Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/81/332c23-d793-4553-84ea-afa99b3fffe3/1/MQitUnxyDreXB7P7excsiLczsTM.mft
File: MQitUnxyDreXB7P7excsiLczsTM.mft (raw, json)
Hash identifier: YmAjbLxhoTYlGVRzE9yKDV9IsPC3Ajl7fxM3NV7/oQI=
Subject key identifier: D0:4D:71:3A:E6:A2:AF:F8:83:AC:69:87:65:E9:0E:E2:3E:3B:05:E1
Authority key identifier: 31:08:AD:52:7C:72:0E:B7:97:07:B3:FB:7B:17:2C:88:B7:33:B1:33
Certificate issuer: /CN=3108ad527c720eb79707b3fb7b172c88b733b133
Certificate serial: 01964FA39AF9CB5C1B646899D402413788B6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/MQitUnxyDreXB7P7excsiLczsTM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/81/332c23-d793-4553-84ea-afa99b3fffe3/1/MQitUnxyDreXB7P7excsiLczsTM.mft
Manifest number: 0D80
Signing time: Sat 19 Apr 2025 20:00:43 +0000
Manifest this update: Sat 19 Apr 2025 20:00:43 +0000
Manifest next update: Sun 20 Apr 2025 20:00:43 +0000
Files and hashes: 1: MQitUnxyDreXB7P7excsiLczsTM.crl (hash: wzF3Es9bXtrogO44w+P/ntJw7EXQkV/GQ1EtB24djK8=)
2: OGw2yB1lmfdeIQ__eoRb9wYC8RQ.roa (hash: JOUk6p+/wA2qQIBr9IDvKPlXjqY5EY6hF28kxv/1jpc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/81/332c23-d793-4553-84ea-afa99b3fffe3/1/MQitUnxyDreXB7P7excsiLczsTM.crl
rsync://rpki.ripe.net/repository/DEFAULT/81/332c23-d793-4553-84ea-afa99b3fffe3/1/MQitUnxyDreXB7P7excsiLczsTM.mft
rsync://rpki.ripe.net/repository/DEFAULT/MQitUnxyDreXB7P7excsiLczsTM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 20 Apr 2025 20:00:43 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:4f:a3:9a:f9:cb:5c:1b:64:68:99:d4:02:41:37:88:b6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3108ad527c720eb79707b3fb7b172c88b733b133
Validity
Not Before: Apr 19 20:00:43 2025 GMT
Not After : Apr 20 20:00:43 2025 GMT
Subject: CN=d04d713ae6a2aff883ac698765e90ee23e3b05e1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:3c:9a:c4:f0:8a:04:ee:00:42:a5:5c:e4:bc:
6b:f9:44:2f:c9:d2:26:58:d7:52:51:0a:d8:c1:c9:
44:c2:47:59:e0:c8:92:24:61:8a:ed:75:2b:5e:cb:
3f:8f:7a:37:5c:a7:dc:44:bb:e9:f8:df:b0:46:0d:
ea:ad:92:31:8f:e5:60:e1:1c:6f:ee:5d:2e:a2:8a:
68:40:99:2c:b3:bf:d1:d7:8d:d2:65:14:16:0c:94:
81:3d:9c:8a:fd:4c:0a:05:fd:45:23:90:18:d9:75:
62:ec:cb:16:4b:d4:d6:da:0b:ca:05:01:44:01:f3:
a0:59:6b:0c:fd:4d:6a:71:f1:8f:d4:7c:e5:b8:15:
25:45:a0:d2:39:ee:bf:77:5e:aa:73:b9:0d:e0:32:
a7:54:a4:4a:4c:45:3e:c3:8c:64:a9:44:b2:6a:1d:
cb:46:98:de:5f:6d:59:03:45:a5:af:0d:81:34:19:
c2:50:a4:af:bc:8f:8b:32:a7:ea:90:8b:27:22:b9:
62:2c:25:13:66:c6:d8:da:99:f3:42:bc:e8:3d:0a:
5b:9d:3f:1c:59:37:cc:3d:f2:d7:51:b8:58:35:81:
71:32:a3:02:1d:8f:fd:88:67:fa:30:cf:ea:2e:37:
6c:53:fc:36:f5:dc:9f:0b:a9:7a:47:ba:70:7d:3a:
5e:13
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D0:4D:71:3A:E6:A2:AF:F8:83:AC:69:87:65:E9:0E:E2:3E:3B:05:E1
X509v3 Authority Key Identifier:
keyid:31:08:AD:52:7C:72:0E:B7:97:07:B3:FB:7B:17:2C:88:B7:33:B1:33
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MQitUnxyDreXB7P7excsiLczsTM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/81/332c23-d793-4553-84ea-afa99b3fffe3/1/MQitUnxyDreXB7P7excsiLczsTM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/81/332c23-d793-4553-84ea-afa99b3fffe3/1/MQitUnxyDreXB7P7excsiLczsTM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
90:d6:20:2d:83:8f:a5:d2:18:f0:e2:a6:71:d7:4f:d7:02:17:
7b:0f:08:74:f2:f2:e3:91:02:d2:f2:da:2f:c2:cf:52:e1:94:
dd:5f:bf:e0:b7:68:89:10:db:6b:1d:9e:c9:10:ad:0b:f7:a3:
83:eb:65:4a:cd:87:df:8c:f5:47:75:50:2b:91:aa:dc:d3:b2:
a9:76:b0:77:cf:cd:f0:09:8c:7e:2c:c2:9e:72:52:fc:c7:c4:
9a:86:7d:0a:84:40:af:e6:57:ac:0d:fb:2e:67:d2:e4:ff:51:
cf:0a:13:c5:87:4d:d5:fa:4d:e3:27:6b:d2:1c:e9:49:5d:f0:
fa:16:d6:c5:c0:0e:29:29:12:74:cb:f3:38:d4:6f:4c:19:88:
60:ec:17:3e:89:86:b9:f1:59:3c:9b:ba:46:81:4f:42:3a:d0:
69:87:dc:8a:59:5e:fe:29:b8:f0:33:c3:f0:c2:e8:26:a7:c2:
3b:ef:37:d8:a9:0a:82:e8:32:ae:43:3f:c8:d9:39:be:09:c3:
18:6f:3e:b2:14:8c:70:63:ee:c2:29:5b:6d:f2:21:02:17:5f:
27:97:35:b8:fa:8b:6d:12:58:cf:10:2d:5b:af:e8:76:c5:60:
e9:51:52:48:ad:84:9f:ee:8e:38:98:4d:3d:df:8b:ec:2d:50:
1a:40:0a:c9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 20 03:20:28 2025 by rpki-client