Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1f/23ccc8-4718-453c-be3e-95cd6924ab4e/1/MMOt1700croWgExJC2ahCXZZvTE.mft
File: MMOt1700croWgExJC2ahCXZZvTE.mft (raw, json)
Hash identifier: FnnjrfGYkeHjh7iM7hfaXKpt7zfo8fqJWFvuc1bC9L0=
Subject key identifier: 52:3E:03:8F:AB:E0:B5:B5:E5:4C:7B:22:48:FE:C1:2E:A7:FD:DF:37
Authority key identifier: 30:C3:AD:D7:BD:34:72:BA:16:80:4C:49:0B:66:A1:09:76:59:BD:31
Certificate issuer: /CN=30c3add7bd3472ba16804c490b66a1097659bd31
Certificate serial: 01964C6B2128458A4038DC573840F46541D7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/MMOt1700croWgExJC2ahCXZZvTE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1f/23ccc8-4718-453c-be3e-95cd6924ab4e/1/MMOt1700croWgExJC2ahCXZZvTE.mft
Manifest number: 0AAC
Signing time: Sat 19 Apr 2025 05:00:11 +0000
Manifest this update: Sat 19 Apr 2025 05:00:11 +0000
Manifest next update: Sun 20 Apr 2025 05:00:11 +0000
Files and hashes: 1: MMOt1700croWgExJC2ahCXZZvTE.crl (hash: zAiBWoTYhUQaa+WC0wyJdzsrEN0Q6p7wB22fLfIJk4U=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/1f/23ccc8-4718-453c-be3e-95cd6924ab4e/1/MMOt1700croWgExJC2ahCXZZvTE.crl
rsync://rpki.ripe.net/repository/DEFAULT/1f/23ccc8-4718-453c-be3e-95cd6924ab4e/1/MMOt1700croWgExJC2ahCXZZvTE.mft
rsync://rpki.ripe.net/repository/DEFAULT/MMOt1700croWgExJC2ahCXZZvTE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 20 Apr 2025 04:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:4c:6b:21:28:45:8a:40:38:dc:57:38:40:f4:65:41:d7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=30c3add7bd3472ba16804c490b66a1097659bd31
Validity
Not Before: Apr 19 05:00:11 2025 GMT
Not After : Apr 20 05:00:11 2025 GMT
Subject: CN=523e038fabe0b5b5e54c7b2248fec12ea7fddf37
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:99:6d:47:fb:40:c3:14:9a:5e:f3:a1:fa:f2:93:
d0:e4:38:dc:30:ce:ec:e4:fb:f3:8b:65:21:30:23:
9c:6e:17:dc:1f:93:48:bf:79:8f:46:12:29:b6:37:
a5:06:67:75:1a:ea:04:e3:34:36:53:12:fa:8a:20:
51:ad:86:9a:fc:9d:80:ad:da:1a:51:59:2f:d4:68:
b9:b6:b4:2c:a1:21:ad:5d:e6:6f:cc:71:6c:0c:6d:
e1:dd:27:ca:7e:d1:54:ae:35:44:da:b3:5e:f1:fc:
90:cd:f5:e4:80:91:5f:cb:2a:bb:89:49:09:65:3d:
4b:d0:79:b9:a3:da:72:b7:68:da:f1:2f:41:12:6a:
cb:4a:13:31:61:32:fd:fa:bc:d1:c8:77:c0:4a:aa:
92:23:19:5c:94:53:b9:02:a0:f5:ec:25:ed:40:6b:
10:4f:b6:0e:75:b4:19:a7:ff:07:cb:12:b1:b5:c2:
d5:43:67:82:65:e0:04:ff:54:47:8a:0e:6c:7a:61:
d3:b0:7c:c2:86:b4:95:7c:eb:1b:02:42:34:88:f6:
1d:dd:9e:b0:f8:15:9a:d6:4a:d0:ab:ae:ba:46:2c:
47:aa:b1:43:b1:90:c4:41:30:cb:61:b4:82:bc:10:
f8:d0:e3:d1:9f:97:73:81:c2:7d:9f:ba:b0:6f:03:
f2:f9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
52:3E:03:8F:AB:E0:B5:B5:E5:4C:7B:22:48:FE:C1:2E:A7:FD:DF:37
X509v3 Authority Key Identifier:
keyid:30:C3:AD:D7:BD:34:72:BA:16:80:4C:49:0B:66:A1:09:76:59:BD:31
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MMOt1700croWgExJC2ahCXZZvTE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1f/23ccc8-4718-453c-be3e-95cd6924ab4e/1/MMOt1700croWgExJC2ahCXZZvTE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1f/23ccc8-4718-453c-be3e-95cd6924ab4e/1/MMOt1700croWgExJC2ahCXZZvTE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
54:1d:30:53:07:9c:5f:c7:d5:c2:d0:68:b0:85:8b:a4:d0:98:
ce:d3:33:0d:99:07:33:95:5e:da:d3:26:9d:6a:71:76:62:ba:
e2:17:7d:d1:a1:15:d6:46:aa:aa:31:ec:2c:3e:a3:c9:46:fd:
0f:fc:86:a2:5b:c1:65:d3:57:4e:6b:d3:a0:5d:69:2d:18:eb:
a5:a9:93:b7:dd:27:14:39:45:d6:34:ad:28:fa:8d:a8:a1:92:
ad:01:13:ba:c4:0a:bb:37:5b:50:da:aa:cd:24:ef:4b:42:bc:
6f:dd:2e:74:84:88:c7:7f:ee:91:8c:71:70:63:98:52:a2:98:
54:04:1e:2b:71:91:4d:7b:e2:48:ef:1b:95:99:2a:52:70:2a:
ed:52:3e:4b:f9:70:09:d1:26:84:57:4b:f6:c7:12:f9:65:02:
ea:55:70:07:dd:22:ae:07:c5:87:df:dc:cd:c9:77:6a:9d:bf:
04:e2:ff:aa:3d:5f:4b:51:be:d7:ea:cb:8b:0c:89:45:04:d0:
1d:b9:e6:d4:76:7f:75:30:41:b9:8f:06:d8:79:f4:16:28:fa:
b2:03:b4:a6:15:6b:04:56:ea:33:6c:55:bd:ce:3b:f3:d1:62:
57:d8:98:1a:6c:19:6e:13:2d:e5:4f:fb:50:91:78:3f:f9:98:
a1:be:9e:b1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 19 12:34:34 2025 by rpki-client