Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/30/5ca07a-b242-4144-a264-7d547ec84114/1/5rtLno321mTvy3e0EEFcg0phd4I.mft
File: 5rtLno321mTvy3e0EEFcg0phd4I.mft (raw, json)
Hash identifier: IlaQZqDb0EsPPzfH5bq7CekxYI/2W+DGklZtQzmi/ho=
Subject key identifier: 8A:E2:FF:03:FD:41:21:DF:C0:55:E0:EE:47:CD:D4:38:94:13:B2:AF
Authority key identifier: E6:BB:4B:9E:8D:F6:D6:64:EF:CB:77:B4:10:41:5C:83:4A:61:77:82
Certificate issuer: /CN=e6bb4b9e8df6d664efcb77b410415c834a617782
Certificate serial: 0196C4270B01888263DDA821954DA89BF0BD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/5rtLno321mTvy3e0EEFcg0phd4I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/30/5ca07a-b242-4144-a264-7d547ec84114/1/5rtLno321mTvy3e0EEFcg0phd4I.mft
Manifest number: 0322
Signing time: Mon 12 May 2025 11:00:15 +0000
Manifest this update: Mon 12 May 2025 11:00:15 +0000
Manifest next update: Tue 13 May 2025 11:00:15 +0000
Files and hashes: 1: 5rtLno321mTvy3e0EEFcg0phd4I.crl (hash: K25DAFYZyfI7xZs1FZB/y28HSBOVKs6pROCbyCwADzk=)
2: XkaKfqFoJaO-K5J7EjOD-dhdRPc.roa (hash: HO99X4r00WVlX046g40bOu9XiDJVwjKinGN75tp1pVA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/30/5ca07a-b242-4144-a264-7d547ec84114/1/5rtLno321mTvy3e0EEFcg0phd4I.crl
rsync://rpki.ripe.net/repository/DEFAULT/30/5ca07a-b242-4144-a264-7d547ec84114/1/5rtLno321mTvy3e0EEFcg0phd4I.mft
rsync://rpki.ripe.net/repository/DEFAULT/5rtLno321mTvy3e0EEFcg0phd4I.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 13 May 2025 10:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:c4:27:0b:01:88:82:63:dd:a8:21:95:4d:a8:9b:f0:bd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e6bb4b9e8df6d664efcb77b410415c834a617782
Validity
Not Before: May 12 11:00:15 2025 GMT
Not After : May 13 11:00:15 2025 GMT
Subject: CN=8ae2ff03fd4121dfc055e0ee47cdd4389413b2af
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:eb:b9:1c:f7:29:21:6a:26:a1:dc:74:89:f5:9b:
8d:c4:2c:bc:97:5c:44:86:15:1f:4b:b0:9a:53:2f:
19:35:4d:f9:56:c5:b1:48:6a:7b:16:68:73:30:a7:
db:32:05:ff:0a:c9:b2:a5:13:40:67:e9:6c:1b:db:
a3:6f:15:44:25:9b:b9:16:6f:e8:6f:54:9a:28:ba:
cf:c5:2f:15:72:0b:b8:40:15:dd:63:4d:6b:43:e6:
69:0e:06:c5:ab:0d:bb:c7:b7:e6:7a:f7:31:90:de:
41:63:fd:93:1c:4e:fd:51:4b:9b:05:38:60:a3:02:
a2:8a:ec:6a:a9:db:bc:2d:ca:88:e3:66:63:a5:8a:
50:82:bc:74:5a:21:93:b1:b8:e8:ef:75:8e:f4:44:
15:bd:e8:5a:6b:3c:ee:e5:15:18:49:0f:20:e8:85:
77:77:99:e9:23:fe:7d:64:8d:63:4a:86:26:0a:e6:
20:4a:53:43:89:b5:c3:c1:d1:b8:53:9d:cd:3d:b2:
21:e6:c1:25:0f:f4:66:ed:ce:9c:c4:27:74:9a:0e:
3c:64:5b:01:9c:5f:7e:1f:cb:1b:5c:7a:d5:88:0a:
b3:26:f8:2f:ba:4e:31:b7:82:df:92:37:e7:b2:09:
80:0e:70:94:0d:08:47:88:0a:d2:9b:38:01:24:ed:
43:55
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8A:E2:FF:03:FD:41:21:DF:C0:55:E0:EE:47:CD:D4:38:94:13:B2:AF
X509v3 Authority Key Identifier:
keyid:E6:BB:4B:9E:8D:F6:D6:64:EF:CB:77:B4:10:41:5C:83:4A:61:77:82
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/5rtLno321mTvy3e0EEFcg0phd4I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/30/5ca07a-b242-4144-a264-7d547ec84114/1/5rtLno321mTvy3e0EEFcg0phd4I.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/30/5ca07a-b242-4144-a264-7d547ec84114/1/5rtLno321mTvy3e0EEFcg0phd4I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
ad:51:5b:7d:c4:2a:85:46:57:80:0a:df:f0:ea:75:1a:4e:72:
72:3a:9e:a3:ac:ea:88:92:27:0f:a6:8f:2d:50:b0:7b:63:22:
3d:c1:e4:c5:48:d2:55:a4:11:0d:e1:b0:21:93:7c:a6:99:4e:
19:af:94:5d:9a:52:fc:f6:cd:98:55:eb:48:8c:e0:ae:00:5c:
4c:c6:d7:d5:d1:0b:52:f0:86:e3:4a:c6:07:2b:df:8e:69:9d:
c6:c5:74:ab:48:44:74:71:7e:89:08:25:75:bf:ac:08:22:da:
d8:c8:e0:0b:73:1b:39:c6:59:f6:80:e8:06:79:e9:95:c2:d8:
f3:07:97:fc:66:6f:11:b3:34:1e:5c:fd:85:53:ad:d6:35:82:
45:b4:8e:11:c3:db:28:14:ae:e2:fb:0f:be:4d:be:8d:d3:49:
6b:fd:6e:6e:1a:dc:32:05:29:71:f5:6f:a4:f4:5d:66:43:14:
fc:51:68:76:31:6a:ad:c2:c3:ac:4e:7b:15:bc:62:1e:62:fb:
ae:96:68:11:12:3f:d2:87:fd:3a:3c:c0:d7:9f:b2:c8:97:00:
91:65:3c:85:c5:7e:7a:a6:c4:c4:ae:91:02:3a:82:2b:dd:54:
0c:59:04:07:f2:0e:43:57:c3:54:1d:0a:f5:9f:21:ef:c3:71:
c0:d2:7e:5c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon May 12 13:46:51 2025 by rpki-client