Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6a/9a36cc-6dca-4a2a-bf6f-d47bd7d0192f/1/MZ7ds2aRntdfRmDPsOC25fxAFhM.mft
File: MZ7ds2aRntdfRmDPsOC25fxAFhM.mft (raw, json)
Hash identifier: U/FrIiDl8LuA/IASr9nj6VYY+9xuRDso3VQx/EmoEfQ=
Subject key identifier: D8:72:5A:1B:B4:0D:94:EC:71:40:90:21:28:A4:DD:F7:22:8A:9F:E0
Authority key identifier: 31:9E:DD:B3:66:91:9E:D7:5F:46:60:CF:B0:E0:B6:E5:FC:40:16:13
Certificate issuer: /CN=319eddb366919ed75f4660cfb0e0b6e5fc401613
Certificate serial: 01967679D8B55F0198CBBCF61A6A0A438D93
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/MZ7ds2aRntdfRmDPsOC25fxAFhM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6a/9a36cc-6dca-4a2a-bf6f-d47bd7d0192f/1/MZ7ds2aRntdfRmDPsOC25fxAFhM.mft
Manifest number: 0BE1
Signing time: Sun 27 Apr 2025 09:00:18 +0000
Manifest this update: Sun 27 Apr 2025 09:00:18 +0000
Manifest next update: Mon 28 Apr 2025 09:00:18 +0000
Files and hashes: 1: BYjgxdL3ddXOTmm0stHvKsFPd4k.roa (hash: 4MJkG6H0wdaazlb0EpHV2G+H4iKJ78151mJpo0/ddyA=)
2: MZ7ds2aRntdfRmDPsOC25fxAFhM.crl (hash: DmyhprlWvTdJmAX70g0Ip4vzgcCacEjnsiFE02xQQfc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/6a/9a36cc-6dca-4a2a-bf6f-d47bd7d0192f/1/MZ7ds2aRntdfRmDPsOC25fxAFhM.crl
rsync://rpki.ripe.net/repository/DEFAULT/6a/9a36cc-6dca-4a2a-bf6f-d47bd7d0192f/1/MZ7ds2aRntdfRmDPsOC25fxAFhM.mft
rsync://rpki.ripe.net/repository/DEFAULT/MZ7ds2aRntdfRmDPsOC25fxAFhM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 28 Apr 2025 05:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:76:79:d8:b5:5f:01:98:cb:bc:f6:1a:6a:0a:43:8d:93
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=319eddb366919ed75f4660cfb0e0b6e5fc401613
Validity
Not Before: Apr 27 09:00:18 2025 GMT
Not After : Apr 28 09:00:18 2025 GMT
Subject: CN=d8725a1bb40d94ec7140902128a4ddf7228a9fe0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:db:04:80:27:36:8e:0d:14:11:ff:9d:ef:40:
92:8f:ab:40:d3:44:c4:b5:6f:07:bf:ca:52:15:b7:
68:b3:f8:78:ca:3d:bd:77:3c:23:ed:46:7b:7e:78:
49:ae:de:b4:6f:1f:59:cf:8a:14:ca:ab:1a:9d:56:
a2:0f:99:2a:67:88:81:dc:c3:7d:3c:a3:ea:43:eb:
75:5e:b8:d9:73:4a:10:6a:3e:fd:f6:1c:c1:df:af:
d5:b0:c5:70:be:6f:a5:d6:39:df:1b:22:bf:c1:9f:
ef:7f:26:dc:64:0d:22:14:da:f9:16:a9:df:e7:ed:
89:78:e1:f0:16:3c:a4:94:56:40:47:00:95:63:5a:
99:40:86:62:65:98:97:09:0c:af:21:0e:3f:99:97:
91:cf:0a:eb:b8:df:94:aa:94:c5:f8:67:3f:c5:77:
57:0a:b4:27:fd:76:fe:b9:9e:ff:bb:b9:08:0e:a1:
f4:6e:57:18:59:59:47:c4:b1:97:9e:57:29:91:e5:
8e:e6:c9:b1:21:eb:fe:68:12:15:af:ee:e0:46:46:
b5:46:1a:35:55:4f:07:1d:dc:5d:1a:68:53:37:46:
08:61:bb:56:1e:23:3c:8c:7c:65:f7:b4:df:8b:c4:
2b:26:32:5d:f5:72:3c:7f:c8:25:8a:1f:89:03:54:
d5:f9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D8:72:5A:1B:B4:0D:94:EC:71:40:90:21:28:A4:DD:F7:22:8A:9F:E0
X509v3 Authority Key Identifier:
keyid:31:9E:DD:B3:66:91:9E:D7:5F:46:60:CF:B0:E0:B6:E5:FC:40:16:13
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MZ7ds2aRntdfRmDPsOC25fxAFhM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6a/9a36cc-6dca-4a2a-bf6f-d47bd7d0192f/1/MZ7ds2aRntdfRmDPsOC25fxAFhM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6a/9a36cc-6dca-4a2a-bf6f-d47bd7d0192f/1/MZ7ds2aRntdfRmDPsOC25fxAFhM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
12:2d:25:10:80:e4:89:77:a6:79:91:32:d6:4b:de:b9:e4:64:
95:df:a2:5b:ff:14:30:18:14:90:9c:9c:fe:b7:4b:29:90:37:
d4:88:b5:48:16:e1:91:47:16:f8:9a:c7:0a:be:46:9c:e3:c8:
2d:d9:dd:4c:a1:27:74:74:ee:0c:3e:75:67:27:12:de:ee:35:
d4:38:74:9b:8b:b0:60:cc:7f:85:db:36:a4:05:b7:c7:9e:44:
2c:a5:b1:e7:2c:d4:bc:d9:90:0d:7b:ce:51:2d:3f:85:43:b3:
a2:ef:4e:91:de:14:5d:64:5c:19:5c:f5:b7:b4:78:9a:6c:08:
12:d4:9f:73:ed:7b:a7:e5:65:c6:f4:3a:28:3f:61:04:e3:3e:
b3:57:91:36:09:1a:8a:c3:16:04:12:42:9f:1b:c9:79:ff:87:
1a:82:b8:f1:8f:a1:2b:9f:09:b0:9c:aa:96:92:84:eb:16:13:
4b:cf:e3:98:7a:62:97:84:0d:23:75:52:7f:23:03:35:5d:a7:
53:2f:e3:25:9a:db:39:76:ef:b6:44:c2:9f:df:f9:ef:e7:da:
22:91:3d:bb:2b:b0:3b:dc:85:7a:82:3c:bb:76:ea:44:50:cf:
0a:61:3d:f4:c4:47:30:c5:05:bc:47:2d:0b:b3:f0:1a:98:40:
54:97:e7:af
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 27 12:10:12 2025 by rpki-client