Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b5/55d3cc-bcf0-425e-983d-4f3c46f17737/1/MuFdOEw49IcrD_k1L_GcTW37ZMY.mft
File: MuFdOEw49IcrD_k1L_GcTW37ZMY.mft (raw, json)
Hash identifier: mTcG88qQqiUz0QnNrU6+UaCBQp1icwE2kDjmQ10RLMg=
Subject key identifier: 71:79:53:27:2B:10:75:31:EB:35:20:41:E5:26:75:4B:CB:A2:39:36
Authority key identifier: 32:E1:5D:38:4C:38:F4:87:2B:0F:F9:35:2F:F1:9C:4D:6D:FB:64:C6
Certificate issuer: /CN=32e15d384c38f4872b0ff9352ff19c4d6dfb64c6
Certificate serial: 01965613654FEBF2B766D87BF0A61B5C77D7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/MuFdOEw49IcrD_k1L_GcTW37ZMY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b5/55d3cc-bcf0-425e-983d-4f3c46f17737/1/MuFdOEw49IcrD_k1L_GcTW37ZMY.mft
Manifest number: 0C10
Signing time: Mon 21 Apr 2025 02:00:33 +0000
Manifest this update: Mon 21 Apr 2025 02:00:33 +0000
Manifest next update: Tue 22 Apr 2025 02:00:33 +0000
Files and hashes: 1: MuFdOEw49IcrD_k1L_GcTW37ZMY.crl (hash: quj9ilvIv8Os1VRInzgdDb3Jcf/eHn3eZgPN032LWhQ=)
2: nLlnLzhBW0q3Q45Kky0hHNKYV40.roa (hash: RNNKG+Zuzj9PpdwsoSPFqXxYXZoCjXiQJtMmCaWRm20=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b5/55d3cc-bcf0-425e-983d-4f3c46f17737/1/MuFdOEw49IcrD_k1L_GcTW37ZMY.crl
rsync://rpki.ripe.net/repository/DEFAULT/b5/55d3cc-bcf0-425e-983d-4f3c46f17737/1/MuFdOEw49IcrD_k1L_GcTW37ZMY.mft
rsync://rpki.ripe.net/repository/DEFAULT/MuFdOEw49IcrD_k1L_GcTW37ZMY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 22 Apr 2025 01:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:56:13:65:4f:eb:f2:b7:66:d8:7b:f0:a6:1b:5c:77:d7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=32e15d384c38f4872b0ff9352ff19c4d6dfb64c6
Validity
Not Before: Apr 21 02:00:33 2025 GMT
Not After : Apr 22 02:00:33 2025 GMT
Subject: CN=717953272b107531eb352041e526754bcba23936
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:ab:43:60:4e:eb:c2:e4:88:45:82:01:56:37:
5b:0f:c3:19:3e:12:14:fd:f2:d3:9e:4f:3b:88:47:
4c:24:ae:16:50:2f:c1:77:8b:99:97:95:09:18:c7:
20:91:f8:50:58:d7:a8:ee:1d:e0:f4:98:38:50:f7:
0b:3c:0f:1a:b4:97:f7:1a:be:ac:88:a8:f8:71:0a:
4b:11:50:13:ee:f8:e7:43:f2:aa:33:83:18:9b:90:
c5:68:32:2d:9d:d2:3e:8d:f9:31:5b:2a:06:8a:92:
85:a1:b9:a2:6d:57:f7:4d:69:dd:69:1b:7b:2b:d0:
67:53:13:b5:29:cd:f1:77:35:fc:9a:89:47:18:c6:
29:de:d9:1b:88:bc:49:70:5d:09:ee:0a:6b:bc:b8:
48:11:fb:3b:e7:8f:b3:a0:bd:90:b6:af:79:e6:56:
3f:26:04:03:64:f0:9d:51:08:62:71:04:a1:08:7a:
0d:02:14:cb:aa:f7:b7:5d:b1:86:87:07:05:08:a7:
af:7a:04:ef:b6:df:ec:d5:b2:7a:58:d3:99:cc:14:
f2:91:6f:a9:d7:75:54:d7:23:f0:5d:05:98:40:23:
80:c0:c6:31:e3:ac:11:f9:b6:cb:29:f6:f3:3f:25:
65:b6:2f:59:66:c5:b7:37:7c:1f:fa:47:5c:8d:db:
ce:5d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
71:79:53:27:2B:10:75:31:EB:35:20:41:E5:26:75:4B:CB:A2:39:36
X509v3 Authority Key Identifier:
keyid:32:E1:5D:38:4C:38:F4:87:2B:0F:F9:35:2F:F1:9C:4D:6D:FB:64:C6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MuFdOEw49IcrD_k1L_GcTW37ZMY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b5/55d3cc-bcf0-425e-983d-4f3c46f17737/1/MuFdOEw49IcrD_k1L_GcTW37ZMY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b5/55d3cc-bcf0-425e-983d-4f3c46f17737/1/MuFdOEw49IcrD_k1L_GcTW37ZMY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
10:8a:02:d6:85:76:2a:7c:d0:75:eb:87:e9:e0:72:79:79:db:
a1:6e:d8:3f:09:89:33:77:17:cd:66:8e:19:fa:8a:4f:be:a6:
bb:01:ea:f0:15:5e:14:fb:35:59:73:d9:de:dd:8c:b6:7c:30:
d6:ab:b3:2e:51:c6:40:04:b9:3f:ba:d4:a4:42:36:b4:0d:e4:
27:da:ce:f0:1b:10:bd:74:60:c4:ea:87:60:a1:91:4e:ea:0b:
77:76:fa:13:8e:d7:f4:55:21:91:d0:ea:c4:9d:a9:96:ee:b8:
36:34:41:83:6f:e1:62:b3:8b:b2:7a:ba:ef:02:59:d8:10:bd:
00:03:bc:b6:56:9d:c9:8a:42:c2:f0:2f:3b:8e:9e:22:0e:fb:
b6:2d:cf:1a:7e:50:5b:02:04:af:53:7f:e8:4d:b5:26:4e:a8:
20:09:b0:83:f9:08:46:d1:77:8e:49:ca:b6:de:91:1b:7b:a3:
e7:8f:e1:0c:3a:08:4c:78:58:4d:5d:b5:ed:e4:5e:86:39:63:
e6:79:e7:e2:b5:06:c5:b5:65:de:2b:39:6a:dd:8c:0b:a6:0f:
31:e7:28:e9:c7:23:43:f6:29:2e:75:ce:f2:49:06:48:1f:2c:
16:f0:5e:30:26:2a:57:cd:1a:f9:2d:3e:43:d3:b2:f5:e1:32:
cb:d4:75:b5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 21 05:36:19 2025 by rpki-client