Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d8/d51211-d0bb-4a57-9390-ce2a496fee86/1/MHoDlQLUamuZCREM4qsTlod70I4.mft
File: MHoDlQLUamuZCREM4qsTlod70I4.mft (raw, json)
Hash identifier: 7W4iojR+8DwfffCs0xW98QlmQs8hmhOorhqbTxnv45k=
Subject key identifier: B7:3F:A4:55:8F:43:11:C9:22:E2:A2:7F:24:6B:18:49:BF:34:5D:C2
Authority key identifier: 30:7A:03:95:02:D4:6A:6B:99:09:11:0C:E2:AB:13:96:87:7B:D0:8E
Certificate issuer: /CN=307a039502d46a6b9909110ce2ab1396877bd08e
Certificate serial: 01964BFDE1C26998E4BD942476B1E773DA98
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/MHoDlQLUamuZCREM4qsTlod70I4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d8/d51211-d0bb-4a57-9390-ce2a496fee86/1/MHoDlQLUamuZCREM4qsTlod70I4.mft
Manifest number: 0958
Signing time: Sat 19 Apr 2025 03:00:51 +0000
Manifest this update: Sat 19 Apr 2025 03:00:51 +0000
Manifest next update: Sun 20 Apr 2025 03:00:51 +0000
Files and hashes: 1: Ly1MWymIvXOCybb36lr4yOkjsU8.roa (hash: VpBFbk8tqcALSJaD09pM7y3kJlzVLbs+HEbBlDB9T94=)
2: MHoDlQLUamuZCREM4qsTlod70I4.crl (hash: G+W0kaMUXLZ8exslusZizT1qQSCnyt7YT45BbF+a7LU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d8/d51211-d0bb-4a57-9390-ce2a496fee86/1/MHoDlQLUamuZCREM4qsTlod70I4.crl
rsync://rpki.ripe.net/repository/DEFAULT/d8/d51211-d0bb-4a57-9390-ce2a496fee86/1/MHoDlQLUamuZCREM4qsTlod70I4.mft
rsync://rpki.ripe.net/repository/DEFAULT/MHoDlQLUamuZCREM4qsTlod70I4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 19 Apr 2025 23:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:4b:fd:e1:c2:69:98:e4:bd:94:24:76:b1:e7:73:da:98
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=307a039502d46a6b9909110ce2ab1396877bd08e
Validity
Not Before: Apr 19 03:00:51 2025 GMT
Not After : Apr 20 03:00:51 2025 GMT
Subject: CN=b73fa4558f4311c922e2a27f246b1849bf345dc2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:18:92:90:f1:f2:30:06:e5:36:71:9e:c2:9f:
2a:b1:7a:56:51:6f:f5:71:93:1e:ae:c2:c9:29:db:
08:34:7b:8a:2a:18:fb:a5:ba:6f:fa:fc:24:0c:65:
d4:a2:66:d1:e9:d8:03:1d:6c:d8:71:07:a3:b6:15:
76:9c:88:ee:e7:96:9c:d0:65:77:31:5a:cb:3f:53:
ff:b9:3d:64:fe:a9:c1:7b:f9:54:e9:9b:91:d2:8d:
93:fe:e1:bd:f4:1b:45:b5:c6:a0:88:b9:ee:e2:dd:
4e:0d:86:a7:4b:c2:8a:6b:8d:2b:be:e5:55:29:25:
a7:72:d7:1c:89:69:a6:af:07:18:e8:97:00:25:ca:
9c:79:c3:6c:23:7d:51:16:97:f7:2c:e2:aa:c3:7e:
b6:c1:56:f9:20:75:a1:6a:ea:8a:34:1d:64:a6:62:
ae:b3:a7:26:e4:66:93:c1:ac:ad:85:c8:ec:ef:01:
e3:4a:6c:6d:67:95:7e:cd:d7:2c:f3:cc:40:13:98:
be:c6:52:63:41:b2:b8:8b:3f:51:b4:b5:d7:96:1b:
50:77:27:b9:55:66:32:76:bc:13:7d:1c:44:94:fe:
15:6b:99:3c:ff:fb:1a:4a:8f:eb:e9:53:06:d5:7e:
b8:44:10:24:f1:7a:44:65:ff:75:35:80:3e:3f:78:
95:8b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B7:3F:A4:55:8F:43:11:C9:22:E2:A2:7F:24:6B:18:49:BF:34:5D:C2
X509v3 Authority Key Identifier:
keyid:30:7A:03:95:02:D4:6A:6B:99:09:11:0C:E2:AB:13:96:87:7B:D0:8E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MHoDlQLUamuZCREM4qsTlod70I4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d8/d51211-d0bb-4a57-9390-ce2a496fee86/1/MHoDlQLUamuZCREM4qsTlod70I4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d8/d51211-d0bb-4a57-9390-ce2a496fee86/1/MHoDlQLUamuZCREM4qsTlod70I4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
34:f8:7b:bb:d7:23:cd:20:28:14:d7:3f:9b:c7:6d:02:92:5a:
3c:5f:b1:40:30:c6:e4:12:85:ef:a1:26:77:6d:30:24:88:7b:
20:22:e3:79:5d:a6:9f:3a:cc:8c:ca:19:4b:af:59:01:b9:9a:
d8:77:a1:7b:cf:0d:0e:70:0e:cd:b7:09:8b:95:56:d3:77:68:
f8:44:23:e3:12:f2:24:99:b2:ad:3b:80:3b:94:cd:99:f4:bb:
38:9b:02:33:56:5b:cf:72:33:21:7e:06:53:33:d1:48:23:aa:
d7:69:3e:59:db:10:32:db:e0:32:eb:0b:5a:a0:10:4c:e8:21:
d0:96:82:18:b6:96:d3:fa:2e:aa:5d:3b:61:b2:f3:9c:a2:6b:
62:e0:40:2c:51:df:71:e4:d5:e8:de:14:ef:c1:20:b5:8b:5b:
c2:f8:53:38:04:10:29:58:e2:b8:78:81:33:5f:1f:c4:22:a8:
ce:46:91:e5:3f:0c:80:1a:9c:57:fd:b2:25:16:7a:19:be:dc:
13:dd:cf:8c:0a:0d:b3:cb:5c:8b:03:b0:00:46:a6:9e:34:e0:
66:75:1b:cd:51:83:15:52:8e:95:f3:b1:75:ed:96:8d:80:b9:
a7:c5:89:d1:0a:c8:cb:2f:a1:b2:5d:02:5d:07:8d:98:d9:69:
30:d8:ca:46
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 19 07:10:21 2025 by rpki-client