Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9c/f171be-9653-41d8-a344-fec15ab84135/1/Mp27RqTrdkXZlKDkuYT82sIEpIQ.mft
File: Mp27RqTrdkXZlKDkuYT82sIEpIQ.mft (raw, json)
Hash identifier: NX+iIT+LgZ/Zs0SuC82hDYSsaDqQSBRS9sQPPS6KSfE=
Subject key identifier: 5D:F8:49:FF:8C:E6:9E:9A:53:E1:FF:05:08:A6:5F:3D:93:A8:92:57
Authority key identifier: 32:9D:BB:46:A4:EB:76:45:D9:94:A0:E4:B9:84:FC:DA:C2:04:A4:84
Certificate issuer: /CN=329dbb46a4eb7645d994a0e4b984fcdac204a484
Certificate serial: 0196C539BCDF1CF2FE2F0F6792A6BF412987
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Mp27RqTrdkXZlKDkuYT82sIEpIQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9c/f171be-9653-41d8-a344-fec15ab84135/1/Mp27RqTrdkXZlKDkuYT82sIEpIQ.mft
Manifest number: 0218
Signing time: Mon 12 May 2025 16:00:17 +0000
Manifest this update: Mon 12 May 2025 16:00:17 +0000
Manifest next update: Tue 13 May 2025 16:00:17 +0000
Files and hashes: 1: Mp27RqTrdkXZlKDkuYT82sIEpIQ.crl (hash: eMvVyseRqHNMAxFMch2r2Vv0HE0btUbkwW2qSK5XNKQ=)
2: ZyPIESuaSWPIuQmq_le4sKOKISE.roa (hash: ZskQdIcp36rlr+2ORbgrG1PrwisAu9ueRcvHTkIY4YM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/9c/f171be-9653-41d8-a344-fec15ab84135/1/Mp27RqTrdkXZlKDkuYT82sIEpIQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/9c/f171be-9653-41d8-a344-fec15ab84135/1/Mp27RqTrdkXZlKDkuYT82sIEpIQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/Mp27RqTrdkXZlKDkuYT82sIEpIQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 13 May 2025 14:31:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:c5:39:bc:df:1c:f2:fe:2f:0f:67:92:a6:bf:41:29:87
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=329dbb46a4eb7645d994a0e4b984fcdac204a484
Validity
Not Before: May 12 16:00:17 2025 GMT
Not After : May 13 16:00:17 2025 GMT
Subject: CN=5df849ff8ce69e9a53e1ff0508a65f3d93a89257
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:9f:a9:b0:f6:ea:7c:af:f6:13:ec:ac:62:9a:
fe:33:ac:37:8d:08:43:ca:77:9e:ba:fa:4b:9c:6b:
10:0e:2e:04:ac:2c:26:ba:80:fb:42:d3:fc:4e:01:
48:65:14:59:46:f3:bc:11:ca:8b:a0:f8:0a:cb:59:
35:7d:80:2a:91:2b:f5:8d:d0:89:0a:cb:ae:37:ff:
38:55:2c:61:5d:03:04:fd:7c:90:68:56:80:96:c2:
52:cd:40:15:df:43:bf:6c:48:c8:5f:12:e6:12:0a:
fa:de:6d:0e:bc:d6:08:0c:60:20:a2:ed:03:1c:84:
79:ce:9e:cb:1c:60:4b:c4:7b:c9:23:1b:96:97:db:
0f:6c:0e:14:56:6f:1e:d5:e8:d0:b2:98:6c:4b:a9:
4d:0a:70:73:5d:3f:d9:68:be:0e:77:38:97:82:3f:
91:13:0e:4a:37:d7:f3:83:06:15:f1:b5:2e:23:50:
69:fe:8f:87:f7:d9:7b:57:dc:5b:8b:3e:c0:f3:33:
77:9d:d7:13:2d:19:6e:4d:2f:6b:d8:3c:db:6f:81:
b2:2b:da:3e:55:04:87:e4:91:bb:83:3f:06:05:eb:
76:cb:df:6b:ec:e7:0e:7f:f7:80:b6:f4:78:0d:0e:
1c:8c:f5:6f:24:30:e7:bd:fa:7e:b2:bc:e8:07:67:
d8:13
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5D:F8:49:FF:8C:E6:9E:9A:53:E1:FF:05:08:A6:5F:3D:93:A8:92:57
X509v3 Authority Key Identifier:
keyid:32:9D:BB:46:A4:EB:76:45:D9:94:A0:E4:B9:84:FC:DA:C2:04:A4:84
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Mp27RqTrdkXZlKDkuYT82sIEpIQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9c/f171be-9653-41d8-a344-fec15ab84135/1/Mp27RqTrdkXZlKDkuYT82sIEpIQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9c/f171be-9653-41d8-a344-fec15ab84135/1/Mp27RqTrdkXZlKDkuYT82sIEpIQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
5f:0d:9d:f6:8e:24:3f:0f:e5:d7:27:75:71:fd:45:20:fc:1e:
db:e0:e3:e8:85:73:86:86:a8:a8:f0:a2:59:d3:ac:9f:ab:41:
a5:f7:94:62:9e:ea:8f:ed:0d:3d:ed:17:d7:3a:07:3e:f6:ac:
f1:be:b3:d4:0b:e0:a8:7b:27:85:50:c1:96:45:cc:74:ae:45:
a8:1f:a6:60:9d:76:20:26:59:68:9f:a9:91:7e:86:3b:71:e8:
0d:eb:80:5c:59:a5:af:fc:f0:d6:eb:a7:66:a2:d3:fb:7f:da:
14:e1:9e:4a:c3:ec:95:a5:33:82:95:31:2d:0d:f6:94:c7:c5:
23:43:bc:b9:ff:6e:b9:92:13:9c:24:ee:c0:4d:64:67:fd:0a:
f6:e3:1f:e7:e5:7e:b3:d1:54:f6:2a:68:25:9b:61:38:93:93:
8e:38:b7:d2:da:f7:67:28:29:9d:44:ca:73:0e:02:12:c9:47:
83:d3:cd:3d:a9:bf:01:b1:a2:16:e6:38:ca:0a:ff:c3:2f:37:
9e:19:da:fd:74:01:cb:a3:67:a5:38:74:5a:b3:bb:6d:2b:ab:
39:ea:d0:ec:da:7a:c7:4e:ce:89:ab:59:a4:b3:79:e8:f1:b0:
d1:9d:74:59:94:c6:d0:1e:09:bc:04:c9:06:07:31:a4:ca:c7:
d1:09:6d:cd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon May 12 20:51:41 2025 by rpki-client