Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1f/23ccc8-4718-453c-be3e-95cd6924ab4e/1/MMOt1700croWgExJC2ahCXZZvTE.mft
File: MMOt1700croWgExJC2ahCXZZvTE.mft (raw, json)
Hash identifier: L07oRdbGsxcvgyk8jFV/RXNjRny8facjI5imXp7evig=
Subject key identifier: B0:90:75:29:34:62:39:22:FF:DD:34:EE:6D:62:4C:37:7D:CF:61:22
Authority key identifier: 30:C3:AD:D7:BD:34:72:BA:16:80:4C:49:0B:66:A1:09:76:59:BD:31
Certificate issuer: /CN=30c3add7bd3472ba16804c490b66a1097659bd31
Certificate serial: 0196B89130AFB7938270E70ED358BAADF523
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/MMOt1700croWgExJC2ahCXZZvTE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1f/23ccc8-4718-453c-be3e-95cd6924ab4e/1/MMOt1700croWgExJC2ahCXZZvTE.mft
Manifest number: 0AE4
Signing time: Sat 10 May 2025 05:00:44 +0000
Manifest this update: Sat 10 May 2025 05:00:44 +0000
Manifest next update: Sun 11 May 2025 05:00:44 +0000
Files and hashes: 1: MMOt1700croWgExJC2ahCXZZvTE.crl (hash: 98TL2rvh1/kPnNCOS8BnGvk1c7Ay9hnXwcauZiozCd0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/1f/23ccc8-4718-453c-be3e-95cd6924ab4e/1/MMOt1700croWgExJC2ahCXZZvTE.crl
rsync://rpki.ripe.net/repository/DEFAULT/1f/23ccc8-4718-453c-be3e-95cd6924ab4e/1/MMOt1700croWgExJC2ahCXZZvTE.mft
rsync://rpki.ripe.net/repository/DEFAULT/MMOt1700croWgExJC2ahCXZZvTE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 11 May 2025 04:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:b8:91:30:af:b7:93:82:70:e7:0e:d3:58:ba:ad:f5:23
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=30c3add7bd3472ba16804c490b66a1097659bd31
Validity
Not Before: May 10 05:00:44 2025 GMT
Not After : May 11 05:00:44 2025 GMT
Subject: CN=b090752934623922ffdd34ee6d624c377dcf6122
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:0b:c3:6f:20:4f:ca:ec:cc:d6:fa:e2:8c:75:
a5:91:7a:5e:91:1a:2a:63:9f:06:65:c6:95:dc:11:
12:f5:74:fb:43:a8:23:e5:f3:95:bd:2c:12:ce:31:
a1:9d:e9:df:52:99:37:d8:bc:3f:84:8a:10:3b:f1:
4a:43:5c:79:08:b3:98:3f:e4:50:09:8d:7f:00:50:
00:f8:e9:86:ef:59:1f:dd:c4:ad:75:95:3f:58:30:
0c:7b:bb:8f:f4:39:41:b3:5d:4b:73:15:8b:03:9b:
84:33:31:c4:da:20:2d:db:0e:03:1a:84:c9:75:8f:
bd:8e:81:fc:f5:19:4d:b1:71:be:81:f2:6f:05:5d:
ad:8a:37:50:b9:6f:72:81:46:a4:08:a4:a6:25:11:
40:31:7a:ad:7f:8d:f1:ff:72:3f:ec:39:c4:e7:d3:
70:9f:8d:1d:8b:2b:a4:74:c0:d7:62:77:8a:5e:30:
5e:44:ba:b2:12:c1:c1:5c:9f:d0:a3:0b:7d:49:3f:
9d:c5:c7:46:55:6a:e5:26:c1:b6:4d:ce:d1:67:58:
81:9c:ef:1a:64:f0:0e:76:8e:53:30:06:18:53:33:
f2:f7:68:39:54:d3:5a:6a:c7:a6:c8:b2:e2:b6:7d:
71:11:e0:d4:2c:26:a6:7a:68:ba:36:ad:2a:d5:d1:
ee:b1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B0:90:75:29:34:62:39:22:FF:DD:34:EE:6D:62:4C:37:7D:CF:61:22
X509v3 Authority Key Identifier:
keyid:30:C3:AD:D7:BD:34:72:BA:16:80:4C:49:0B:66:A1:09:76:59:BD:31
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MMOt1700croWgExJC2ahCXZZvTE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1f/23ccc8-4718-453c-be3e-95cd6924ab4e/1/MMOt1700croWgExJC2ahCXZZvTE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1f/23ccc8-4718-453c-be3e-95cd6924ab4e/1/MMOt1700croWgExJC2ahCXZZvTE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
67:af:a5:b8:6c:2f:99:0e:80:7c:98:5c:4d:d6:4d:5f:e8:b9:
a6:c8:60:59:24:3d:db:3b:fa:95:1a:df:c4:2d:d9:95:ec:23:
b1:6b:29:48:ea:02:21:dd:21:bd:48:19:56:36:8a:39:f8:2b:
2a:ab:ae:17:fc:2c:e0:51:a0:2e:0d:d8:c0:7f:bf:8b:84:ff:
2c:44:46:b3:f8:2f:99:cb:aa:39:29:0c:25:ea:d3:e5:ad:57:
36:59:59:1f:95:e7:dd:96:2c:0d:16:1e:eb:0f:3e:8f:77:23:
30:43:40:3a:4b:30:13:fb:41:58:d1:f5:4d:50:a7:7e:7b:37:
bb:83:97:2b:1c:8e:50:f5:4a:1a:d1:46:5f:5d:d9:bf:40:23:
8f:7f:70:0e:f1:1e:d8:b8:2d:90:dc:52:09:61:59:bc:60:08:
8f:ca:c6:8f:97:1b:bd:5a:77:a8:cf:0f:ee:46:c4:94:71:c1:
d5:f5:29:f0:5e:d8:7f:ad:c3:44:13:e5:e7:8f:f3:10:2c:97:
49:51:d1:e6:a7:ee:cd:9d:f7:3e:5d:55:7e:19:0d:ed:98:2f:
25:6e:c4:ee:96:28:c9:8a:20:a3:07:07:37:40:ca:b0:af:eb:
66:57:2d:53:cf:b1:10:55:da:cb:47:15:cf:40:73:a7:d4:2e:
53:4c:64:42
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat May 10 13:17:00 2025 by rpki-client