Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/56/125b9d-2a1f-463a-965e-7cfeaf086e14/1/MkxxBGxUn7PH1OvEz5UZ0ALnbfE.mft
File: MkxxBGxUn7PH1OvEz5UZ0ALnbfE.mft (raw, json)
Hash identifier: /B39M4zhdfsZZ9lUHlcno+2ey/ZzBnWmx2vucM91CCA=
Subject key identifier: 78:0A:F7:4B:67:DC:5F:27:E7:1B:4D:B8:35:7D:04:64:39:0A:CD:D5
Authority key identifier: 32:4C:71:04:6C:54:9F:B3:C7:D4:EB:C4:CF:95:19:D0:02:E7:6D:F1
Certificate issuer: /CN=324c71046c549fb3c7d4ebc4cf9519d002e76df1
Certificate serial: 01967D582A72EF5C7872F563DB9968C8CC3F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/MkxxBGxUn7PH1OvEz5UZ0ALnbfE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/56/125b9d-2a1f-463a-965e-7cfeaf086e14/1/MkxxBGxUn7PH1OvEz5UZ0ALnbfE.mft
Manifest number: 09DB
Signing time: Mon 28 Apr 2025 17:00:52 +0000
Manifest this update: Mon 28 Apr 2025 17:00:52 +0000
Manifest next update: Tue 29 Apr 2025 17:00:52 +0000
Files and hashes: 1: 2W4Y0bQNlvS93LoW6fNHPM7BKLQ.roa (hash: I9C4k+xseXfObTJ4huNUkRHHI0jQTaqLFqDJffjcwOE=)
2: MkxxBGxUn7PH1OvEz5UZ0ALnbfE.crl (hash: 2L8Kx26mKdV3lNgI2avD82JeHdLABSzP8OOoSUTwyng=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/56/125b9d-2a1f-463a-965e-7cfeaf086e14/1/MkxxBGxUn7PH1OvEz5UZ0ALnbfE.crl
rsync://rpki.ripe.net/repository/DEFAULT/56/125b9d-2a1f-463a-965e-7cfeaf086e14/1/MkxxBGxUn7PH1OvEz5UZ0ALnbfE.mft
rsync://rpki.ripe.net/repository/DEFAULT/MkxxBGxUn7PH1OvEz5UZ0ALnbfE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 29 Apr 2025 17:00:52 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:7d:58:2a:72:ef:5c:78:72:f5:63:db:99:68:c8:cc:3f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=324c71046c549fb3c7d4ebc4cf9519d002e76df1
Validity
Not Before: Apr 28 17:00:52 2025 GMT
Not After : Apr 29 17:00:52 2025 GMT
Subject: CN=780af74b67dc5f27e71b4db8357d0464390acdd5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:95:91:46:10:f5:23:92:dd:7e:72:27:53:f2:
c4:90:00:9d:cc:6a:a8:49:a7:f8:1a:54:f0:81:7b:
f9:2b:ba:ed:85:41:e0:74:5b:b7:f3:3a:2a:f9:a7:
dd:24:6f:aa:7a:31:d7:b6:ea:2d:9e:54:99:8d:62:
87:0b:0e:01:4b:f9:94:89:a9:d2:fb:f0:36:86:47:
ac:33:15:fa:69:2a:52:2f:16:5c:91:40:0f:f9:bf:
cd:d6:4c:6c:ce:7e:71:d2:59:f9:51:b0:ec:3d:76:
b8:7d:aa:e7:2c:ea:b7:5e:be:d9:98:a7:14:06:2b:
3a:41:ad:67:59:67:f0:af:82:5d:17:bc:97:55:e0:
52:f2:e1:f1:7a:62:b3:2c:82:d1:de:a3:c2:51:ea:
3c:93:1b:31:e5:52:01:c5:a5:08:0b:49:54:91:d4:
63:e7:82:7a:95:01:5c:43:e3:fc:1e:a7:fc:c2:cd:
9f:2f:d4:25:cf:6e:7f:5b:5d:6b:45:f6:57:61:4c:
4d:1a:d3:ba:fa:df:d5:83:7b:43:9c:33:de:a5:64:
eb:2d:5f:fd:99:09:ea:98:e1:d5:2e:97:bb:01:71:
8b:d2:39:37:97:1a:03:d9:6d:da:9f:7d:de:20:3e:
27:7c:09:14:8a:77:84:c4:57:b2:da:b7:18:44:06:
73:c7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
78:0A:F7:4B:67:DC:5F:27:E7:1B:4D:B8:35:7D:04:64:39:0A:CD:D5
X509v3 Authority Key Identifier:
keyid:32:4C:71:04:6C:54:9F:B3:C7:D4:EB:C4:CF:95:19:D0:02:E7:6D:F1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MkxxBGxUn7PH1OvEz5UZ0ALnbfE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/56/125b9d-2a1f-463a-965e-7cfeaf086e14/1/MkxxBGxUn7PH1OvEz5UZ0ALnbfE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/56/125b9d-2a1f-463a-965e-7cfeaf086e14/1/MkxxBGxUn7PH1OvEz5UZ0ALnbfE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
3f:b6:71:1f:19:c8:8c:1e:12:e8:64:c6:a3:95:46:8c:3c:4f:
38:aa:bf:45:ba:5c:d3:41:07:e8:a9:56:8f:b4:6b:3d:2f:e0:
38:c8:f3:cc:67:68:ea:32:04:2d:42:20:35:01:0e:b6:3c:9e:
9a:a6:cb:69:0e:f0:a4:21:61:66:fd:85:90:80:53:b2:bb:31:
1f:ab:33:69:a7:e2:79:96:38:b6:6f:bf:25:63:0e:6a:2e:ca:
6e:de:14:ce:7d:3a:88:da:f3:9c:27:eb:03:da:e6:51:62:d8:
1d:cf:3b:9b:ba:33:aa:57:f1:85:0f:a8:a1:d3:35:70:ad:f7:
19:5b:b5:e8:28:43:8a:43:db:b2:ca:40:d6:44:58:d8:9a:cb:
73:dd:73:d0:91:d2:f5:0d:12:04:d9:6c:af:bd:17:3f:b0:b0:
09:3a:67:77:78:74:42:5f:98:66:f4:21:1e:42:dd:69:b5:b8:
ef:b9:00:e4:25:5d:af:9d:64:71:a8:3c:5c:7a:3e:5c:2d:56:
1a:1b:e6:e5:5b:23:36:06:03:0c:e9:8f:9e:f3:5e:e2:49:07:
0d:23:ab:15:bc:49:c5:c6:ab:de:b8:1d:bb:d6:10:91:0e:c4:
79:33:c5:a5:e9:46:1d:6c:5a:34:05:db:fc:59:7c:12:a8:68:
c4:11:d1:f3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 29 04:08:40 2025 by rpki-client