Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/02/95bad9-20fe-4b8d-8f03-9c2999d09b8f/1/5Sy4XKeT-tVltGCOJtgqauJ9wjI.mft
File: 5Sy4XKeT-tVltGCOJtgqauJ9wjI.mft (raw, json)
Hash identifier: HlJiV3dbXPSMs1G05aFfVRtKkJwakK3EJMKCMxw4wew=
Subject key identifier: C8:D5:46:D4:F8:8E:B6:F9:CA:90:4F:0F:CA:9B:3E:2A:E9:FF:95:F7
Authority key identifier: E5:2C:B8:5C:A7:93:FA:D5:65:B4:60:8E:26:D8:2A:6A:E2:7D:C2:32
Certificate issuer: /CN=e52cb85ca793fad565b4608e26d82a6ae27dc232
Certificate serial: 0196BBC8D891CCF469E8C144628697DD0D26
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/5Sy4XKeT-tVltGCOJtgqauJ9wjI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/02/95bad9-20fe-4b8d-8f03-9c2999d09b8f/1/5Sy4XKeT-tVltGCOJtgqauJ9wjI.mft
Manifest number: 0BB8
Signing time: Sat 10 May 2025 20:00:24 +0000
Manifest this update: Sat 10 May 2025 20:00:24 +0000
Manifest next update: Sun 11 May 2025 20:00:24 +0000
Files and hashes: 1: 5Sy4XKeT-tVltGCOJtgqauJ9wjI.crl (hash: 9LSh1YPBSjlbvH4NiddmBRWRsNuHstP0TC2ubw1bikI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/02/95bad9-20fe-4b8d-8f03-9c2999d09b8f/1/5Sy4XKeT-tVltGCOJtgqauJ9wjI.crl
rsync://rpki.ripe.net/repository/DEFAULT/02/95bad9-20fe-4b8d-8f03-9c2999d09b8f/1/5Sy4XKeT-tVltGCOJtgqauJ9wjI.mft
rsync://rpki.ripe.net/repository/DEFAULT/5Sy4XKeT-tVltGCOJtgqauJ9wjI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 11 May 2025 20:00:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:bb:c8:d8:91:cc:f4:69:e8:c1:44:62:86:97:dd:0d:26
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e52cb85ca793fad565b4608e26d82a6ae27dc232
Validity
Not Before: May 10 20:00:24 2025 GMT
Not After : May 11 20:00:24 2025 GMT
Subject: CN=c8d546d4f88eb6f9ca904f0fca9b3e2ae9ff95f7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:39:33:1d:9c:5e:df:14:af:2e:86:50:d8:1e:
73:8f:53:c9:9c:b1:4d:6f:1e:df:de:eb:70:7e:df:
f2:dc:6d:11:3f:6a:91:90:78:34:dd:ca:02:60:c4:
7e:0c:be:9b:f7:4b:b5:a7:71:03:79:e2:1d:69:79:
e1:11:7e:92:bc:1e:0b:d7:8c:d8:27:9e:b9:84:d2:
a8:12:ef:6d:6c:56:ff:99:88:b8:c0:1b:62:8d:02:
fe:f4:c7:50:f5:45:00:94:61:bd:83:84:d6:1d:77:
15:5a:99:08:38:79:18:ab:f7:83:9e:eb:8e:32:f7:
67:14:3d:ba:a6:54:59:e6:df:13:3a:63:cd:92:af:
6d:bf:2f:5d:d3:f1:93:9b:b7:ab:b9:02:59:6d:3f:
2b:a8:e2:0c:40:09:66:a8:a2:13:ca:e7:81:5b:f9:
bd:94:19:29:10:da:c3:6a:a7:6a:9f:5a:aa:da:f3:
55:22:09:4a:38:9a:af:9d:cd:a9:4a:20:43:bf:db:
0e:91:29:aa:41:1c:8a:ef:ef:9f:0b:b9:a5:1a:28:
c6:9e:0a:19:1f:d8:e8:ed:87:23:83:21:52:70:1f:
ea:ef:97:5c:fb:f1:8f:47:91:33:79:20:36:f0:5d:
4a:6c:46:49:c2:16:54:0f:59:00:8e:36:12:4d:9d:
0d:f5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C8:D5:46:D4:F8:8E:B6:F9:CA:90:4F:0F:CA:9B:3E:2A:E9:FF:95:F7
X509v3 Authority Key Identifier:
keyid:E5:2C:B8:5C:A7:93:FA:D5:65:B4:60:8E:26:D8:2A:6A:E2:7D:C2:32
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/5Sy4XKeT-tVltGCOJtgqauJ9wjI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/02/95bad9-20fe-4b8d-8f03-9c2999d09b8f/1/5Sy4XKeT-tVltGCOJtgqauJ9wjI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/02/95bad9-20fe-4b8d-8f03-9c2999d09b8f/1/5Sy4XKeT-tVltGCOJtgqauJ9wjI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
8a:ae:0e:20:4e:73:01:2d:b9:ac:85:44:4c:30:2f:bf:81:92:
ac:ea:fa:02:2a:48:ba:44:42:c0:26:fe:2b:4d:31:71:e4:45:
89:b5:8f:40:1c:31:25:8b:3e:8b:ee:bd:bd:02:fe:c0:80:f8:
0a:16:b0:31:87:f7:96:f9:da:05:88:14:65:33:62:51:d9:ae:
3b:1c:51:30:84:39:00:0d:b4:62:49:b7:f3:7c:71:3b:83:ab:
e0:ea:1d:bb:00:8f:66:3c:d2:56:d9:17:38:2c:3a:b3:21:e5:
b6:37:d6:af:d8:17:f6:e9:69:ea:eb:d1:28:7d:84:c9:f2:15:
10:6c:1f:6f:d3:0c:39:74:94:9b:1c:ef:f5:4b:b0:0c:bd:43:
bb:05:b5:6b:11:29:51:43:cf:ae:43:fd:ef:86:d3:f6:6f:b5:
d6:da:43:5a:f9:53:29:0c:77:5d:dd:29:69:b5:d9:ab:4f:f2:
75:14:f3:21:03:34:5b:73:81:a6:48:09:fa:d5:2a:7a:8a:85:
30:bf:49:db:c4:d5:48:9b:ef:6d:76:fc:bf:86:99:e0:12:db:
78:de:cc:34:13:56:a3:78:48:3d:1e:84:a9:c5:3c:f0:33:5e:
b9:82:1b:2c:5a:11:11:45:32:ef:e2:34:96:13:a6:ec:e6:1f:
3c:d8:b3:63
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun May 11 01:02:20 2025 by rpki-client