Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6a/cd504a-0189-4554-b501-639dc4d5f370/1/MzOeZKWFFMmwkemy5o4pNx5D498.mft
File: MzOeZKWFFMmwkemy5o4pNx5D498.mft (raw, json)
Hash identifier: 4sfEUgfOfXRPT0s30KIXOcg9WD3+yTHQvl+3Sw5EsWw=
Subject key identifier: 28:B2:D1:2C:0C:CB:35:78:FB:0B:AB:BA:9C:49:3B:DE:AA:6D:7A:3B
Authority key identifier: 33:33:9E:64:A5:85:14:C9:B0:91:E9:B2:E6:8E:29:37:1E:43:E3:DF
Certificate issuer: /CN=33339e64a58514c9b091e9b2e68e29371e43e3df
Certificate serial: 0196BF6EC8A62D58336E74449374D4533A6C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/MzOeZKWFFMmwkemy5o4pNx5D498.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6a/cd504a-0189-4554-b501-639dc4d5f370/1/MzOeZKWFFMmwkemy5o4pNx5D498.mft
Manifest number: 097F
Signing time: Sun 11 May 2025 13:00:30 +0000
Manifest this update: Sun 11 May 2025 13:00:30 +0000
Manifest next update: Mon 12 May 2025 13:00:30 +0000
Files and hashes: 1: 0SGERXpsIldifCTWUfwaAPLWZj8.roa (hash: Wl6639BT2YEzAcDZ1BBEKA7sfTmRzgLCKdjibP72VaE=)
2: MzOeZKWFFMmwkemy5o4pNx5D498.crl (hash: CUbw2J9H6bIP+eEWqFQWd6arkX+Qz1G7GUERz5bnR0Y=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/6a/cd504a-0189-4554-b501-639dc4d5f370/1/MzOeZKWFFMmwkemy5o4pNx5D498.crl
rsync://rpki.ripe.net/repository/DEFAULT/6a/cd504a-0189-4554-b501-639dc4d5f370/1/MzOeZKWFFMmwkemy5o4pNx5D498.mft
rsync://rpki.ripe.net/repository/DEFAULT/MzOeZKWFFMmwkemy5o4pNx5D498.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 12 May 2025 13:00:30 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:bf:6e:c8:a6:2d:58:33:6e:74:44:93:74:d4:53:3a:6c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=33339e64a58514c9b091e9b2e68e29371e43e3df
Validity
Not Before: May 11 13:00:30 2025 GMT
Not After : May 12 13:00:30 2025 GMT
Subject: CN=28b2d12c0ccb3578fb0babba9c493bdeaa6d7a3b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:95:ea:10:71:fc:b8:2a:6f:75:f5:44:ba:53:f6:
78:61:60:6c:1d:fc:bd:2e:12:90:32:92:9d:26:6a:
fd:69:5b:5b:8f:43:2c:6b:c4:90:33:9a:45:6f:04:
65:cf:59:bb:fa:13:0c:07:36:24:de:bd:66:5e:dd:
90:f9:af:34:f1:1d:bf:91:17:01:06:cb:f3:56:13:
3c:c8:b9:17:f9:14:9c:da:c5:a1:dc:6f:bc:ca:24:
50:95:c6:46:21:8a:90:80:1d:eb:29:03:e1:68:b9:
49:72:b3:73:75:18:10:d5:32:24:ae:86:d0:51:50:
ef:50:f9:31:47:65:05:17:de:f1:61:51:76:d7:14:
b7:97:06:84:5a:90:c4:f8:fe:03:2d:6b:5f:8b:0e:
41:10:01:f5:4d:a0:df:03:1d:a0:f9:b1:bf:73:34:
b3:d2:b9:1b:33:bf:ba:d1:f9:3a:c6:a5:a4:b9:9e:
e7:fd:6b:ee:05:2c:10:ea:d0:0e:82:21:2c:67:97:
08:cd:fc:b1:c3:ae:c1:f4:8b:b0:ab:01:92:01:e7:
a4:1a:2e:2f:41:99:b2:8e:45:b8:e8:45:c5:b6:b1:
3b:60:4f:95:1c:93:38:9b:03:d5:76:18:40:d5:53:
85:3e:f1:8a:06:72:c9:a2:47:d7:20:d8:a0:db:40:
28:03
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
28:B2:D1:2C:0C:CB:35:78:FB:0B:AB:BA:9C:49:3B:DE:AA:6D:7A:3B
X509v3 Authority Key Identifier:
keyid:33:33:9E:64:A5:85:14:C9:B0:91:E9:B2:E6:8E:29:37:1E:43:E3:DF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MzOeZKWFFMmwkemy5o4pNx5D498.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6a/cd504a-0189-4554-b501-639dc4d5f370/1/MzOeZKWFFMmwkemy5o4pNx5D498.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6a/cd504a-0189-4554-b501-639dc4d5f370/1/MzOeZKWFFMmwkemy5o4pNx5D498.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
a0:dc:50:b9:21:a1:e8:ab:6e:50:fc:d4:55:61:dd:a8:f8:62:
3c:5a:a2:4d:85:d2:14:20:29:d7:d2:a1:7c:10:c9:ad:26:62:
fd:e1:01:d2:38:04:c7:25:9a:ba:9b:a4:af:03:b4:53:45:52:
07:13:1b:e6:2f:7a:6d:53:d8:a2:9c:56:6f:91:f1:6e:81:c0:
70:8f:96:ea:95:b4:fe:44:ae:03:d6:c6:c4:bd:19:e0:f3:ad:
3c:7f:57:ba:48:3c:9e:be:76:f7:5b:46:bb:72:9f:25:08:5a:
8b:55:86:f8:79:c7:c1:16:e8:75:46:5b:5f:2a:fb:b0:13:a9:
fa:f0:01:98:d3:2a:78:e1:84:cc:37:44:df:0a:e3:27:e9:de:
62:53:80:31:36:80:85:91:61:1f:5b:ce:56:56:d5:d4:09:5c:
b9:07:f4:94:27:30:78:6f:03:b0:aa:33:bb:89:c7:4d:ba:59:
c9:b4:7a:e7:8c:0f:06:0f:3b:f6:62:15:5d:d9:09:54:c0:24:
65:01:47:36:70:9b:ad:9f:8b:42:a7:aa:30:8d:36:16:b4:d0:
5b:f1:68:c0:a5:c1:9d:ba:9c:93:5a:2b:03:0c:66:11:a6:f3:
b4:ab:f4:e1:80:e3:e8:95:46:50:df:4b:82:60:fd:d7:c4:ca:
3c:c7:31:f0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun May 11 19:03:55 2025 by rpki-client