Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d4/ed7c8a-3952-4401-9dd4-44692dbccb32/1/mk123S9GBosIca1FAKxuV3r-Rpw.mft
File: mk123S9GBosIca1FAKxuV3r-Rpw.mft (raw, json)
Hash identifier: FuGq9V5hMJDguvnqqjpQ3lZX+4xJnJxvnKp6HgWxGhw=
Subject key identifier: 24:A7:02:55:76:A5:87:A1:85:E1:6A:04:AF:1C:C2:9E:89:68:DB:73
Authority key identifier: 9A:4D:76:DD:2F:46:06:8B:08:71:AD:45:00:AC:6E:57:7A:FE:46:9C
Certificate issuer: /CN=9a4d76dd2f46068b0871ad4500ac6e577afe469c
Certificate serial: 0196BDB73C531D8AEFA3BBADAF007DD29FFF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/mk123S9GBosIca1FAKxuV3r-Rpw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d4/ed7c8a-3952-4401-9dd4-44692dbccb32/1/mk123S9GBosIca1FAKxuV3r-Rpw.mft
Manifest number: 153F
Signing time: Sun 11 May 2025 05:00:24 +0000
Manifest this update: Sun 11 May 2025 05:00:24 +0000
Manifest next update: Mon 12 May 2025 05:00:24 +0000
Files and hashes: 1: g_4HQ6dPEqLM5A1GtfThJC294J4.roa (hash: LZYhI0FV7wY5oWB7xQyZ5bQSIIqgJBDQ7uNwEne/gVE=)
2: j-Wf3znAxyHVOa1yHEzX6v3sp9U.roa (hash: OwOwX0XTVGFVpqs+QebopX8jgHz3h7KxGANJ/Crp1oA=)
3: mk123S9GBosIca1FAKxuV3r-Rpw.crl (hash: XXEAKHGJEmDdKQd9TA7R0V15kBGHbA9pkE/uw0a3kJw=)
4: vscV7GZRMa0CPUTvFLBuSp-lIJ8.roa (hash: 2C3QYWkPGEbQmt4ETFEFUqH1R92qUMl/4nE7fTPMPhA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d4/ed7c8a-3952-4401-9dd4-44692dbccb32/1/mk123S9GBosIca1FAKxuV3r-Rpw.crl
rsync://rpki.ripe.net/repository/DEFAULT/d4/ed7c8a-3952-4401-9dd4-44692dbccb32/1/mk123S9GBosIca1FAKxuV3r-Rpw.mft
rsync://rpki.ripe.net/repository/DEFAULT/mk123S9GBosIca1FAKxuV3r-Rpw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 11 May 2025 22:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:bd:b7:3c:53:1d:8a:ef:a3:bb:ad:af:00:7d:d2:9f:ff
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9a4d76dd2f46068b0871ad4500ac6e577afe469c
Validity
Not Before: May 11 05:00:24 2025 GMT
Not After : May 12 05:00:24 2025 GMT
Subject: CN=24a7025576a587a185e16a04af1cc29e8968db73
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d1:40:7a:b2:02:79:c9:28:ea:d7:1e:ff:e8:3a:
df:82:64:6d:16:c3:2b:eb:f3:66:dc:a1:21:f7:5d:
7b:37:40:cd:41:5c:ff:ea:8a:ec:de:88:27:9a:06:
30:16:16:9f:61:37:0d:18:07:6e:51:08:f5:4a:3f:
f2:aa:63:87:d6:ae:11:1e:a1:2d:3f:e8:6a:80:d8:
3d:9b:fa:50:c4:c3:48:36:0e:70:c4:d0:88:38:9b:
de:c0:89:90:33:0f:3b:d5:d9:61:d0:cb:10:1b:45:
20:75:5f:b7:38:89:22:a6:37:96:c5:53:20:4b:75:
6f:dc:67:f2:19:28:9f:79:23:0b:0a:ba:44:f2:ec:
a6:f7:e0:4a:f9:b3:c4:f1:57:88:19:be:e1:39:49:
9a:be:4f:fd:cc:44:5d:ab:1a:be:b0:9e:b8:fe:7b:
3f:51:da:d0:0b:d8:55:96:a3:a7:c7:40:30:e4:bb:
47:82:27:29:13:8b:cc:e8:29:f3:c9:ca:66:b0:e4:
e8:28:67:15:42:f2:15:10:80:55:1a:33:85:e9:b7:
5e:19:39:86:6b:0c:6d:4b:0d:a3:83:61:43:42:77:
df:a3:1c:d2:46:db:26:11:56:7a:c3:2c:b4:2f:99:
44:65:1b:43:43:6f:21:8c:74:fc:55:de:a1:5a:0d:
d7:a5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
24:A7:02:55:76:A5:87:A1:85:E1:6A:04:AF:1C:C2:9E:89:68:DB:73
X509v3 Authority Key Identifier:
keyid:9A:4D:76:DD:2F:46:06:8B:08:71:AD:45:00:AC:6E:57:7A:FE:46:9C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/mk123S9GBosIca1FAKxuV3r-Rpw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d4/ed7c8a-3952-4401-9dd4-44692dbccb32/1/mk123S9GBosIca1FAKxuV3r-Rpw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d4/ed7c8a-3952-4401-9dd4-44692dbccb32/1/mk123S9GBosIca1FAKxuV3r-Rpw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
23:7c:0e:fc:d9:33:2c:8f:c7:87:b7:bd:26:34:c8:18:35:8a:
f0:91:ff:f1:4b:51:48:d2:97:6d:43:ab:7f:b9:5b:ff:16:65:
f2:85:d0:01:3a:83:9a:43:75:f5:17:85:0f:b6:50:4b:ee:9f:
4e:eb:5d:3c:28:80:44:d3:63:5e:b7:8f:21:79:62:c2:1c:aa:
3b:ca:85:d9:64:db:ce:cd:56:7e:54:ee:9f:df:49:86:90:4d:
e6:02:62:db:d4:d6:93:ca:77:09:46:91:7e:2d:72:75:24:77:
c8:b4:61:87:cd:4f:8e:a3:2e:31:44:4a:6a:db:7e:44:82:e0:
47:61:c5:79:16:fa:66:fb:2c:c8:b7:92:91:34:fb:20:3b:64:
b5:e3:b3:12:ed:ba:36:6c:38:24:0c:8a:08:69:5d:ae:bb:ba:
0b:12:b9:6d:50:04:14:99:4e:87:d0:f9:b1:7a:ec:b4:4f:78:
b9:31:63:58:ec:cc:0c:ff:ed:ec:aa:be:fe:bf:96:97:b6:a1:
e2:93:92:9d:d1:c2:b5:08:29:d9:c0:aa:a9:4a:55:ac:d4:81:
12:23:2e:b9:d6:41:9e:2d:35:fb:e8:73:ed:09:b7:cb:5a:27:
c8:91:9c:f3:f1:70:a6:82:51:29:c3:2a:ad:af:65:47:9b:50:
07:a4:34:2d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun May 11 08:36:35 2025 by rpki-client