Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/77/b83863-5f4b-42e3-b822-a0f00be3bce1/1/mZKB6H1em4dY8kDnju9xAsQBIYk.mft
File: mZKB6H1em4dY8kDnju9xAsQBIYk.mft (raw, json)
Hash identifier: 5kp1rSPD3NJsY+buJHBXFZBZhRybT+SqZdLbKuAfFwc=
Subject key identifier: 44:F0:33:9A:C9:15:74:F6:A4:8D:99:30:98:B0:79:F7:B5:76:DD:4D
Authority key identifier: 99:92:81:E8:7D:5E:9B:87:58:F2:40:E7:8E:EF:71:02:C4:01:21:89
Certificate issuer: /CN=999281e87d5e9b8758f240e78eef7102c4012189
Certificate serial: 01967BA084221B73792B80BFEA728C1AEFE5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/mZKB6H1em4dY8kDnju9xAsQBIYk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/77/b83863-5f4b-42e3-b822-a0f00be3bce1/1/mZKB6H1em4dY8kDnju9xAsQBIYk.mft
Manifest number: 14A3
Signing time: Mon 28 Apr 2025 09:00:39 +0000
Manifest this update: Mon 28 Apr 2025 09:00:39 +0000
Manifest next update: Tue 29 Apr 2025 09:00:39 +0000
Files and hashes: 1: PF8Dfwpieuc3szZWNlM6zxbOCaw.roa (hash: eEI5JJg+vshmiZesKoh8QcSvz/GrsPF5AtTzxYWQZk4=)
2: mZKB6H1em4dY8kDnju9xAsQBIYk.crl (hash: r8uo+fjnBqi8xg63AZ8u3Z13SW/XdWPtp/Gf9oTN8GQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/77/b83863-5f4b-42e3-b822-a0f00be3bce1/1/mZKB6H1em4dY8kDnju9xAsQBIYk.crl
rsync://rpki.ripe.net/repository/DEFAULT/77/b83863-5f4b-42e3-b822-a0f00be3bce1/1/mZKB6H1em4dY8kDnju9xAsQBIYk.mft
rsync://rpki.ripe.net/repository/DEFAULT/mZKB6H1em4dY8kDnju9xAsQBIYk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 29 Apr 2025 09:00:39 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:7b:a0:84:22:1b:73:79:2b:80:bf:ea:72:8c:1a:ef:e5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=999281e87d5e9b8758f240e78eef7102c4012189
Validity
Not Before: Apr 28 09:00:39 2025 GMT
Not After : Apr 29 09:00:39 2025 GMT
Subject: CN=44f0339ac91574f6a48d993098b079f7b576dd4d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:7d:2a:f8:b0:78:58:a5:ad:a4:2d:e2:e3:21:
67:c9:00:51:e0:5c:7b:4e:50:1b:78:ea:a3:fd:78:
7f:d0:54:6b:44:07:c1:c2:5d:9b:39:e4:4c:06:a4:
84:a8:bf:b9:01:7e:e0:8c:5b:62:c4:8c:c1:17:a4:
9b:bd:1f:7e:72:87:d1:46:88:ee:71:06:0b:83:c9:
05:8d:3d:53:5f:48:76:ea:7c:02:74:07:65:97:d1:
05:4e:bf:c5:5e:2d:43:66:3f:ad:11:f2:6a:76:53:
69:90:36:cf:ca:33:b8:a7:e6:2d:da:a4:f4:83:88:
7b:39:ea:a3:02:22:57:3f:1c:c9:40:5f:6c:76:31:
c4:52:a8:d0:c1:85:8c:a7:a3:2a:0a:9c:94:07:e0:
99:2e:79:67:43:4b:a8:a3:5c:b0:36:63:1e:49:d0:
11:2a:6e:83:a7:0f:c4:b5:04:d9:95:f4:64:9f:1c:
ab:eb:a6:7f:81:b6:81:56:a4:e0:34:c0:0a:36:3a:
53:ac:d7:d8:a7:be:b8:75:f6:0f:a2:9f:46:2e:a4:
e1:55:e9:bf:bc:58:e8:a8:a8:7d:8f:4a:6f:c6:9f:
02:25:97:73:a3:73:48:75:f0:fd:d9:6a:1c:c7:5a:
d0:96:56:2f:39:f7:da:ac:4a:67:ea:3f:62:98:a2:
de:2d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
44:F0:33:9A:C9:15:74:F6:A4:8D:99:30:98:B0:79:F7:B5:76:DD:4D
X509v3 Authority Key Identifier:
keyid:99:92:81:E8:7D:5E:9B:87:58:F2:40:E7:8E:EF:71:02:C4:01:21:89
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/mZKB6H1em4dY8kDnju9xAsQBIYk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/77/b83863-5f4b-42e3-b822-a0f00be3bce1/1/mZKB6H1em4dY8kDnju9xAsQBIYk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/77/b83863-5f4b-42e3-b822-a0f00be3bce1/1/mZKB6H1em4dY8kDnju9xAsQBIYk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
09:88:1f:90:74:9b:59:f1:13:50:39:72:78:5a:78:59:43:a5:
9c:48:82:01:0f:6e:0a:b0:e1:2d:e3:93:a4:6d:ba:11:a8:06:
76:5a:1f:dd:ef:cb:c7:33:2a:39:70:58:8f:7d:d6:c4:b8:8c:
b4:63:29:84:e9:1d:c5:61:67:20:0a:51:0e:19:11:66:d3:f0:
d7:34:52:c0:9a:2e:00:5a:16:04:24:8e:c9:2d:59:c4:2c:20:
6e:47:27:f9:51:ff:18:2b:9e:87:08:5c:89:d3:32:21:66:32:
f4:86:c2:65:d9:c8:4e:08:dd:55:14:01:a0:ad:8f:ca:22:a1:
d7:e7:10:9b:de:62:36:f0:48:a5:c1:44:08:a8:0b:ef:1f:1c:
6a:f9:54:9d:49:f0:49:c2:9e:94:6c:26:f0:a3:5e:d4:5b:b6:
7a:9e:50:b8:9b:ae:16:a5:28:56:30:b3:5d:f1:9e:1f:0b:0b:
4f:e2:41:5c:bf:a7:31:e6:22:c4:2d:5c:72:3a:65:de:52:ae:
dd:a9:0f:6f:41:00:7f:f1:89:35:4f:7b:42:ed:e6:a5:cd:dc:
42:c3:1d:f8:9d:87:40:f2:59:60:6f:25:2d:ec:c8:bc:5d:cf:
52:e7:05:fa:5d:7c:54:b9:b1:6e:fb:70:84:3a:a6:e3:a0:f5:
de:a1:90:cf
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 28 19:11:05 2025 by rpki-client