Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/77/a96094-db94-4546-a424-8908f0ab185b/1/MfxYQJK_niCslRtZUN1PpxMgPMM.mft
File: MfxYQJK_niCslRtZUN1PpxMgPMM.mft (raw, json)
Hash identifier: d25SPGavlNgQ5ODSsd1cxAc/ZdakEPS/ua56/TDkLIQ=
Subject key identifier: D4:91:EF:B9:81:6F:52:61:30:8F:E4:D7:FB:66:54:06:C1:3C:8B:5A
Authority key identifier: 31:FC:58:40:92:BF:9E:20:AC:95:1B:59:50:DD:4F:A7:13:20:3C:C3
Certificate issuer: /CN=31fc584092bf9e20ac951b5950dd4fa713203cc3
Certificate serial: 0196C728631DC4D10F4D5583592BDFF4E3FC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/MfxYQJK_niCslRtZUN1PpxMgPMM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/77/a96094-db94-4546-a424-8908f0ab185b/1/MfxYQJK_niCslRtZUN1PpxMgPMM.mft
Manifest number: 0F57
Signing time: Tue 13 May 2025 01:00:34 +0000
Manifest this update: Tue 13 May 2025 01:00:34 +0000
Manifest next update: Wed 14 May 2025 01:00:34 +0000
Files and hashes: 1: MfxYQJK_niCslRtZUN1PpxMgPMM.crl (hash: 6OsWfj5OWHc+NnCNL9n3GoI5YiTxHaCa77MQpjP5jp0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/77/a96094-db94-4546-a424-8908f0ab185b/1/MfxYQJK_niCslRtZUN1PpxMgPMM.crl
rsync://rpki.ripe.net/repository/DEFAULT/77/a96094-db94-4546-a424-8908f0ab185b/1/MfxYQJK_niCslRtZUN1PpxMgPMM.mft
rsync://rpki.ripe.net/repository/DEFAULT/MfxYQJK_niCslRtZUN1PpxMgPMM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 14 May 2025 01:00:34 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:c7:28:63:1d:c4:d1:0f:4d:55:83:59:2b:df:f4:e3:fc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=31fc584092bf9e20ac951b5950dd4fa713203cc3
Validity
Not Before: May 13 01:00:34 2025 GMT
Not After : May 14 01:00:34 2025 GMT
Subject: CN=d491efb9816f5261308fe4d7fb665406c13c8b5a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:88:73:25:3a:f5:17:ee:86:5a:e0:93:b0:43:
5e:77:da:bc:19:ea:25:4d:52:b1:b0:1f:d8:2a:52:
58:69:04:8c:ec:5a:76:b9:bb:49:6f:13:ba:a4:0d:
ae:1e:a1:9c:dd:3d:25:76:98:9a:37:08:0c:cd:f9:
4c:5e:15:96:45:a7:92:72:2b:e2:9f:02:55:2d:bd:
03:e3:7b:1f:ad:64:d8:47:fb:cc:92:e5:4d:21:4c:
e8:46:95:ca:cb:5e:3a:e6:bd:58:9f:24:b5:cf:b7:
e9:a2:58:cf:fe:38:6c:87:ff:81:5e:f4:7e:0c:1f:
7f:6b:b8:99:81:14:31:93:48:b4:e1:7c:ab:35:84:
fa:56:bf:9f:3d:02:5d:d3:59:38:05:b7:2b:7c:28:
06:df:17:72:52:64:85:8b:f2:db:09:84:b9:77:9a:
64:98:1f:94:cb:97:42:d6:d4:1d:cb:39:2b:ff:c1:
ef:6a:6e:3c:ce:3c:68:6c:60:6e:df:be:5d:ed:6c:
63:9a:14:fc:b1:a4:7e:e6:35:58:f1:e1:45:0d:c2:
bf:89:48:7e:a9:73:28:17:48:b6:54:b9:b7:26:49:
c9:ae:a4:c1:0b:f1:60:14:25:8e:74:25:d5:fe:15:
38:89:78:e6:34:1c:aa:ac:fd:82:34:68:a2:92:16:
80:f5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D4:91:EF:B9:81:6F:52:61:30:8F:E4:D7:FB:66:54:06:C1:3C:8B:5A
X509v3 Authority Key Identifier:
keyid:31:FC:58:40:92:BF:9E:20:AC:95:1B:59:50:DD:4F:A7:13:20:3C:C3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MfxYQJK_niCslRtZUN1PpxMgPMM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/77/a96094-db94-4546-a424-8908f0ab185b/1/MfxYQJK_niCslRtZUN1PpxMgPMM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/77/a96094-db94-4546-a424-8908f0ab185b/1/MfxYQJK_niCslRtZUN1PpxMgPMM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
81:73:0d:64:e1:93:26:c9:ca:89:a9:f7:7b:ef:c0:92:7a:92:
21:a0:a1:24:54:17:a7:7f:8f:d1:a3:ed:75:c1:ff:57:d2:58:
77:28:92:44:cf:0d:19:66:30:b0:a2:f9:b1:57:41:2e:a7:94:
82:67:78:a3:f0:5c:34:3a:7c:ab:dc:ae:9f:fe:22:c2:ea:45:
e0:5b:ff:3d:3b:2d:6b:31:a0:f3:6e:77:4b:3f:a7:e0:45:39:
f3:8c:5c:9c:bd:f1:4f:f5:f7:cd:b5:05:51:34:28:36:83:b3:
ee:77:00:87:92:ed:f5:af:0a:ec:ec:34:c8:f7:19:17:31:6d:
0d:ef:e9:cf:1a:fc:4f:2e:7a:03:8b:5d:d1:d9:05:72:a8:8d:
ae:e7:0b:99:6e:f0:62:94:d9:50:1a:ec:e3:0b:b0:a0:61:bb:
1a:87:36:f0:13:c9:95:27:07:f3:cb:bf:db:11:30:10:2c:d7:
4a:c6:77:b0:ba:94:fc:b3:80:f2:89:ab:48:33:3b:5b:1d:34:
87:66:8a:06:de:c9:52:55:50:0d:63:66:9c:62:d1:de:fa:b6:
02:75:b8:2c:16:de:72:8b:54:ce:71:3e:61:f4:dc:43:c4:b7:
d5:d6:9f:dc:bd:b8:91:8e:0c:79:4d:6d:4b:01:24:0e:7f:d7:
17:1d:de:d6
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZbHKGMdxNEPTVWDWSvf9OP8MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDMxZmM1ODQwOTJiZjllMjBhYzk1MWI1OTUwZGQ0ZmE3MTMy
MDNjYzMwHhcNMjUwNTEzMDEwMDM0WhcNMjUwNTE0MDEwMDM0WjAzMTEwLwYDVQQD
EyhkNDkxZWZiOTgxNmY1MjYxMzA4ZmU0ZDdmYjY2NTQwNmMxM2M4YjVhMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAoohzJTr1F+6GWuCTsENed9q8Geol
TVKxsB/YKlJYaQSM7Fp2ubtJbxO6pA2uHqGc3T0ldpiaNwgMzflMXhWWRaeScivi
nwJVLb0D43sfrWTYR/vMkuVNIUzoRpXKy1465r1YnyS1z7fpoljP/jhsh/+BXvR+
DB9/a7iZgRQxk0i04XyrNYT6Vr+fPQJd01k4BbcrfCgG3xdyUmSFi/LbCYS5d5pk
mB+Uy5dC1tQdyzkr/8Hvam48zjxobGBu375d7WxjmhT8saR+5jVY8eFFDcK/iUh+
qXMoF0i2VLm3JknJrqTBC/FgFCWOdCXV/hU4iXjmNByqrP2CNGiikhaA9QIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFNSR77mBb1JhMI/k1/tmVAbBPItaMB8GA1UdIwQY
MBaAFDH8WECSv54grJUbWVDdT6cTIDzDMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvTWZ4WVFKS19uaUNzbFJ0WlVOMVBweE1nUE1NLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83Ny9hOTYwOTQtZGI5NC00NTQ2LWE0MjQt
ODkwOGYwYWIxODViLzEvTWZ4WVFKS19uaUNzbFJ0WlVOMVBweE1nUE1NLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC83Ny9hOTYwOTQtZGI5NC00NTQ2LWE0MjQtODkwOGYwYWIxODVi
LzEvTWZ4WVFKS19uaUNzbFJ0WlVOMVBweE1nUE1NLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAgXMNZOGT
JsnKian3e+/AknqSIaChJFQXp3+P0aPtdcH/V9JYdyiSRM8NGWYwsKL5sVdBLqeU
gmd4o/BcNDp8q9yun/4iwupF4Fv/PTstazGg8253Sz+n4EU584xcnL3xT/X3zbUF
UTQoNoOz7ncAh5Lt9a8K7Ow0yPcZFzFtDe/pzxr8Ty56A4td0dkFcqiNrucLmW7w
YpTZUBrs4wuwoGG7Goc28BPJlScH88u/2xEwECzXSsZ3sLqU/LOA8omrSDM7Wx00
h2aKBt7JUlVQDWNmnGLR3vq2AnW4LBbecotUznE+YfTcQ8S31daf3L24kY4MeU1t
SwEkDn/XFx3e1g==
-----END CERTIFICATE-----
Generated at Tue May 13 11:14:45 2025 by rpki-client