Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/57/b1f2e0-8a60-4c8a-90dc-4be794d6406d/1/pMtQ54o6MeM3XPKquGXoRf8umcE.mft
File: pMtQ54o6MeM3XPKquGXoRf8umcE.mft (raw, json)
Hash identifier: f3t0gy+0PYp6u+WMngbf8snhJlzR52lONqBvm+oL1so=
Subject key identifier: B9:F4:FA:E9:61:EE:C0:E0:B8:97:F7:A9:BF:8A:B5:26:48:7D:D3:0F
Authority key identifier: A4:CB:50:E7:8A:3A:31:E3:37:5C:F2:AA:B8:65:E8:45:FF:2E:99:C1
Certificate issuer: /CN=a4cb50e78a3a31e3375cf2aab865e845ff2e99c1
Certificate serial: 01968BEF67D097FE4C5D007B3585511AAAA3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/pMtQ54o6MeM3XPKquGXoRf8umcE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/57/b1f2e0-8a60-4c8a-90dc-4be794d6406d/1/pMtQ54o6MeM3XPKquGXoRf8umcE.mft
Manifest number: 1523
Signing time: Thu 01 May 2025 13:00:44 +0000
Manifest this update: Thu 01 May 2025 13:00:44 +0000
Manifest next update: Fri 02 May 2025 13:00:44 +0000
Files and hashes: 1: MKwXFQdhtuQYKRcVzorzsVxuXIw.roa (hash: GZ2oDGi2xK0WgPjyKpmqLx5efaJizRvGxJTHG502Kqs=)
2: QHGBtoYy-yUNGT2R6UBemRAxD5s.roa (hash: 3YJpkLEFxs1XCvKlcy0WQw5fAkmH7oTliDxTaEnJgz0=)
3: hwXn82QbEbf-SULTcBIDnH5UIZU.roa (hash: 08kQDvBZvCyHX595Crm1xVl4v8KtIgUsNRfQUr9hTAQ=)
4: pMtQ54o6MeM3XPKquGXoRf8umcE.crl (hash: 07mdZ4zLjFHK5RosujN2SVyDKOe2JjcjRkZZGaGbl0Q=)
5: soZqy3HUC6xiStBTbgTdR73Vw2c.roa (hash: 0/K+cWWK8CwD0JZ/wMwAQQYw/af8O4bhKs39qQrbVB4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/57/b1f2e0-8a60-4c8a-90dc-4be794d6406d/1/pMtQ54o6MeM3XPKquGXoRf8umcE.crl
rsync://rpki.ripe.net/repository/DEFAULT/57/b1f2e0-8a60-4c8a-90dc-4be794d6406d/1/pMtQ54o6MeM3XPKquGXoRf8umcE.mft
rsync://rpki.ripe.net/repository/DEFAULT/pMtQ54o6MeM3XPKquGXoRf8umcE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 02 May 2025 07:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:8b:ef:67:d0:97:fe:4c:5d:00:7b:35:85:51:1a:aa:a3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a4cb50e78a3a31e3375cf2aab865e845ff2e99c1
Validity
Not Before: May 1 13:00:44 2025 GMT
Not After : May 2 13:00:44 2025 GMT
Subject: CN=b9f4fae961eec0e0b897f7a9bf8ab526487dd30f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8f:89:cc:da:af:c4:d9:69:3a:3c:b8:df:7b:1f:
0f:5c:ea:40:b7:c0:74:18:88:f8:04:00:eb:bc:8b:
65:89:a1:05:53:4f:87:93:e6:3a:00:cc:8b:e7:5f:
d8:98:5c:16:b3:21:f7:cd:0f:b1:89:90:97:97:dd:
2c:1a:f1:b4:00:fd:15:21:99:49:40:5b:48:35:be:
c4:26:dc:f9:d9:25:0f:ce:5b:91:b1:95:c5:3b:5b:
e4:0c:fd:04:b7:8a:e7:51:0b:34:86:34:d3:c3:6d:
70:fe:09:e4:24:3f:81:7d:1a:42:15:14:05:9f:6c:
cf:87:86:c8:af:a5:de:c3:90:23:03:87:e9:6c:c2:
f4:ad:8a:f7:0e:72:57:d6:68:37:6a:aa:ba:c5:fd:
dd:e2:3f:ba:39:76:18:c3:d7:0f:f8:eb:1f:d4:28:
35:8d:da:b3:a9:fa:ae:13:72:a9:21:18:ed:f8:81:
6a:0a:2b:a8:06:cc:94:8c:e2:84:9a:39:76:dd:7c:
ae:b2:b2:a7:a4:2a:29:2e:5f:b7:b3:ef:f1:19:03:
d6:9b:5a:66:b8:2d:56:04:68:29:08:a9:38:3f:30:
9c:e1:97:a3:dc:ec:dd:d7:e0:67:2f:5f:08:3f:e8:
b1:8c:7e:ee:93:a0:96:fd:d4:c7:04:e0:4a:2d:6e:
1e:71
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B9:F4:FA:E9:61:EE:C0:E0:B8:97:F7:A9:BF:8A:B5:26:48:7D:D3:0F
X509v3 Authority Key Identifier:
keyid:A4:CB:50:E7:8A:3A:31:E3:37:5C:F2:AA:B8:65:E8:45:FF:2E:99:C1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/pMtQ54o6MeM3XPKquGXoRf8umcE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/57/b1f2e0-8a60-4c8a-90dc-4be794d6406d/1/pMtQ54o6MeM3XPKquGXoRf8umcE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/57/b1f2e0-8a60-4c8a-90dc-4be794d6406d/1/pMtQ54o6MeM3XPKquGXoRf8umcE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
7b:e7:c4:44:e7:8c:7f:bc:87:62:d3:72:0f:34:e2:2d:b5:21:
2f:2e:e8:29:17:10:c4:a0:a1:b3:ca:37:48:f2:82:ca:ff:9c:
29:b9:aa:ad:1c:53:2a:b9:33:4d:f9:e1:f5:49:f0:3e:fd:eb:
5f:19:02:8a:73:ae:14:2c:15:f6:0f:98:0b:92:07:1a:c0:bd:
41:ca:75:72:0e:fc:1d:7e:32:b4:4f:37:51:f7:b0:e7:4a:8b:
05:54:de:53:63:40:9c:75:29:33:64:53:fe:d3:ba:fd:82:e4:
39:4e:15:26:e2:d2:cf:d7:e7:df:d0:80:74:ed:db:a7:22:ff:
29:48:49:e2:6e:fa:37:5d:1c:00:33:bf:90:97:5f:14:d4:c8:
6d:3f:41:09:89:20:d4:9a:53:f3:ff:d0:4e:a4:ad:fb:69:e1:
ea:67:47:95:e6:74:ea:2d:c1:cc:c3:70:8b:44:0f:51:eb:23:
64:cc:11:89:4c:d8:0a:ad:e0:af:c3:ba:23:9a:79:5b:7a:c4:
dc:99:67:f3:1b:82:13:f4:87:24:d3:07:fa:c7:2c:f6:b8:a6:
b5:ee:8b:17:62:ec:58:2d:42:0d:5a:1c:29:49:12:da:ac:1d:
55:be:8f:7a:11:f6:18:c9:81:ac:10:47:e4:80:cf:13:47:5f:
d6:03:fc:83
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu May 1 17:05:14 2025 by rpki-client