Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/21/87b768-1545-494a-84f9-1cf50a536026/1/p5Z9dsLUZyDUz6wEWfo8PSIAUEQ.mft
File: p5Z9dsLUZyDUz6wEWfo8PSIAUEQ.mft (raw, json)
Hash identifier: 9sbKjORgV2BnM+LEEFcNUk7pPek0R8/cUGYUd1Lufyc=
Subject key identifier: E6:1E:BE:80:60:B9:ED:BF:56:F3:E2:17:71:2B:7C:E9:C6:1C:26:A6
Authority key identifier: A7:96:7D:76:C2:D4:67:20:D4:CF:AC:04:59:FA:3C:3D:22:00:50:44
Certificate issuer: /CN=a7967d76c2d46720d4cfac0459fa3c3d22005044
Certificate serial: 0196C4277990ED0B8E3B1C3B87D4845EB202
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/p5Z9dsLUZyDUz6wEWfo8PSIAUEQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/21/87b768-1545-494a-84f9-1cf50a536026/1/p5Z9dsLUZyDUz6wEWfo8PSIAUEQ.mft
Manifest number: 123B
Signing time: Mon 12 May 2025 11:00:43 +0000
Manifest this update: Mon 12 May 2025 11:00:43 +0000
Manifest next update: Tue 13 May 2025 11:00:43 +0000
Files and hashes: 1: 6nka26L-7vbT-huqQ7zH80Ad2_Q.roa (hash: bi36P0sQvSkI3t0S3Th1jO23VxQKQmTqbcjBaO1g00A=)
2: p5Z9dsLUZyDUz6wEWfo8PSIAUEQ.crl (hash: 0RKLcJyI0XFRbtIty61N50iwrGN2cgVXVXXGL9Hh6Qo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/21/87b768-1545-494a-84f9-1cf50a536026/1/p5Z9dsLUZyDUz6wEWfo8PSIAUEQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/21/87b768-1545-494a-84f9-1cf50a536026/1/p5Z9dsLUZyDUz6wEWfo8PSIAUEQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/p5Z9dsLUZyDUz6wEWfo8PSIAUEQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 13 May 2025 11:00:43 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:c4:27:79:90:ed:0b:8e:3b:1c:3b:87:d4:84:5e:b2:02
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a7967d76c2d46720d4cfac0459fa3c3d22005044
Validity
Not Before: May 12 11:00:43 2025 GMT
Not After : May 13 11:00:43 2025 GMT
Subject: CN=e61ebe8060b9edbf56f3e217712b7ce9c61c26a6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:ff:35:78:ed:c1:d3:08:20:ed:6c:90:fc:62:
23:ff:e7:8c:39:d3:9d:f6:d8:49:7f:81:e4:0c:be:
27:c9:1a:af:b3:dc:84:2a:8c:c3:62:91:7e:c2:69:
9d:e8:d5:03:e2:f3:a6:4d:bc:03:53:b9:51:28:dd:
c8:b4:12:1b:bd:93:5a:d9:d3:1b:ba:8b:db:b1:8c:
c8:ee:5d:54:08:e1:8a:5c:e2:41:4d:30:3c:54:ce:
a1:c1:f9:5f:9e:a6:65:8e:cd:26:19:d8:c4:9c:77:
53:d8:27:75:ed:62:0e:17:a3:0f:4d:b0:6d:6f:b0:
e9:31:98:88:de:ed:df:18:a1:95:3e:73:88:6b:26:
12:e8:03:21:a4:4e:9d:06:3e:ad:f2:a8:94:3b:9d:
f4:33:9c:93:48:6e:5f:2c:be:c3:ff:9f:49:b8:84:
02:3d:87:88:89:da:cc:c6:c7:17:fc:6e:37:b5:88:
a2:28:a0:62:34:7c:da:a6:eb:e0:89:09:40:6e:2d:
11:5f:20:40:f3:f9:a8:88:45:27:89:8b:0d:f9:74:
cc:3e:3d:bc:57:1b:2d:7f:cb:8a:0c:cb:5a:d8:4a:
a5:6d:01:94:c7:dd:cb:d7:f8:79:cb:33:92:3c:44:
a3:ca:e4:4f:1c:57:1b:4b:d4:0e:9d:ca:1d:e2:31:
35:d9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E6:1E:BE:80:60:B9:ED:BF:56:F3:E2:17:71:2B:7C:E9:C6:1C:26:A6
X509v3 Authority Key Identifier:
keyid:A7:96:7D:76:C2:D4:67:20:D4:CF:AC:04:59:FA:3C:3D:22:00:50:44
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/p5Z9dsLUZyDUz6wEWfo8PSIAUEQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/21/87b768-1545-494a-84f9-1cf50a536026/1/p5Z9dsLUZyDUz6wEWfo8PSIAUEQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/21/87b768-1545-494a-84f9-1cf50a536026/1/p5Z9dsLUZyDUz6wEWfo8PSIAUEQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
a0:6c:71:f5:87:80:2c:0a:c5:5c:32:c5:e6:ea:d1:46:2f:07:
69:1b:e3:ad:a0:0e:e2:37:bf:44:04:78:e8:c1:f9:79:6e:fc:
e5:fb:9a:d8:41:79:06:c8:6d:5d:e0:a4:f8:96:8a:3a:d1:2a:
60:f9:40:df:2a:1b:78:8b:81:64:36:a0:74:27:1e:ce:11:34:
d1:fd:70:be:f4:65:f2:34:77:c4:6b:96:9e:84:ab:45:e0:01:
52:18:35:28:b6:d0:68:fa:21:6c:96:1e:fc:20:f5:a9:93:9b:
0a:25:ab:b5:c9:bf:f6:ab:a4:cc:8a:fc:bb:72:8d:28:91:a1:
c1:8b:7f:14:2c:77:70:1b:9d:e3:66:d9:6c:2e:a9:fb:7b:a0:
13:05:8c:49:5d:64:ef:b8:0c:5e:53:fc:e9:6a:b6:52:5a:11:
30:21:d1:06:08:58:61:63:42:ca:38:61:6a:2f:8e:0f:1a:8f:
2e:1e:20:8d:4d:81:18:fe:bc:1d:85:e1:78:54:01:3c:e5:f4:
77:eb:09:b1:7c:86:99:38:b8:59:9a:ff:db:8a:96:5b:6b:bb:
bb:94:8b:0b:bc:51:d7:d9:29:cc:e3:5b:2c:7f:af:f5:20:5e:
df:de:83:c4:2a:84:52:1b:fe:24:93:20:24:de:75:21:a0:5f:
2d:64:da:db
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon May 12 18:40:54 2025 by rpki-client