Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/14/ecb45e-2db6-4b54-bc91-0596296f12de/1/tF5iJw0g-UZ6avx4lj28-4D79So.mft
File: tF5iJw0g-UZ6avx4lj28-4D79So.mft (raw, json)
Hash identifier: C9vtW8siLKwa//9j9+yUrwcA0R84Hm6AXCyr5+b53uA=
Subject key identifier: 35:7A:F0:C2:40:5A:69:E1:29:93:1B:12:38:19:5E:1E:92:A1:8B:C2
Authority key identifier: B4:5E:62:27:0D:20:F9:46:7A:6A:FC:78:96:3D:BC:FB:80:FB:F5:2A
Certificate issuer: /CN=b45e62270d20f9467a6afc78963dbcfb80fbf52a
Certificate serial: 0196C539E00DDB8DA955204587D7E8C7DD53
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tF5iJw0g-UZ6avx4lj28-4D79So.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/14/ecb45e-2db6-4b54-bc91-0596296f12de/1/tF5iJw0g-UZ6avx4lj28-4D79So.mft
Manifest number: 0CB7
Signing time: Mon 12 May 2025 16:00:26 +0000
Manifest this update: Mon 12 May 2025 16:00:26 +0000
Manifest next update: Tue 13 May 2025 16:00:26 +0000
Files and hashes: 1: tF5iJw0g-UZ6avx4lj28-4D79So.crl (hash: i8As6bUCAuUIygkEJmgqv/+NVnFwxjxhvfKOuSKYiG4=)
2: uvCFX9itk7RPxPZl6lvvghFjg1E.roa (hash: P3N8o135VPbcqFaS3kCnXkMSVi3GCBY96T9QuQyMyig=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/14/ecb45e-2db6-4b54-bc91-0596296f12de/1/tF5iJw0g-UZ6avx4lj28-4D79So.crl
rsync://rpki.ripe.net/repository/DEFAULT/14/ecb45e-2db6-4b54-bc91-0596296f12de/1/tF5iJw0g-UZ6avx4lj28-4D79So.mft
rsync://rpki.ripe.net/repository/DEFAULT/tF5iJw0g-UZ6avx4lj28-4D79So.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 13 May 2025 14:31:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:c5:39:e0:0d:db:8d:a9:55:20:45:87:d7:e8:c7:dd:53
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b45e62270d20f9467a6afc78963dbcfb80fbf52a
Validity
Not Before: May 12 16:00:26 2025 GMT
Not After : May 13 16:00:26 2025 GMT
Subject: CN=357af0c2405a69e129931b1238195e1e92a18bc2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:ac:2b:29:0c:28:4c:fd:42:c1:0c:d1:9c:b6:
82:65:12:63:d7:b5:6d:92:ff:25:c0:90:52:5b:fa:
34:11:b8:18:fd:ab:10:cb:93:51:80:ff:f4:be:f9:
c8:ef:ab:82:df:80:15:36:23:0a:18:14:e5:5d:04:
1c:c8:fe:11:0c:7d:86:72:46:1f:fa:ea:bf:51:80:
dd:26:57:26:ad:90:8f:c2:9f:d2:af:04:fe:55:41:
eb:55:f0:02:5f:14:fb:3d:07:96:b2:04:9b:c5:c5:
06:eb:00:6d:c4:b0:1c:61:e7:47:ee:e8:e5:7d:e3:
46:75:b1:37:f4:50:4c:d8:c3:f3:c1:6f:23:cd:d9:
2d:f5:f1:d4:d3:72:4a:65:dc:03:8b:2e:f8:fa:ae:
d9:d6:b0:24:de:3d:01:40:40:b0:8a:ba:00:e7:58:
11:a8:eb:dd:52:20:ae:33:50:40:4d:ff:c5:ba:22:
66:1c:4c:e9:f1:ea:20:59:3d:53:18:f7:6c:64:a0:
8b:67:05:2e:0c:9c:d7:93:67:23:f6:1a:07:2e:f7:
a8:31:7f:da:a9:f4:c5:4b:91:3c:8a:9d:65:98:67:
99:aa:88:d2:71:d9:55:79:db:50:f0:6e:a8:3f:d8:
77:cd:9b:85:11:80:44:df:1e:5a:28:6c:b7:05:0b:
a9:87
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
35:7A:F0:C2:40:5A:69:E1:29:93:1B:12:38:19:5E:1E:92:A1:8B:C2
X509v3 Authority Key Identifier:
keyid:B4:5E:62:27:0D:20:F9:46:7A:6A:FC:78:96:3D:BC:FB:80:FB:F5:2A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tF5iJw0g-UZ6avx4lj28-4D79So.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/14/ecb45e-2db6-4b54-bc91-0596296f12de/1/tF5iJw0g-UZ6avx4lj28-4D79So.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/14/ecb45e-2db6-4b54-bc91-0596296f12de/1/tF5iJw0g-UZ6avx4lj28-4D79So.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
36:b7:b6:50:50:e9:22:c4:97:79:8b:c2:7b:fb:07:7a:24:70:
28:bf:80:89:66:5b:70:21:3a:ff:f0:bb:8f:ba:ac:3c:91:21:
88:83:05:7e:bb:d2:c4:62:90:be:35:40:3f:41:06:b2:88:ce:
e6:8f:0e:1f:bb:30:7a:d0:de:a0:40:58:55:f7:ed:9e:2d:76:
c3:3d:34:05:dd:36:b4:cb:db:74:72:19:26:5f:2b:68:bf:64:
80:ea:00:bc:b8:92:ce:f6:61:cd:d9:a7:8b:fe:bd:c0:df:ef:
9a:a8:31:87:c8:ca:52:53:ca:57:df:6c:be:ae:30:5e:a8:f5:
59:ec:e8:79:1b:b5:8c:0b:2b:95:a2:d1:3f:b3:06:00:3c:7e:
41:24:79:e7:6e:fc:c3:50:6b:12:0e:d3:c8:de:94:42:76:41:
9e:e1:ad:dc:96:a3:e7:e2:9e:36:48:1c:ed:1b:0c:7b:52:14:
03:6c:a7:be:c6:2f:9b:a4:ff:84:47:f8:08:74:02:be:e6:66:
b9:a7:92:ce:16:e7:42:9b:b1:22:45:50:1b:50:64:be:43:aa:
7b:cd:aa:1a:a6:27:57:00:56:32:ee:4e:7b:d8:ca:04:16:d5:
62:23:ed:36:71:63:f5:8f:b6:78:1f:f7:a5:ef:14:67:8e:b6:
28:b9:b5:58
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon May 12 17:27:06 2025 by rpki-client