Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/14/35b49b-03a3-4101-a3fe-1d8e19df4a62/1/MtOVxX39MMDNLDD0IziuTBSnUKE.mft
File: MtOVxX39MMDNLDD0IziuTBSnUKE.mft (raw, json)
Hash identifier: itDBGwcy4g0WQjXSXq9pmfW8fNPIPCPQ+tLHbVyrCHw=
Subject key identifier: A8:BE:AE:BB:06:31:D0:58:47:FE:EE:2E:08:4B:91:16:2E:F0:76:C1
Authority key identifier: 32:D3:95:C5:7D:FD:30:C0:CD:2C:30:F4:23:38:AE:4C:14:A7:50:A1
Certificate issuer: /CN=32d395c57dfd30c0cd2c30f42338ae4c14a750a1
Certificate serial: 0196A50A32BA9134A6C6F2B4074710BADB32
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/MtOVxX39MMDNLDD0IziuTBSnUKE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/14/35b49b-03a3-4101-a3fe-1d8e19df4a62/1/MtOVxX39MMDNLDD0IziuTBSnUKE.mft
Manifest number: 0A10
Signing time: Tue 06 May 2025 10:00:30 +0000
Manifest this update: Tue 06 May 2025 10:00:30 +0000
Manifest next update: Wed 07 May 2025 10:00:30 +0000
Files and hashes: 1: MtOVxX39MMDNLDD0IziuTBSnUKE.crl (hash: Alyfp7HFKqHAfHLu7v0Nv0yR8LMWkpk7On79dYTBHdc=)
2: SwDsrRhvfBw9F4XGJ9jQ9aLMXmM.roa (hash: 3d2l7JTHz6vbNzzhkSjJTHAcnYSSZFmoaOBcI2qRo/o=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/14/35b49b-03a3-4101-a3fe-1d8e19df4a62/1/MtOVxX39MMDNLDD0IziuTBSnUKE.crl
rsync://rpki.ripe.net/repository/DEFAULT/14/35b49b-03a3-4101-a3fe-1d8e19df4a62/1/MtOVxX39MMDNLDD0IziuTBSnUKE.mft
rsync://rpki.ripe.net/repository/DEFAULT/MtOVxX39MMDNLDD0IziuTBSnUKE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 07 May 2025 10:00:30 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:a5:0a:32:ba:91:34:a6:c6:f2:b4:07:47:10:ba:db:32
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=32d395c57dfd30c0cd2c30f42338ae4c14a750a1
Validity
Not Before: May 6 10:00:30 2025 GMT
Not After : May 7 10:00:30 2025 GMT
Subject: CN=a8beaebb0631d05847feee2e084b91162ef076c1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9e:89:56:a6:29:d4:5b:19:9b:33:f2:46:6b:1a:
6e:d1:e9:96:34:4b:01:7e:3b:f9:c1:ec:14:76:b4:
db:ad:9b:25:fd:84:75:1a:42:1e:06:cb:50:e6:d3:
aa:91:a7:a3:5f:99:45:6e:a7:12:b6:50:bb:7f:0f:
fd:bf:65:19:72:35:2f:d6:51:27:21:9a:ed:5f:39:
d6:79:97:9b:82:4b:62:25:65:df:4c:54:bd:38:29:
86:c3:07:ec:e6:c0:20:ee:5a:28:fc:fb:ea:f1:66:
eb:8e:97:b9:5c:c2:6a:e1:67:db:d5:30:0b:9e:fe:
e4:25:f9:99:db:12:bd:2e:04:8b:92:bb:90:ef:49:
cc:f0:82:47:bf:d8:a0:36:82:db:d7:90:dc:f1:00:
de:ab:dc:57:5a:10:86:ff:3b:6a:2e:ad:12:b8:17:
d4:b3:24:c0:95:98:e2:43:61:94:52:be:68:43:84:
76:4d:bc:b9:a6:ac:b4:da:2d:27:4c:26:35:e8:d5:
9c:fd:c7:45:9d:3f:86:08:b3:4d:0f:4a:11:e7:25:
54:55:04:96:63:15:34:a1:a1:11:0d:28:27:1e:21:
65:73:42:e5:69:a4:89:1a:d5:ad:fc:29:81:c3:ef:
37:19:62:c1:18:72:cc:1d:9f:02:7f:28:9f:8f:08:
8d:af
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A8:BE:AE:BB:06:31:D0:58:47:FE:EE:2E:08:4B:91:16:2E:F0:76:C1
X509v3 Authority Key Identifier:
keyid:32:D3:95:C5:7D:FD:30:C0:CD:2C:30:F4:23:38:AE:4C:14:A7:50:A1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MtOVxX39MMDNLDD0IziuTBSnUKE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/14/35b49b-03a3-4101-a3fe-1d8e19df4a62/1/MtOVxX39MMDNLDD0IziuTBSnUKE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/14/35b49b-03a3-4101-a3fe-1d8e19df4a62/1/MtOVxX39MMDNLDD0IziuTBSnUKE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
88:37:55:90:1d:9d:84:8e:81:04:ab:2e:c5:f7:9e:42:6a:e2:
4b:94:cb:ae:f5:88:7b:ef:b9:4a:d7:fc:30:a2:56:21:5d:e4:
c1:f9:86:1f:de:4f:86:a1:fb:7d:29:9b:5c:49:aa:2d:75:ad:
b3:98:37:f8:42:18:c2:d2:56:60:f4:61:4a:51:16:0e:a4:10:
9a:b6:8d:dd:79:33:11:87:97:ff:0f:c6:52:cc:cc:bf:b8:fc:
04:07:20:0a:7b:99:ee:80:a7:63:90:75:e1:3e:e3:a6:a5:d8:
5d:9d:b0:84:56:e7:d7:cf:cb:37:0e:8a:ee:81:6f:8b:ce:e5:
85:cc:2d:b8:c3:39:99:90:48:7a:25:5a:6f:e8:9e:38:0a:15:
16:4d:32:79:2e:fd:12:ed:ab:0d:b2:67:36:c7:5b:05:a2:91:
47:c0:6b:33:4e:17:9f:2a:60:89:31:82:1e:11:fe:94:3f:5b:
04:a0:dc:a1:20:d1:7a:6e:53:53:e3:ef:22:fd:3c:92:d4:3a:
ad:9d:86:fd:7b:09:9c:f3:3b:c4:55:7c:fb:03:97:42:5e:74:
67:00:78:f7:b7:78:7a:f9:b0:33:dc:05:72:44:5e:00:bf:81:
02:5c:20:1a:73:5d:7b:8c:14:9d:1b:e2:7b:99:58:c3:83:e1:
59:09:cd:59
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue May 6 15:19:04 2025 by rpki-client