Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/14/35b49b-03a3-4101-a3fe-1d8e19df4a62/1/MtOVxX39MMDNLDD0IziuTBSnUKE.mft
File: MtOVxX39MMDNLDD0IziuTBSnUKE.mft (raw, json)
Hash identifier: W0GlIZXFjGg4mEwk02qpNalmu6/9Ghpz5Ib/7dWbcug=
Subject key identifier: 90:BC:EC:33:BE:45:0F:8D:9B:E7:06:C8:5C:52:FB:BA:13:8F:9D:44
Authority key identifier: 32:D3:95:C5:7D:FD:30:C0:CD:2C:30:F4:23:38:AE:4C:14:A7:50:A1
Certificate issuer: /CN=32d395c57dfd30c0cd2c30f42338ae4c14a750a1
Certificate serial: 01968FCBB0977BD2200442956D908CC7BAA7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/MtOVxX39MMDNLDD0IziuTBSnUKE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/14/35b49b-03a3-4101-a3fe-1d8e19df4a62/1/MtOVxX39MMDNLDD0IziuTBSnUKE.mft
Manifest number: 0A05
Signing time: Fri 02 May 2025 07:00:12 +0000
Manifest this update: Fri 02 May 2025 07:00:12 +0000
Manifest next update: Sat 03 May 2025 07:00:12 +0000
Files and hashes: 1: MtOVxX39MMDNLDD0IziuTBSnUKE.crl (hash: VukNvxC1+0EUvq9oMtjdQBXJqG/tDvSg8CVKlwhesWg=)
2: SwDsrRhvfBw9F4XGJ9jQ9aLMXmM.roa (hash: 3d2l7JTHz6vbNzzhkSjJTHAcnYSSZFmoaOBcI2qRo/o=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/14/35b49b-03a3-4101-a3fe-1d8e19df4a62/1/MtOVxX39MMDNLDD0IziuTBSnUKE.crl
rsync://rpki.ripe.net/repository/DEFAULT/14/35b49b-03a3-4101-a3fe-1d8e19df4a62/1/MtOVxX39MMDNLDD0IziuTBSnUKE.mft
rsync://rpki.ripe.net/repository/DEFAULT/MtOVxX39MMDNLDD0IziuTBSnUKE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 03 May 2025 01:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:8f:cb:b0:97:7b:d2:20:04:42:95:6d:90:8c:c7:ba:a7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=32d395c57dfd30c0cd2c30f42338ae4c14a750a1
Validity
Not Before: May 2 07:00:12 2025 GMT
Not After : May 3 07:00:12 2025 GMT
Subject: CN=90bcec33be450f8d9be706c85c52fbba138f9d44
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:67:d0:cd:01:30:e5:bf:8d:85:d3:b4:b0:a6:
e8:d9:c3:a2:8f:3a:fc:1c:91:33:47:63:04:dc:e3:
65:ff:f7:a7:c8:43:de:e6:43:c3:58:f6:65:cd:b9:
10:1f:7b:8c:83:0d:16:d9:59:b0:16:b7:f0:45:75:
c3:09:6d:cf:59:91:fd:b8:62:83:e4:4f:78:cc:26:
48:42:32:35:b5:69:b3:60:37:42:c5:7f:b0:4f:d6:
f8:e5:53:65:9b:bb:33:bf:30:d2:0c:fa:ac:96:25:
46:a3:43:83:a8:ac:d7:ff:1d:ac:9c:18:02:ab:08:
4b:4f:f0:d0:72:fe:b8:09:fb:af:24:de:02:d6:d7:
c2:a0:75:09:66:e1:c5:bb:6a:45:33:4e:dd:d6:6a:
23:58:45:c5:9c:78:da:72:78:d5:c4:3d:f7:ba:c1:
86:05:73:7f:cd:95:e2:d6:96:d7:33:f6:15:45:f6:
ec:b7:04:20:7d:d4:22:66:4b:13:7c:9d:68:16:16:
77:e2:65:c1:69:b4:5d:70:5b:71:87:8e:1f:a6:aa:
82:0b:4f:39:81:fc:ea:2b:f2:b0:07:5e:9e:79:b9:
0c:c2:dc:87:c7:eb:c8:02:42:36:96:20:e7:aa:87:
f1:65:7e:37:b0:a0:ab:3e:f2:64:02:df:33:9e:bb:
ff:13
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
90:BC:EC:33:BE:45:0F:8D:9B:E7:06:C8:5C:52:FB:BA:13:8F:9D:44
X509v3 Authority Key Identifier:
keyid:32:D3:95:C5:7D:FD:30:C0:CD:2C:30:F4:23:38:AE:4C:14:A7:50:A1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MtOVxX39MMDNLDD0IziuTBSnUKE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/14/35b49b-03a3-4101-a3fe-1d8e19df4a62/1/MtOVxX39MMDNLDD0IziuTBSnUKE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/14/35b49b-03a3-4101-a3fe-1d8e19df4a62/1/MtOVxX39MMDNLDD0IziuTBSnUKE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
89:a5:8c:27:e2:82:77:fc:8d:14:6b:cd:9f:64:ae:d0:1e:31:
86:e8:17:54:f9:b1:79:2f:05:a5:00:f7:c9:6d:a1:39:30:13:
a5:2f:19:38:9b:23:6a:b3:b6:a5:4b:e1:4f:34:07:2d:ea:ff:
0f:21:da:6c:d4:e7:d1:f2:20:e7:a3:54:7e:73:75:4d:86:23:
7a:65:af:42:51:78:f1:fd:4d:af:53:1f:8f:27:81:41:38:f3:
38:79:fd:34:67:47:e3:9c:80:0d:2e:60:d6:13:97:76:ec:a6:
99:d5:a9:f5:e4:c8:eb:55:cd:4f:27:c7:7e:44:5b:72:6b:a6:
b1:ab:09:4a:77:8f:1b:d3:14:f0:5c:09:04:f5:66:ff:26:64:
c2:bf:2a:c0:fb:40:21:8d:c3:7e:65:4f:0f:20:1e:d9:98:74:
78:33:56:d7:0c:3f:fe:8e:77:7c:1a:cf:86:55:83:50:ff:9c:
22:cf:a0:8b:81:08:6e:3f:8f:31:0e:ca:b0:5a:92:bf:fc:00:
aa:05:bb:a7:49:a5:6b:de:d5:d0:b9:f3:e8:3e:de:e0:a3:9f:
44:ef:f6:b4:5f:a9:5e:db:af:e3:77:c5:62:f0:f6:f5:ac:64:
23:c9:b0:8b:5a:7b:31:1d:22:fb:18:f8:5d:6b:ad:a2:e8:db:
13:7a:89:22
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 2 12:01:47 2025 by rpki-client