Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0f/524bfe-c5ae-4f67-8413-2748c4002c2e/1/MZLFLzYKOnL-IkQaw_x-DlIl7pE.mft
File: MZLFLzYKOnL-IkQaw_x-DlIl7pE.mft (raw, json)
Hash identifier: KVRXYph7a9A+lbK3yjJy5Sad4URiCIGV1O9TpuW3SoM=
Subject key identifier: 6E:8B:06:37:BF:47:96:4B:2B:46:BD:E9:AC:8B:A0:AF:7F:DD:DD:F5
Authority key identifier: 31:92:C5:2F:36:0A:3A:72:FE:22:44:1A:C3:FC:7E:0E:52:25:EE:91
Certificate issuer: /CN=3192c52f360a3a72fe22441ac3fc7e0e5225ee91
Certificate serial: 0196B9357F474621874A664AD9B36063872B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/MZLFLzYKOnL-IkQaw_x-DlIl7pE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0f/524bfe-c5ae-4f67-8413-2748c4002c2e/1/MZLFLzYKOnL-IkQaw_x-DlIl7pE.mft
Manifest number: 1487
Signing time: Sat 10 May 2025 08:00:12 +0000
Manifest this update: Sat 10 May 2025 08:00:12 +0000
Manifest next update: Sun 11 May 2025 08:00:12 +0000
Files and hashes: 1: LgelsY-16hZE8VmZ4UWScnrAkQA.roa (hash: 5MPF2K6ZagDsXMwY0mVJRSAJCcCewM4ZcbU+TqCGJzs=)
2: MZLFLzYKOnL-IkQaw_x-DlIl7pE.crl (hash: v4DKAxraQi1YeNrG4/i4HklkJ2rki8qWL8WM5GK3GUM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0f/524bfe-c5ae-4f67-8413-2748c4002c2e/1/MZLFLzYKOnL-IkQaw_x-DlIl7pE.crl
rsync://rpki.ripe.net/repository/DEFAULT/0f/524bfe-c5ae-4f67-8413-2748c4002c2e/1/MZLFLzYKOnL-IkQaw_x-DlIl7pE.mft
rsync://rpki.ripe.net/repository/DEFAULT/MZLFLzYKOnL-IkQaw_x-DlIl7pE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 11 May 2025 04:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:b9:35:7f:47:46:21:87:4a:66:4a:d9:b3:60:63:87:2b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3192c52f360a3a72fe22441ac3fc7e0e5225ee91
Validity
Not Before: May 10 08:00:12 2025 GMT
Not After : May 11 08:00:12 2025 GMT
Subject: CN=6e8b0637bf47964b2b46bde9ac8ba0af7fddddf5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:de:ed:c0:cb:92:a0:07:53:8e:c6:4a:a1:bb:db:
de:08:4a:f3:4c:f0:97:3f:b5:7b:3b:11:85:57:86:
e1:2a:9d:f7:2a:72:d9:2a:39:96:8b:d5:41:03:59:
6a:05:f2:91:9b:ae:eb:51:bc:98:e4:8c:55:f9:62:
60:2d:34:8a:e4:55:af:c9:91:4e:b5:4e:ae:f3:e2:
75:34:d1:ae:11:a2:c9:88:e6:01:60:fe:78:e3:6a:
97:6b:c5:36:69:e3:55:a0:ad:06:b1:82:43:7c:fa:
68:d0:d6:c7:f7:f1:fd:e5:d3:2e:20:9f:ee:45:e8:
ab:87:07:e8:6a:34:22:43:cb:04:20:61:bf:4a:7d:
0b:0c:fa:47:0e:0b:c1:fe:d6:ab:14:14:6f:a4:ce:
4b:6a:ea:e4:93:01:5f:5d:ac:b3:d2:77:36:da:91:
6c:28:37:5f:a5:f3:60:1d:0a:6b:5e:f1:c3:b1:9f:
cd:39:58:5e:07:f8:92:c1:04:ba:c9:ef:8f:48:66:
ef:28:9a:6c:c8:b9:28:fb:18:3a:5d:ac:9b:f3:dd:
50:77:65:a5:80:97:2a:92:32:b1:81:1d:32:52:14:
c1:c0:23:6e:0c:a9:f1:9c:2e:ab:3a:57:30:d8:1f:
31:0c:06:46:5a:b0:bd:b9:1b:43:3d:27:7d:85:a0:
75:ed
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6E:8B:06:37:BF:47:96:4B:2B:46:BD:E9:AC:8B:A0:AF:7F:DD:DD:F5
X509v3 Authority Key Identifier:
keyid:31:92:C5:2F:36:0A:3A:72:FE:22:44:1A:C3:FC:7E:0E:52:25:EE:91
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MZLFLzYKOnL-IkQaw_x-DlIl7pE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0f/524bfe-c5ae-4f67-8413-2748c4002c2e/1/MZLFLzYKOnL-IkQaw_x-DlIl7pE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0f/524bfe-c5ae-4f67-8413-2748c4002c2e/1/MZLFLzYKOnL-IkQaw_x-DlIl7pE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
29:bd:a0:2d:ea:5a:ed:8d:d4:2b:b9:50:df:b0:5f:2c:99:4e:
5a:7c:8b:17:71:10:b6:04:bd:75:73:54:3f:53:3a:1b:d1:6f:
c3:fb:0c:53:a4:24:ec:a8:b2:d3:10:22:d7:b9:23:cf:9c:4c:
ef:b2:5b:ae:14:81:a7:ec:5e:22:57:82:3e:81:dc:bf:da:ae:
8e:96:5c:b4:56:8a:49:1d:b7:a6:fd:fa:38:f1:27:2f:f7:28:
cc:6a:c5:6b:22:1e:9a:66:bc:a6:28:8e:42:a7:dd:93:c6:bc:
53:0b:1c:38:87:13:74:ec:d5:7a:b6:79:a1:26:76:3b:53:6f:
97:14:f4:cf:43:28:58:23:ee:0c:bc:ec:b4:e8:05:92:ba:8c:
70:66:4d:a6:96:ab:af:6e:77:90:4c:da:c3:31:82:00:60:fc:
54:9c:e3:2f:95:4d:63:48:d8:70:2c:bc:1c:d3:1e:cf:92:b1:
53:aa:66:3a:70:ee:79:f4:e8:cd:4b:5f:ff:a7:8d:a5:c7:aa:
74:9f:a7:52:8c:30:25:04:44:83:d7:2d:a2:de:72:ad:8e:65:
c4:90:d9:3d:22:a3:ff:d7:30:4b:06:3d:bd:da:7a:9f:73:61:
7e:75:80:a8:b0:f5:2e:fe:5d:cc:5d:3a:32:88:c8:42:b9:74:
4e:10:ae:c6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat May 10 10:21:22 2025 by rpki-client