Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2f/58a4e1-dfc1-4d81-b2c6-216597e03f11/1/MXBn6Bphoh_cFIWY72ull1f6A4A.mft
File: MXBn6Bphoh_cFIWY72ull1f6A4A.mft (raw, json)
Hash identifier: KAUKdu/iAmRdrAT0MixR6/iF8jUgpn0c2OhRhyqW+es=
Subject key identifier: 6A:58:36:6E:64:D4:DA:8A:E3:1E:F2:C0:C1:78:D0:5C:C4:F6:BE:7B
Authority key identifier: 31:70:67:E8:1A:61:A2:1F:DC:14:85:98:EF:6B:A5:97:57:FA:03:80
Certificate issuer: /CN=317067e81a61a21fdc148598ef6ba59757fa0380
Certificate serial: 0196C98515622BABF28EE197A5759D868271
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/MXBn6Bphoh_cFIWY72ull1f6A4A.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2f/58a4e1-dfc1-4d81-b2c6-216597e03f11/1/MXBn6Bphoh_cFIWY72ull1f6A4A.mft
Manifest number: 07C1
Signing time: Tue 13 May 2025 12:01:04 +0000
Manifest this update: Tue 13 May 2025 12:01:04 +0000
Manifest next update: Wed 14 May 2025 12:01:04 +0000
Files and hashes: 1: 1kHURLGCgDrhi9IHuZm9V5RPr7o.roa (hash: QOJumlfbHeKteqZFgdexa+53Le46L9xrcfm0BrIrj/w=)
2: MXBn6Bphoh_cFIWY72ull1f6A4A.crl (hash: n8k8a1iKWpkOsyffIWk8mIY/GqK6xfcoPOjwoifL1+Y=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2f/58a4e1-dfc1-4d81-b2c6-216597e03f11/1/MXBn6Bphoh_cFIWY72ull1f6A4A.crl
rsync://rpki.ripe.net/repository/DEFAULT/2f/58a4e1-dfc1-4d81-b2c6-216597e03f11/1/MXBn6Bphoh_cFIWY72ull1f6A4A.mft
rsync://rpki.ripe.net/repository/DEFAULT/MXBn6Bphoh_cFIWY72ull1f6A4A.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 14 May 2025 08:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:c9:85:15:62:2b:ab:f2:8e:e1:97:a5:75:9d:86:82:71
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=317067e81a61a21fdc148598ef6ba59757fa0380
Validity
Not Before: May 13 12:01:04 2025 GMT
Not After : May 14 12:01:04 2025 GMT
Subject: CN=6a58366e64d4da8ae31ef2c0c178d05cc4f6be7b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:a7:f1:9a:f9:26:5e:f0:92:39:e4:40:c2:b1:
ac:5c:db:86:ed:ed:05:59:29:70:b0:b7:fd:87:b4:
f1:2d:9a:93:9b:cd:cc:59:71:4e:07:8a:40:7b:eb:
62:0c:66:34:74:94:05:e0:40:d8:ba:00:dc:66:d7:
e2:ab:62:52:34:c0:2b:41:6b:85:3a:1a:47:fe:ad:
85:b9:a4:4a:10:b9:4d:c9:9d:de:52:f8:34:79:1b:
e3:89:b8:eb:6f:23:54:70:b4:82:b2:b8:c7:aa:c3:
db:fe:a5:b9:d4:0d:89:1e:3c:25:de:da:fa:c0:42:
81:cb:ec:91:50:d0:f4:e6:98:d7:fe:71:c8:46:7d:
1f:33:72:50:cc:da:23:5c:6d:bd:2a:da:9b:86:48:
8b:d2:db:d0:94:ce:61:20:47:b7:01:62:c1:f3:62:
84:d0:f7:c1:fe:2e:d5:7b:78:14:fd:ed:43:ab:d7:
1e:d4:0a:b5:03:b0:a4:cb:f6:21:71:41:08:b2:04:
c9:f9:2b:1f:a8:2a:dd:34:b0:52:f8:60:37:00:ee:
2c:7d:5c:7c:3e:ba:a4:09:cd:00:32:99:67:da:af:
1d:32:d1:b0:bb:e7:18:b5:a5:d4:a3:67:86:07:f5:
45:f9:18:fd:ea:6d:a5:a6:19:34:8e:e2:6c:68:79:
b7:99
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6A:58:36:6E:64:D4:DA:8A:E3:1E:F2:C0:C1:78:D0:5C:C4:F6:BE:7B
X509v3 Authority Key Identifier:
keyid:31:70:67:E8:1A:61:A2:1F:DC:14:85:98:EF:6B:A5:97:57:FA:03:80
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MXBn6Bphoh_cFIWY72ull1f6A4A.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2f/58a4e1-dfc1-4d81-b2c6-216597e03f11/1/MXBn6Bphoh_cFIWY72ull1f6A4A.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2f/58a4e1-dfc1-4d81-b2c6-216597e03f11/1/MXBn6Bphoh_cFIWY72ull1f6A4A.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
02:e6:64:88:2e:99:1c:9e:bb:71:a4:32:61:5e:8e:b4:dc:be:
a1:d6:97:79:bf:d5:0f:f3:bc:4f:12:56:27:61:16:22:6d:e4:
a1:b7:88:0e:fe:76:2b:01:b4:06:c9:b3:62:78:23:99:c7:65:
b3:d9:63:f0:89:53:7d:2d:a9:63:8c:e9:12:bb:a6:d9:2e:27:
e9:9e:a4:4f:94:64:bb:08:c6:24:78:30:79:d9:a7:cc:e8:86:
e4:d3:74:cf:d2:8c:77:dc:8e:d7:80:91:3b:66:ec:a1:54:c3:
68:40:e5:c6:b2:f5:f7:6c:33:a5:1f:ce:1c:fa:b6:90:20:da:
dd:6d:9d:42:b3:30:aa:26:1c:77:1b:cd:bb:36:57:eb:7f:5e:
5d:92:a3:62:bf:b0:08:33:13:30:8f:6e:73:7b:d5:8e:63:01:
09:50:f1:d6:0f:a7:f2:75:0d:5a:d5:b6:ff:56:10:47:d4:a4:
6a:60:d9:c5:3f:4f:aa:fc:8b:46:cf:e1:5d:2a:9f:29:dc:e6:
b7:b1:31:40:0a:80:fe:fc:d0:85:90:23:a1:95:8a:91:30:1c:
c7:6e:7a:fb:ab:f2:f3:85:ad:3e:24:90:59:70:8b:f6:fb:8f:
48:da:49:5b:20:30:26:62:1e:85:01:a3:dc:49:27:7b:9d:c8:
41:c7:c2:d6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue May 13 13:25:56 2025 by rpki-client