Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/36/0e5aa2-8409-47a0-b479-f48aa2e754e5/1/tRYDJr5-XNw1tcA2RBFjzSWkl00.mft
File: tRYDJr5-XNw1tcA2RBFjzSWkl00.mft (raw, json)
Hash identifier: PIBOwa8p9qk5XNwQEuB0KX7iHeuR3fPcLzbfpq5ak4Q=
Subject key identifier: 17:BC:72:E1:2A:E9:A6:B0:5C:9E:58:3C:37:A4:81:A4:D7:72:BF:1E
Authority key identifier: B5:16:03:26:BE:7E:5C:DC:35:B5:C0:36:44:11:63:CD:25:A4:97:4D
Certificate issuer: /CN=b5160326be7e5cdc35b5c036441163cd25a4974d
Certificate serial: 0196A01ADF9DEAF081EE33A0EFACCE6FA756
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tRYDJr5-XNw1tcA2RBFjzSWkl00.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/36/0e5aa2-8409-47a0-b479-f48aa2e754e5/1/tRYDJr5-XNw1tcA2RBFjzSWkl00.mft
Manifest number: 1525
Signing time: Mon 05 May 2025 11:00:37 +0000
Manifest this update: Mon 05 May 2025 11:00:37 +0000
Manifest next update: Tue 06 May 2025 11:00:37 +0000
Files and hashes: 1: 8ia-FfbPiHzFeisz5Ltz_iH4NuE.roa (hash: 2vUluYbn/ZjPa8MjPMnro3n0N0IitO4q9I7893CE2pw=)
2: tRYDJr5-XNw1tcA2RBFjzSWkl00.crl (hash: IOCxxcGtIsoCuFKsTGyvtW0uiWYb+lCuNqIbwTqWqXs=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/36/0e5aa2-8409-47a0-b479-f48aa2e754e5/1/tRYDJr5-XNw1tcA2RBFjzSWkl00.crl
rsync://rpki.ripe.net/repository/DEFAULT/36/0e5aa2-8409-47a0-b479-f48aa2e754e5/1/tRYDJr5-XNw1tcA2RBFjzSWkl00.mft
rsync://rpki.ripe.net/repository/DEFAULT/tRYDJr5-XNw1tcA2RBFjzSWkl00.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 06 May 2025 10:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:a0:1a:df:9d:ea:f0:81:ee:33:a0:ef:ac:ce:6f:a7:56
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b5160326be7e5cdc35b5c036441163cd25a4974d
Validity
Not Before: May 5 11:00:37 2025 GMT
Not After : May 6 11:00:37 2025 GMT
Subject: CN=17bc72e12ae9a6b05c9e583c37a481a4d772bf1e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:c8:09:e2:6d:4a:34:05:5d:e8:16:cf:33:32:
b5:34:50:28:e2:99:99:8e:cc:59:44:63:c7:69:14:
d3:6b:82:f0:69:ea:58:ec:c2:a1:de:26:a7:f5:ee:
73:39:87:c4:65:9a:01:c2:be:e4:06:e1:02:cc:50:
95:c8:0a:09:6e:9b:69:b9:de:f0:67:51:b3:09:b2:
ac:b3:78:e5:21:40:3b:a9:95:b8:d5:e9:9b:17:fe:
b8:50:ba:d2:97:d6:9b:04:49:d5:0d:7c:ae:7a:53:
5d:25:d5:a4:22:fc:7a:c2:77:98:37:b6:3a:6a:e9:
14:99:61:91:cf:41:60:40:37:8c:22:11:82:25:68:
f5:86:c8:bb:a3:52:8e:69:83:0b:83:ad:4a:04:92:
bb:b3:35:54:89:6a:16:2b:92:c1:21:a6:08:f1:ea:
e5:ec:2f:90:b1:8e:9b:7a:66:3a:3c:40:d6:67:0d:
10:ee:50:e8:ef:19:96:1e:da:66:34:12:cd:60:97:
7b:96:44:8c:75:8a:b1:38:7c:b0:f6:88:62:15:30:
9f:9c:f5:b3:82:72:a6:ed:ed:cd:87:c2:08:d2:42:
c9:cd:40:a5:c8:0a:e0:c1:27:c5:31:be:94:24:5e:
b7:bd:8e:f3:df:a4:22:72:1e:31:a7:f1:9d:5d:05:
7e:05
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
17:BC:72:E1:2A:E9:A6:B0:5C:9E:58:3C:37:A4:81:A4:D7:72:BF:1E
X509v3 Authority Key Identifier:
keyid:B5:16:03:26:BE:7E:5C:DC:35:B5:C0:36:44:11:63:CD:25:A4:97:4D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tRYDJr5-XNw1tcA2RBFjzSWkl00.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/36/0e5aa2-8409-47a0-b479-f48aa2e754e5/1/tRYDJr5-XNw1tcA2RBFjzSWkl00.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/36/0e5aa2-8409-47a0-b479-f48aa2e754e5/1/tRYDJr5-XNw1tcA2RBFjzSWkl00.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
78:aa:d4:45:4c:fc:84:5d:52:e2:a9:8f:b0:15:fc:bf:57:00:
c3:b2:ed:8d:02:6b:58:88:b4:47:a3:15:68:6b:9f:2d:0f:9b:
e2:d7:e6:b9:18:5d:a8:2b:07:06:5b:16:f8:06:c7:1f:21:f8:
13:95:88:4c:d1:f3:6d:d1:2c:65:9b:05:82:fc:f1:1a:fc:dd:
6e:af:69:68:be:bc:58:1e:5d:27:0a:f3:b8:31:b7:79:d2:e1:
f3:49:33:dd:8b:2d:57:bf:87:e2:c3:2a:1d:73:72:7c:2e:89:
3b:90:04:a6:2c:f0:bf:f5:3e:62:35:c4:8e:6c:f2:e1:55:b2:
0b:55:17:fc:12:74:0a:19:bf:63:52:55:a3:de:00:d8:20:1f:
81:3f:30:78:e9:f8:d6:a3:8f:1c:0a:da:a3:d8:aa:8f:70:15:
30:de:23:e6:a2:63:12:3e:3f:8e:a9:3f:d0:d1:ab:cb:12:e6:
9a:30:c6:65:2b:43:a4:33:14:aa:90:bb:db:a5:58:1c:4a:91:
e1:ba:b6:6c:9a:c1:1f:3b:36:91:8e:89:f7:62:c1:20:25:65:
f6:58:76:bb:2e:e7:4b:51:11:d7:17:9f:ad:03:ff:1d:7d:05:
9b:56:7d:4d:d1:c3:fe:71:91:e4:2d:b0:63:83:9d:22:b9:3a:
2f:76:c2:3f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon May 5 14:07:26 2025 by rpki-client