Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1e/481466-0e38-4e3b-9bf3-285745647f5f/1/mXpkd92XDJSyoXtSUCmC1Px1skQ.mft
File: mXpkd92XDJSyoXtSUCmC1Px1skQ.mft (raw, json)
Hash identifier: 1YRtrNG9fjaa0sLkxujgnlr/c7qoHPI54yruC0vCmms=
Subject key identifier: A0:CE:00:04:4C:5E:4F:78:64:A9:16:15:39:AE:41:F5:D4:5D:A0:B7
Authority key identifier: 99:7A:64:77:DD:97:0C:94:B2:A1:7B:52:50:29:82:D4:FC:75:B2:44
Certificate issuer: /CN=997a6477dd970c94b2a17b52502982d4fc75b244
Certificate serial: 0196BFA5AA77104A529F28E02CBD13608E85
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/mXpkd92XDJSyoXtSUCmC1Px1skQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1e/481466-0e38-4e3b-9bf3-285745647f5f/1/mXpkd92XDJSyoXtSUCmC1Px1skQ.mft
Manifest number: 0461
Signing time: Sun 11 May 2025 14:00:27 +0000
Manifest this update: Sun 11 May 2025 14:00:27 +0000
Manifest next update: Mon 12 May 2025 14:00:27 +0000
Files and hashes: 1: N5euriRPkrPM5tpe3YMpJKwtnXs.roa (hash: Aif5H8pBLwxI+pfqg48v8EjEzgULti0iCYfChkXvfLI=)
2: mXpkd92XDJSyoXtSUCmC1Px1skQ.crl (hash: 0O4mjja2TXWrrdFRy8JnBvZNvynWNyxpO7AIHxj+BS4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/1e/481466-0e38-4e3b-9bf3-285745647f5f/1/mXpkd92XDJSyoXtSUCmC1Px1skQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/1e/481466-0e38-4e3b-9bf3-285745647f5f/1/mXpkd92XDJSyoXtSUCmC1Px1skQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/mXpkd92XDJSyoXtSUCmC1Px1skQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 12 May 2025 14:00:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:bf:a5:aa:77:10:4a:52:9f:28:e0:2c:bd:13:60:8e:85
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=997a6477dd970c94b2a17b52502982d4fc75b244
Validity
Not Before: May 11 14:00:27 2025 GMT
Not After : May 12 14:00:27 2025 GMT
Subject: CN=a0ce00044c5e4f7864a9161539ae41f5d45da0b7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:3f:e9:7b:38:87:63:15:70:5c:b9:8d:b0:46:
b4:23:e5:ba:75:f4:b6:e7:c3:02:e6:a3:24:ef:e0:
63:70:48:b0:36:7c:a6:18:75:fc:8b:b8:9c:4e:fa:
00:1c:53:44:94:3e:6b:1b:96:a3:9e:0e:89:bc:36:
9c:6e:fa:e8:6d:d4:6f:d6:8b:40:96:83:6d:89:c0:
ec:e6:f3:e4:93:cb:0f:cf:e5:f6:4e:e7:69:5c:db:
7b:04:cb:4b:aa:f4:ad:35:d6:71:64:e9:c9:22:05:
68:56:8e:ce:02:68:74:94:d0:5d:13:8b:32:1b:68:
2e:27:45:ce:64:34:77:7a:a6:92:f0:15:2e:64:20:
3f:59:3e:4f:76:c3:ad:df:92:b5:ed:51:43:ac:38:
48:e0:d4:bd:5e:36:a4:46:8e:dd:98:2f:4f:9c:68:
d6:8d:1b:62:0c:de:a2:95:5b:1e:f1:57:7d:94:0b:
8a:52:5d:33:b9:45:e1:2f:7b:2e:b4:c3:da:5c:c3:
65:71:c2:92:a1:d1:96:d6:ba:ff:80:29:11:16:bf:
26:37:86:85:5b:f0:75:9b:6a:fb:59:f7:52:93:8a:
d5:1a:7c:04:3d:a4:f8:5d:21:e4:99:2a:d0:65:ae:
21:cc:aa:5b:97:52:32:4d:4d:a2:8c:e1:34:dd:ac:
05:5d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A0:CE:00:04:4C:5E:4F:78:64:A9:16:15:39:AE:41:F5:D4:5D:A0:B7
X509v3 Authority Key Identifier:
keyid:99:7A:64:77:DD:97:0C:94:B2:A1:7B:52:50:29:82:D4:FC:75:B2:44
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/mXpkd92XDJSyoXtSUCmC1Px1skQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1e/481466-0e38-4e3b-9bf3-285745647f5f/1/mXpkd92XDJSyoXtSUCmC1Px1skQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1e/481466-0e38-4e3b-9bf3-285745647f5f/1/mXpkd92XDJSyoXtSUCmC1Px1skQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
5c:db:dd:02:74:bf:ea:15:8f:21:47:c7:fd:05:2c:ed:1b:38:
19:3d:95:6d:72:d5:84:2b:d6:aa:a0:46:a2:6f:51:54:ce:e8:
8e:f0:68:54:70:17:04:d4:f6:2e:7a:a5:0c:a3:05:bc:64:ea:
01:9f:9f:ae:9d:95:bb:40:9c:3d:d7:e0:6b:f4:f5:3d:68:b3:
ab:a6:b8:f7:1e:94:4b:f0:da:b1:58:d7:1d:05:8a:96:c5:04:
b9:47:95:aa:8b:59:97:cf:29:c3:3d:0b:a6:36:d1:57:36:17:
c9:9e:3a:8c:72:c0:5e:26:d1:d2:d4:8c:f6:6c:1b:b2:2e:cf:
da:e4:4b:8f:06:5c:72:6e:24:bb:6e:fc:91:ab:fe:44:f1:b1:
f9:04:2e:e0:f9:0f:c3:63:85:2b:5e:35:1c:59:7a:8f:7c:55:
4e:27:25:6f:6a:79:41:77:b6:c8:ee:35:5b:8b:59:83:70:42:
70:9b:44:9e:ad:8f:bc:cd:ee:fb:76:91:5f:f7:66:9d:4b:5a:
48:5b:32:13:90:f4:2c:13:ef:8d:88:65:71:c7:b7:da:82:32:
1e:07:eb:17:5d:ef:94:39:7b:53:b4:8b:e3:c5:16:2a:88:0f:
49:d4:dc:51:10:45:45:4f:7d:7e:bf:f4:32:11:a3:5b:68:cb:
35:22:18:df
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun May 11 21:58:33 2025 by rpki-client