Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3a/f0af61-8ccc-4a3b-9010-6910f399d38f/1/tRhBzcn2NZTd3CulmkATMYK1efo.mft
File: tRhBzcn2NZTd3CulmkATMYK1efo.mft (raw, json)
Hash identifier: YTNgjP0Be8CzCPOBoGpKftKhg3h4i9/OrSEXbj6W6Gg=
Subject key identifier: 5E:EC:FA:DA:C9:02:56:4B:B6:DA:65:E6:74:62:A8:8E:EC:02:48:A4
Authority key identifier: B5:18:41:CD:C9:F6:35:94:DD:DC:2B:A5:9A:40:13:31:82:B5:79:FA
Certificate issuer: /CN=b51841cdc9f63594dddc2ba59a40133182b579fa
Certificate serial: 0196A0F6C3A3206286F794C7E47017A6242A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tRhBzcn2NZTd3CulmkATMYK1efo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3a/f0af61-8ccc-4a3b-9010-6910f399d38f/1/tRhBzcn2NZTd3CulmkATMYK1efo.mft
Manifest number: 1528
Signing time: Mon 05 May 2025 15:00:48 +0000
Manifest this update: Mon 05 May 2025 15:00:48 +0000
Manifest next update: Tue 06 May 2025 15:00:48 +0000
Files and hashes: 1: iQxCTqJc23IztH0qMtXGhii78xc.roa (hash: b/32KuHdgss/tEEpqliyL9nGxIGy3IsYTip4QREYlPc=)
2: tRhBzcn2NZTd3CulmkATMYK1efo.crl (hash: KMJDoUDY5gUWqkfPXbSdLc92Lpdsewl3kyp6gENE5ic=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3a/f0af61-8ccc-4a3b-9010-6910f399d38f/1/tRhBzcn2NZTd3CulmkATMYK1efo.crl
rsync://rpki.ripe.net/repository/DEFAULT/3a/f0af61-8ccc-4a3b-9010-6910f399d38f/1/tRhBzcn2NZTd3CulmkATMYK1efo.mft
rsync://rpki.ripe.net/repository/DEFAULT/tRhBzcn2NZTd3CulmkATMYK1efo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 06 May 2025 15:00:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:a0:f6:c3:a3:20:62:86:f7:94:c7:e4:70:17:a6:24:2a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b51841cdc9f63594dddc2ba59a40133182b579fa
Validity
Not Before: May 5 15:00:48 2025 GMT
Not After : May 6 15:00:48 2025 GMT
Subject: CN=5eecfadac902564bb6da65e67462a88eec0248a4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9d:f6:3a:c7:be:07:db:6b:a9:50:00:fd:49:3e:
0e:d8:76:18:95:49:b1:b3:8a:31:3c:4f:f4:09:25:
f6:be:f3:e1:e9:f7:64:56:3b:ac:72:1c:33:13:f8:
f2:20:d3:96:48:82:3f:f1:e3:9c:36:66:63:ee:28:
d1:46:45:20:1b:9d:f5:34:03:b5:9b:31:fa:71:66:
a0:0c:a8:41:2b:69:69:e4:0b:96:0a:ff:88:8b:27:
3c:b3:40:b2:86:bc:99:3e:b2:f0:6a:d9:bf:ec:86:
02:ca:8a:95:8a:13:3c:09:da:96:1c:6c:ff:ec:85:
12:c3:2e:5e:5f:ba:dc:ce:22:b3:29:66:3e:f0:28:
cc:cb:35:d8:b5:ff:bc:0c:9c:9f:22:70:8f:74:93:
16:c1:d3:1a:3e:4b:07:91:a1:97:9e:c2:aa:98:2c:
db:47:14:5e:c2:b2:d9:49:cd:4a:a6:f5:25:a3:02:
55:b4:34:c3:cc:c9:6d:10:37:66:dd:28:00:11:5d:
55:2e:5d:f3:13:1c:49:06:0c:95:eb:77:74:22:41:
ae:74:65:a3:2c:a4:e1:34:3c:7e:22:e7:c6:8a:f9:
0c:09:35:64:89:da:5b:5d:7a:be:11:d5:33:bb:80:
8e:2d:38:fa:5e:9b:7f:35:20:28:13:ae:0e:d4:a5:
f4:ab
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5E:EC:FA:DA:C9:02:56:4B:B6:DA:65:E6:74:62:A8:8E:EC:02:48:A4
X509v3 Authority Key Identifier:
keyid:B5:18:41:CD:C9:F6:35:94:DD:DC:2B:A5:9A:40:13:31:82:B5:79:FA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tRhBzcn2NZTd3CulmkATMYK1efo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3a/f0af61-8ccc-4a3b-9010-6910f399d38f/1/tRhBzcn2NZTd3CulmkATMYK1efo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3a/f0af61-8ccc-4a3b-9010-6910f399d38f/1/tRhBzcn2NZTd3CulmkATMYK1efo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
55:ef:5a:d5:43:2a:32:44:7a:ee:41:57:0c:6e:c4:ba:18:66:
d4:ae:90:e3:57:aa:d2:d7:39:e5:d1:82:e3:8f:75:35:6f:27:
10:3b:a2:9c:ce:f8:35:a6:26:92:19:cd:0c:b1:b7:15:03:ea:
b4:7b:41:f6:0b:0d:a5:20:e7:e4:37:d9:fb:e7:63:6e:db:e1:
a5:4f:5c:fc:8c:cd:0e:ba:c1:3a:43:f5:49:48:3e:ff:63:8f:
d9:82:6d:fc:bf:70:45:e8:5c:14:02:00:f3:ff:ce:fa:7b:ca:
e7:0a:95:2f:03:11:53:ff:87:1d:2d:11:6b:f4:05:fa:98:78:
60:3d:d6:dc:2b:21:e7:39:61:32:62:00:0a:79:85:e1:0e:1f:
1d:56:3e:b5:4f:56:d7:b3:77:ff:d6:74:45:40:c7:b0:90:19:
ac:4a:d5:1b:c2:dc:9e:09:b1:56:3c:5e:65:d2:bb:05:69:08:
2d:53:78:8c:ae:3f:d8:11:91:17:80:77:4d:3e:b9:ed:31:7e:
7b:a4:65:aa:50:17:7d:f4:1e:34:8a:8b:18:cf:78:3f:53:a0:
4e:86:c1:c5:e7:70:2d:3c:17:fe:80:c3:67:c2:56:66:3e:07:
91:ad:e6:25:f5:10:0b:35:20:79:4e:93:9a:f2:0e:31:cf:5b:
71:54:76:af
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon May 5 21:51:47 2025 by rpki-client