Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/dc/1cdbb1-e265-44c5-b980-4a566add54b2/1/MxpRr9TLZoLCMN7WQGWMETxWL9I.mft
File: MxpRr9TLZoLCMN7WQGWMETxWL9I.mft (raw, json)
Hash identifier: dScoPvPggwysL0S0kpx7lbRSn6NmHeG/YIfJfBL6ENs=
Subject key identifier: 28:D3:73:58:F8:06:EE:AD:20:C0:93:FE:7A:AF:08:57:D5:3A:08:51
Authority key identifier: 33:1A:51:AF:D4:CB:66:82:C2:30:DE:D6:40:65:8C:11:3C:56:2F:D2
Certificate issuer: /CN=331a51afd4cb6682c230ded640658c113c562fd2
Certificate serial: 0196AE44BDB9A41408CAF8A01F63962C049A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/MxpRr9TLZoLCMN7WQGWMETxWL9I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/dc/1cdbb1-e265-44c5-b980-4a566add54b2/1/MxpRr9TLZoLCMN7WQGWMETxWL9I.mft
Manifest number: 077A
Signing time: Thu 08 May 2025 05:01:02 +0000
Manifest this update: Thu 08 May 2025 05:01:02 +0000
Manifest next update: Fri 09 May 2025 05:01:02 +0000
Files and hashes: 1: MxpRr9TLZoLCMN7WQGWMETxWL9I.crl (hash: yKJqTHGS8IyXeOjTcg2JMbl5oMCentoo/jB3tJj0fSc=)
2: TS9TQNQnmKCUyfNW3iHSrKN4kHU.roa (hash: FKmub+udVUMJc6SCu1H3/G3fAnw8GwGXkDsFmXaZ8+8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/dc/1cdbb1-e265-44c5-b980-4a566add54b2/1/MxpRr9TLZoLCMN7WQGWMETxWL9I.crl
rsync://rpki.ripe.net/repository/DEFAULT/dc/1cdbb1-e265-44c5-b980-4a566add54b2/1/MxpRr9TLZoLCMN7WQGWMETxWL9I.mft
rsync://rpki.ripe.net/repository/DEFAULT/MxpRr9TLZoLCMN7WQGWMETxWL9I.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 09 May 2025 05:01:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:ae:44:bd:b9:a4:14:08:ca:f8:a0:1f:63:96:2c:04:9a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=331a51afd4cb6682c230ded640658c113c562fd2
Validity
Not Before: May 8 05:01:02 2025 GMT
Not After : May 9 05:01:02 2025 GMT
Subject: CN=28d37358f806eead20c093fe7aaf0857d53a0851
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:7b:e0:bd:c7:f2:d0:01:60:b3:5f:dd:e9:a3:
79:4b:cb:db:32:39:03:f0:bc:0f:72:87:8a:cf:ce:
11:f4:3d:f0:fd:84:8f:cf:11:ec:42:07:a2:67:7c:
de:a7:e5:eb:13:91:68:10:1b:94:ed:31:6c:23:33:
0b:86:5f:f2:d2:cc:78:a8:e2:a7:53:94:49:f4:9a:
0f:d7:f2:64:4d:9b:c1:e2:d4:c2:0d:5e:80:9a:44:
1d:fd:86:9d:2b:c4:04:e9:88:c9:e2:ab:d6:40:81:
9e:0d:41:b0:4e:6d:91:24:89:f1:04:65:9d:13:2d:
38:18:70:49:d8:93:f0:85:67:2a:f4:a2:46:b0:0c:
1d:a3:db:43:e1:99:7f:68:e9:b0:99:61:08:bd:fd:
01:cd:30:4f:41:55:f7:03:b4:3a:06:41:78:c5:ba:
50:10:c2:d6:33:ac:61:b0:73:4e:08:81:95:0d:11:
33:15:c5:6f:ca:09:47:15:8c:95:9d:92:9a:a9:d2:
e3:0f:16:96:c6:58:fb:e1:53:4f:d8:8d:b5:72:51:
90:5e:75:43:f3:b9:87:86:24:1e:d2:44:ca:38:ee:
26:80:0b:7e:71:d9:a0:61:98:31:df:25:fa:a2:63:
1e:09:55:b0:8f:8f:f0:17:13:11:0f:aa:ae:28:ca:
35:73
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
28:D3:73:58:F8:06:EE:AD:20:C0:93:FE:7A:AF:08:57:D5:3A:08:51
X509v3 Authority Key Identifier:
keyid:33:1A:51:AF:D4:CB:66:82:C2:30:DE:D6:40:65:8C:11:3C:56:2F:D2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MxpRr9TLZoLCMN7WQGWMETxWL9I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/dc/1cdbb1-e265-44c5-b980-4a566add54b2/1/MxpRr9TLZoLCMN7WQGWMETxWL9I.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/dc/1cdbb1-e265-44c5-b980-4a566add54b2/1/MxpRr9TLZoLCMN7WQGWMETxWL9I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
2e:a2:1f:59:75:bb:88:c9:a5:34:44:92:40:4a:b8:29:41:e7:
9f:26:49:d3:ab:b0:0a:3d:bb:32:89:65:ba:eb:57:20:77:de:
e0:66:ab:34:63:1f:28:b9:b3:94:27:3f:32:96:45:49:30:9b:
9b:29:83:8d:5e:c4:1f:1c:16:69:a2:33:3e:e8:13:49:26:77:
ca:e0:22:04:f4:de:92:34:b7:36:94:f7:d9:ea:14:c8:b4:82:
e6:cd:35:5d:91:6d:06:c0:7a:ce:f4:c4:c2:56:b2:da:0b:70:
8b:86:7b:50:6c:31:f6:ac:44:f7:03:cf:9f:30:07:fa:b6:cc:
bc:36:fc:91:56:e3:37:ee:e9:a9:d2:11:25:69:37:34:86:87:
c0:1e:ac:5b:7a:db:1a:61:60:a6:57:d5:48:99:46:e1:5a:83:
a7:46:93:4b:11:7a:1c:29:52:b8:f7:3f:b0:05:0a:0e:5d:84:
c5:41:31:82:e6:fc:f8:da:c2:d2:ed:02:c2:62:ec:eb:6e:b4:
ce:e7:95:d0:78:ce:65:17:4b:da:ed:11:66:70:6a:cc:ef:ad:
7e:ff:48:14:a0:ff:98:64:4b:64:75:56:4f:cd:a9:29:99:ae:
af:63:f7:8e:c7:55:7f:33:d2:5a:18:de:6a:05:66:74:fe:76:
9a:d7:bd:e0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu May 8 10:06:00 2025 by rpki-client