Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1a/ab8307-5f9c-49c6-8a0b-f3b45819f2b0/1/mKmHxs0KNvlNvvEO8qLGYCCpVhE.mft
File: mKmHxs0KNvlNvvEO8qLGYCCpVhE.mft (raw, json)
Hash identifier: NjnV0WGzmhC+LOh2Q6YxTv71Efm07lsYP5zfjrdEGuU=
Subject key identifier: A3:72:11:3B:AF:0E:C8:26:6B:71:6A:A1:4E:EA:A1:EB:6D:6E:07:68
Authority key identifier: 98:A9:87:C6:CD:0A:36:F9:4D:BE:F1:0E:F2:A2:C6:60:20:A9:56:11
Certificate issuer: /CN=98a987c6cd0a36f94dbef10ef2a2c66020a95611
Certificate serial: 01958C606C73211C52CE5991D52EB02D23E6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/mKmHxs0KNvlNvvEO8qLGYCCpVhE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1a/ab8307-5f9c-49c6-8a0b-f3b45819f2b0/1/mKmHxs0KNvlNvvEO8qLGYCCpVhE.mft
Manifest number: 102A
Signing time: Wed 12 Mar 2025 22:01:24 +0000
Manifest this update: Wed 12 Mar 2025 22:01:24 +0000
Manifest next update: Thu 13 Mar 2025 22:01:24 +0000
Files and hashes: 1: KkXU6YkVywPte3FQKPTwmXq43Jw.roa (hash: +grv15uxretevWYIDb50yFoisYnL85l43pH++WpX3xI=)
2: mKmHxs0KNvlNvvEO8qLGYCCpVhE.crl (hash: h2et0WI5/t4xfY/LGH9Qd4GYRBHZGsBVEhZBLRujb04=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/1a/ab8307-5f9c-49c6-8a0b-f3b45819f2b0/1/mKmHxs0KNvlNvvEO8qLGYCCpVhE.crl
rsync://rpki.ripe.net/repository/DEFAULT/1a/ab8307-5f9c-49c6-8a0b-f3b45819f2b0/1/mKmHxs0KNvlNvvEO8qLGYCCpVhE.mft
rsync://rpki.ripe.net/repository/DEFAULT/mKmHxs0KNvlNvvEO8qLGYCCpVhE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 13 Mar 2025 19:14:49 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:8c:60:6c:73:21:1c:52:ce:59:91:d5:2e:b0:2d:23:e6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=98a987c6cd0a36f94dbef10ef2a2c66020a95611
Validity
Not Before: Mar 12 22:01:24 2025 GMT
Not After : Mar 13 22:01:24 2025 GMT
Subject: CN=a372113baf0ec8266b716aa14eeaa1eb6d6e0768
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:77:20:00:76:9b:16:53:f7:2b:35:58:cf:91:
7c:57:79:d4:11:d4:bd:e2:3d:de:21:a3:d1:d1:c5:
fe:34:7f:47:42:6e:50:99:3d:80:cf:11:b9:ba:07:
3f:ca:43:81:6d:8b:49:ab:8d:e1:37:25:f9:16:ad:
9b:cf:58:75:6a:8b:67:8d:15:69:86:7a:79:4a:42:
4c:2c:1a:78:c8:1d:79:8c:29:14:91:b5:e2:da:47:
2f:91:71:f5:1c:97:84:a2:58:0f:bb:7c:2a:e3:6c:
c2:b5:e6:c9:1b:89:33:cf:76:97:ab:a6:df:0c:07:
47:24:cd:c9:93:e7:0d:6f:87:01:6f:08:25:87:b4:
18:a3:bf:8a:e6:63:3d:8b:33:b5:7a:29:73:cc:9a:
b9:6e:75:a6:d7:6c:fc:9c:d0:d7:b7:62:29:99:20:
7a:a9:0b:15:cd:49:ef:c8:75:6b:5d:26:6a:36:50:
83:c6:59:0c:bd:3c:97:4c:a3:0d:96:3f:dd:05:22:
a0:d3:e5:68:6b:39:ac:a6:d0:d5:59:39:12:dd:d6:
ba:e2:3b:3b:f4:76:7f:d7:a6:84:94:5d:6d:c7:78:
8d:b1:cc:46:1a:f6:9a:d4:6f:43:03:61:aa:2f:b3:
df:de:f0:63:bf:dc:a8:ca:81:e4:12:c5:3d:c2:79:
ec:13
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A3:72:11:3B:AF:0E:C8:26:6B:71:6A:A1:4E:EA:A1:EB:6D:6E:07:68
X509v3 Authority Key Identifier:
keyid:98:A9:87:C6:CD:0A:36:F9:4D:BE:F1:0E:F2:A2:C6:60:20:A9:56:11
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/mKmHxs0KNvlNvvEO8qLGYCCpVhE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1a/ab8307-5f9c-49c6-8a0b-f3b45819f2b0/1/mKmHxs0KNvlNvvEO8qLGYCCpVhE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1a/ab8307-5f9c-49c6-8a0b-f3b45819f2b0/1/mKmHxs0KNvlNvvEO8qLGYCCpVhE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
70:92:43:db:36:15:7e:ad:9a:13:4e:90:fe:f1:31:4e:31:2d:
fd:8a:c7:42:fb:12:4f:1a:2e:79:4c:8f:d0:b4:88:7c:03:ea:
9a:54:58:a0:df:f7:01:d1:04:6d:f2:d9:73:ef:ef:54:b9:af:
b7:e7:eb:d2:ae:a1:ef:b2:68:98:d2:aa:0b:2c:ff:db:f2:28:
45:da:6c:76:0e:66:c6:ff:03:63:e3:14:01:8d:ed:e6:67:c9:
1a:44:c4:d8:67:be:94:60:64:a0:6c:d2:ba:94:8d:73:31:12:
0c:c8:4c:78:d6:1d:89:47:eb:56:a2:7a:a4:82:6c:7e:45:0d:
03:4d:0c:53:d6:ce:23:78:11:3a:43:af:77:83:44:b0:12:2e:
57:07:b4:ee:16:87:d6:d1:de:cc:65:32:95:a4:8b:15:02:b2:
55:62:a7:d5:1b:6d:b4:69:95:ed:45:00:b3:0b:d7:07:f0:aa:
62:4c:4a:ef:33:2b:5c:70:2d:32:e3:2c:22:19:a6:b0:3e:e5:
e0:41:b2:49:10:4d:0d:70:07:7e:01:11:7d:93:2d:a5:84:38:
4d:b6:39:a1:81:8c:f7:4b:c0:bd:2c:72:57:8a:8e:d1:74:af:
ee:72:5f:14:a8:db:49:45:35:6b:8a:11:f1:ad:be:2d:16:97:
85:88:34:e3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 13 02:30:03 2025 by rpki-client