 2025 07:01:45 +0000
Manifest this update: Sun 08 Jun 2025 07:01:45 +0000
Manifest next update: Mon 09 Jun 2025 07:01:45 +0000
Files and hashes: 1: Mp27RqTrdkXZlKDkuYT82sIEpIQ.crl (hash: ZO6M+6kHqvcpstUlSiAPSO4HtBs0JHCwdrjZO0cH0EA=)
2: ZyPIESuaSWPIuQmq_le4sKOKISE.roa (hash: ZskQdIcp36rlr+2ORbgrG1PrwisAu9ueRcvHTkIY4YM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/9c/f171be-9653-41d8-a344-fec15ab84135/1/Mp27RqTrdkXZlKDkuYT82sIEpIQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/9c/f171be-9653-41d8-a344-fec15ab84135/1/Mp27RqTrdkXZlKDkuYT82sIEpIQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/Mp27RqTrdkXZlKDkuYT82sIEpIQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 09 Jun 2025 03:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:4e:58:67:86:76:86:d0:e7:72:30:85:cb:9f:b1:9e:d6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=329dbb46a4eb7645d994a0e4b984fcdac204a484
Validity
Not Before: Jun 8 07:01:45 2025 GMT
Not After : Jun 9 07:01:45 2025 GMT
Subject: CN=39f60d37b9c3b9892e8ae20d8ab6a91c49dd93b6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:fe:28:ab:41:bd:68:98:e8:f9:5a:d5:a4:cb:
b8:db:6c:8f:30:96:74:06:57:a5:ce:8d:3a:5f:15:
3d:a6:d9:61:94:e3:53:3a:54:06:66:bc:3f:65:22:
41:d1:93:54:37:b4:9c:b5:39:16:d2:ee:e4:1e:48:
49:43:f2:5e:6d:e1:e2:b5:d8:5d:6f:98:eb:01:0b:
39:a7:33:6a:a4:14:3f:e3:48:65:86:7c:d0:00:66:
d0:9a:bd:a6:fb:2c:04:d8:76:a3:87:db:39:7b:d8:
ee:3a:78:c9:6d:ee:19:b2:63:fb:99:49:44:13:6b:
c8:06:2e:b2:4f:c6:94:11:15:db:a3:f1:16:e0:9d:
e9:38:60:42:1a:e2:46:80:50:c5:13:07:a1:05:e8:
f9:3a:75:bc:b0:35:6f:d6:5e:76:9d:30:91:2f:c0:
50:6e:7b:a5:69:c3:90:b5:32:73:de:58:ee:dc:75:
b2:20:c8:39:8e:53:05:a6:51:55:b5:15:65:21:3f:
df:4c:f1:91:a1:45:e1:e3:02:f7:a8:8e:90:17:48:
c8:eb:cf:41:7b:c0:16:7f:f9:b2:d5:5c:58:25:6a:
6a:d3:4d:4a:31:41:80:c4:ac:7f:72:fd:ee:9c:19:
26:3c:b8:7e:21:fa:14:3d:68:9d:1b:48:36:85:f6:
c5:97
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
39:F6:0D:37:B9:C3:B9:89:2E:8A:E2:0D:8A:B6:A9:1C:49:DD:93:B6
X509v3 Authority Key Identifier:
keyid:32:9D:BB:46:A4:EB:76:45:D9:94:A0:E4:B9:84:FC:DA:C2:04:A4:84
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Mp27RqTrdkXZlKDkuYT82sIEpIQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9c/f171be-9653-41d8-a344-fec15ab84135/1/Mp27RqTrdkXZlKDkuYT82sIEpIQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9c/f171be-9653-41d8-a344-fec15ab84135/1/Mp27RqTrdkXZlKDkuYT82sIEpIQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
a0:36:8d:b0:27:42:2b:16:36:99:e0:99:90:d2:dc:f3:ad:f8:
07:06:93:59:99:08:c7:2c:24:84:8a:a9:4a:7d:3d:38:f7:11:
f6:60:3e:9b:a2:59:52:60:eb:14:b2:e4:27:a3:16:44:c7:1f:
74:c4:a3:c0:03:2e:44:77:9b:ff:d6:75:2b:3f:2a:19:ee:f5:
b9:84:65:de:a7:38:7a:ea:dc:f9:df:d5:98:14:4a:9e:13:82:
cd:d5:29:f6:6c:49:db:d8:9c:d3:19:13:02:58:2c:1f:71:2f:
c5:e8:d5:16:73:3d:4d:77:76:97:8f:51:bc:bd:f3:e2:0a:7f:
84:b4:31:3b:72:ca:3c:61:b3:80:e2:59:1a:d1:40:b8:97:3f:
9c:11:82:94:64:ae:45:4f:e8:d4:1d:10:3b:cb:d0:f7:b0:69:
d2:d3:c5:8a:f1:1e:2e:c6:32:31:2f:9a:3a:f5:b2:ab:33:db:
47:7b:f1:94:0c:4f:29:31:4a:f5:1c:03:ee:57:9c:df:fa:45:
dd:83:65:a5:29:35:15:75:3e:85:8b:d1:04:40:08:69:2f:2d:
6c:73:83:38:2f:1b:3b:43:bf:25:67:5c:13:ad:12:7f:eb:ab:
c3:2a:87:42:38:9e:03:1c:0b:e3:82:c5:31:ab:9f:ee:66:b9:
fb:68:a6:1f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 8 11:52:42 2025 by rpki-client