Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/14/5a448a-5e7a-47e0-87da-cdcfbb100447/1/MZX3NBnoIjKXlM8X-6fpPzdTdKk.mft
File: MZX3NBnoIjKXlM8X-6fpPzdTdKk.mft (raw, json)
Hash identifier: eKtEX6WEs6XHD4dlRMJQ9wmHMLWo4rt5VZ2TiAguU+4=
Subject key identifier: 66:EE:5B:1F:B6:AB:4F:A1:9E:79:0C:12:BD:A4:9F:21:C3:F9:6C:AB
Authority key identifier: 31:95:F7:34:19:E8:22:32:97:94:CF:17:FB:A7:E9:3F:37:53:74:A9
Certificate issuer: /CN=3195f73419e822329794cf17fba7e93f375374a9
Certificate serial: 01965F4DF7F7F1690E0586FF63EF9D30C8CC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/MZX3NBnoIjKXlM8X-6fpPzdTdKk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/14/5a448a-5e7a-47e0-87da-cdcfbb100447/1/MZX3NBnoIjKXlM8X-6fpPzdTdKk.mft
Manifest number: 10A9
Signing time: Tue 22 Apr 2025 21:01:07 +0000
Manifest this update: Tue 22 Apr 2025 21:01:07 +0000
Manifest next update: Wed 23 Apr 2025 21:01:07 +0000
Files and hashes: 1: MZX3NBnoIjKXlM8X-6fpPzdTdKk.crl (hash: DER1FE0JeI08fMeqLlv0PqwVesXOek1M0EVxKypcE/E=)
2: SCHcZAvBuEDabGE8ZnvuGrNm6LM.roa (hash: +7HN05BMaB78AnyjOqZ5Q8EXtIVzWFh5zSmSPi10HzA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/14/5a448a-5e7a-47e0-87da-cdcfbb100447/1/MZX3NBnoIjKXlM8X-6fpPzdTdKk.crl
rsync://rpki.ripe.net/repository/DEFAULT/14/5a448a-5e7a-47e0-87da-cdcfbb100447/1/MZX3NBnoIjKXlM8X-6fpPzdTdKk.mft
rsync://rpki.ripe.net/repository/DEFAULT/MZX3NBnoIjKXlM8X-6fpPzdTdKk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 23 Apr 2025 14:46:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:5f:4d:f7:f7:f1:69:0e:05:86:ff:63:ef:9d:30:c8:cc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3195f73419e822329794cf17fba7e93f375374a9
Validity
Not Before: Apr 22 21:01:07 2025 GMT
Not After : Apr 23 21:01:07 2025 GMT
Subject: CN=66ee5b1fb6ab4fa19e790c12bda49f21c3f96cab
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ea:4e:86:f7:19:91:4e:75:7d:8a:2d:f4:15:c7:
95:e7:e7:f8:05:01:38:28:cc:e8:f6:95:d1:4b:90:
4b:e5:f8:e6:1c:3c:ab:56:d1:aa:1e:7a:33:74:66:
3d:2f:40:cd:c6:74:0d:0d:1e:09:ee:42:ec:86:af:
cd:7f:e8:ce:7e:ed:6c:0f:03:96:ab:80:72:f8:d3:
e3:0e:98:e6:b6:cf:f8:0e:78:0d:59:fc:a4:f6:ec:
d3:df:ba:36:b5:64:64:90:d1:38:7d:78:60:b2:ba:
69:4e:8e:19:42:e1:ea:2b:1f:c1:a2:cd:f6:a2:52:
c4:71:81:6f:c8:90:0f:55:60:a8:3e:47:29:d9:7a:
84:73:71:5a:02:b2:6b:6b:ac:5e:5e:a4:4d:32:87:
71:d0:82:cf:81:0a:36:78:86:d1:a0:9c:ff:a3:44:
8a:c9:e4:7c:88:67:64:32:93:fd:8a:35:a4:a5:11:
52:1f:4b:db:f4:65:3a:01:37:1c:32:ee:0a:b1:82:
6f:df:a7:f9:1f:75:c3:96:26:a6:8f:f3:15:e9:de:
00:6e:8a:16:92:af:95:22:11:bc:60:c3:63:1a:17:
a3:84:43:40:ad:3a:f4:67:03:49:97:58:95:03:24:
6e:48:49:0d:25:f9:6c:96:13:22:10:28:96:cf:0a:
92:51
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
66:EE:5B:1F:B6:AB:4F:A1:9E:79:0C:12:BD:A4:9F:21:C3:F9:6C:AB
X509v3 Authority Key Identifier:
keyid:31:95:F7:34:19:E8:22:32:97:94:CF:17:FB:A7:E9:3F:37:53:74:A9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MZX3NBnoIjKXlM8X-6fpPzdTdKk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/14/5a448a-5e7a-47e0-87da-cdcfbb100447/1/MZX3NBnoIjKXlM8X-6fpPzdTdKk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/14/5a448a-5e7a-47e0-87da-cdcfbb100447/1/MZX3NBnoIjKXlM8X-6fpPzdTdKk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
40:98:a6:93:e9:57:d4:8b:55:84:d1:09:cd:4d:ee:80:ed:3d:
41:53:7d:3b:92:9f:d1:b8:98:f5:9c:cf:82:0a:20:85:b4:34:
ca:dd:8f:ac:cf:68:fc:37:6e:4e:87:2b:7e:34:1b:06:4b:f4:
e4:80:03:74:05:6b:99:b8:1e:64:18:2d:1d:6d:00:4d:e2:66:
b1:e2:30:3f:83:64:c8:ad:78:14:8c:e5:3a:ad:28:b6:f9:9d:
43:d1:14:5b:60:26:fe:ab:a7:9b:8a:4a:5d:7b:4c:34:99:e0:
be:94:7a:cd:d4:fe:e1:67:e9:d6:ba:23:9f:a6:02:cf:86:7c:
c3:f9:ee:18:88:fe:f5:ac:f4:47:48:26:5c:c2:7e:09:65:be:
1a:f4:51:88:13:c0:ce:ce:91:7a:75:d7:f0:75:87:59:ce:ba:
cc:41:2d:fc:5c:d2:5a:4f:ff:7f:72:da:33:ab:da:0b:68:20:
76:25:9c:ff:06:af:e1:ab:5f:62:3e:eb:77:24:70:ef:33:3b:
fe:41:41:ee:64:20:35:57:d6:a8:c2:14:bb:8c:46:25:76:97:
36:d7:9f:7c:91:df:03:84:29:cf:80:c9:6b:c0:37:73:21:31:
63:b9:5e:b3:13:93:5b:55:ac:6d:55:d8:05:24:21:79:b5:05:
68:1b:6a:da
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 22 23:29:41 2025 by rpki-client