Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1a/0adcd8-8a4b-4923-bf36-814a611eca60/1/MptRPmVwb8qlQ6EaDkLSixCd87Y.mft
File: MptRPmVwb8qlQ6EaDkLSixCd87Y.mft (raw, json)
Hash identifier: HtkIAlmGYadGQuowGs4Dt7zs0N6TxcOnH+fAHeUsg7U=
Subject key identifier: 5A:42:FB:69:42:B4:36:B2:39:72:72:5F:A8:6E:DD:52:EA:50:39:43
Authority key identifier: 32:9B:51:3E:65:70:6F:CA:A5:43:A1:1A:0E:42:D2:8B:10:9D:F3:B6
Certificate issuer: /CN=329b513e65706fcaa543a11a0e42d28b109df3b6
Certificate serial: 019681D9B7C84DFB5641C4473FA2551712A6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/MptRPmVwb8qlQ6EaDkLSixCd87Y.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1a/0adcd8-8a4b-4923-bf36-814a611eca60/1/MptRPmVwb8qlQ6EaDkLSixCd87Y.mft
Manifest number: 1223
Signing time: Tue 29 Apr 2025 14:00:51 +0000
Manifest this update: Tue 29 Apr 2025 14:00:51 +0000
Manifest next update: Wed 30 Apr 2025 14:00:51 +0000
Files and hashes: 1: MptRPmVwb8qlQ6EaDkLSixCd87Y.crl (hash: 9yRkwTg8SqO2zT30rflvUyeSZjqwPGCS40ueJTISyFk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/1a/0adcd8-8a4b-4923-bf36-814a611eca60/1/MptRPmVwb8qlQ6EaDkLSixCd87Y.crl
rsync://rpki.ripe.net/repository/DEFAULT/1a/0adcd8-8a4b-4923-bf36-814a611eca60/1/MptRPmVwb8qlQ6EaDkLSixCd87Y.mft
rsync://rpki.ripe.net/repository/DEFAULT/MptRPmVwb8qlQ6EaDkLSixCd87Y.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 30 Apr 2025 14:00:51 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:81:d9:b7:c8:4d:fb:56:41:c4:47:3f:a2:55:17:12:a6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=329b513e65706fcaa543a11a0e42d28b109df3b6
Validity
Not Before: Apr 29 14:00:51 2025 GMT
Not After : Apr 30 14:00:51 2025 GMT
Subject: CN=5a42fb6942b436b23972725fa86edd52ea503943
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:e4:3c:08:73:6d:be:31:df:a6:ea:94:18:0d:
71:dc:19:56:b5:ed:28:23:fe:32:bb:4f:3f:b9:ae:
75:19:3c:f7:36:b6:39:f8:8f:c6:9d:59:bd:11:e4:
80:16:95:be:74:d9:1f:34:00:1f:92:e2:97:a6:f4:
59:d4:01:8f:ef:ca:dd:51:ba:22:55:ee:e4:d7:8c:
27:72:f2:50:7f:68:a4:33:ac:3d:be:10:f0:b4:43:
19:a1:96:c8:ab:19:85:d9:cc:d4:01:4a:69:0b:ae:
d9:08:8d:29:56:cd:7d:36:df:82:f3:88:09:4f:8a:
99:14:5a:82:04:f5:4c:ab:52:9d:b8:4e:62:ff:74:
00:f8:4e:a0:c9:7e:7f:66:00:14:a2:8a:33:0d:16:
64:ba:45:0b:71:ee:3d:73:7c:e1:68:c1:ca:87:63:
71:8f:a1:44:af:a1:cd:8b:63:8c:0c:51:5d:53:65:
f4:85:de:ae:b9:0a:c4:83:e0:f5:46:dd:94:57:25:
41:eb:94:96:72:83:98:61:9d:eb:ab:85:e1:03:ee:
71:4e:03:30:de:44:ea:1a:52:cf:30:49:94:ad:37:
f7:f7:c9:87:ae:8f:c5:f9:f9:0a:3f:72:e5:b7:ab:
7c:f3:e0:32:27:0d:f1:54:11:eb:41:1e:77:16:7b:
fe:6f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5A:42:FB:69:42:B4:36:B2:39:72:72:5F:A8:6E:DD:52:EA:50:39:43
X509v3 Authority Key Identifier:
keyid:32:9B:51:3E:65:70:6F:CA:A5:43:A1:1A:0E:42:D2:8B:10:9D:F3:B6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MptRPmVwb8qlQ6EaDkLSixCd87Y.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1a/0adcd8-8a4b-4923-bf36-814a611eca60/1/MptRPmVwb8qlQ6EaDkLSixCd87Y.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1a/0adcd8-8a4b-4923-bf36-814a611eca60/1/MptRPmVwb8qlQ6EaDkLSixCd87Y.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
28:a6:8c:2f:dd:4f:96:71:e7:88:ce:e2:8d:9e:b7:07:ef:31:
98:76:70:44:19:ed:0e:97:2f:8f:ab:f2:94:e7:a5:bb:cf:c8:
83:3e:bd:fb:df:ae:28:94:4c:c7:5e:3a:02:ee:43:93:ce:86:
cd:13:91:d5:76:2c:20:e2:db:9e:b1:28:f2:2e:8e:8e:50:bb:
34:bb:97:d5:1f:10:95:c4:bf:01:91:88:b9:e7:75:3e:30:fa:
ce:47:75:c7:94:30:93:d3:78:fe:b9:a3:04:6f:40:58:45:a0:
c9:4a:71:13:5d:c0:8f:f1:85:9d:d9:e2:d5:e0:32:17:3a:ea:
41:35:4e:44:af:87:07:8b:2e:9e:88:94:f1:e7:f7:e2:0d:93:
bb:3c:92:b4:ce:99:65:79:fb:70:ec:e8:b5:1e:fd:b2:68:d0:
89:df:d2:82:54:ec:8b:da:13:ab:e3:9f:a6:57:b7:79:4e:17:
4f:a0:0a:88:95:fe:46:b3:df:be:32:44:da:ee:f2:c6:d7:c3:
a2:2b:40:03:66:7d:35:c2:e6:ea:3f:0a:31:88:4e:6f:1c:b9:
93:48:ea:14:03:1b:79:8a:c8:f1:aa:cd:d9:88:0f:07:5a:d6:
3e:3c:26:07:6c:5d:40:ee:75:e6:a2:ed:f3:54:46:5f:c4:50:
ce:0b:a8:e8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 29 18:54:24 2025 by rpki-client