Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0f/524bfe-c5ae-4f67-8413-2748c4002c2e/1/MZLFLzYKOnL-IkQaw_x-DlIl7pE.mft
File: MZLFLzYKOnL-IkQaw_x-DlIl7pE.mft (raw, json)
Hash identifier: Z11hJx5jg9dhNXZHN9zlIxc+3HougtwO2PthsF5aJM8=
Subject key identifier: 24:60:64:C0:A8:DE:A5:0B:90:C7:3E:20:65:7E:09:2A:AA:C6:05:7E
Authority key identifier: 31:92:C5:2F:36:0A:3A:72:FE:22:44:1A:C3:FC:7E:0E:52:25:EE:91
Certificate issuer: /CN=3192c52f360a3a72fe22441ac3fc7e0e5225ee91
Certificate serial: 019650ECB58563B6B638EB8795FE15334552
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/MZLFLzYKOnL-IkQaw_x-DlIl7pE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0f/524bfe-c5ae-4f67-8413-2748c4002c2e/1/MZLFLzYKOnL-IkQaw_x-DlIl7pE.mft
Manifest number: 1451
Signing time: Sun 20 Apr 2025 02:00:12 +0000
Manifest this update: Sun 20 Apr 2025 02:00:12 +0000
Manifest next update: Mon 21 Apr 2025 02:00:12 +0000
Files and hashes: 1: LgelsY-16hZE8VmZ4UWScnrAkQA.roa (hash: 5MPF2K6ZagDsXMwY0mVJRSAJCcCewM4ZcbU+TqCGJzs=)
2: MZLFLzYKOnL-IkQaw_x-DlIl7pE.crl (hash: 5iqzrjHtm6ssy9sSwsgusTOPIMNHUtkbaWSXrHv/+j8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0f/524bfe-c5ae-4f67-8413-2748c4002c2e/1/MZLFLzYKOnL-IkQaw_x-DlIl7pE.crl
rsync://rpki.ripe.net/repository/DEFAULT/0f/524bfe-c5ae-4f67-8413-2748c4002c2e/1/MZLFLzYKOnL-IkQaw_x-DlIl7pE.mft
rsync://rpki.ripe.net/repository/DEFAULT/MZLFLzYKOnL-IkQaw_x-DlIl7pE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 20 Apr 2025 22:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:50:ec:b5:85:63:b6:b6:38:eb:87:95:fe:15:33:45:52
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3192c52f360a3a72fe22441ac3fc7e0e5225ee91
Validity
Not Before: Apr 20 02:00:12 2025 GMT
Not After : Apr 21 02:00:12 2025 GMT
Subject: CN=246064c0a8dea50b90c73e20657e092aaac6057e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:41:3d:e7:75:a1:32:9a:81:be:14:d2:44:0e:
9e:e1:43:fd:3b:8e:a5:d3:76:52:64:41:cd:3d:2f:
f7:69:a9:6f:9d:c6:eb:28:2e:78:00:87:17:0d:f0:
c5:ea:b0:99:f0:b9:13:89:86:17:3b:5f:46:7d:cf:
d9:11:dc:b7:b2:ce:a3:89:43:d4:d4:2f:5c:9b:c7:
96:56:0f:c1:77:f3:12:c4:1b:14:ec:cd:10:54:6b:
bb:07:45:ae:15:cc:13:7a:b8:02:1b:d2:a2:da:5b:
ae:dc:1f:5d:77:66:1f:a4:66:d8:9a:c4:cb:02:0a:
d6:2b:07:fd:11:48:55:71:ac:32:ef:da:88:ce:62:
a6:94:5b:87:6c:ff:4a:df:ac:ab:64:05:9e:71:bd:
ac:a3:ca:eb:70:a1:73:de:3c:a4:20:ab:9b:a2:02:
07:ac:4b:ce:eb:d2:4e:fb:c9:8c:d7:97:62:82:93:
68:fe:44:6d:56:94:98:c1:ff:6a:ec:e1:f0:5a:47:
8f:a9:27:4e:34:b4:0f:a6:28:fe:53:da:fa:7d:c4:
1f:87:33:92:47:30:33:9e:db:df:b6:bc:b0:4e:c6:
ed:53:90:c7:3d:08:8e:aa:cf:40:60:69:64:7c:6c:
62:c0:06:a6:7a:32:ef:8d:b1:bc:eb:a8:a0:e4:9c:
24:3b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
24:60:64:C0:A8:DE:A5:0B:90:C7:3E:20:65:7E:09:2A:AA:C6:05:7E
X509v3 Authority Key Identifier:
keyid:31:92:C5:2F:36:0A:3A:72:FE:22:44:1A:C3:FC:7E:0E:52:25:EE:91
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MZLFLzYKOnL-IkQaw_x-DlIl7pE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0f/524bfe-c5ae-4f67-8413-2748c4002c2e/1/MZLFLzYKOnL-IkQaw_x-DlIl7pE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0f/524bfe-c5ae-4f67-8413-2748c4002c2e/1/MZLFLzYKOnL-IkQaw_x-DlIl7pE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
88:c4:e0:8d:0c:7b:03:6b:a9:5e:12:9c:a7:eb:cc:09:ac:b0:
b8:dc:e2:56:fc:a6:d2:d1:ab:c5:84:4e:dc:d8:e4:67:e7:de:
52:82:3d:07:99:a0:8d:ce:84:63:94:86:36:1e:f8:29:3f:f7:
49:58:d7:4b:92:2c:88:59:6b:55:e4:55:0d:24:40:2a:22:b9:
c4:3b:dd:81:b3:a2:5c:b8:fc:9d:0f:3a:20:49:47:a3:5a:88:
d0:42:fb:72:01:bd:77:7c:17:1b:a3:dc:b5:3b:c6:17:ed:e7:
d9:18:6c:81:24:a6:f5:17:c3:23:ae:ca:44:57:eb:e4:6b:6b:
fc:a5:f8:2e:a6:df:34:87:03:89:9d:e5:98:e5:27:b3:09:bc:
b6:d2:37:67:26:6d:2e:83:b1:fe:8e:c5:7b:f4:9c:a3:ec:44:
d7:c9:06:bf:12:78:6d:22:95:3f:8c:34:67:4b:a1:66:47:a9:
a2:c3:19:2d:9f:b1:e4:d5:79:e9:f8:f0:9b:ef:5f:dc:0d:f3:
84:cb:70:f5:0e:8b:d4:78:89:6f:cd:1f:c4:6c:dc:8b:c0:05:
08:8a:0a:04:bc:bc:46:71:08:20:7b:0d:50:f5:51:37:00:22:
1d:d8:86:63:f8:cf:e8:f5:28:9b:c5:80:8d:d0:8c:0d:87:26:
e4:01:d5:b7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 20 03:45:35 2025 by rpki-client