Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5e/07a487-26cb-4b18-bb39-15fe06fff8bc/1/mrL5l1qR5xN52hAOyEvUSgooDZs.mft
File: mrL5l1qR5xN52hAOyEvUSgooDZs.mft (raw, json)
Hash identifier: oBR4rE9SOZzRN+Er7dIwcfr/6rni/gekXdkXihZHdw0=
Subject key identifier: 40:17:7A:CA:54:AC:07:18:04:D8:85:58:21:62:2C:50:10:38:5F:78
Authority key identifier: 9A:B2:F9:97:5A:91:E7:13:79:DA:10:0E:C8:4B:D4:4A:0A:28:0D:9B
Certificate issuer: /CN=9ab2f9975a91e71379da100ec84bd44a0a280d9b
Certificate serial: 01965E71AB3B9B327B4794B70A79F405D4B7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/mrL5l1qR5xN52hAOyEvUSgooDZs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5e/07a487-26cb-4b18-bb39-15fe06fff8bc/1/mrL5l1qR5xN52hAOyEvUSgooDZs.mft
Manifest number: 1247
Signing time: Tue 22 Apr 2025 17:00:29 +0000
Manifest this update: Tue 22 Apr 2025 17:00:29 +0000
Manifest next update: Wed 23 Apr 2025 17:00:29 +0000
Files and hashes: 1: PbBhRej558nP-vCP2i5bq2vF02I.roa (hash: k4y0Lkz3mWSRjZ9l7iXnliVmD502EHJIpmvxtHIQNOU=)
2: mrL5l1qR5xN52hAOyEvUSgooDZs.crl (hash: wVeqlMVM4++vATT3eNAgm3pVOiLFgUtomNAb0Cp2gqY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5e/07a487-26cb-4b18-bb39-15fe06fff8bc/1/mrL5l1qR5xN52hAOyEvUSgooDZs.crl
rsync://rpki.ripe.net/repository/DEFAULT/5e/07a487-26cb-4b18-bb39-15fe06fff8bc/1/mrL5l1qR5xN52hAOyEvUSgooDZs.mft
rsync://rpki.ripe.net/repository/DEFAULT/mrL5l1qR5xN52hAOyEvUSgooDZs.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 23 Apr 2025 17:00:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:5e:71:ab:3b:9b:32:7b:47:94:b7:0a:79:f4:05:d4:b7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9ab2f9975a91e71379da100ec84bd44a0a280d9b
Validity
Not Before: Apr 22 17:00:29 2025 GMT
Not After : Apr 23 17:00:29 2025 GMT
Subject: CN=40177aca54ac071804d8855821622c5010385f78
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:de:59:43:42:6e:52:bc:06:00:87:b4:64:3f:89:
cd:19:49:2f:47:b8:33:80:36:47:b8:ca:65:1f:20:
17:d6:32:45:2e:4b:a6:25:22:c8:14:bb:f6:0f:07:
06:b2:24:d9:5c:09:a5:38:5f:aa:4f:1b:a7:8d:ed:
64:e8:32:68:df:df:94:7a:87:66:52:15:b0:4e:0b:
2d:71:cb:d7:b7:24:9b:14:1c:fe:cc:3e:20:3d:20:
1b:12:e9:b4:8b:a7:03:c2:8e:3a:69:0b:f1:f9:57:
6d:5f:ad:d5:52:95:44:00:c3:9f:69:c2:7b:81:89:
18:e8:b4:9a:5b:3e:14:bf:47:36:1b:e1:fd:56:ec:
5d:1d:d5:ca:e3:6c:d3:14:ea:58:59:5f:cd:fa:f4:
15:e5:1f:49:bf:b3:68:58:fe:b8:30:1a:82:21:e7:
bd:f1:fa:74:00:90:da:fa:bb:e1:4d:11:bb:91:4e:
56:c9:17:14:29:7b:01:12:fa:67:b7:be:9e:94:cc:
5b:9e:ce:32:3d:3c:77:77:7c:34:65:a2:5c:96:4e:
10:a2:39:cc:1c:ac:b6:3a:e6:96:ca:a7:b1:4b:42:
c0:94:fa:3b:71:53:47:95:11:b4:d5:08:b6:82:b7:
2c:7f:bc:d0:89:90:c0:f4:5a:8d:c3:f6:de:5d:78:
fa:b5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
40:17:7A:CA:54:AC:07:18:04:D8:85:58:21:62:2C:50:10:38:5F:78
X509v3 Authority Key Identifier:
keyid:9A:B2:F9:97:5A:91:E7:13:79:DA:10:0E:C8:4B:D4:4A:0A:28:0D:9B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/mrL5l1qR5xN52hAOyEvUSgooDZs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5e/07a487-26cb-4b18-bb39-15fe06fff8bc/1/mrL5l1qR5xN52hAOyEvUSgooDZs.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5e/07a487-26cb-4b18-bb39-15fe06fff8bc/1/mrL5l1qR5xN52hAOyEvUSgooDZs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
9a:18:a6:50:9b:c6:e0:11:5d:49:60:46:26:cd:b5:c0:e9:1f:
77:1e:c3:60:b6:3c:57:73:5f:a3:6f:69:98:ed:e0:37:07:4e:
df:6b:7a:b4:e0:13:31:3d:39:07:d8:cc:d8:e9:c8:f6:5a:83:
45:d8:dd:75:0e:63:24:09:c6:9c:49:9e:25:81:fc:f5:ce:6c:
90:72:6e:d9:2b:08:92:8f:8d:7f:21:e0:6b:20:51:6b:31:8b:
36:dc:42:8f:23:c4:85:a5:4f:e3:41:c4:b3:a6:08:bb:c1:f7:
f1:4b:cc:6a:aa:75:1a:94:42:27:ec:a5:d1:10:16:54:4e:a7:
e3:23:28:92:15:8f:72:e2:35:90:d4:3a:74:64:65:6f:f9:1c:
90:3e:7d:9b:f4:08:ab:fe:00:58:40:37:3d:f9:19:82:cc:91:
df:80:01:71:e5:be:e5:cb:05:9b:a1:e1:80:fc:cd:96:0d:4d:
f7:d1:b0:d0:3d:18:08:15:8e:6d:31:b8:a3:31:2b:08:45:8e:
91:c2:c9:22:80:76:9e:15:dc:d5:3d:a9:58:b8:a5:b8:f3:dc:
bb:77:9d:94:64:f7:3b:ab:66:70:89:01:0c:b6:75:fc:c3:6e:
36:b0:c3:2d:4d:12:31:4b:99:63:75:d5:dd:44:5c:60:9d:01:
91:1b:0e:7a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 23 02:39:28 2025 by rpki-client