Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/03/07d146-ef22-4e5c-bd5c-42ed3e373679/1/MXvyYLzaMCviwgdijPsWRHhhT-U.mft
File: MXvyYLzaMCviwgdijPsWRHhhT-U.mft (raw, json)
Hash identifier: 2YGd3H0pNVa19j9dnsj5RtXjimK9Trt1/+dd9eb5C3A=
Subject key identifier: A9:83:76:A0:6D:3A:4E:4A:75:60:1D:59:DB:7B:93:1A:E6:B9:E9:E7
Authority key identifier: 31:7B:F2:60:BC:DA:30:2B:E2:C2:07:62:8C:FB:16:44:78:61:4F:E5
Certificate issuer: /CN=317bf260bcda302be2c207628cfb164478614fe5
Certificate serial: 0196CB736C76BBAE980AD55FE98412BC14E2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/MXvyYLzaMCviwgdijPsWRHhhT-U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/03/07d146-ef22-4e5c-bd5c-42ed3e373679/1/MXvyYLzaMCviwgdijPsWRHhhT-U.mft
Manifest number: 0CAF
Signing time: Tue 13 May 2025 21:01:01 +0000
Manifest this update: Tue 13 May 2025 21:01:01 +0000
Manifest next update: Wed 14 May 2025 21:01:01 +0000
Files and hashes: 1: MXvyYLzaMCviwgdijPsWRHhhT-U.crl (hash: B3BTjdoFsne36Y4b4qYRdwW6hQQ/ojeO/6dYBdZetSM=)
2: penXvalgbMBLZqcx96rUayqK3NQ.roa (hash: vb/Iw29Kb6TCjGenAwHcr/Ra62ZOMD3/iU+HDEP/27c=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/03/07d146-ef22-4e5c-bd5c-42ed3e373679/1/MXvyYLzaMCviwgdijPsWRHhhT-U.crl
rsync://rpki.ripe.net/repository/DEFAULT/03/07d146-ef22-4e5c-bd5c-42ed3e373679/1/MXvyYLzaMCviwgdijPsWRHhhT-U.mft
rsync://rpki.ripe.net/repository/DEFAULT/MXvyYLzaMCviwgdijPsWRHhhT-U.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 14 May 2025 21:01:01 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:cb:73:6c:76:bb:ae:98:0a:d5:5f:e9:84:12:bc:14:e2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=317bf260bcda302be2c207628cfb164478614fe5
Validity
Not Before: May 13 21:01:01 2025 GMT
Not After : May 14 21:01:01 2025 GMT
Subject: CN=a98376a06d3a4e4a75601d59db7b931ae6b9e9e7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:ed:c3:70:6f:94:82:c6:2b:03:7c:92:c3:38:
b4:ff:b6:02:4f:b5:6f:f5:aa:dc:55:0a:e6:5a:9b:
21:ac:74:f9:5a:02:d7:5a:0a:b6:3c:90:2e:24:b0:
80:d3:39:1d:19:bc:a8:88:3d:69:b4:34:ef:36:ec:
df:70:aa:69:cf:b1:1a:ed:e8:50:c0:a6:c8:a4:71:
c0:73:c8:66:4c:2c:fa:37:86:f3:66:d8:54:62:6f:
c2:70:e4:60:39:4f:d6:07:cd:e6:bb:7f:27:6d:b4:
cb:58:c0:17:db:b8:66:6e:d6:da:18:32:4c:7c:e3:
9d:03:01:ff:22:8d:f4:a0:81:42:c0:ab:bc:4b:cb:
3b:ce:3b:36:11:81:42:d5:c5:b3:c8:49:d1:5c:f3:
85:fb:6d:76:a1:2a:dd:0d:25:b2:e0:af:bf:71:c1:
9b:5b:fc:d6:f6:9a:25:38:dd:d8:1b:8f:07:d7:8b:
e5:c9:96:07:57:6d:54:f8:9f:0c:b4:a3:ee:cc:cf:
d2:dd:22:4e:c9:a4:d3:77:02:a9:dc:06:bd:fc:6f:
d0:e4:33:a9:8f:89:76:82:19:f3:92:40:72:1d:82:
7e:98:04:e7:e1:c9:79:ff:0f:ef:75:67:6c:d2:34:
52:1a:0b:19:f4:fc:a5:18:29:4f:3b:4d:c5:59:dd:
b5:53
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A9:83:76:A0:6D:3A:4E:4A:75:60:1D:59:DB:7B:93:1A:E6:B9:E9:E7
X509v3 Authority Key Identifier:
keyid:31:7B:F2:60:BC:DA:30:2B:E2:C2:07:62:8C:FB:16:44:78:61:4F:E5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MXvyYLzaMCviwgdijPsWRHhhT-U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/03/07d146-ef22-4e5c-bd5c-42ed3e373679/1/MXvyYLzaMCviwgdijPsWRHhhT-U.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/03/07d146-ef22-4e5c-bd5c-42ed3e373679/1/MXvyYLzaMCviwgdijPsWRHhhT-U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
2e:29:5e:cf:7b:b4:04:c5:da:f5:00:89:1c:e1:3c:df:57:74:
77:dc:2a:15:59:54:7c:91:c6:77:bd:45:66:f3:ce:4e:4b:e0:
9b:66:36:32:98:78:7a:bd:7b:e4:19:9a:2f:7f:b8:0b:12:ea:
6e:6d:f5:28:3c:66:f6:60:4e:79:5c:af:46:af:6f:60:13:dc:
61:68:57:fc:32:79:48:ce:82:45:34:86:7c:53:d6:de:77:8e:
86:f6:31:8f:0d:0a:6c:b0:31:1a:08:e8:55:20:32:f6:ff:73:
08:8e:2d:64:9c:77:0c:0c:35:95:e8:9e:b6:3d:f1:15:ab:76:
84:aa:65:2d:8e:c7:a1:40:17:42:1d:9e:ea:ee:fe:31:49:dc:
5a:57:f1:20:04:f8:af:11:bc:b3:4a:c0:de:27:95:55:d8:84:
86:23:bb:f2:63:1a:c5:8e:3a:0a:9f:64:9b:79:7b:e1:be:97:
91:9b:39:5e:01:69:1a:90:24:35:86:0c:12:a5:b8:2c:ff:81:
c6:1c:d3:93:f9:65:c5:9e:19:e1:3c:f9:b9:38:08:68:1b:27:
a3:fe:09:4e:f4:ae:23:aa:f9:30:29:73:e5:28:3c:20:58:83:
b5:88:2b:41:6b:b5:9b:f9:45:8a:6e:03:a4:02:91:dc:00:69:
cc:14:92:5f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 14 05:57:07 2025 by rpki-client