Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/14/5a448a-5e7a-47e0-87da-cdcfbb100447/1/MZX3NBnoIjKXlM8X-6fpPzdTdKk.mft
File: MZX3NBnoIjKXlM8X-6fpPzdTdKk.mft (raw, json)
Hash identifier: tGqd6gSXQFLEjbW89+jKn4fqVXpaimLRFrl6jIK2ggc=
Subject key identifier: E0:46:D7:D8:64:DC:1C:36:4A:06:90:EC:3B:DC:CF:D8:C9:E0:0D:D3
Authority key identifier: 31:95:F7:34:19:E8:22:32:97:94:CF:17:FB:A7:E9:3F:37:53:74:A9
Certificate issuer: /CN=3195f73419e822329794cf17fba7e93f375374a9
Certificate serial: 019687DBBEA0EC5686BDDD4B968D0D97C28C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/MZX3NBnoIjKXlM8X-6fpPzdTdKk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/14/5a448a-5e7a-47e0-87da-cdcfbb100447/1/MZX3NBnoIjKXlM8X-6fpPzdTdKk.mft
Manifest number: 10BE
Signing time: Wed 30 Apr 2025 18:00:47 +0000
Manifest this update: Wed 30 Apr 2025 18:00:47 +0000
Manifest next update: Thu 01 May 2025 18:00:47 +0000
Files and hashes: 1: MZX3NBnoIjKXlM8X-6fpPzdTdKk.crl (hash: 90hlQrIvm37J3BcGe42s/+74CU3CJ22ByczGo8h74jg=)
2: SCHcZAvBuEDabGE8ZnvuGrNm6LM.roa (hash: +7HN05BMaB78AnyjOqZ5Q8EXtIVzWFh5zSmSPi10HzA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/14/5a448a-5e7a-47e0-87da-cdcfbb100447/1/MZX3NBnoIjKXlM8X-6fpPzdTdKk.crl
rsync://rpki.ripe.net/repository/DEFAULT/14/5a448a-5e7a-47e0-87da-cdcfbb100447/1/MZX3NBnoIjKXlM8X-6fpPzdTdKk.mft
rsync://rpki.ripe.net/repository/DEFAULT/MZX3NBnoIjKXlM8X-6fpPzdTdKk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 01 May 2025 18:00:47 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:87:db:be:a0:ec:56:86:bd:dd:4b:96:8d:0d:97:c2:8c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3195f73419e822329794cf17fba7e93f375374a9
Validity
Not Before: Apr 30 18:00:47 2025 GMT
Not After : May 1 18:00:47 2025 GMT
Subject: CN=e046d7d864dc1c364a0690ec3bdccfd8c9e00dd3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:30:45:94:bf:83:bb:3f:5b:fa:b7:64:bd:59:
b0:e3:d0:2a:44:88:16:dc:75:e0:7b:4f:ca:0f:ee:
0b:83:da:1b:95:95:85:fb:b3:5c:35:34:2e:2b:d6:
1f:0f:c4:09:8e:19:ee:b0:99:b1:c4:71:85:40:fd:
7b:2e:95:3d:ab:3a:5c:c5:da:29:c6:b3:01:05:04:
4e:c5:de:0a:89:df:02:62:f7:e3:72:e2:04:f3:a9:
5a:b8:43:b0:c7:4d:23:33:72:8a:f9:50:8f:86:e1:
33:17:4f:a9:89:81:9c:1f:f0:a6:e9:74:1a:ab:5e:
a2:02:d5:ba:15:d9:82:72:26:f1:9f:9b:f7:9d:10:
71:4c:6e:34:68:7e:f2:ff:b6:4f:27:3e:99:42:ff:
2f:ff:6a:7e:f5:fc:58:e4:99:53:4c:48:fe:30:34:
be:55:9d:13:46:9e:67:d2:92:16:29:6f:a4:82:55:
73:9d:40:1f:ef:73:24:de:8a:ba:49:d0:7d:04:70:
72:e3:1f:52:23:ae:8d:a7:bc:ea:ae:1a:33:24:06:
90:19:43:f1:3e:dd:5f:68:81:60:51:cf:db:d7:64:
9f:df:9e:8e:7b:54:de:7a:1e:38:2e:d6:c8:90:c4:
67:d5:b0:31:a6:b0:89:25:da:c1:b8:4b:02:e4:b7:
1a:bb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E0:46:D7:D8:64:DC:1C:36:4A:06:90:EC:3B:DC:CF:D8:C9:E0:0D:D3
X509v3 Authority Key Identifier:
keyid:31:95:F7:34:19:E8:22:32:97:94:CF:17:FB:A7:E9:3F:37:53:74:A9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MZX3NBnoIjKXlM8X-6fpPzdTdKk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/14/5a448a-5e7a-47e0-87da-cdcfbb100447/1/MZX3NBnoIjKXlM8X-6fpPzdTdKk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/14/5a448a-5e7a-47e0-87da-cdcfbb100447/1/MZX3NBnoIjKXlM8X-6fpPzdTdKk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
5c:f0:b1:f1:7f:10:26:ff:2b:d7:c3:7a:43:bb:5a:3a:dd:f0:
55:d2:e2:4f:b7:ed:35:19:20:6e:fa:e7:a2:3c:a9:2a:ca:38:
01:be:39:9d:00:91:53:f3:29:ae:e3:7e:f5:97:d3:51:d8:d4:
10:02:b2:e0:aa:96:96:5e:a8:40:8e:b8:fd:a2:0f:03:e6:af:
1b:8c:3a:ba:00:e6:a8:ba:e6:3c:44:9f:c0:7c:6e:b0:db:2b:
bc:11:57:9b:04:5f:a2:60:3c:9c:57:9d:20:85:b0:f8:6b:fb:
fb:79:0f:fe:7a:b3:24:b9:8f:c5:7e:bd:22:0a:0a:f1:39:f4:
06:69:ff:ad:6b:18:f1:ac:4f:87:3d:9f:3b:c4:ec:5f:9d:96:
38:c7:67:46:16:8d:45:bf:62:d1:18:02:6f:02:b9:e8:30:98:
5a:b3:aa:ad:84:57:8b:30:63:78:52:37:ee:de:e3:37:26:89:
ca:32:cc:c1:b1:43:15:a6:cd:8c:1e:f1:60:1f:87:0a:f3:e5:
57:a4:d9:e7:2b:89:8d:7e:8f:ea:b1:14:fc:82:40:ce:cb:52:
00:2c:24:7e:ad:fd:50:2c:d3:8f:77:66:f8:68:8b:03:61:c5:
4d:8a:4b:f0:ad:98:8e:26:7d:ca:a2:13:ed:02:d0:0e:3f:e9:
96:11:7b:fe
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu May 1 00:40:51 2025 by rpki-client