Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/52/b009cf-59ca-43bc-bd51-c0a424e65973/1/MTZAKhRELms6FTnWQlASjc3R7Ns.mft
File: MTZAKhRELms6FTnWQlASjc3R7Ns.mft (raw, json)
Hash identifier: JNl8MyEcNW+e6cuXONi2LBS1f50ri+TjdbUMd41v/Ng=
Subject key identifier: 3E:6C:17:C4:DF:2F:89:FE:23:3E:5F:50:71:65:F7:F5:64:67:C6:FA
Authority key identifier: 31:36:40:2A:14:44:2E:6B:3A:15:39:D6:42:50:12:8D:CD:D1:EC:DB
Certificate issuer: /CN=3136402a14442e6b3a1539d64250128dcdd1ecdb
Certificate serial: 0196C53A4A8FDA95CE8A50E70FDF2E02D36D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/MTZAKhRELms6FTnWQlASjc3R7Ns.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/52/b009cf-59ca-43bc-bd51-c0a424e65973/1/MTZAKhRELms6FTnWQlASjc3R7Ns.mft
Manifest number: C9
Signing time: Mon 12 May 2025 16:00:53 +0000
Manifest this update: Mon 12 May 2025 16:00:53 +0000
Manifest next update: Tue 13 May 2025 16:00:53 +0000
Files and hashes: 1: MTZAKhRELms6FTnWQlASjc3R7Ns.crl (hash: KSln5IbLbuDUKOBcMiKmLdYUR7mGUsmz7Pgt2IPbt8k=)
2: gk7tvvpNQKzq016DYIQrQnI1zIg.roa (hash: GqU+/Xvx9R7K2mDYSrVU8YpXujBinhqdZQ6UcdPTRQQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/52/b009cf-59ca-43bc-bd51-c0a424e65973/1/MTZAKhRELms6FTnWQlASjc3R7Ns.crl
rsync://rpki.ripe.net/repository/DEFAULT/52/b009cf-59ca-43bc-bd51-c0a424e65973/1/MTZAKhRELms6FTnWQlASjc3R7Ns.mft
rsync://rpki.ripe.net/repository/DEFAULT/MTZAKhRELms6FTnWQlASjc3R7Ns.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 13 May 2025 14:31:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:c5:3a:4a:8f:da:95:ce:8a:50:e7:0f:df:2e:02:d3:6d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3136402a14442e6b3a1539d64250128dcdd1ecdb
Validity
Not Before: May 12 16:00:53 2025 GMT
Not After : May 13 16:00:53 2025 GMT
Subject: CN=3e6c17c4df2f89fe233e5f507165f7f56467c6fa
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:da:e1:f1:8b:69:a3:83:61:c9:e0:aa:8d:b1:26:
8c:74:4a:46:b8:2d:71:33:34:57:29:61:c5:16:e8:
cc:a3:8a:fd:57:9e:9d:bf:75:48:43:b6:8d:84:b5:
a2:4a:1a:84:7a:c5:21:c2:78:75:ca:49:2e:d9:87:
04:02:88:e7:4e:ad:87:92:42:c4:96:3b:ff:1d:f1:
15:c5:3c:d8:be:f7:ca:4e:d3:05:bd:72:f1:87:8f:
58:84:7f:d9:16:b0:69:92:69:a6:8a:af:0c:83:03:
1c:57:db:a3:fe:83:da:e8:a0:d9:ef:3c:fc:9c:1f:
78:f4:91:2c:c3:e3:f2:28:3d:8b:73:03:33:19:b0:
c1:56:4a:77:07:c9:5c:24:16:07:d3:ef:36:44:6e:
a4:49:29:81:61:07:26:a6:32:47:95:b2:bf:61:bf:
e1:62:ff:c5:04:4d:63:7e:2b:09:57:1b:8a:da:86:
dc:67:8f:49:c8:69:4d:ab:3d:47:ec:b2:47:07:b2:
89:2b:05:aa:0c:af:ab:55:85:0c:1f:73:f5:69:53:
78:f8:30:c3:4a:59:ae:ea:e9:8b:d9:35:c7:5a:05:
39:e1:f4:6a:89:41:aa:fc:98:a2:e6:9a:a9:2f:d2:
7b:4f:ca:44:a2:c4:05:f8:0c:f4:17:69:f9:06:04:
66:eb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3E:6C:17:C4:DF:2F:89:FE:23:3E:5F:50:71:65:F7:F5:64:67:C6:FA
X509v3 Authority Key Identifier:
keyid:31:36:40:2A:14:44:2E:6B:3A:15:39:D6:42:50:12:8D:CD:D1:EC:DB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MTZAKhRELms6FTnWQlASjc3R7Ns.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/52/b009cf-59ca-43bc-bd51-c0a424e65973/1/MTZAKhRELms6FTnWQlASjc3R7Ns.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/52/b009cf-59ca-43bc-bd51-c0a424e65973/1/MTZAKhRELms6FTnWQlASjc3R7Ns.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
4d:e5:50:29:17:60:35:bb:dc:1a:15:33:00:64:96:a7:18:cd:
a1:44:48:71:ad:51:59:2c:b6:a9:38:db:27:cf:76:ae:1f:89:
ef:0f:9f:b5:b3:42:1d:ff:ca:5a:72:00:91:b1:39:51:6d:66:
cf:56:3b:74:56:33:f6:8a:d8:d9:0e:4a:6f:ba:12:15:89:0e:
76:43:cb:86:44:a6:8d:79:ce:b5:a8:70:e9:61:47:0a:d1:d9:
20:78:c8:10:99:05:f4:a7:3f:a9:51:bf:a4:66:e4:c6:04:50:
30:e0:13:21:8d:c8:b0:6b:2d:74:6c:ef:03:d7:81:6c:28:2d:
56:1b:b7:f5:2e:84:f5:09:d0:b5:a4:51:a0:a4:c5:61:46:84:
c7:9c:0d:7e:40:0c:f5:fb:d1:2a:5c:27:7d:30:5c:48:f2:76:
71:d7:72:9d:db:29:33:a7:8a:92:63:08:55:92:b9:b1:46:90:
2d:16:3a:ba:33:e7:39:9b:8f:74:45:9e:12:cb:c0:bc:89:6f:
cb:bd:f6:22:11:0d:33:5e:14:6e:6e:aa:d2:28:fd:83:1f:b9:
c2:36:ac:13:0e:3a:70:6e:5f:ae:c6:70:92:ae:b8:03:ab:63:
4f:56:10:67:ac:fd:63:6b:69:90:60:9d:64:c0:54:4c:d6:b1:
8a:b5:ba:c6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon May 12 18:47:18 2025 by rpki-client