Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d4/106b3f-55a3-4558-8013-4bee3274c698/1/MQmo1w-kR4k1sFwGIfaIlVJAXa8.mft
File: MQmo1w-kR4k1sFwGIfaIlVJAXa8.mft (raw, json)
Hash identifier: +AZD/0NEk9waVPleKH8/5zfwJkyS+oVdZooPSdtCy4o=
Subject key identifier: A3:28:50:75:6D:63:09:14:3E:F7:4A:38:4A:05:39:94:99:EE:DF:8D
Authority key identifier: 31:09:A8:D7:0F:A4:47:89:35:B0:5C:06:21:F6:88:95:52:40:5D:AF
Certificate issuer: /CN=3109a8d70fa4478935b05c0621f6889552405daf
Certificate serial: 0197CDCD7A9AD3DEC521186864D1DD93F45C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/MQmo1w-kR4k1sFwGIfaIlVJAXa8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d4/106b3f-55a3-4558-8013-4bee3274c698/1/MQmo1w-kR4k1sFwGIfaIlVJAXa8.mft
Manifest number: 37
Signing time: Thu 03 Jul 2025 01:01:24 +0000
Manifest this update: Thu 03 Jul 2025 01:01:24 +0000
Manifest next update: Fri 04 Jul 2025 01:01:24 +0000
Files and hashes: 1: MQmo1w-kR4k1sFwGIfaIlVJAXa8.crl (hash: DOFtP0KIM4vGVfa2kweGFFLhB5ilr6J2B53kYPG4jRI=)
2: yIyDsEh1dvcmsUPH7E2Ou8dLDUQ.roa (hash: wtZTOXp1JfHeuiQ37lVv2g4xea2Kfo548MrcJ05G7l8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d4/106b3f-55a3-4558-8013-4bee3274c698/1/MQmo1w-kR4k1sFwGIfaIlVJAXa8.crl
rsync://rpki.ripe.net/repository/DEFAULT/d4/106b3f-55a3-4558-8013-4bee3274c698/1/MQmo1w-kR4k1sFwGIfaIlVJAXa8.mft
rsync://rpki.ripe.net/repository/DEFAULT/MQmo1w-kR4k1sFwGIfaIlVJAXa8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 04 Jul 2025 01:01:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:cd:cd:7a:9a:d3:de:c5:21:18:68:64:d1:dd:93:f4:5c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3109a8d70fa4478935b05c0621f6889552405daf
Validity
Not Before: Jul 3 01:01:24 2025 GMT
Not After : Jul 4 01:01:24 2025 GMT
Subject: CN=a32850756d6309143ef74a384a05399499eedf8d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:96:b4:5f:6c:77:0f:8d:81:ad:22:af:a6:7a:35:
07:63:e4:ec:da:ed:11:a7:39:c5:fc:a3:f7:d2:09:
c8:64:0f:4c:e8:27:17:01:2c:bd:cf:6f:ff:bd:32:
b6:00:4a:8f:50:17:82:fa:2c:73:f7:08:e6:04:67:
19:d4:c1:8c:88:0b:03:9f:17:32:ba:75:af:84:0e:
09:2a:4e:00:7c:ef:0e:4e:7e:2e:b6:bb:e6:32:58:
fe:8e:e2:de:3f:24:7a:11:74:87:7e:d8:78:24:43:
66:15:23:98:07:75:77:b8:65:ac:e5:a7:0c:5b:48:
23:43:12:8e:48:20:78:73:b4:a9:27:66:95:6a:fd:
d5:7a:2c:9b:01:8d:c0:bc:41:e2:92:79:86:ed:f2:
d0:53:1d:c0:56:46:5c:38:a2:f6:c8:ce:14:49:ad:
e6:54:f0:50:68:dd:d3:d3:1a:f2:4b:00:56:95:4d:
9d:a7:ca:cd:3c:46:d1:b1:a1:b7:73:4e:5a:7e:f2:
a1:c2:f5:56:32:46:6f:99:cd:a5:37:c2:7a:f5:ef:
1e:87:8a:54:1d:29:11:05:b4:65:44:53:28:ae:97:
55:9d:a4:a4:f4:9c:1b:ae:0c:91:90:93:d8:d6:ac:
a3:06:3b:be:22:13:c6:97:ba:4b:73:7f:a3:04:68:
52:c7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A3:28:50:75:6D:63:09:14:3E:F7:4A:38:4A:05:39:94:99:EE:DF:8D
X509v3 Authority Key Identifier:
keyid:31:09:A8:D7:0F:A4:47:89:35:B0:5C:06:21:F6:88:95:52:40:5D:AF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MQmo1w-kR4k1sFwGIfaIlVJAXa8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d4/106b3f-55a3-4558-8013-4bee3274c698/1/MQmo1w-kR4k1sFwGIfaIlVJAXa8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d4/106b3f-55a3-4558-8013-4bee3274c698/1/MQmo1w-kR4k1sFwGIfaIlVJAXa8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
83:8c:2f:68:f6:ef:f5:8f:0f:0c:b6:bc:b1:20:2b:87:53:1c:
10:3f:fe:90:df:71:bc:96:b6:04:85:ab:ee:82:9d:93:84:38:
a8:82:1e:c0:c6:08:95:9b:9c:0a:44:b5:69:b5:f6:ef:de:2d:
a3:b1:68:0c:a7:4d:c6:4e:44:93:18:72:29:50:06:7a:69:01:
6b:45:f8:9d:fb:80:19:4a:0c:47:04:8d:93:1b:0c:0f:e4:4f:
05:0e:b9:6d:77:f8:4d:25:e6:d1:90:08:32:b5:24:59:b0:50:
6a:2c:a1:2d:93:88:8e:11:62:fc:14:81:3f:9f:3a:95:36:88:
7c:8a:22:03:df:b2:88:ce:bc:40:40:ac:21:b8:36:cb:b5:39:
c9:66:6a:9b:41:1a:2c:b8:d1:85:d9:e6:bd:28:d1:5f:cb:bf:
1f:55:29:7a:ca:47:eb:70:82:e0:09:89:d2:ac:fc:cf:a0:d6:
4d:7f:56:ee:da:3f:1f:25:17:94:4f:d0:89:74:5b:ab:a7:85:
84:e8:49:bd:f1:4b:58:11:20:e9:05:83:20:fd:cd:ec:c0:2d:
59:1e:97:af:3b:8e:b3:96:75:af:fa:fb:7b:74:c8:09:26:90:
a1:e6:6c:66:9c:26:bc:95:f7:fd:ea:e5:b6:9a:86:d4:4b:be:
73:4e:46:05
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 3 06:52:34 2025 by rpki-client