Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/65/b792cc-ab96-456e-9d3e-a1ee440ffe3e/1/MCbiQi-nIkVOYIMX0hhitmqjfTM.mft
File: MCbiQi-nIkVOYIMX0hhitmqjfTM.mft (raw, json)
Hash identifier: oJjTQG2e4QJqdPZqS+Hz4JATTbs3QzeDHtdDiM6ZmCM=
Subject key identifier: 0D:0D:6B:00:B4:55:41:A8:11:D4:DF:BA:53:41:88:76:8C:FB:00:AC
Authority key identifier: 30:26:E2:42:2F:A7:22:45:4E:60:83:17:D2:18:62:B6:6A:A3:7D:33
Certificate issuer: /CN=3026e2422fa722454e608317d21862b66aa37d33
Certificate serial: 019677FA93F1D763BF16E388795F9B175ED0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/MCbiQi-nIkVOYIMX0hhitmqjfTM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/65/b792cc-ab96-456e-9d3e-a1ee440ffe3e/1/MCbiQi-nIkVOYIMX0hhitmqjfTM.mft
Manifest number: 1460
Signing time: Sun 27 Apr 2025 16:00:32 +0000
Manifest this update: Sun 27 Apr 2025 16:00:32 +0000
Manifest next update: Mon 28 Apr 2025 16:00:32 +0000
Files and hashes: 1: MCbiQi-nIkVOYIMX0hhitmqjfTM.crl (hash: Q4TtBt4jyVD2pGK7DzA+0+DmjL+jjZ1c9V5CdJgUi9M=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/65/b792cc-ab96-456e-9d3e-a1ee440ffe3e/1/MCbiQi-nIkVOYIMX0hhitmqjfTM.crl
rsync://rpki.ripe.net/repository/DEFAULT/65/b792cc-ab96-456e-9d3e-a1ee440ffe3e/1/MCbiQi-nIkVOYIMX0hhitmqjfTM.mft
rsync://rpki.ripe.net/repository/DEFAULT/MCbiQi-nIkVOYIMX0hhitmqjfTM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 28 Apr 2025 14:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:77:fa:93:f1:d7:63:bf:16:e3:88:79:5f:9b:17:5e:d0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3026e2422fa722454e608317d21862b66aa37d33
Validity
Not Before: Apr 27 16:00:32 2025 GMT
Not After : Apr 28 16:00:32 2025 GMT
Subject: CN=0d0d6b00b45541a811d4dfba534188768cfb00ac
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:b9:12:c1:04:df:d5:53:99:f3:0a:bb:51:8a:
32:e9:2f:66:ab:ca:ed:17:4c:02:7a:8a:16:2a:67:
7c:b3:4f:ee:4d:53:d8:c2:99:47:17:9a:22:0a:46:
b5:eb:22:5e:8b:80:22:92:13:c4:91:02:96:37:85:
8c:55:87:f2:bb:26:af:f4:d4:ca:2c:5a:03:08:4c:
c0:ed:99:ff:1c:b8:88:04:f2:ab:f5:94:4f:c9:5a:
e7:89:b3:e4:90:86:28:62:6b:39:79:31:fc:72:02:
8c:d3:fc:58:49:df:08:b1:73:b9:3b:1c:29:1c:37:
3a:4a:a6:37:03:24:7e:ba:a6:c5:80:12:f4:19:48:
1e:52:94:26:39:d9:bf:c4:83:bb:4b:14:26:a7:1c:
5d:62:f7:e7:4c:47:a9:5d:cb:93:b7:7b:13:73:7f:
10:8f:40:60:c5:2a:66:39:58:64:76:d0:83:2b:86:
b9:d3:73:b3:3e:86:f9:3b:89:d6:3f:9c:5e:99:32:
12:91:33:1b:f5:a6:f3:4c:18:2a:34:81:ab:58:09:
a4:38:fd:d7:64:af:a6:b7:69:7c:1a:0e:3a:ca:57:
bd:e9:4b:10:11:94:d1:56:9d:8b:42:58:6f:6c:2c:
55:55:d0:d2:72:a2:54:e8:4b:64:e4:e8:8f:45:38:
5b:f3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0D:0D:6B:00:B4:55:41:A8:11:D4:DF:BA:53:41:88:76:8C:FB:00:AC
X509v3 Authority Key Identifier:
keyid:30:26:E2:42:2F:A7:22:45:4E:60:83:17:D2:18:62:B6:6A:A3:7D:33
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MCbiQi-nIkVOYIMX0hhitmqjfTM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/65/b792cc-ab96-456e-9d3e-a1ee440ffe3e/1/MCbiQi-nIkVOYIMX0hhitmqjfTM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/65/b792cc-ab96-456e-9d3e-a1ee440ffe3e/1/MCbiQi-nIkVOYIMX0hhitmqjfTM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
89:ec:72:13:d0:6e:58:e5:07:b2:8e:63:19:6a:b1:47:a6:80:
4b:2c:9b:39:15:a2:ac:92:db:ea:4f:8a:2e:ac:7d:1a:c1:a0:
fc:7b:34:91:4e:c7:c1:73:6a:7d:38:05:54:d4:46:5c:b6:89:
85:e9:47:3a:99:ab:3d:bd:a5:aa:af:03:55:89:ae:08:a2:ea:
d3:0c:d9:a0:40:c7:54:26:0e:05:f4:25:05:72:1c:de:ac:f3:
8b:8e:94:50:9d:a6:55:db:4f:3b:d2:36:83:93:66:f2:80:97:
3e:9f:b4:f5:11:5c:ab:7b:3c:18:7a:88:90:8d:56:81:6b:44:
71:c6:24:87:f0:68:c5:f9:1e:6f:19:b2:61:f5:02:ee:2d:42:
c4:d9:37:a2:10:1b:7d:43:a3:25:33:13:3c:72:84:f8:a4:8e:
9b:e1:53:e9:85:91:e7:10:85:c2:43:37:aa:19:87:45:e5:94:
7f:ff:0c:75:3c:87:80:a0:77:e3:bb:2f:3c:04:93:0d:c1:9e:
96:f1:d9:ff:82:c6:65:65:a3:35:db:28:02:32:77:2b:15:47:
71:59:e8:77:9f:ee:a4:07:7f:4d:16:7c:66:92:07:ed:39:c8:
7a:8b:09:c2:82:f1:f5:c0:1f:56:cf:c3:21:4b:ac:60:ce:55:
6c:4e:ee:2e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 27 19:09:19 2025 by rpki-client