Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/37/25238c-8eee-4403-9104-9ca947aa665a/1/70AaUuP95plIbplnjb9Ih1Mpwz0.mft
File: 70AaUuP95plIbplnjb9Ih1Mpwz0.mft (raw, json)
Hash identifier: 4TthrZeIT4gpCqWi8fDmTOEsDDimRLNk6+8pqXz+glE=
Subject key identifier: 5A:90:FF:F8:12:72:B1:0A:EC:10:A2:79:24:F1:11:7C:77:20:66:99
Authority key identifier: EF:40:1A:52:E3:FD:E6:99:48:6E:99:67:8D:BF:48:87:53:29:C3:3D
Certificate issuer: /CN=ef401a52e3fde699486e99678dbf48875329c33d
Certificate serial: 0196C34C3583C238BEF0B8AB7647AADC5772
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/70AaUuP95plIbplnjb9Ih1Mpwz0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/37/25238c-8eee-4403-9104-9ca947aa665a/1/70AaUuP95plIbplnjb9Ih1Mpwz0.mft
Manifest number: 0CA2
Signing time: Mon 12 May 2025 07:01:13 +0000
Manifest this update: Mon 12 May 2025 07:01:13 +0000
Manifest next update: Tue 13 May 2025 07:01:13 +0000
Files and hashes: 1: 70AaUuP95plIbplnjb9Ih1Mpwz0.crl (hash: jts/uK93RQti6XCl0OxVAl+2JMTF92onyEGtFWKU5ig=)
2: S4KhO_-8xzMvt1B6k_-GK_XNTGs.roa (hash: 298ot3rN9ux+k96S6A3kz+LkCwnTR/d/qtOX4jSeeqQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/37/25238c-8eee-4403-9104-9ca947aa665a/1/70AaUuP95plIbplnjb9Ih1Mpwz0.crl
rsync://rpki.ripe.net/repository/DEFAULT/37/25238c-8eee-4403-9104-9ca947aa665a/1/70AaUuP95plIbplnjb9Ih1Mpwz0.mft
rsync://rpki.ripe.net/repository/DEFAULT/70AaUuP95plIbplnjb9Ih1Mpwz0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 13 May 2025 07:01:13 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:c3:4c:35:83:c2:38:be:f0:b8:ab:76:47:aa:dc:57:72
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ef401a52e3fde699486e99678dbf48875329c33d
Validity
Not Before: May 12 07:01:13 2025 GMT
Not After : May 13 07:01:13 2025 GMT
Subject: CN=5a90fff81272b10aec10a27924f1117c77206699
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e7:d2:69:b4:2a:62:ef:e3:f4:a0:ee:16:77:25:
48:bc:9e:90:7d:89:92:05:6d:68:63:78:9e:ba:72:
86:e8:1d:50:e7:e2:27:94:3b:82:2a:e9:91:0e:1e:
70:f4:21:aa:ba:b7:63:60:4c:2f:e1:22:99:6d:bd:
3d:25:aa:0a:e8:e4:2e:37:ec:53:27:ec:69:e7:99:
15:cc:4e:0d:cb:34:f3:ff:ff:56:8e:57:4a:a0:8a:
32:a0:1b:ef:5c:3f:6a:87:a5:df:12:7d:8b:e2:d4:
14:88:d8:df:0a:58:f0:a9:73:dc:51:d7:da:41:12:
80:1f:1d:76:29:be:c3:40:5e:1c:e3:f3:2c:fd:ff:
1f:2e:38:cc:48:80:33:bf:b4:67:4b:fb:8b:66:dc:
a7:37:28:be:8c:f5:67:85:80:d5:b6:73:9d:21:d1:
df:52:ad:93:9c:53:7e:a6:0d:b9:0a:23:b2:03:4c:
41:ce:86:ac:ac:ae:19:65:ab:b4:20:26:ef:59:26:
3c:d1:3f:f6:ab:b8:c3:ca:44:48:f6:44:d9:48:e1:
5b:8d:4e:8e:a3:a1:3e:e6:fd:a9:bc:80:62:c6:6a:
f4:3d:c8:74:82:df:83:01:c2:d0:1f:72:d7:fe:04:
e1:ac:19:9a:b2:27:a8:71:b6:9e:6b:f1:63:60:54:
7a:f5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5A:90:FF:F8:12:72:B1:0A:EC:10:A2:79:24:F1:11:7C:77:20:66:99
X509v3 Authority Key Identifier:
keyid:EF:40:1A:52:E3:FD:E6:99:48:6E:99:67:8D:BF:48:87:53:29:C3:3D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/70AaUuP95plIbplnjb9Ih1Mpwz0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/37/25238c-8eee-4403-9104-9ca947aa665a/1/70AaUuP95plIbplnjb9Ih1Mpwz0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/37/25238c-8eee-4403-9104-9ca947aa665a/1/70AaUuP95plIbplnjb9Ih1Mpwz0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
49:15:3e:51:2e:e8:f0:8c:29:39:c0:59:b2:88:ab:e8:76:80:
0e:b7:ad:45:68:19:56:32:ef:c1:75:dd:98:f7:78:95:45:f8:
94:e9:a2:c6:66:f2:18:71:d4:9c:65:fa:25:96:eb:1d:eb:1b:
a2:af:c3:c9:11:b5:11:db:0c:d3:aa:8a:69:e6:13:a2:b6:6b:
8d:fd:cc:34:d9:67:af:54:83:6d:a6:49:45:96:43:1a:68:05:
ce:38:4f:9a:f6:bd:aa:19:7a:12:65:88:02:0d:74:45:99:8c:
b6:56:56:03:45:5a:f7:7c:95:ec:d1:ed:cb:74:2d:5e:6c:16:
1e:12:99:2f:cb:e2:d8:25:31:5e:35:97:b5:0e:a2:c7:c0:51:
b2:e2:d9:5c:07:f3:0a:c2:14:da:96:9a:84:5d:33:8d:c3:14:
a1:40:0e:6a:2d:27:a2:28:23:7e:75:12:d2:ea:b0:64:4b:6b:
0e:a9:c3:4b:e4:d4:c5:a3:dc:10:dd:73:05:0b:2f:5f:cf:b3:
01:3b:77:5d:13:55:02:6f:33:78:81:58:4a:d4:ac:87:3d:e4:
d1:fb:6d:6b:b7:f3:f6:2f:1f:a5:d7:92:ee:8a:6b:85:97:08:
d4:24:ab:83:da:11:58:a1:b2:39:81:6e:f8:dc:37:b2:b6:65:
77:ba:d0:4a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon May 12 12:01:34 2025 by rpki-client