Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d4/106b3f-55a3-4558-8013-4bee3274c698/1/MQmo1w-kR4k1sFwGIfaIlVJAXa8.mft
File: MQmo1w-kR4k1sFwGIfaIlVJAXa8.mft (raw, json)
Hash identifier: bBPrmMxDHjhXmHCWWr4PDmQDm2svoIpzRgijwbdxSkQ=
Subject key identifier: 51:A1:CE:E5:1A:38:E4:AA:CF:F8:E4:DE:B0:EB:B7:83:3A:26:3E:C5
Authority key identifier: 31:09:A8:D7:0F:A4:47:89:35:B0:5C:06:21:F6:88:95:52:40:5D:AF
Certificate issuer: /CN=3109a8d70fa4478935b05c0621f6889552405daf
Certificate serial: 0199239F8E3EEC118D589B32C34C10B97188
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/MQmo1w-kR4k1sFwGIfaIlVJAXa8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d4/106b3f-55a3-4558-8013-4bee3274c698/1/MQmo1w-kR4k1sFwGIfaIlVJAXa8.mft
Manifest number: E8
Signing time: Sun 07 Sep 2025 10:01:23 +0000
Manifest this update: Sun 07 Sep 2025 10:01:23 +0000
Manifest next update: Mon 08 Sep 2025 10:01:23 +0000
Files and hashes: 1: MQmo1w-kR4k1sFwGIfaIlVJAXa8.crl (hash: 4ucSnzGcjtnCicn81vVXAL9SSAvTVIsiJSWTy/GcCxY=)
2: yIyDsEh1dvcmsUPH7E2Ou8dLDUQ.roa (hash: wtZTOXp1JfHeuiQ37lVv2g4xea2Kfo548MrcJ05G7l8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d4/106b3f-55a3-4558-8013-4bee3274c698/1/MQmo1w-kR4k1sFwGIfaIlVJAXa8.crl
rsync://rpki.ripe.net/repository/DEFAULT/d4/106b3f-55a3-4558-8013-4bee3274c698/1/MQmo1w-kR4k1sFwGIfaIlVJAXa8.mft
rsync://rpki.ripe.net/repository/DEFAULT/MQmo1w-kR4k1sFwGIfaIlVJAXa8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 08 Sep 2025 07:00:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:23:9f:8e:3e:ec:11:8d:58:9b:32:c3:4c:10:b9:71:88
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3109a8d70fa4478935b05c0621f6889552405daf
Validity
Not Before: Sep 7 10:01:23 2025 GMT
Not After : Sep 8 10:01:23 2025 GMT
Subject: CN=51a1cee51a38e4aacff8e4deb0ebb7833a263ec5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ce:ce:c4:e4:89:f0:a5:79:0c:fa:69:c8:8b:22:
96:9c:31:a8:ae:cf:15:71:1c:af:a5:ac:9f:56:4d:
1b:f3:d2:10:36:9b:2c:e2:a8:17:5f:c5:68:a5:97:
be:4e:41:b3:bf:fd:08:ae:40:09:86:7a:04:51:88:
21:af:3c:21:84:07:3c:37:a3:e6:69:a0:2d:27:e3:
93:f3:aa:a0:a5:32:e4:34:ce:f7:dd:af:32:6e:4d:
68:0b:a5:fa:7d:86:f4:05:da:34:32:10:e3:45:94:
b3:a3:b0:fc:fc:0c:48:01:f0:c9:6e:11:d3:2b:84:
ca:cc:a6:66:e6:f4:21:05:90:f0:8b:d4:5d:8a:c9:
65:65:02:34:8f:2e:f1:47:82:4d:c4:79:8a:b7:f0:
c8:dc:c1:a7:ba:f9:61:0a:5f:07:34:a7:35:8d:c8:
17:ef:a6:f4:86:5b:cd:7c:3d:42:00:a9:49:87:da:
b7:b1:ea:35:bf:ef:d2:be:c9:30:7b:63:20:36:e6:
65:4c:1e:40:f6:30:9b:02:6a:1d:78:eb:6b:96:fb:
6a:57:ae:74:00:21:40:15:f2:17:b7:18:25:0b:94:
47:22:74:f5:ea:2a:60:ca:96:a6:df:4c:fb:5e:b6:
a2:74:60:e6:5b:9a:5c:94:98:b6:4c:36:58:81:db:
13:05
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
51:A1:CE:E5:1A:38:E4:AA:CF:F8:E4:DE:B0:EB:B7:83:3A:26:3E:C5
X509v3 Authority Key Identifier:
keyid:31:09:A8:D7:0F:A4:47:89:35:B0:5C:06:21:F6:88:95:52:40:5D:AF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MQmo1w-kR4k1sFwGIfaIlVJAXa8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d4/106b3f-55a3-4558-8013-4bee3274c698/1/MQmo1w-kR4k1sFwGIfaIlVJAXa8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d4/106b3f-55a3-4558-8013-4bee3274c698/1/MQmo1w-kR4k1sFwGIfaIlVJAXa8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
3d:5a:55:f3:1a:92:35:87:5d:ff:2f:4f:fd:68:37:cc:ec:bb:
98:26:d4:e3:8f:81:f6:ff:38:b6:21:b8:8d:5d:0a:ff:38:47:
c4:93:69:3d:90:d3:69:08:9c:51:23:77:30:ec:07:41:90:21:
c0:e4:24:d9:af:7b:9a:08:e8:9e:71:44:3c:62:32:4b:09:8e:
0c:8a:ff:d9:9d:56:fd:76:fe:86:b6:67:cd:6e:8f:35:ec:89:
f5:0d:9f:a4:8e:63:5f:74:48:c6:4f:30:0f:07:72:90:84:ef:
92:06:89:36:34:b7:cb:f5:96:8a:92:64:c9:85:52:27:08:cd:
38:75:69:40:ed:65:47:ce:08:9a:d1:fb:99:2b:cd:8f:c7:9f:
dc:ec:f1:42:67:15:4a:7b:8c:52:a0:a4:85:dd:b4:79:2c:7f:
ff:8b:c3:ca:2a:de:17:72:a9:5a:b8:9d:4a:25:ce:88:55:8b:
a5:9e:d0:6a:d8:e0:ac:95:cf:04:ce:d4:72:13:31:c3:c4:09:
14:05:78:d5:5f:85:1c:c5:4f:9f:fd:0d:90:d6:2e:be:dd:68:
23:6b:f1:f6:3f:d0:2b:ec:7f:89:b4:c5:ca:4f:fc:b9:35:df:
97:fc:9e:f6:19:8d:f8:09:a9:b0:0a:b2:a1:92:9a:3d:c3:cb:
ed:84:dc:ff
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Sep 7 13:52:47 2025 by rpki-client