Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1a/6ec943-70e2-4335-84fe-c79d4eeb5ad6/1/4kCgJeDmGkTZPkqAHjiIsm570kE.mft
File: 4kCgJeDmGkTZPkqAHjiIsm570kE.mft (raw, json)
Hash identifier: 27KVaEpz1bvAwTYT+DjYAtP/LLc8goO1n6/dgjcxayU=
Subject key identifier: 5D:DB:53:8A:8A:81:5A:B3:3A:44:F6:2E:4C:B0:F9:59:86:6F:E3:32
Authority key identifier: E2:40:A0:25:E0:E6:1A:44:D9:3E:4A:80:1E:38:88:B2:6E:7B:D2:41
Certificate issuer: /CN=e240a025e0e61a44d93e4a801e3888b26e7bd241
Certificate serial: 0196CE3CED3C7B161BB5E0410FD6C8E8DAAE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/4kCgJeDmGkTZPkqAHjiIsm570kE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1a/6ec943-70e2-4335-84fe-c79d4eeb5ad6/1/4kCgJeDmGkTZPkqAHjiIsm570kE.mft
Manifest number: 153F
Signing time: Wed 14 May 2025 10:00:21 +0000
Manifest this update: Wed 14 May 2025 10:00:21 +0000
Manifest next update: Thu 15 May 2025 10:00:21 +0000
Files and hashes: 1: 4kCgJeDmGkTZPkqAHjiIsm570kE.crl (hash: YQDDOTstKgqg1AxwmX/2MuwFsE6dJFEXKZSTiR7oweg=)
2: K7SH4zYCXr-cp1q6N2Mp-Gdj1PU.roa (hash: fOTEXpl4gYkXzMjvkhlooQdp3U8U0Z9lMps20TcryK0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/1a/6ec943-70e2-4335-84fe-c79d4eeb5ad6/1/4kCgJeDmGkTZPkqAHjiIsm570kE.crl
rsync://rpki.ripe.net/repository/DEFAULT/1a/6ec943-70e2-4335-84fe-c79d4eeb5ad6/1/4kCgJeDmGkTZPkqAHjiIsm570kE.mft
rsync://rpki.ripe.net/repository/DEFAULT/4kCgJeDmGkTZPkqAHjiIsm570kE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 15 May 2025 10:00:21 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:ce:3c:ed:3c:7b:16:1b:b5:e0:41:0f:d6:c8:e8:da:ae
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e240a025e0e61a44d93e4a801e3888b26e7bd241
Validity
Not Before: May 14 10:00:21 2025 GMT
Not After : May 15 10:00:21 2025 GMT
Subject: CN=5ddb538a8a815ab33a44f62e4cb0f959866fe332
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:79:de:42:2b:4d:84:e4:56:cc:d3:5b:6f:66:
7f:9c:b9:ae:5e:be:3e:13:06:ce:43:9f:a4:9d:fc:
0c:f3:ed:80:1c:bb:3c:c7:2d:00:75:a7:af:b1:fe:
1d:11:e4:01:10:bb:6c:96:95:d4:7e:8b:c2:87:7b:
48:58:4f:6c:34:c8:10:30:a3:80:54:97:88:a0:62:
ac:37:44:44:1a:80:c7:2d:d1:e6:d6:e9:2c:20:24:
d3:5e:05:16:b4:04:ef:ad:64:66:89:ec:b7:88:30:
fc:3c:bd:8c:bf:c2:e6:25:39:d5:2c:10:96:82:07:
47:b9:ab:d2:48:7b:58:2b:c6:d3:35:eb:b5:31:36:
52:52:bd:c4:21:4b:be:72:40:e6:44:88:60:82:d6:
db:7c:98:9e:6d:a9:59:dc:3b:99:3f:66:e9:ca:1f:
5f:cc:ee:d8:e8:fd:d1:b1:d1:aa:a6:4b:89:7e:32:
c5:0d:d8:12:1c:58:cc:a4:21:b6:8a:30:8b:5d:ca:
6c:ce:0e:31:1c:03:e4:8e:71:df:6e:ab:9f:72:9f:
2a:67:c8:99:75:66:92:44:c2:9d:93:6c:ea:7b:1f:
f8:b6:2b:6b:a6:b6:c4:1f:a2:93:a2:a7:48:c1:a0:
26:3f:a4:c5:d1:a3:ce:13:13:72:1e:ee:34:9c:34:
da:df
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5D:DB:53:8A:8A:81:5A:B3:3A:44:F6:2E:4C:B0:F9:59:86:6F:E3:32
X509v3 Authority Key Identifier:
keyid:E2:40:A0:25:E0:E6:1A:44:D9:3E:4A:80:1E:38:88:B2:6E:7B:D2:41
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/4kCgJeDmGkTZPkqAHjiIsm570kE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1a/6ec943-70e2-4335-84fe-c79d4eeb5ad6/1/4kCgJeDmGkTZPkqAHjiIsm570kE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1a/6ec943-70e2-4335-84fe-c79d4eeb5ad6/1/4kCgJeDmGkTZPkqAHjiIsm570kE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
9b:00:26:53:ea:09:2d:0d:7c:37:2c:42:3a:e3:cf:28:28:16:
50:6a:a2:61:65:22:5c:78:7e:e6:e2:96:91:87:d7:67:3c:d7:
b4:09:03:d7:c4:d6:35:c5:67:2f:9c:99:8f:78:07:ba:40:8a:
e7:27:d8:ec:9e:a3:75:c3:14:49:95:2a:45:55:0a:98:f1:df:
78:3d:35:c7:0d:60:c6:c8:c7:4b:18:a8:78:a6:89:93:03:a6:
43:80:e9:a2:38:ec:7c:f5:c6:13:32:e4:d2:66:3a:a0:35:62:
6a:c6:51:14:09:77:e6:2c:ff:90:70:ee:9e:38:93:13:d9:39:
20:7b:a7:e1:06:be:d5:d1:4d:fe:35:e9:f9:ca:d1:9e:85:fd:
a5:6e:52:f0:df:11:98:1e:79:ab:91:4a:a8:b5:f4:ee:f9:53:
c4:c8:54:bb:1f:1c:4d:83:a8:fe:1a:a9:7b:7e:5a:cc:47:b8:
c1:e3:bd:74:f9:79:28:1a:fc:37:2f:b0:f8:58:dc:7a:a1:60:
cb:7c:36:2b:ad:9f:cf:0f:75:93:32:3a:8b:3a:47:ad:ec:4a:
4f:90:a0:c2:24:f1:1a:79:6c:60:99:2d:53:3b:24:dc:dc:07:
30:57:fb:39:e3:7e:13:67:83:09:05:15:d4:c0:11:d7:0c:59:
fc:e3:45:89
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 14 15:50:49 2025 by rpki-client