Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a9/43d301-f81a-492e-922c-c971dc713b1f/1/mPArXPtBclCOBze_Jc1dIqAdxFo.mft
File: mPArXPtBclCOBze_Jc1dIqAdxFo.mft (raw, json)
Hash identifier: U3nCrr5rh1tlv7qYNgxIn/28sGG+GlK6Uxisj+EiBIQ=
Subject key identifier: 62:8B:D0:C0:AF:BC:B0:D4:0E:88:00:8F:CB:CB:B4:D1:BC:3E:A0:61
Authority key identifier: 98:F0:2B:5C:FB:41:72:50:8E:07:37:BF:25:CD:5D:22:A0:1D:C4:5A
Certificate issuer: /CN=98f02b5cfb4172508e0737bf25cd5d22a01dc45a
Certificate serial: 01983DCED89BD41E2E7C4B02C88653ED58E3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/mPArXPtBclCOBze_Jc1dIqAdxFo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a9/43d301-f81a-492e-922c-c971dc713b1f/1/mPArXPtBclCOBze_Jc1dIqAdxFo.mft
Manifest number: 072B
Signing time: Thu 24 Jul 2025 19:00:22 +0000
Manifest this update: Thu 24 Jul 2025 19:00:22 +0000
Manifest next update: Fri 25 Jul 2025 19:00:22 +0000
Files and hashes: 1: Keu4ORQGNbpvqRyHyCkLTUO_lOA.roa (hash: 8AaJ0cxF0N1CmP6IwiLLt/ItfrvG5f97UQsDx1F7lhM=)
2: mPArXPtBclCOBze_Jc1dIqAdxFo.crl (hash: jPKqm+y4vFyCtvQht7k8gW67WlmmCBP3Ki1OeTsmQT8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a9/43d301-f81a-492e-922c-c971dc713b1f/1/mPArXPtBclCOBze_Jc1dIqAdxFo.crl
rsync://rpki.ripe.net/repository/DEFAULT/a9/43d301-f81a-492e-922c-c971dc713b1f/1/mPArXPtBclCOBze_Jc1dIqAdxFo.mft
rsync://rpki.ripe.net/repository/DEFAULT/mPArXPtBclCOBze_Jc1dIqAdxFo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 25 Jul 2025 14:07:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:3d:ce:d8:9b:d4:1e:2e:7c:4b:02:c8:86:53:ed:58:e3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=98f02b5cfb4172508e0737bf25cd5d22a01dc45a
Validity
Not Before: Jul 24 19:00:22 2025 GMT
Not After : Jul 25 19:00:22 2025 GMT
Subject: CN=628bd0c0afbcb0d40e88008fcbcbb4d1bc3ea061
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:a8:13:f6:17:bc:2c:0a:f4:1c:52:a3:ce:c7:
da:42:81:ce:bf:aa:7c:9b:1c:98:d5:a5:ee:17:34:
bb:73:38:5a:9f:0a:2d:fc:76:46:ab:8a:0d:08:df:
ff:9a:e7:41:74:60:ec:2f:5d:46:da:6a:a2:5a:63:
f7:c7:c5:72:68:d5:bd:54:75:0d:f8:c7:6a:2a:59:
4b:36:90:c1:4a:6f:7a:1f:02:f6:a7:fb:03:e3:e8:
9d:12:c0:8f:42:1a:bb:d9:98:46:2f:d4:f8:15:67:
95:0f:2d:3b:46:7d:95:fb:6f:71:29:47:b6:d9:27:
3b:4f:cb:a3:d5:f7:7c:65:4f:69:57:a2:6d:ff:01:
2e:17:63:87:72:3e:73:aa:9a:27:d4:3b:da:2d:61:
14:b5:f1:6f:22:c7:74:58:83:45:4c:98:a4:e6:9f:
13:c9:01:3f:e3:4a:d7:91:40:f4:24:d9:57:89:3e:
33:2b:5c:fb:74:cb:73:9c:1f:e5:d4:f2:c5:e0:59:
45:4e:3e:f3:45:de:18:c1:14:c5:6b:a1:61:79:f4:
35:dd:7e:7b:77:2f:f6:02:74:ca:11:e7:bb:de:25:
2d:a8:88:5b:30:54:5f:1d:f4:fe:d3:9c:71:9b:92:
71:99:8c:43:7d:d8:50:19:c9:c3:c0:e2:c4:72:53:
e6:fb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
62:8B:D0:C0:AF:BC:B0:D4:0E:88:00:8F:CB:CB:B4:D1:BC:3E:A0:61
X509v3 Authority Key Identifier:
keyid:98:F0:2B:5C:FB:41:72:50:8E:07:37:BF:25:CD:5D:22:A0:1D:C4:5A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/mPArXPtBclCOBze_Jc1dIqAdxFo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a9/43d301-f81a-492e-922c-c971dc713b1f/1/mPArXPtBclCOBze_Jc1dIqAdxFo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a9/43d301-f81a-492e-922c-c971dc713b1f/1/mPArXPtBclCOBze_Jc1dIqAdxFo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
3f:6b:b0:11:20:a4:1c:ac:76:ed:90:d1:45:f0:c0:be:27:19:
d2:58:a7:94:f9:df:2e:23:30:b8:0a:3c:54:b8:e3:27:df:83:
1e:a4:46:ed:00:95:5f:48:28:7d:24:e1:95:6e:11:c3:3d:9f:
bd:65:7c:6f:9c:ea:21:0e:df:75:de:ee:b8:9b:02:6b:6b:2e:
88:e6:fa:cc:5a:1c:e9:f8:39:5e:5d:ae:a9:a0:ad:74:96:19:
cc:e6:24:43:31:ef:ba:62:e4:57:42:35:91:91:d2:69:8d:58:
d0:4f:8b:03:58:34:1d:6a:c3:b4:db:5c:5b:1a:fc:9c:ae:0b:
7c:ea:ee:89:96:2c:98:5b:4e:a9:09:15:fc:69:9b:0d:43:4d:
96:70:e4:a8:77:d4:5a:56:21:60:bc:99:fd:c0:0e:ac:94:4b:
7a:50:1c:f4:79:bb:c4:63:66:29:a2:f3:b6:df:05:49:5a:c9:
79:74:bc:c1:3e:a2:e8:9b:ae:75:ea:7d:78:c8:3c:14:09:8f:
74:e9:b2:a8:6a:78:71:91:47:ea:34:9d:bb:4a:15:c3:5f:4d:
11:dc:be:cf:60:ca:b0:b9:88:1b:c8:5a:26:aa:62:d0:9c:11:
16:d6:f5:e3:aa:33:f3:1d:6b:50:dc:c1:c4:47:77:10:b3:99:
36:10:37:7e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 24 22:58:01 2025 by rpki-client