Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2f/58a4e1-dfc1-4d81-b2c6-216597e03f11/1/MXBn6Bphoh_cFIWY72ull1f6A4A.mft
File: MXBn6Bphoh_cFIWY72ull1f6A4A.mft (raw, json)
Hash identifier: emPnHtEPWNDWuKW/V5NMC4zCXiN2Sz0d/vgbChxIUhg=
Subject key identifier: 8F:C7:C4:7C:BB:32:B9:02:CA:73:CE:EF:BA:66:52:BF:3F:4B:ED:20
Authority key identifier: 31:70:67:E8:1A:61:A2:1F:DC:14:85:98:EF:6B:A5:97:57:FA:03:80
Certificate issuer: /CN=317067e81a61a21fdc148598ef6ba59757fa0380
Certificate serial: 01958EBD55FA360D25D42B4BA78F08CB6DA8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/MXBn6Bphoh_cFIWY72ull1f6A4A.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2f/58a4e1-dfc1-4d81-b2c6-216597e03f11/1/MXBn6Bphoh_cFIWY72ull1f6A4A.mft
Manifest number: 071E
Signing time: Thu 13 Mar 2025 09:02:07 +0000
Manifest this update: Thu 13 Mar 2025 09:02:07 +0000
Manifest next update: Fri 14 Mar 2025 09:02:07 +0000
Files and hashes: 1: 1kHURLGCgDrhi9IHuZm9V5RPr7o.roa (hash: QOJumlfbHeKteqZFgdexa+53Le46L9xrcfm0BrIrj/w=)
2: MXBn6Bphoh_cFIWY72ull1f6A4A.crl (hash: N12A38HD5n+4kXTqVHJ5AKBZCQn1lvpSOxPLweK0/X8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2f/58a4e1-dfc1-4d81-b2c6-216597e03f11/1/MXBn6Bphoh_cFIWY72ull1f6A4A.crl
rsync://rpki.ripe.net/repository/DEFAULT/2f/58a4e1-dfc1-4d81-b2c6-216597e03f11/1/MXBn6Bphoh_cFIWY72ull1f6A4A.mft
rsync://rpki.ripe.net/repository/DEFAULT/MXBn6Bphoh_cFIWY72ull1f6A4A.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 14 Mar 2025 09:00:49 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:8e:bd:55:fa:36:0d:25:d4:2b:4b:a7:8f:08:cb:6d:a8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=317067e81a61a21fdc148598ef6ba59757fa0380
Validity
Not Before: Mar 13 09:02:07 2025 GMT
Not After : Mar 14 09:02:07 2025 GMT
Subject: CN=8fc7c47cbb32b902ca73ceefba6652bf3f4bed20
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:c1:bf:56:67:62:3d:70:27:03:b9:9c:f2:5d:
07:61:6e:66:5f:d7:18:5b:35:fb:f8:cb:74:5a:31:
b6:95:50:69:67:12:7c:7a:65:9e:ac:6f:74:d5:77:
ce:42:bf:fc:44:3b:e4:fd:fe:79:46:cd:c7:8e:3c:
b5:aa:ed:01:dc:1c:20:c4:2e:61:df:ef:f8:0d:b2:
ce:f5:74:79:b0:bd:b6:1c:83:be:b9:c3:5c:9e:90:
dc:25:d6:1b:10:ac:73:05:f0:81:d4:3c:f8:0e:ea:
3b:50:3e:2f:25:26:31:36:93:9d:36:2a:d4:13:d7:
8d:eb:2d:05:de:a3:44:69:b1:8c:99:8b:c1:77:78:
3f:f6:b7:84:20:4d:95:af:69:54:6d:d7:08:bc:35:
c2:11:19:fe:65:42:7d:54:d5:e1:7c:d3:a6:02:01:
49:c5:4e:c1:7a:f0:3b:3d:8f:54:d3:21:d2:df:2d:
27:a6:b2:a5:c2:ea:3f:d3:b7:0e:1e:ab:e4:da:f7:
62:e0:e0:40:04:50:df:7e:05:4e:8f:e7:a5:7f:ca:
20:a0:78:1f:df:cb:0b:4f:e1:a9:22:83:ad:f5:72:
4b:dd:26:a2:87:d9:71:43:b7:5c:12:3e:d0:bf:2d:
ae:eb:de:f6:55:82:04:72:4c:62:02:e2:58:9b:6e:
37:b5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8F:C7:C4:7C:BB:32:B9:02:CA:73:CE:EF:BA:66:52:BF:3F:4B:ED:20
X509v3 Authority Key Identifier:
keyid:31:70:67:E8:1A:61:A2:1F:DC:14:85:98:EF:6B:A5:97:57:FA:03:80
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MXBn6Bphoh_cFIWY72ull1f6A4A.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2f/58a4e1-dfc1-4d81-b2c6-216597e03f11/1/MXBn6Bphoh_cFIWY72ull1f6A4A.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2f/58a4e1-dfc1-4d81-b2c6-216597e03f11/1/MXBn6Bphoh_cFIWY72ull1f6A4A.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
49:a7:19:59:fd:17:10:80:47:02:44:5a:4c:91:2b:94:5d:6d:
19:5f:96:d0:4d:55:29:1e:22:eb:df:c2:41:8e:74:31:19:ea:
5a:6e:80:65:c3:fc:e3:63:4c:cb:24:5b:1d:0c:d7:c9:e3:39:
e2:e6:b9:74:9e:d6:6a:4e:2a:79:1a:3b:e0:18:d2:a4:a7:73:
a7:e9:d0:cc:a1:90:cd:68:80:ff:bc:ee:f5:32:be:53:32:e9:
66:7b:b6:f3:98:95:db:d8:08:f1:0c:29:99:f6:0c:07:9e:35:
3e:bb:bb:c7:9c:f0:69:1f:7b:9f:b0:e8:de:75:b9:81:ff:86:
d3:b1:c4:e6:a4:4e:84:f1:dc:29:c0:d2:ca:ae:b8:a0:1c:07:
10:76:8d:53:4f:79:e6:bc:ea:6a:9b:3f:9d:2d:34:c5:ef:37:
42:e2:19:2b:92:81:c9:5c:3c:f8:c2:f6:71:ec:68:35:6b:c3:
a0:e7:37:ff:87:91:4c:a6:48:fa:6c:f5:63:2e:48:49:11:bd:
4a:cc:75:c3:0f:5f:85:20:9f:ee:15:de:e7:c4:3d:fb:57:b8:
df:4b:0e:6b:7c:86:b2:24:2f:c3:94:69:b6:d9:ed:bc:89:6a:
f8:b0:83:66:2d:7f:a7:99:bb:0b:e8:f6:a1:5e:02:53:26:98:
fe:cb:6d:c0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 13 20:07:09 2025 by rpki-client