Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ae/51a115-de86-4407-a963-1c5c20d13ef8/1/MlPNw--1IdnV5wqcxeRxsBWGA2o.mft
File: MlPNw--1IdnV5wqcxeRxsBWGA2o.mft (raw, json)
Hash identifier: RjY1pMSXVqcaLmGJuas7PlW78gePLwNsOiOru5SBWu8=
Subject key identifier: F8:CF:DB:8F:45:B4:6C:C4:6A:7A:2A:59:FF:5E:EE:28:0E:7D:92:ED
Authority key identifier: 32:53:CD:C3:EF:B5:21:D9:D5:E7:0A:9C:C5:E4:71:B0:15:86:03:6A
Certificate issuer: /CN=3253cdc3efb521d9d5e70a9cc5e471b01586036a
Certificate serial: 01976D3D9A31C29E80DC560D61A7BAF0DC25
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/MlPNw--1IdnV5wqcxeRxsBWGA2o.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ae/51a115-de86-4407-a963-1c5c20d13ef8/1/MlPNw--1IdnV5wqcxeRxsBWGA2o.mft
Manifest number: 08B3
Signing time: Sat 14 Jun 2025 07:00:43 +0000
Manifest this update: Sat 14 Jun 2025 07:00:43 +0000
Manifest next update: Sun 15 Jun 2025 07:00:43 +0000
Files and hashes: 1: MlPNw--1IdnV5wqcxeRxsBWGA2o.crl (hash: ru7V0A4/Yt+52NMdOXb8iwo3MLNCn3uUNTSHHfMCBSs=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ae/51a115-de86-4407-a963-1c5c20d13ef8/1/MlPNw--1IdnV5wqcxeRxsBWGA2o.crl
rsync://rpki.ripe.net/repository/DEFAULT/ae/51a115-de86-4407-a963-1c5c20d13ef8/1/MlPNw--1IdnV5wqcxeRxsBWGA2o.mft
rsync://rpki.ripe.net/repository/DEFAULT/MlPNw--1IdnV5wqcxeRxsBWGA2o.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 15 Jun 2025 03:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:6d:3d:9a:31:c2:9e:80:dc:56:0d:61:a7:ba:f0:dc:25
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3253cdc3efb521d9d5e70a9cc5e471b01586036a
Validity
Not Before: Jun 14 07:00:43 2025 GMT
Not After : Jun 15 07:00:43 2025 GMT
Subject: CN=f8cfdb8f45b46cc46a7a2a59ff5eee280e7d92ed
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:93:1c:0f:4b:94:2c:3d:dd:40:06:30:35:84:fa:
ec:20:65:21:ac:0d:09:ae:f7:7f:f5:e3:cb:25:6b:
5b:04:49:a8:fe:1b:bf:c7:bc:52:6c:35:b1:0b:c9:
55:a9:a4:69:29:96:44:7c:49:3f:f4:2b:f8:6f:f0:
7d:3f:66:85:d1:29:f6:cb:5d:e2:9f:98:1d:82:de:
24:50:73:89:29:e3:a6:87:35:20:2e:d4:44:85:83:
3c:f3:48:dd:89:ed:72:3f:f3:6b:e8:01:b1:ed:5d:
cf:09:ab:61:61:7c:d8:c7:90:47:f3:5e:ca:3c:ef:
09:d6:8e:28:4a:53:d1:ab:9d:21:d2:fe:12:37:0d:
ea:9a:0e:31:a9:7b:4e:a8:c3:d7:c7:f2:5a:c4:72:
e0:fe:c4:93:52:8b:33:94:ef:b4:5f:82:b2:17:0a:
0a:d8:57:36:37:dc:8c:c1:44:e6:71:d7:ea:3d:eb:
85:dd:f3:1d:55:97:b3:39:43:dc:e1:aa:60:7d:b3:
a3:4d:99:f8:6d:40:6f:b3:33:5e:bb:aa:53:58:f1:
8c:55:39:8c:b0:80:9c:05:88:ea:7f:e7:3b:32:8f:
ed:9d:db:1d:02:4d:6f:ef:ec:c6:c0:e9:6d:9d:15:
0d:52:d1:ea:f4:83:b1:52:8e:fc:57:3a:aa:90:df:
a4:c1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F8:CF:DB:8F:45:B4:6C:C4:6A:7A:2A:59:FF:5E:EE:28:0E:7D:92:ED
X509v3 Authority Key Identifier:
keyid:32:53:CD:C3:EF:B5:21:D9:D5:E7:0A:9C:C5:E4:71:B0:15:86:03:6A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MlPNw--1IdnV5wqcxeRxsBWGA2o.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ae/51a115-de86-4407-a963-1c5c20d13ef8/1/MlPNw--1IdnV5wqcxeRxsBWGA2o.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ae/51a115-de86-4407-a963-1c5c20d13ef8/1/MlPNw--1IdnV5wqcxeRxsBWGA2o.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
48:85:58:a9:df:45:89:42:bc:ac:9f:1d:6a:78:a0:31:c4:af:
09:35:4f:48:08:6e:c3:e1:b1:a4:c4:30:7d:3e:d9:00:2e:13:
57:58:e2:7b:a7:12:99:8b:47:f2:be:7a:3c:9f:ad:f5:b7:2b:
c1:51:f6:d1:ea:bc:b5:55:45:7e:75:f5:c1:e1:e0:cd:7e:9b:
37:79:58:25:df:05:0f:9d:4f:7a:b2:1f:2a:e5:85:80:31:6b:
c6:57:85:d6:1b:ff:4d:6e:fa:93:e0:e8:6b:b2:0d:69:11:b5:
ac:c2:b7:99:1b:73:ca:42:6f:b2:44:9e:b5:53:e2:d8:3b:6f:
dd:29:f8:e7:49:a3:37:ed:5a:6d:e0:0c:b4:86:e5:90:47:e8:
cc:6f:0d:b0:2d:2c:7d:03:f2:aa:01:f9:85:f5:d3:a7:10:89:
db:95:38:80:9d:64:0a:02:d1:c2:0b:b0:88:84:b5:6f:0e:43:
8c:b5:79:7a:6f:14:01:38:27:a6:7e:d3:d7:ed:3b:4e:97:91:
3a:af:85:86:16:54:b5:87:a4:91:ef:91:ab:71:53:96:54:9c:
5b:ea:be:4f:6a:37:d7:5e:63:fa:70:d7:20:75:c9:fe:54:a2:
f4:58:66:ae:56:55:af:4d:8a:c6:e8:a1:29:e9:30:92:e7:5f:
5c:5b:68:ed
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 14 14:14:13 2025 by rpki-client