Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bd/f0358f-0d50-4704-85cf-262da883c8e2/1/MjFs1IgVYto785JbSRi24R12UUw.mft
File: MjFs1IgVYto785JbSRi24R12UUw.mft (raw, json)
Hash identifier: UjuZcEQhQARQD1VeeftSDaaaB5ODqMlrR0RFBDwx59Q=
Subject key identifier: 53:36:D6:97:40:3E:EF:66:F0:76:46:7F:A6:77:59:16:82:C4:62:11
Authority key identifier: 32:31:6C:D4:88:15:62:DA:3B:F3:92:5B:49:18:B6:E1:1D:76:51:4C
Certificate issuer: /CN=32316cd4881562da3bf3925b4918b6e11d76514c
Certificate serial: 019690DE6224A87DAD982B903B232AC76498
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/MjFs1IgVYto785JbSRi24R12UUw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bd/f0358f-0d50-4704-85cf-262da883c8e2/1/MjFs1IgVYto785JbSRi24R12UUw.mft
Manifest number: 0C79
Signing time: Fri 02 May 2025 12:00:15 +0000
Manifest this update: Fri 02 May 2025 12:00:15 +0000
Manifest next update: Sat 03 May 2025 12:00:15 +0000
Files and hashes: 1: MjFs1IgVYto785JbSRi24R12UUw.crl (hash: hvZKQqUgXM9R2vDJrVjIdzCHwX+mKmrCyUlHv1H5qHM=)
2: O3osI0EMQ6lE3X_ye8aviCt4iTA.roa (hash: 9DOrDt/vfxy297yCahpwE4Xa/8MH6AlQc6vnFQ987B0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/bd/f0358f-0d50-4704-85cf-262da883c8e2/1/MjFs1IgVYto785JbSRi24R12UUw.crl
rsync://rpki.ripe.net/repository/DEFAULT/bd/f0358f-0d50-4704-85cf-262da883c8e2/1/MjFs1IgVYto785JbSRi24R12UUw.mft
rsync://rpki.ripe.net/repository/DEFAULT/MjFs1IgVYto785JbSRi24R12UUw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 03 May 2025 10:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:90:de:62:24:a8:7d:ad:98:2b:90:3b:23:2a:c7:64:98
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=32316cd4881562da3bf3925b4918b6e11d76514c
Validity
Not Before: May 2 12:00:15 2025 GMT
Not After : May 3 12:00:15 2025 GMT
Subject: CN=5336d697403eef66f076467fa677591682c46211
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:fe:55:81:8f:41:03:a8:80:ba:fd:81:df:2e:
d5:99:15:f6:1f:26:b6:8b:a4:43:27:1f:88:d8:79:
90:f2:d9:fd:05:23:65:d7:04:a1:59:72:65:ac:c0:
c8:e1:82:3f:7b:01:b5:42:7a:c8:40:ff:b0:27:02:
ea:bd:7b:3d:74:b4:bf:c7:30:ee:94:5d:21:61:82:
96:fe:52:46:62:56:ac:12:22:be:4f:10:31:0e:dc:
b0:31:93:f6:e3:72:e7:de:7a:7a:a6:90:27:58:b5:
4d:b0:b4:be:7e:58:0e:ba:39:2f:2e:d4:a7:31:28:
56:aa:17:fe:e5:b2:54:22:f5:16:59:9c:ae:f9:ff:
dc:87:b9:3f:76:c7:6b:52:2d:e6:93:90:94:da:0c:
14:3f:7e:a0:98:e9:86:d9:39:db:04:f7:1e:3c:24:
40:69:c4:7d:bc:ed:31:cd:e2:bd:d6:db:d9:c6:6f:
e5:66:49:f4:26:97:3a:19:f0:db:37:3f:ea:40:bb:
a2:c9:05:98:3e:ce:23:98:2d:40:1b:db:d9:d2:7e:
28:d1:3e:fd:20:a0:c4:f0:c2:bf:22:0c:1e:81:ad:
b6:fc:64:72:13:5b:8e:fd:9b:3b:19:1b:9d:88:2c:
77:67:ea:22:13:a2:06:42:66:57:47:fa:ca:d0:89:
42:6f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
53:36:D6:97:40:3E:EF:66:F0:76:46:7F:A6:77:59:16:82:C4:62:11
X509v3 Authority Key Identifier:
keyid:32:31:6C:D4:88:15:62:DA:3B:F3:92:5B:49:18:B6:E1:1D:76:51:4C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MjFs1IgVYto785JbSRi24R12UUw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bd/f0358f-0d50-4704-85cf-262da883c8e2/1/MjFs1IgVYto785JbSRi24R12UUw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bd/f0358f-0d50-4704-85cf-262da883c8e2/1/MjFs1IgVYto785JbSRi24R12UUw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
72:1b:a5:7f:66:bc:d5:28:ad:62:31:2d:ec:fd:c0:5b:4a:27:
e4:0d:06:4d:14:74:cd:1a:43:a8:47:fc:0b:20:b2:eb:42:e7:
91:ae:4a:32:94:46:da:53:8a:27:76:79:1b:ff:3f:86:d3:ac:
75:33:af:ad:b4:79:ca:29:ad:26:35:a7:98:60:90:18:9a:cd:
f0:2f:50:1b:1b:7a:5f:71:06:06:0b:d0:85:b1:e9:ac:60:df:
be:4e:d3:6c:5b:53:2f:b7:c6:91:61:23:fc:39:12:c7:e7:01:
0d:d5:cf:a7:50:ee:80:fe:0f:46:0f:dd:f1:50:2a:d6:25:ae:
6e:d0:c3:04:6c:fd:d4:27:d5:d3:b7:da:92:5a:ab:48:1a:1d:
ae:88:2d:3a:6f:8c:66:59:fb:db:84:c2:ec:60:df:9e:d4:67:
99:4e:8f:cf:b3:59:d0:98:76:b4:bd:40:e6:85:a7:da:26:27:
45:f0:8c:16:b7:a1:06:d3:76:f1:8e:38:a9:b1:f9:9d:07:cf:
34:d5:5d:7e:f4:6c:90:d5:a3:6c:b8:a5:d0:05:25:7b:39:e8:
30:46:56:07:fe:11:4a:26:62:0c:8f:b6:8c:14:df:bb:d4:df:
88:b7:f8:a7:75:78:46:d8:c5:3e:76:9f:a5:2d:a6:ef:5c:f1:
3c:b2:89:a8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 2 16:30:36 2025 by rpki-client