Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/56/125b9d-2a1f-463a-965e-7cfeaf086e14/1/MkxxBGxUn7PH1OvEz5UZ0ALnbfE.mft
File: MkxxBGxUn7PH1OvEz5UZ0ALnbfE.mft (raw, json)
Hash identifier: C7lKI4SjVBkCng6e/uQGNJvqbRRq/07p2JzMVU43dfw=
Subject key identifier: 1E:80:B2:50:4B:1B:80:56:73:02:10:B1:B4:06:C2:D2:A8:04:2C:29
Authority key identifier: 32:4C:71:04:6C:54:9F:B3:C7:D4:EB:C4:CF:95:19:D0:02:E7:6D:F1
Certificate issuer: /CN=324c71046c549fb3c7d4ebc4cf9519d002e76df1
Certificate serial: 01965E71C5D98E0D236ACF785186B5C4542B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/MkxxBGxUn7PH1OvEz5UZ0ALnbfE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/56/125b9d-2a1f-463a-965e-7cfeaf086e14/1/MkxxBGxUn7PH1OvEz5UZ0ALnbfE.mft
Manifest number: 09CB
Signing time: Tue 22 Apr 2025 17:00:36 +0000
Manifest this update: Tue 22 Apr 2025 17:00:36 +0000
Manifest next update: Wed 23 Apr 2025 17:00:36 +0000
Files and hashes: 1: 2W4Y0bQNlvS93LoW6fNHPM7BKLQ.roa (hash: I9C4k+xseXfObTJ4huNUkRHHI0jQTaqLFqDJffjcwOE=)
2: MkxxBGxUn7PH1OvEz5UZ0ALnbfE.crl (hash: 2Hs0ysfhn80KpBmRn7b06JrKq32QgR1t0uIYTl0Q9Rs=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/56/125b9d-2a1f-463a-965e-7cfeaf086e14/1/MkxxBGxUn7PH1OvEz5UZ0ALnbfE.crl
rsync://rpki.ripe.net/repository/DEFAULT/56/125b9d-2a1f-463a-965e-7cfeaf086e14/1/MkxxBGxUn7PH1OvEz5UZ0ALnbfE.mft
rsync://rpki.ripe.net/repository/DEFAULT/MkxxBGxUn7PH1OvEz5UZ0ALnbfE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 23 Apr 2025 14:46:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:5e:71:c5:d9:8e:0d:23:6a:cf:78:51:86:b5:c4:54:2b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=324c71046c549fb3c7d4ebc4cf9519d002e76df1
Validity
Not Before: Apr 22 17:00:36 2025 GMT
Not After : Apr 23 17:00:36 2025 GMT
Subject: CN=1e80b2504b1b8056730210b1b406c2d2a8042c29
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:8f:db:f2:f1:66:0d:d6:82:5e:d5:3c:f6:ed:
ca:6c:15:e7:69:d3:e0:e4:29:fb:0a:39:1d:ef:9c:
d7:b3:29:08:ab:d4:df:55:d5:b3:5f:07:97:dd:e1:
39:2f:72:99:ba:7a:fa:16:63:0c:f0:45:4d:21:19:
e5:b1:bb:f8:7f:85:2b:e2:4b:6f:6c:0d:79:c0:98:
ca:f2:94:7a:1f:3a:74:61:90:1a:08:9a:c1:dc:c1:
99:37:68:8c:e0:6e:37:49:f2:da:6f:dd:63:95:1a:
b9:88:6b:69:bb:c8:88:84:4b:74:83:01:f3:de:f3:
88:b0:25:6a:59:4a:80:09:0c:1d:9c:06:6b:f7:56:
05:6f:b6:12:ad:18:94:49:24:aa:74:40:fc:04:75:
4e:34:78:7f:fb:31:dc:1c:24:2a:aa:dc:0d:21:69:
6a:1b:57:25:37:ec:8a:04:e5:0e:01:8d:a6:cd:16:
be:f6:c7:37:ea:6f:66:50:3b:3f:2f:d7:f4:10:ff:
ac:1a:2b:d3:f8:c7:7d:a6:98:b2:3d:b3:1f:91:6b:
0e:78:40:e9:13:12:81:24:aa:8e:16:54:fc:64:f8:
96:b1:fd:12:8d:22:68:5e:3c:98:b3:b6:30:b1:38:
1d:a9:f2:88:bb:cb:e7:a6:dd:e5:62:46:e6:62:f1:
4c:31
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1E:80:B2:50:4B:1B:80:56:73:02:10:B1:B4:06:C2:D2:A8:04:2C:29
X509v3 Authority Key Identifier:
keyid:32:4C:71:04:6C:54:9F:B3:C7:D4:EB:C4:CF:95:19:D0:02:E7:6D:F1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MkxxBGxUn7PH1OvEz5UZ0ALnbfE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/56/125b9d-2a1f-463a-965e-7cfeaf086e14/1/MkxxBGxUn7PH1OvEz5UZ0ALnbfE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/56/125b9d-2a1f-463a-965e-7cfeaf086e14/1/MkxxBGxUn7PH1OvEz5UZ0ALnbfE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
1b:c3:f4:9d:21:20:53:d8:2a:9b:8e:21:bb:1a:98:52:b0:b5:
7f:ee:bc:ac:74:ff:ea:1b:50:ce:0a:16:c3:1c:33:e6:4f:12:
07:c1:8a:6a:47:f9:43:6c:3f:b4:43:fc:b5:57:5a:2b:46:71:
3a:fd:b8:65:3b:49:90:46:21:0f:9f:7c:07:3d:e3:61:c5:52:
78:ca:ec:a8:e3:1d:cc:6c:68:14:de:9f:76:a5:05:9e:48:eb:
53:58:c4:ba:29:5a:f7:46:83:84:2f:4c:ce:93:49:c7:0e:91:
d8:37:f2:e2:23:87:48:a9:35:9e:4e:5a:70:56:3e:41:96:67:
3a:52:77:29:7c:2f:9c:5b:df:e3:e1:fa:f2:33:7e:20:25:c1:
2a:1e:8f:44:d5:9a:83:82:d0:68:4d:d7:3c:25:66:03:cc:0c:
2c:16:ba:4e:c7:79:03:f7:b6:5b:df:c8:4b:3f:80:4d:a3:30:
d5:dc:e3:ae:4e:6a:0f:85:e3:0d:5c:ec:1f:43:a1:11:ab:7f:
32:87:b3:6e:30:f6:22:84:4e:8b:6b:8d:00:6b:df:b0:1a:b3:
51:2d:7a:59:6c:6a:e0:59:c8:96:fc:aa:82:7f:a9:f3:7b:08:
9d:cd:72:4e:a5:a9:d3:5e:22:59:ec:31:6c:d2:d3:2b:3f:5a:
65:ce:d4:aa
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 22 20:56:26 2025 by rpki-client