Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8c/d9d82d-1ca4-4824-a92c-ca55efc7752d/1/MQ4un7cGaMeWrc6HeyHgmooa0Ck.mft
File: MQ4un7cGaMeWrc6HeyHgmooa0Ck.mft (raw, json)
Hash identifier: J0UCWndP1rg+ltU0haHclYojbeUsjCJm888Bk9UvnBQ=
Subject key identifier: D3:13:C1:5A:AA:C1:F6:4D:AA:E2:17:D4:AE:43:FD:8A:D9:CA:52:1C
Authority key identifier: 31:0E:2E:9F:B7:06:68:C7:96:AD:CE:87:7B:21:E0:9A:8A:1A:D0:29
Certificate issuer: /CN=310e2e9fb70668c796adce877b21e09a8a1ad029
Certificate serial: 0196A3F7547B0DA127F90B814DB9BF655129
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/MQ4un7cGaMeWrc6HeyHgmooa0Ck.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8c/d9d82d-1ca4-4824-a92c-ca55efc7752d/1/MQ4un7cGaMeWrc6HeyHgmooa0Ck.mft
Manifest number: 0D26
Signing time: Tue 06 May 2025 05:00:17 +0000
Manifest this update: Tue 06 May 2025 05:00:17 +0000
Manifest next update: Wed 07 May 2025 05:00:17 +0000
Files and hashes: 1: MQ4un7cGaMeWrc6HeyHgmooa0Ck.crl (hash: y3HjDfpgdGEc2J8KUwIKWkcXyP7qreTec1gzwAGHoIs=)
2: QXjAwQSpvYGLG9EKG43DcrvrWjg.roa (hash: /g3NGPvML9niLWrxGUEsCrw0JcuhbxCMPrgB31IKq7M=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/8c/d9d82d-1ca4-4824-a92c-ca55efc7752d/1/MQ4un7cGaMeWrc6HeyHgmooa0Ck.crl
rsync://rpki.ripe.net/repository/DEFAULT/8c/d9d82d-1ca4-4824-a92c-ca55efc7752d/1/MQ4un7cGaMeWrc6HeyHgmooa0Ck.mft
rsync://rpki.ripe.net/repository/DEFAULT/MQ4un7cGaMeWrc6HeyHgmooa0Ck.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 07 May 2025 04:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:a3:f7:54:7b:0d:a1:27:f9:0b:81:4d:b9:bf:65:51:29
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=310e2e9fb70668c796adce877b21e09a8a1ad029
Validity
Not Before: May 6 05:00:17 2025 GMT
Not After : May 7 05:00:17 2025 GMT
Subject: CN=d313c15aaac1f64daae217d4ae43fd8ad9ca521c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:31:03:a7:06:19:10:5a:21:2b:ec:5c:35:89:
ff:c1:30:e3:85:31:1d:8a:ac:68:d1:a2:bf:ab:6d:
ba:7b:55:96:0c:58:9b:57:03:d8:d2:c0:34:95:e6:
84:3d:e2:9a:8d:71:10:9c:7d:3c:80:42:8f:72:9c:
bc:4e:a6:54:48:26:e8:83:79:1c:d1:dd:2e:4a:89:
a0:38:ee:f2:cb:11:c7:ad:5c:f2:51:dd:e7:9d:82:
19:01:43:e3:3c:55:b5:cf:d8:6e:0f:47:41:9a:ff:
a7:e2:f3:35:46:37:b3:1c:a9:b9:a3:59:29:3b:4e:
1e:ef:ed:3c:70:e3:24:63:ca:93:8d:44:89:13:6c:
23:f5:ff:53:c3:60:af:8e:05:49:0e:a8:7e:18:2f:
30:18:cb:70:f8:de:fc:c7:01:9b:bf:74:4d:f2:35:
a9:64:a0:23:f7:cc:3c:a4:0a:ac:48:ab:ea:6e:51:
3d:c7:38:6d:a6:e5:4b:db:0e:9b:64:16:6f:e4:bf:
5d:1f:0a:a1:58:4d:7e:f5:87:b0:20:9b:18:53:2e:
7e:38:c2:63:df:39:78:37:91:76:db:92:d8:e6:41:
83:01:c1:f5:4e:5e:6f:60:cb:96:56:fe:92:20:ad:
23:bb:d6:fc:bf:05:aa:c8:dc:ed:a4:ad:bc:21:90:
41:37
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D3:13:C1:5A:AA:C1:F6:4D:AA:E2:17:D4:AE:43:FD:8A:D9:CA:52:1C
X509v3 Authority Key Identifier:
keyid:31:0E:2E:9F:B7:06:68:C7:96:AD:CE:87:7B:21:E0:9A:8A:1A:D0:29
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MQ4un7cGaMeWrc6HeyHgmooa0Ck.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8c/d9d82d-1ca4-4824-a92c-ca55efc7752d/1/MQ4un7cGaMeWrc6HeyHgmooa0Ck.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8c/d9d82d-1ca4-4824-a92c-ca55efc7752d/1/MQ4un7cGaMeWrc6HeyHgmooa0Ck.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
aa:2f:59:f9:3f:a5:40:32:0d:30:26:c6:84:14:d1:29:8f:0f:
80:b8:d0:55:3c:1d:f9:69:aa:5e:36:b7:b3:e1:30:47:92:f4:
32:db:25:9d:6d:91:a9:c7:b1:ed:a2:05:8a:16:71:cd:13:79:
99:cd:99:fd:45:7d:55:77:e1:4f:08:bf:02:4d:fb:f0:e8:19:
23:c0:9c:0d:c0:11:b3:92:6a:02:b8:33:cb:f1:fe:ca:48:b1:
2a:48:46:ec:98:d5:af:7c:0d:c1:93:2c:ad:ad:8a:a7:29:7b:
d8:f3:58:d1:73:81:85:76:f7:59:48:a2:6e:c4:47:95:c4:87:
9b:88:f9:08:63:c7:03:d5:49:7f:04:7b:fa:5c:52:31:43:ac:
42:34:47:20:aa:1c:8f:d4:8e:fb:9f:60:f2:c1:ac:93:fb:50:
ed:a0:9e:e3:68:e0:17:7e:af:46:f5:ed:c5:7d:4b:51:fd:b7:
ce:37:da:ec:b7:9c:f4:d8:8a:d7:19:6e:1a:88:a6:36:06:48:
74:5e:07:64:ee:c8:0b:12:82:33:21:62:a0:dd:64:1f:d5:dd:
c3:4f:f8:b1:7a:28:d6:4f:d4:f8:e9:23:82:2c:72:26:47:a9:
ca:b1:59:7e:90:36:b3:c1:c4:87:f5:86:0e:21:28:8b:cd:58:
f8:c2:8c:a8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue May 6 14:12:51 2025 by rpki-client