Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9b/ecbe01-18ab-4fbd-9dc3-bcd52da15644/1/MbXwrK42UqU8caB0ojR6tvF_0_g.mft
File: MbXwrK42UqU8caB0ojR6tvF_0_g.mft (raw, json)
Hash identifier: NYJZB2JJYsTDMHxZa5DtxLKIJcvMOK/CNlcF4h6k55w=
Subject key identifier: 5C:40:3A:7E:CD:1F:1C:1B:95:7F:08:E5:75:04:99:F2:C2:77:82:BC
Authority key identifier: 31:B5:F0:AC:AE:36:52:A5:3C:71:A0:74:A2:34:7A:B6:F1:7F:D3:F8
Certificate issuer: /CN=31b5f0acae3652a53c71a074a2347ab6f17fd3f8
Certificate serial: 01968849612BACA501F661B3BAD8E4F4636A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/MbXwrK42UqU8caB0ojR6tvF_0_g.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9b/ecbe01-18ab-4fbd-9dc3-bcd52da15644/1/MbXwrK42UqU8caB0ojR6tvF_0_g.mft
Manifest number: 14A4
Signing time: Wed 30 Apr 2025 20:00:32 +0000
Manifest this update: Wed 30 Apr 2025 20:00:32 +0000
Manifest next update: Thu 01 May 2025 20:00:32 +0000
Files and hashes: 1: KlCag1k38E35giK2RwCL86wfRww.roa (hash: 3A8pcHf0/9mVDJ/I9xf+96E0LjYi6EEs2LRUfPZpiNc=)
2: MbXwrK42UqU8caB0ojR6tvF_0_g.crl (hash: RzGU5uJnJ1h3K+e+49XMz9tVIM4s7PMUj/gj7Rvk67c=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/9b/ecbe01-18ab-4fbd-9dc3-bcd52da15644/1/MbXwrK42UqU8caB0ojR6tvF_0_g.crl
rsync://rpki.ripe.net/repository/DEFAULT/9b/ecbe01-18ab-4fbd-9dc3-bcd52da15644/1/MbXwrK42UqU8caB0ojR6tvF_0_g.mft
rsync://rpki.ripe.net/repository/DEFAULT/MbXwrK42UqU8caB0ojR6tvF_0_g.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 01 May 2025 20:00:32 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:88:49:61:2b:ac:a5:01:f6:61:b3:ba:d8:e4:f4:63:6a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=31b5f0acae3652a53c71a074a2347ab6f17fd3f8
Validity
Not Before: Apr 30 20:00:32 2025 GMT
Not After : May 1 20:00:32 2025 GMT
Subject: CN=5c403a7ecd1f1c1b957f08e5750499f2c27782bc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:1e:18:04:07:da:9e:e0:d3:a3:35:08:6b:88:
77:da:2a:0e:f9:7f:a5:48:17:1f:eb:50:a6:95:76:
43:23:9f:2f:5c:50:de:40:10:d2:1f:06:8b:b7:0c:
39:90:da:62:28:e2:04:3b:e0:82:dc:e9:93:94:15:
a2:c9:12:60:95:0b:0b:67:83:c0:e9:42:e2:67:24:
25:b9:58:5c:e5:aa:a8:49:bd:67:21:c3:04:e0:4e:
a4:cd:da:d7:5e:63:d9:22:fd:79:c6:7a:4d:2a:74:
62:58:57:17:52:6a:d3:4d:3a:df:df:1b:96:04:6a:
8c:e4:6d:0c:69:0b:78:56:c1:7c:d1:1e:23:76:ab:
0b:bb:e5:9e:c4:00:db:ee:ea:41:44:39:92:ab:d4:
6d:69:bf:e4:2f:d4:f8:3e:d4:d3:63:2b:47:aa:2f:
ec:46:bf:48:9b:4d:a8:86:8d:af:7f:14:64:44:75:
63:7c:f1:ac:20:83:8b:4e:de:c6:12:28:83:61:f2:
c7:82:fc:50:99:a4:3f:ea:75:8e:85:d7:63:30:32:
fa:5d:c7:d0:4c:13:d6:42:6c:f5:c6:9e:f2:85:17:
49:81:8b:99:f6:a4:7b:12:b5:2f:af:b1:a3:b9:bd:
5e:50:d0:35:bc:0f:c2:d1:48:57:e0:c9:a4:89:0c:
e1:31
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5C:40:3A:7E:CD:1F:1C:1B:95:7F:08:E5:75:04:99:F2:C2:77:82:BC
X509v3 Authority Key Identifier:
keyid:31:B5:F0:AC:AE:36:52:A5:3C:71:A0:74:A2:34:7A:B6:F1:7F:D3:F8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MbXwrK42UqU8caB0ojR6tvF_0_g.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9b/ecbe01-18ab-4fbd-9dc3-bcd52da15644/1/MbXwrK42UqU8caB0ojR6tvF_0_g.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9b/ecbe01-18ab-4fbd-9dc3-bcd52da15644/1/MbXwrK42UqU8caB0ojR6tvF_0_g.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
35:3d:a5:ab:50:e7:2f:d8:97:3d:0a:16:9e:90:18:f4:ef:03:
86:98:39:58:1a:d1:ca:2c:93:e1:9d:3f:1b:2a:98:e1:08:71:
6e:56:b0:17:2f:e4:aa:a9:e4:08:db:6a:c7:db:07:d4:3f:25:
c2:3a:ab:f3:94:36:c9:91:02:71:be:57:e9:98:8c:a0:75:cc:
cf:a9:d2:5d:25:71:a7:b4:f6:da:6a:69:8c:49:e7:c5:2f:46:
6f:26:ac:e8:d0:d5:96:22:ff:12:b5:ea:5f:f1:85:02:b4:9a:
38:3f:82:44:58:1f:f4:9d:d5:d7:c4:fe:47:24:6e:3a:04:4b:
e5:f7:e6:dd:fa:80:fd:cd:68:24:3f:59:51:58:d1:fe:82:f3:
2f:36:5c:07:e1:c0:b4:d5:46:c2:46:a1:9e:10:4b:49:e9:3c:
d4:db:8d:1d:47:70:5a:72:ff:3b:c1:95:0b:2b:42:ed:fe:46:
b7:a4:68:b2:20:29:b0:d6:65:ef:d0:b3:8c:d7:be:3e:03:59:
b0:56:a5:26:e8:b7:2e:8c:41:2f:a7:44:5a:b2:04:72:89:bd:
22:16:03:4c:6b:da:fd:31:44:b9:35:40:f5:a3:2d:49:4d:e9:
87:49:89:78:03:b1:0f:43:7e:aa:04:71:75:39:d8:42:77:3f:
c4:f4:98:3b
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZaISWErrKUB9mGzutjk9GNqMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDMxYjVmMGFjYWUzNjUyYTUzYzcxYTA3NGEyMzQ3YWI2ZjE3
ZmQzZjgwHhcNMjUwNDMwMjAwMDMyWhcNMjUwNTAxMjAwMDMyWjAzMTEwLwYDVQQD
Eyg1YzQwM2E3ZWNkMWYxYzFiOTU3ZjA4ZTU3NTA0OTlmMmMyNzc4MmJjMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtx4YBAfanuDTozUIa4h32ioO+X+l
SBcf61CmlXZDI58vXFDeQBDSHwaLtww5kNpiKOIEO+CC3OmTlBWiyRJglQsLZ4PA
6ULiZyQluVhc5aqoSb1nIcME4E6kzdrXXmPZIv15xnpNKnRiWFcXUmrTTTrf3xuW
BGqM5G0MaQt4VsF80R4jdqsLu+WexADb7upBRDmSq9Rtab/kL9T4PtTTYytHqi/s
Rr9Im02oho2vfxRkRHVjfPGsIIOLTt7GEiiDYfLHgvxQmaQ/6nWOhddjMDL6XcfQ
TBPWQmz1xp7yhRdJgYuZ9qR7ErUvr7Gjub1eUNA1vA/C0UhX4MmkiQzhMQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFFxAOn7NHxwblX8I5XUEmfLCd4K8MB8GA1UdIwQY
MBaAFDG18KyuNlKlPHGgdKI0erbxf9P4MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvTWJYd3JLNDJVcVU4Y2FCMG9qUjZ0dkZfMF9nLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC85Yi9lY2JlMDEtMThhYi00ZmJkLTlkYzMt
YmNkNTJkYTE1NjQ0LzEvTWJYd3JLNDJVcVU4Y2FCMG9qUjZ0dkZfMF9nLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC85Yi9lY2JlMDEtMThhYi00ZmJkLTlkYzMtYmNkNTJkYTE1NjQ0
LzEvTWJYd3JLNDJVcVU4Y2FCMG9qUjZ0dkZfMF9nLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEANT2lq1Dn
L9iXPQoWnpAY9O8Dhpg5WBrRyiyT4Z0/GyqY4QhxblawFy/kqqnkCNtqx9sH1D8l
wjqr85Q2yZECcb5X6ZiMoHXMz6nSXSVxp7T22mppjEnnxS9Gbyas6NDVliL/ErXq
X/GFArSaOD+CRFgf9J3V18T+RyRuOgRL5ffm3fqA/c1oJD9ZUVjR/oLzLzZcB+HA
tNVGwkahnhBLSek81NuNHUdwWnL/O8GVCytC7f5Gt6RosiApsNZl79CzjNe+PgNZ
sFalJui3LoxBL6dEWrIEcom9IhYDTGva/TFEuTVA9aMtSU3ph0mJeAOxD0N+qgRx
dTnYQnc/xPSYOw==
-----END CERTIFICATE-----
Generated at Thu May 1 04:32:02 2025 by rpki-client