Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e5/66f07d-adca-40b0-a0a0-e761819f475e/1/MpbYU2ObwBkplCk-veCYBdLWIqQ.mft
File: MpbYU2ObwBkplCk-veCYBdLWIqQ.mft (raw, json)
Hash identifier: WbZe2zaUqpOzYoJt6EUNcNySJyAdUgH3FD82C/zxMYU=
Subject key identifier: 99:12:A4:39:C0:67:3D:FE:2C:06:E5:98:74:9B:DC:A7:D9:AB:60:88
Authority key identifier: 32:96:D8:53:63:9B:C0:19:29:94:29:3E:BD:E0:98:05:D2:D6:22:A4
Certificate issuer: /CN=3296d853639bc0192994293ebde09805d2d622a4
Certificate serial: 019510C78C57DBD6EA1199A42CDF5F14A05C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/MpbYU2ObwBkplCk-veCYBdLWIqQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e5/66f07d-adca-40b0-a0a0-e761819f475e/1/MpbYU2ObwBkplCk-veCYBdLWIqQ.mft
Manifest number: 1456
Signing time: Sun 16 Feb 2025 22:01:07 +0000
Manifest this update: Sun 16 Feb 2025 22:01:07 +0000
Manifest next update: Mon 17 Feb 2025 22:01:07 +0000
Files and hashes: 1: MpbYU2ObwBkplCk-veCYBdLWIqQ.crl (hash: Spygluq94XGKVz6hW3o2po0vOMT3sHPC8KLwKQ00Atc=)
2: hTnUv0N90doM0ZMOLyyFEOW9iK0.roa (hash: YJzqmH02+AW23mfkqCHZcxj82Owa829HDO8rFi0lEGA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e5/66f07d-adca-40b0-a0a0-e761819f475e/1/MpbYU2ObwBkplCk-veCYBdLWIqQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/e5/66f07d-adca-40b0-a0a0-e761819f475e/1/MpbYU2ObwBkplCk-veCYBdLWIqQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/MpbYU2ObwBkplCk-veCYBdLWIqQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 17 Feb 2025 22:01:07 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:10:c7:8c:57:db:d6:ea:11:99:a4:2c:df:5f:14:a0:5c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3296d853639bc0192994293ebde09805d2d622a4
Validity
Not Before: Feb 16 22:01:07 2025 GMT
Not After : Feb 17 22:01:07 2025 GMT
Subject: CN=9912a439c0673dfe2c06e598749bdca7d9ab6088
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:94:1a:86:20:de:4f:ec:b6:aa:bd:ab:31:25:c8:
80:f5:ea:bc:d9:25:c0:1e:80:a0:1c:c6:05:2b:d2:
96:3f:36:f1:01:71:0f:a4:5a:6c:1c:c1:29:9a:fb:
69:02:23:1c:52:b8:6d:69:f2:9b:21:64:42:00:f0:
d4:03:0f:ca:88:20:49:4f:42:de:ca:3e:54:f3:52:
a6:1f:a0:cf:87:67:78:72:71:a3:fb:b3:d0:5a:43:
dc:01:22:c3:dd:1e:7f:b4:cb:80:6c:92:bb:24:53:
01:62:33:cd:fe:d9:d0:f0:a5:a0:41:ee:37:87:23:
36:77:bd:95:99:71:3e:0c:09:a4:13:20:c2:77:7f:
22:70:f7:86:f1:d0:13:7f:40:f2:33:60:aa:75:a3:
6b:bb:3c:fc:21:5c:d5:40:d0:26:ba:c2:b2:40:91:
b9:61:e9:0d:43:b2:e7:60:df:f8:77:c3:86:4e:22:
bf:51:1b:ae:94:a5:66:14:ce:3f:8d:e9:62:63:5f:
7b:86:cc:fd:ea:79:e4:7c:26:07:2d:9d:49:69:76:
68:da:c9:1e:f4:82:79:de:72:dc:36:ba:a5:9c:33:
22:38:0c:e5:47:8b:c1:4c:dd:a3:de:74:21:63:b3:
12:a9:56:fb:cc:9e:2b:37:cc:8e:d0:ce:31:a5:8a:
97:cd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
99:12:A4:39:C0:67:3D:FE:2C:06:E5:98:74:9B:DC:A7:D9:AB:60:88
X509v3 Authority Key Identifier:
keyid:32:96:D8:53:63:9B:C0:19:29:94:29:3E:BD:E0:98:05:D2:D6:22:A4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MpbYU2ObwBkplCk-veCYBdLWIqQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e5/66f07d-adca-40b0-a0a0-e761819f475e/1/MpbYU2ObwBkplCk-veCYBdLWIqQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e5/66f07d-adca-40b0-a0a0-e761819f475e/1/MpbYU2ObwBkplCk-veCYBdLWIqQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
72:42:de:46:ed:a8:ac:ef:46:b0:74:2c:c1:e7:b3:52:59:ac:
93:a5:8e:a0:f0:83:8f:32:33:90:1b:cd:37:78:10:af:5f:0b:
e8:87:3a:09:9d:8d:35:1a:f8:74:7a:89:e9:f0:b2:0d:7c:dd:
37:65:d6:46:27:d9:cd:41:a5:13:e7:31:ed:f7:26:c4:7f:11:
10:f7:32:2b:9b:55:a5:91:0c:19:8b:e5:30:b5:66:36:02:3c:
52:a5:b9:41:59:2b:79:e9:1d:95:95:68:16:3d:7f:17:d0:91:
30:fc:3f:8a:1c:35:f3:3a:05:3e:e4:64:e3:b3:bd:9c:30:21:
48:1c:6a:38:03:26:bc:53:82:bd:f2:0b:ba:2f:5e:4c:d2:bb:
a2:f3:89:50:fd:0e:51:b3:8a:25:23:e1:e0:ee:ee:91:51:86:
88:f0:b1:c0:cd:85:7d:1a:29:cb:50:f5:5b:d6:30:25:bb:b0:
ba:7e:df:5b:61:53:0f:20:61:9a:9d:b1:bc:ab:bd:ca:60:cc:
50:3a:3a:03:a7:0d:7e:03:86:9c:cd:8d:cb:47:94:35:31:af:
0a:c1:c3:55:e4:54:5c:8d:d1:55:db:ba:c8:2d:43:02:f8:c0:
8d:4a:75:ea:80:bb:fe:bf:e7:32:f4:62:eb:77:7b:42:82:5e:
91:ba:ea:e7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 08:13:34 2025 by rpki-client