Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d8/d51211-d0bb-4a57-9390-ce2a496fee86/1/MHoDlQLUamuZCREM4qsTlod70I4.mft
File: MHoDlQLUamuZCREM4qsTlod70I4.mft (raw, json)
Hash identifier: NMcSFx+TshHCVyWM4TZfpfQm/kaVMHqRYDTlLFqxDGs=
Subject key identifier: 8E:B2:BC:B1:80:02:6A:09:CA:FE:B0:9D:CD:AF:CB:D7:68:53:BA:84
Authority key identifier: 30:7A:03:95:02:D4:6A:6B:99:09:11:0C:E2:AB:13:96:87:7B:D0:8E
Certificate issuer: /CN=307a039502d46a6b9909110ce2ab1396877bd08e
Certificate serial: 01974AE8C84C7EFCC4F4ED4480920265EC52
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/MHoDlQLUamuZCREM4qsTlod70I4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d8/d51211-d0bb-4a57-9390-ce2a496fee86/1/MHoDlQLUamuZCREM4qsTlod70I4.mft
Manifest number: 09DC
Signing time: Sat 07 Jun 2025 15:00:58 +0000
Manifest this update: Sat 07 Jun 2025 15:00:58 +0000
Manifest next update: Sun 08 Jun 2025 15:00:58 +0000
Files and hashes: 1: Ly1MWymIvXOCybb36lr4yOkjsU8.roa (hash: VpBFbk8tqcALSJaD09pM7y3kJlzVLbs+HEbBlDB9T94=)
2: MHoDlQLUamuZCREM4qsTlod70I4.crl (hash: OuxkP9OzYIB1KL4B+QosJb9I4SlVmU3kJGook9P92b0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d8/d51211-d0bb-4a57-9390-ce2a496fee86/1/MHoDlQLUamuZCREM4qsTlod70I4.crl
rsync://rpki.ripe.net/repository/DEFAULT/d8/d51211-d0bb-4a57-9390-ce2a496fee86/1/MHoDlQLUamuZCREM4qsTlod70I4.mft
rsync://rpki.ripe.net/repository/DEFAULT/MHoDlQLUamuZCREM4qsTlod70I4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 08 Jun 2025 09:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:4a:e8:c8:4c:7e:fc:c4:f4:ed:44:80:92:02:65:ec:52
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=307a039502d46a6b9909110ce2ab1396877bd08e
Validity
Not Before: Jun 7 15:00:58 2025 GMT
Not After : Jun 8 15:00:58 2025 GMT
Subject: CN=8eb2bcb180026a09cafeb09dcdafcbd76853ba84
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cf:63:5f:4d:a2:d6:1c:13:13:f8:f6:4d:77:49:
a7:fd:24:72:b5:c1:89:43:91:c5:f8:69:14:aa:68:
f4:11:57:5c:9e:91:60:5a:6d:bb:99:e5:75:19:dc:
a0:74:b7:20:35:5c:10:e1:9b:f5:bd:ba:39:39:2b:
91:c8:8b:42:71:92:fc:f6:33:39:47:fe:e5:e1:e7:
55:b3:55:4a:da:88:a2:77:b6:37:1e:09:08:47:82:
75:91:73:3e:20:7e:cf:81:4d:a2:a1:70:55:4c:fe:
c9:f2:d7:0d:c4:72:7c:3c:6f:c7:73:7c:6c:cb:ee:
7c:28:bb:70:00:22:98:78:32:61:fe:c1:53:1c:7c:
c0:be:7e:30:46:dd:dc:d6:de:c1:f4:4d:5d:41:d7:
46:b9:8f:f6:11:fb:82:bc:c3:70:48:3f:29:e0:8d:
9d:1d:47:b2:be:43:8f:f8:7a:13:f7:9a:78:a6:c5:
7f:2e:88:eb:20:9e:94:f5:44:9a:9b:cc:77:13:40:
d0:e6:3f:98:6b:ca:8c:70:94:15:85:b0:4b:ee:e1:
e6:99:82:d2:d9:71:5e:47:82:f4:dc:36:76:5b:fa:
9b:62:70:c0:3f:9e:72:a8:1b:54:f6:99:b4:01:43:
4c:a6:3b:34:57:1b:5f:c5:2e:23:78:dd:d8:e4:81:
6f:a7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8E:B2:BC:B1:80:02:6A:09:CA:FE:B0:9D:CD:AF:CB:D7:68:53:BA:84
X509v3 Authority Key Identifier:
keyid:30:7A:03:95:02:D4:6A:6B:99:09:11:0C:E2:AB:13:96:87:7B:D0:8E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MHoDlQLUamuZCREM4qsTlod70I4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d8/d51211-d0bb-4a57-9390-ce2a496fee86/1/MHoDlQLUamuZCREM4qsTlod70I4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d8/d51211-d0bb-4a57-9390-ce2a496fee86/1/MHoDlQLUamuZCREM4qsTlod70I4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
18:60:08:00:7e:8d:e9:c9:d7:a4:d4:1b:9c:36:5f:85:b2:cb:
29:c7:7d:5f:2c:08:e2:2f:0c:10:e7:34:31:56:7a:9f:5a:88:
59:25:43:3c:0c:bd:96:f8:26:e4:4c:4e:a6:ff:a8:8d:d3:72:
87:b2:91:0c:7b:48:3e:02:58:a2:01:4c:ee:17:5a:86:56:c8:
91:88:9e:a4:ab:27:a2:83:60:10:93:7c:de:cd:a7:bf:96:78:
7b:6a:8d:03:85:97:4a:6b:64:f3:d7:68:58:59:da:33:41:b9:
8b:73:25:14:10:36:aa:cb:25:44:fe:2b:d4:05:1f:e4:59:c7:
bd:62:18:4a:93:4e:e1:6d:57:58:5a:1a:f9:24:dc:ee:c0:c0:
33:fc:de:03:54:02:e4:23:9d:92:54:78:fe:27:80:b8:47:84:
0c:f8:46:fe:1e:c9:2b:5f:48:cd:ef:99:4f:f9:8b:42:33:72:
61:46:9c:7d:da:a9:9a:68:bb:9d:d9:0f:e5:d6:7e:cf:3e:d9:
e5:20:c0:e2:ab:48:0b:14:32:c5:7c:2e:9d:29:6b:2c:98:9f:
06:72:42:7f:25:9f:81:7f:ea:7d:10:d5:59:78:3f:89:67:b0:
b5:34:60:c5:e5:e4:a7:4e:0e:d7:9d:f8:e1:cb:0d:55:fb:54:
e1:67:0b:7b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 7 19:17:56 2025 by rpki-client