Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/44/88e482-8277-4280-9f5b-8144b140edf9/1/MNZrZqOYLSCoHvIB3HVe0zU7FqQ.mft
File: MNZrZqOYLSCoHvIB3HVe0zU7FqQ.mft (raw, json)
Hash identifier: aX+fm4sXhduB/m6RNMiOmR0wBvtFHGGlLcV0f4+vM6k=
Subject key identifier: BF:4F:FB:CA:93:41:51:17:A2:E2:0B:E8:F7:75:F2:92:B6:12:ED:69
Authority key identifier: 30:D6:6B:66:A3:98:2D:20:A8:1E:F2:01:DC:75:5E:D3:35:3B:16:A4
Certificate issuer: /CN=30d66b66a3982d20a81ef201dc755ed3353b16a4
Certificate serial: 01967E339F991621EA6E5AE72D47217152CE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/MNZrZqOYLSCoHvIB3HVe0zU7FqQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/44/88e482-8277-4280-9f5b-8144b140edf9/1/MNZrZqOYLSCoHvIB3HVe0zU7FqQ.mft
Manifest number: 0E89
Signing time: Mon 28 Apr 2025 21:00:34 +0000
Manifest this update: Mon 28 Apr 2025 21:00:34 +0000
Manifest next update: Tue 29 Apr 2025 21:00:34 +0000
Files and hashes: 1: MNZrZqOYLSCoHvIB3HVe0zU7FqQ.crl (hash: 5zoSkYU1lTAU4ALBUKIxzM/NP+g8UsAYsNNL+kwA5HE=)
2: hfNN3XiVLhZTBEzmZ9kxsFWjtgU.roa (hash: rdvuWCnmeSdDSQrFfaBCbjsr2zsTzqKaLeEHczQ6fHw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/44/88e482-8277-4280-9f5b-8144b140edf9/1/MNZrZqOYLSCoHvIB3HVe0zU7FqQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/44/88e482-8277-4280-9f5b-8144b140edf9/1/MNZrZqOYLSCoHvIB3HVe0zU7FqQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/MNZrZqOYLSCoHvIB3HVe0zU7FqQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 29 Apr 2025 21:00:34 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:7e:33:9f:99:16:21:ea:6e:5a:e7:2d:47:21:71:52:ce
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=30d66b66a3982d20a81ef201dc755ed3353b16a4
Validity
Not Before: Apr 28 21:00:34 2025 GMT
Not After : Apr 29 21:00:34 2025 GMT
Subject: CN=bf4ffbca93415117a2e20be8f775f292b612ed69
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d3:f7:aa:99:38:bd:9e:03:ef:df:aa:85:b8:17:
63:be:fa:fc:e3:87:c6:f8:19:73:8d:a4:c0:9a:3e:
87:92:df:b9:7a:ec:f1:c4:6b:94:27:15:9b:40:37:
e3:88:ba:a2:24:22:b3:44:0c:e7:2b:31:b0:2a:1b:
b4:c8:26:fc:0c:22:fe:bf:8c:4a:3a:01:88:cf:2a:
e4:80:c4:74:02:83:93:3f:10:8f:92:ce:de:93:15:
61:ba:aa:96:eb:e4:d2:e9:57:16:49:40:55:60:cc:
61:07:d2:0f:1a:41:0d:0f:71:ce:c5:5b:31:25:69:
81:7f:21:b7:80:43:2a:2b:8f:6d:38:49:58:12:77:
11:45:c1:9e:67:b3:b6:ad:c3:44:1f:89:38:49:71:
f2:68:0e:a7:16:02:5f:e8:37:0c:2f:26:39:9f:e0:
ed:27:a5:6a:b7:b5:55:98:88:75:af:a3:19:4d:5f:
cd:d9:c3:4f:03:0d:7f:ba:1a:8b:41:e9:36:cb:9c:
dc:b5:88:98:c2:15:dc:d5:7e:51:b9:24:fa:c0:fc:
40:03:28:32:34:8e:24:bb:76:30:6a:96:99:3a:9d:
3f:77:e3:d1:8a:b2:4b:0c:b2:fe:a4:ac:aa:22:af:
a8:e8:5e:19:b3:e6:e9:c9:53:e6:6a:4c:ae:d5:fb:
7f:cf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BF:4F:FB:CA:93:41:51:17:A2:E2:0B:E8:F7:75:F2:92:B6:12:ED:69
X509v3 Authority Key Identifier:
keyid:30:D6:6B:66:A3:98:2D:20:A8:1E:F2:01:DC:75:5E:D3:35:3B:16:A4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MNZrZqOYLSCoHvIB3HVe0zU7FqQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/44/88e482-8277-4280-9f5b-8144b140edf9/1/MNZrZqOYLSCoHvIB3HVe0zU7FqQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/44/88e482-8277-4280-9f5b-8144b140edf9/1/MNZrZqOYLSCoHvIB3HVe0zU7FqQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
91:1b:16:e1:26:1b:96:09:b1:10:42:49:20:cc:e5:c9:8c:b4:
3c:4a:3d:31:01:05:fb:dd:bd:a0:57:c9:e0:b1:0c:3d:62:fd:
ca:8a:df:f8:4f:21:2f:ad:e6:c6:d6:8b:a2:ea:88:a7:b6:29:
be:93:b4:6e:67:06:5f:7a:c2:6c:80:de:14:7c:ad:0c:19:52:
fb:29:25:c7:33:45:1c:7d:25:aa:c5:ae:a3:02:4d:71:3e:11:
5a:49:88:95:e9:9b:fe:d7:b4:f8:77:03:12:42:0e:f8:a4:f0:
ec:b9:b6:13:45:43:23:35:70:89:ab:20:8f:f1:ba:8a:24:03:
0e:9b:9e:0d:e5:98:58:ac:d7:35:b5:b0:31:36:cf:ea:63:40:
bd:0d:2c:a3:21:be:04:d1:ec:d3:69:a2:36:30:99:87:ce:7c:
f7:1f:9d:96:32:95:5e:7f:98:1e:a7:24:ea:ec:9c:fd:a8:81:
9f:c5:9f:44:84:f4:88:0c:46:bd:cd:8b:6b:6d:52:ed:40:01:
9f:6f:dd:bb:6a:5c:37:1a:d9:14:cf:be:56:31:51:2e:46:f5:
8c:4f:72:40:80:91:fd:9f:32:e8:a0:6a:77:12:8a:98:a9:ca:
e4:1c:98:80:89:e1:61:25:62:73:a9:7f:45:f5:4e:c9:3c:65:
1d:4c:e0:b1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 29 05:54:20 2025 by rpki-client