Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2f/58a4e1-dfc1-4d81-b2c6-216597e03f11/1/MXBn6Bphoh_cFIWY72ull1f6A4A.mft
File: MXBn6Bphoh_cFIWY72ull1f6A4A.mft (raw, json)
Hash identifier: g4G/hf9/28Gr5CH+cZJLBAPC/IBsbuMZwmzyTS8Q48s=
Subject key identifier: 80:4F:C1:7D:D1:EB:FB:B7:93:09:35:96:4C:0F:4A:5C:64:5F:E1:DF
Authority key identifier: 31:70:67:E8:1A:61:A2:1F:DC:14:85:98:EF:6B:A5:97:57:FA:03:80
Certificate issuer: /CN=317067e81a61a21fdc148598ef6ba59757fa0380
Certificate serial: 019651C92BB2CD82F3FC70A78D6ED47D2233
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/MXBn6Bphoh_cFIWY72ull1f6A4A.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2f/58a4e1-dfc1-4d81-b2c6-216597e03f11/1/MXBn6Bphoh_cFIWY72ull1f6A4A.mft
Manifest number: 0783
Signing time: Sun 20 Apr 2025 06:01:00 +0000
Manifest this update: Sun 20 Apr 2025 06:01:00 +0000
Manifest next update: Mon 21 Apr 2025 06:01:00 +0000
Files and hashes: 1: 1kHURLGCgDrhi9IHuZm9V5RPr7o.roa (hash: QOJumlfbHeKteqZFgdexa+53Le46L9xrcfm0BrIrj/w=)
2: MXBn6Bphoh_cFIWY72ull1f6A4A.crl (hash: 7EhQ4nynBozl4/D8spG1Bqsx5/3R43n6lGYd9bWFZo0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2f/58a4e1-dfc1-4d81-b2c6-216597e03f11/1/MXBn6Bphoh_cFIWY72ull1f6A4A.crl
rsync://rpki.ripe.net/repository/DEFAULT/2f/58a4e1-dfc1-4d81-b2c6-216597e03f11/1/MXBn6Bphoh_cFIWY72ull1f6A4A.mft
rsync://rpki.ripe.net/repository/DEFAULT/MXBn6Bphoh_cFIWY72ull1f6A4A.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 21 Apr 2025 06:01:00 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:51:c9:2b:b2:cd:82:f3:fc:70:a7:8d:6e:d4:7d:22:33
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=317067e81a61a21fdc148598ef6ba59757fa0380
Validity
Not Before: Apr 20 06:01:00 2025 GMT
Not After : Apr 21 06:01:00 2025 GMT
Subject: CN=804fc17dd1ebfbb7930935964c0f4a5c645fe1df
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:dd:d7:26:94:fe:b5:38:db:d5:1c:56:78:cc:
81:e1:81:6f:34:45:7e:a7:93:26:76:25:56:44:e8:
29:fb:a0:f2:bd:43:2b:b6:6e:5b:d6:bc:bb:87:f0:
b2:95:6a:d5:fc:4e:0f:65:74:7e:8e:89:16:39:33:
93:e6:ec:5f:c8:ae:c5:98:47:63:29:ee:1e:34:b9:
d3:99:fd:fd:8d:85:75:3d:f7:47:90:73:f0:b5:0f:
af:49:33:3f:12:5d:9e:cb:b5:dc:c7:2d:70:71:d6:
97:c6:c7:0a:60:05:94:fa:49:ff:12:4a:3b:6d:18:
6f:ba:37:fb:5d:e1:f8:8c:2d:64:b2:a2:f2:2e:e0:
29:6c:f8:03:63:07:08:02:08:77:9c:17:bb:65:6c:
71:7d:27:6d:ee:b2:13:39:7a:85:1b:f8:c5:81:81:
83:b3:5f:5f:64:f6:cb:cc:4d:ff:4e:a2:63:8f:cc:
b2:50:dd:d8:96:48:8a:8d:c5:b7:c3:43:ff:da:3b:
7a:2b:99:c7:3a:13:60:1c:f3:05:22:a7:f9:aa:6e:
d0:2f:a3:05:4c:ec:81:9e:62:05:48:18:bc:50:8a:
d5:f1:fb:63:29:9e:32:1d:dd:80:44:14:22:1c:91:
50:a3:b1:f2:be:04:cf:ca:6c:0d:c8:f3:1b:6e:53:
71:7b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
80:4F:C1:7D:D1:EB:FB:B7:93:09:35:96:4C:0F:4A:5C:64:5F:E1:DF
X509v3 Authority Key Identifier:
keyid:31:70:67:E8:1A:61:A2:1F:DC:14:85:98:EF:6B:A5:97:57:FA:03:80
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MXBn6Bphoh_cFIWY72ull1f6A4A.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2f/58a4e1-dfc1-4d81-b2c6-216597e03f11/1/MXBn6Bphoh_cFIWY72ull1f6A4A.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2f/58a4e1-dfc1-4d81-b2c6-216597e03f11/1/MXBn6Bphoh_cFIWY72ull1f6A4A.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
b3:56:c0:71:c4:a2:b8:8b:d7:1c:c2:d5:73:94:d6:40:11:03:
a8:3f:0e:5e:3f:62:39:2a:da:c3:cd:4b:72:ec:71:cc:7a:e6:
59:ea:81:00:0f:0a:57:a6:d8:d9:4a:bc:d1:f0:aa:8f:a5:9b:
14:5f:4f:64:62:5b:f0:62:71:35:4c:5b:86:4a:34:bc:ee:22:
e3:34:45:2a:22:f6:51:9b:8f:6c:5f:da:99:0f:24:ac:42:94:
bd:33:15:e6:f3:5e:45:6e:ba:4c:af:66:dd:53:4d:ea:1b:02:
1d:33:d1:ca:e7:02:3e:1c:99:02:87:be:0f:26:96:81:99:a6:
f8:e3:c5:2e:44:c1:20:e8:c1:6d:fd:0a:66:79:2a:53:9d:9a:
ce:ba:51:d3:71:64:ce:14:53:23:0b:cc:3e:80:5a:e9:91:cd:
7f:bb:18:52:dc:e6:06:2e:cd:5b:8a:f4:35:b5:b0:9e:e7:af:
0b:fc:a3:be:77:2d:62:7f:6d:94:f9:59:8c:19:18:41:0d:33:
78:c0:52:bc:97:0f:13:ae:08:04:57:56:ca:be:ad:a1:c3:75:
a1:ae:37:44:c7:02:40:90:7a:3f:5b:99:09:85:35:e2:65:66:
e5:47:3e:fb:49:1c:59:40:0e:02:57:af:bd:87:3b:cd:86:93:
71:89:d0:06
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 20 12:57:23 2025 by rpki-client