Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b7/a7e9b9-6bac-4538-a9e6-fa8806a024c4/1/mkM22h63IW4g7ASn8DHrShtjG7M.mft
File: mkM22h63IW4g7ASn8DHrShtjG7M.mft (raw, json)
Hash identifier: FduxFGdlvIPQvNs4mH3Y9crHIGK8rs7knleODmxTswM=
Subject key identifier: 24:7B:E4:46:6F:4F:4A:1F:3F:15:63:09:F0:C3:3F:3A:47:93:58:8D
Authority key identifier: 9A:43:36:DA:1E:B7:21:6E:20:EC:04:A7:F0:31:EB:4A:1B:63:1B:B3
Certificate issuer: /CN=9a4336da1eb7216e20ec04a7f031eb4a1b631bb3
Certificate serial: 019649A184C9454D970B73BDDF97CD5D004C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/mkM22h63IW4g7ASn8DHrShtjG7M.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b7/a7e9b9-6bac-4538-a9e6-fa8806a024c4/1/mkM22h63IW4g7ASn8DHrShtjG7M.mft
Manifest number: 14F8
Signing time: Fri 18 Apr 2025 16:00:44 +0000
Manifest this update: Fri 18 Apr 2025 16:00:44 +0000
Manifest next update: Sat 19 Apr 2025 16:00:44 +0000
Files and hashes: 1: 91oUMgCP74fspZxBBljzGiQPBlI.roa (hash: Ys2eA6I4wLf+Ld2RnHYB/UxEHZh1MaBORWqhbF+NkdI=)
2: mkM22h63IW4g7ASn8DHrShtjG7M.crl (hash: 7F6U6mgxb8SIxvviItRHGEs109zc8jaInLliO1AUyS8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b7/a7e9b9-6bac-4538-a9e6-fa8806a024c4/1/mkM22h63IW4g7ASn8DHrShtjG7M.crl
rsync://rpki.ripe.net/repository/DEFAULT/b7/a7e9b9-6bac-4538-a9e6-fa8806a024c4/1/mkM22h63IW4g7ASn8DHrShtjG7M.mft
rsync://rpki.ripe.net/repository/DEFAULT/mkM22h63IW4g7ASn8DHrShtjG7M.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 19 Apr 2025 10:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:49:a1:84:c9:45:4d:97:0b:73:bd:df:97:cd:5d:00:4c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9a4336da1eb7216e20ec04a7f031eb4a1b631bb3
Validity
Not Before: Apr 18 16:00:44 2025 GMT
Not After : Apr 19 16:00:44 2025 GMT
Subject: CN=247be4466f4f4a1f3f156309f0c33f3a4793588d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:48:58:09:67:cc:f6:83:7c:80:23:e8:b9:5d:
42:21:7e:39:ea:55:dd:4d:66:8e:3e:60:58:59:15:
a0:1c:67:61:6b:50:13:52:df:0c:b8:07:87:38:a9:
84:db:69:26:50:1e:31:bc:07:0e:eb:f7:17:97:44:
2a:47:54:a9:eb:36:8b:21:77:21:0b:cf:80:aa:2c:
e0:28:6c:5f:83:7e:60:30:e3:5d:19:a3:49:eb:ba:
1c:b6:d4:e9:36:a7:fe:cc:bb:1f:be:94:3e:1c:d4:
d0:0e:09:76:18:16:42:05:59:2d:e0:4a:89:ff:f9:
29:32:7d:20:d5:3e:5c:98:33:0c:45:c6:f3:d0:10:
7e:49:f0:f0:f1:1f:6a:9b:55:45:2d:58:e2:29:0c:
4a:06:c2:ee:35:90:9b:52:73:cd:70:3e:43:9d:eb:
12:9a:6e:19:90:4b:ec:08:ed:4d:dc:a1:b3:e0:47:
a5:d9:d5:af:e3:a5:ac:77:6c:11:b3:c5:a2:2d:24:
45:65:4f:f2:4e:2c:9c:37:e5:bd:14:1b:f7:b6:3d:
c7:45:be:e3:7f:00:5c:6f:d3:fd:4e:9b:84:ff:25:
20:7f:eb:38:2a:90:18:fb:47:20:7c:02:11:80:a7:
b4:36:69:0d:75:94:7c:0e:35:bb:b2:c9:bc:5c:16:
66:ff
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
24:7B:E4:46:6F:4F:4A:1F:3F:15:63:09:F0:C3:3F:3A:47:93:58:8D
X509v3 Authority Key Identifier:
keyid:9A:43:36:DA:1E:B7:21:6E:20:EC:04:A7:F0:31:EB:4A:1B:63:1B:B3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/mkM22h63IW4g7ASn8DHrShtjG7M.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b7/a7e9b9-6bac-4538-a9e6-fa8806a024c4/1/mkM22h63IW4g7ASn8DHrShtjG7M.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b7/a7e9b9-6bac-4538-a9e6-fa8806a024c4/1/mkM22h63IW4g7ASn8DHrShtjG7M.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
2b:17:2a:4d:c1:01:a4:b2:3f:f3:f3:66:3b:04:48:f8:1b:a4:
df:03:63:34:33:f8:82:55:c0:88:05:ed:b0:3d:04:4f:66:fd:
30:1c:20:28:05:19:88:a7:07:37:fa:6d:81:a4:20:1b:25:8d:
d4:cb:37:71:84:e2:b0:99:30:c1:f7:4e:8d:34:f9:ab:78:c1:
cb:24:17:88:55:bd:a4:6c:8e:53:59:e7:f0:31:04:e4:46:b0:
b5:46:e3:cc:ef:dd:b1:96:66:29:47:76:04:0b:5a:d9:ee:cb:
20:b8:44:ac:88:ee:e8:42:e5:0b:40:24:6e:1f:31:1a:f8:99:
08:a9:4f:db:7c:98:80:f0:9c:82:e7:29:87:9a:ee:07:43:d8:
56:19:82:19:05:6a:f7:14:47:f6:3c:bc:c4:43:c7:6c:45:4a:
3e:da:f4:4e:10:32:8b:d3:89:0a:1f:01:54:15:9a:16:61:75:
c9:66:16:8e:5c:06:67:a8:c0:05:97:4f:af:74:0f:ac:74:6c:
c2:41:69:15:08:72:11:ba:3d:82:74:f0:54:1a:7a:26:79:3b:
2c:bf:c5:a7:bb:3b:46:5b:eb:96:b2:ad:50:43:3e:dc:ed:7b:
ce:47:80:1a:73:60:44:0b:05:7b:df:b1:bc:4e:f2:5d:15:5e:
74:d0:7a:fd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 18 19:06:45 2025 by rpki-client