Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/50/6cf769-9b58-4847-8f1f-edc54072ae89/1/rMMoWMzalYbG2WceMQ1RwoJoxFk.mft
File: rMMoWMzalYbG2WceMQ1RwoJoxFk.mft (raw, json)
Hash identifier: R2jFSSzP311HSwtKgHW+60+7/GmSjlICBR0sZGOs3w0=
Subject key identifier: 88:55:BA:10:64:0B:83:FF:AC:32:03:69:9D:03:A2:46:3E:A5:CB:4B
Authority key identifier: AC:C3:28:58:CC:DA:95:86:C6:D9:67:1E:31:0D:51:C2:82:68:C4:59
Certificate issuer: /CN=acc32858ccda9586c6d9671e310d51c28268c459
Certificate serial: 019671C1D05576CB1B66B0698D8676B12883
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/rMMoWMzalYbG2WceMQ1RwoJoxFk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/50/6cf769-9b58-4847-8f1f-edc54072ae89/1/rMMoWMzalYbG2WceMQ1RwoJoxFk.mft
Manifest number: 14A9
Signing time: Sat 26 Apr 2025 11:00:49 +0000
Manifest this update: Sat 26 Apr 2025 11:00:49 +0000
Manifest next update: Sun 27 Apr 2025 11:00:49 +0000
Files and hashes: 1: 5wpBu9lqq6Eh5bxmApWBHSmv8rU.roa (hash: OWwgDNZvQnVhoKGxoJou3ziQhvyReIZ9m1NH7rz0BqA=)
2: rMMoWMzalYbG2WceMQ1RwoJoxFk.crl (hash: 41n3qKVAzFiEMoCOkwT+izDpt6U1rgrgi+WmBeowkDg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/50/6cf769-9b58-4847-8f1f-edc54072ae89/1/rMMoWMzalYbG2WceMQ1RwoJoxFk.crl
rsync://rpki.ripe.net/repository/DEFAULT/50/6cf769-9b58-4847-8f1f-edc54072ae89/1/rMMoWMzalYbG2WceMQ1RwoJoxFk.mft
rsync://rpki.ripe.net/repository/DEFAULT/rMMoWMzalYbG2WceMQ1RwoJoxFk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 27 Apr 2025 11:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:71:c1:d0:55:76:cb:1b:66:b0:69:8d:86:76:b1:28:83
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=acc32858ccda9586c6d9671e310d51c28268c459
Validity
Not Before: Apr 26 11:00:49 2025 GMT
Not After : Apr 27 11:00:49 2025 GMT
Subject: CN=8855ba10640b83ffac3203699d03a2463ea5cb4b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:c3:b1:c3:b6:bf:b9:62:1c:a3:20:e3:6b:36:
ca:ad:71:1e:b8:d9:97:4e:82:30:46:7b:63:82:7b:
fd:eb:17:af:fe:27:ca:be:d7:5f:1d:94:80:12:c2:
d6:94:54:03:8d:ba:8d:63:34:81:9f:14:cb:6d:bf:
cc:64:5e:c3:a7:48:17:f6:f4:ec:49:c8:07:2b:09:
82:26:25:f7:c9:49:8e:94:aa:1a:40:c9:3c:89:49:
f6:1e:63:d3:87:ca:63:da:51:d8:79:63:9c:80:9d:
76:7b:a7:42:bf:f5:db:2f:a7:cb:37:89:86:29:bb:
f4:ed:20:98:62:c2:bb:d2:59:e3:91:da:a2:a3:85:
17:84:90:71:3a:d5:26:5c:d2:02:4b:d8:e2:bb:7b:
76:6c:f2:a8:e6:d1:36:59:65:1a:5b:18:32:37:28:
69:57:39:e2:97:55:15:55:16:89:cf:d7:55:d2:f5:
ce:4f:54:48:1d:ce:99:e0:a1:dc:9e:22:ae:49:e9:
3f:00:25:f4:dc:b2:6f:dd:24:51:94:d8:11:ec:da:
b8:e4:b6:f9:ef:75:ff:06:5a:a0:93:dc:ff:1a:da:
7a:70:f3:2d:54:1e:84:af:19:60:b1:1e:1b:1c:e3:
da:30:a7:de:dd:44:49:c4:6e:65:80:25:ed:73:71:
e0:5b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
88:55:BA:10:64:0B:83:FF:AC:32:03:69:9D:03:A2:46:3E:A5:CB:4B
X509v3 Authority Key Identifier:
keyid:AC:C3:28:58:CC:DA:95:86:C6:D9:67:1E:31:0D:51:C2:82:68:C4:59
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rMMoWMzalYbG2WceMQ1RwoJoxFk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/50/6cf769-9b58-4847-8f1f-edc54072ae89/1/rMMoWMzalYbG2WceMQ1RwoJoxFk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/50/6cf769-9b58-4847-8f1f-edc54072ae89/1/rMMoWMzalYbG2WceMQ1RwoJoxFk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
5b:c7:2b:a7:ee:8e:83:c4:a3:64:59:19:87:1f:ab:5f:63:f5:
ca:e7:b7:87:5c:ee:44:a0:20:ce:96:ff:d4:20:a5:31:38:73:
9f:be:2d:0c:82:10:5d:dc:6f:43:31:ce:bd:9c:44:0a:ad:44:
fa:80:fd:b6:6a:b4:bf:4f:92:c9:73:d6:48:52:80:b6:7e:b7:
5b:a3:26:c4:72:4e:8b:3e:ce:2c:b2:ec:38:4a:16:c4:2b:79:
d7:32:98:ac:b3:9b:0c:55:b2:44:9e:fc:16:db:12:84:60:aa:
2b:be:9f:51:db:5d:a2:48:b6:b5:dc:33:aa:e7:9a:d3:e9:fc:
ff:89:5c:de:b0:de:85:ec:11:50:a9:df:5d:fb:19:a4:e1:6c:
3f:d6:3a:de:b2:3c:58:af:9b:f0:ad:e5:10:8f:59:00:f4:15:
4a:37:a4:ea:45:6a:39:83:b0:8c:63:51:da:9d:c9:43:fe:3a:
db:b5:57:71:a6:aa:75:a8:c9:44:d2:af:bf:75:07:03:ed:73:
51:f3:99:e4:40:2e:3a:08:8f:85:69:46:dc:78:eb:18:06:1d:
e6:33:e3:b0:17:67:55:63:7d:4d:bc:74:5e:d6:69:5c:79:08:
91:68:c7:00:d6:63:9b:15:34:10:f0:41:18:0e:9b:1a:8b:db:
04:e2:fb:82
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 26 20:02:39 2025 by rpki-client