Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/14/5a448a-5e7a-47e0-87da-cdcfbb100447/1/MZX3NBnoIjKXlM8X-6fpPzdTdKk.mft
File: MZX3NBnoIjKXlM8X-6fpPzdTdKk.mft (raw, json)
Hash identifier: MG4TjWLfr9YBe/MaTQvFgW0kEt+pXEmt6fcJBtPly+U=
Subject key identifier: BC:50:16:C3:6A:A4:39:6B:BA:F6:8C:60:72:B4:77:51:E1:F8:B8:AC
Authority key identifier: 31:95:F7:34:19:E8:22:32:97:94:CF:17:FB:A7:E9:3F:37:53:74:A9
Certificate issuer: /CN=3195f73419e822329794cf17fba7e93f375374a9
Certificate serial: 0196BDEE210AB2E618CD459FC049B45EE3DA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/MZX3NBnoIjKXlM8X-6fpPzdTdKk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/14/5a448a-5e7a-47e0-87da-cdcfbb100447/1/MZX3NBnoIjKXlM8X-6fpPzdTdKk.mft
Manifest number: 10DA
Signing time: Sun 11 May 2025 06:00:21 +0000
Manifest this update: Sun 11 May 2025 06:00:21 +0000
Manifest next update: Mon 12 May 2025 06:00:21 +0000
Files and hashes: 1: MZX3NBnoIjKXlM8X-6fpPzdTdKk.crl (hash: VoSvmMt6mb7n1VzW6Onjjqk4XZyr9go1HI0NMPAp+HE=)
2: SCHcZAvBuEDabGE8ZnvuGrNm6LM.roa (hash: +7HN05BMaB78AnyjOqZ5Q8EXtIVzWFh5zSmSPi10HzA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/14/5a448a-5e7a-47e0-87da-cdcfbb100447/1/MZX3NBnoIjKXlM8X-6fpPzdTdKk.crl
rsync://rpki.ripe.net/repository/DEFAULT/14/5a448a-5e7a-47e0-87da-cdcfbb100447/1/MZX3NBnoIjKXlM8X-6fpPzdTdKk.mft
rsync://rpki.ripe.net/repository/DEFAULT/MZX3NBnoIjKXlM8X-6fpPzdTdKk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 12 May 2025 06:00:21 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:bd:ee:21:0a:b2:e6:18:cd:45:9f:c0:49:b4:5e:e3:da
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3195f73419e822329794cf17fba7e93f375374a9
Validity
Not Before: May 11 06:00:21 2025 GMT
Not After : May 12 06:00:21 2025 GMT
Subject: CN=bc5016c36aa4396bbaf68c6072b47751e1f8b8ac
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d0:c6:7e:1c:0f:3a:ef:12:12:85:6c:2a:9e:63:
23:3f:d4:ee:55:52:03:c0:7f:e2:5d:29:e6:d1:d4:
5f:9a:4c:72:f8:ab:2d:fd:cd:35:c4:45:01:da:b0:
0a:71:6e:78:09:9a:48:a2:d1:1b:85:9b:df:b8:4b:
2a:44:31:7d:18:68:7b:c7:cf:02:de:52:ca:9b:05:
5b:bd:4c:fb:61:79:91:3e:8e:b2:87:bb:c0:27:e3:
9a:1b:af:7f:fb:f3:b9:30:8b:5f:f7:f4:07:80:df:
f0:9c:ba:ce:06:71:62:f3:3b:e2:13:78:8c:8d:75:
f4:a7:1d:ef:c2:e7:ca:3f:94:25:8f:8f:1e:eb:e4:
50:48:3c:1e:65:70:d4:aa:7f:01:2a:de:98:64:32:
02:36:d6:14:26:2b:2d:de:0c:40:73:69:cd:92:f8:
cf:2a:57:5a:a0:8f:19:5b:4c:08:5c:58:e6:e3:36:
42:fd:9e:5f:12:b8:43:80:ec:79:47:09:2d:66:49:
0e:69:f0:1f:24:d7:b0:3b:c2:a1:b0:e2:a7:90:51:
c8:47:5f:6e:95:4d:bd:58:30:49:d2:85:51:20:28:
3e:12:49:da:4c:6d:df:e9:55:98:80:e5:41:88:b5:
01:48:69:03:45:c1:9b:93:27:db:3d:ba:87:e7:31:
8c:dd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BC:50:16:C3:6A:A4:39:6B:BA:F6:8C:60:72:B4:77:51:E1:F8:B8:AC
X509v3 Authority Key Identifier:
keyid:31:95:F7:34:19:E8:22:32:97:94:CF:17:FB:A7:E9:3F:37:53:74:A9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MZX3NBnoIjKXlM8X-6fpPzdTdKk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/14/5a448a-5e7a-47e0-87da-cdcfbb100447/1/MZX3NBnoIjKXlM8X-6fpPzdTdKk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/14/5a448a-5e7a-47e0-87da-cdcfbb100447/1/MZX3NBnoIjKXlM8X-6fpPzdTdKk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
4a:e9:c8:73:4a:1d:5e:f4:ce:f7:ae:78:da:b7:35:c3:f3:ce:
e2:88:a2:1a:2e:27:2c:38:73:d4:91:2f:e9:96:f1:eb:e7:be:
fd:88:2e:6a:cb:35:d7:24:50:ef:ae:c8:13:9f:6d:2b:3e:e2:
51:b5:e1:3b:76:78:dc:8a:b4:d1:10:af:df:4d:3a:9b:dc:eb:
bf:9f:26:59:44:2e:67:c3:bf:8e:75:8b:2f:4b:07:a7:fa:cd:
0b:67:35:4e:4e:f8:5e:90:67:64:8f:74:97:96:6a:64:7e:c7:
3a:1b:b0:f5:82:36:af:e6:92:3d:6a:13:ff:de:01:65:04:31:
58:7a:26:fe:3a:d3:3f:29:15:71:52:38:4d:cd:a3:66:e7:67:
02:a4:e2:c4:0a:2f:14:e5:8b:32:2a:86:36:a6:18:05:3f:ff:
9a:e2:d6:1e:ec:87:01:42:04:62:0c:d8:cd:a6:87:d3:4a:7e:
6a:d7:85:f1:38:22:bd:8a:eb:d3:49:d0:32:b0:76:8a:0e:2a:
43:9e:03:1e:45:e0:39:79:10:0d:d0:10:ac:30:f9:d3:46:f3:
0c:05:33:d8:77:0e:0d:0c:43:60:f5:98:a0:4d:e9:bb:30:a8:
9e:98:14:66:dd:51:d1:d8:3b:1c:c7:cc:83:85:4e:43:19:ca:
fa:57:12:b9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun May 11 16:45:51 2025 by rpki-client