Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/52/13d48a-d0ee-4d55-a33b-b0eb4c06a1e7/1/Ma-3caS5EQsRSqgHr7cIaxplN54.mft
File: Ma-3caS5EQsRSqgHr7cIaxplN54.mft (raw, json)
Hash identifier: vkPpL3UppaoT74YEyz7qdBYwMwHWKqxqI3KqneV6/a0=
Subject key identifier: 52:16:C0:F8:F0:15:D3:FA:B4:3C:4E:F2:80:C0:73:29:AB:AC:1A:DB
Authority key identifier: 31:AF:B7:71:A4:B9:11:0B:11:4A:A8:07:AF:B7:08:6B:1A:65:37:9E
Certificate issuer: /CN=31afb771a4b9110b114aa807afb7086b1a65379e
Certificate serial: 01969CAC32DAB48C949652AF716C1EA0884C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Ma-3caS5EQsRSqgHr7cIaxplN54.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/52/13d48a-d0ee-4d55-a33b-b0eb4c06a1e7/1/Ma-3caS5EQsRSqgHr7cIaxplN54.mft
Manifest number: 02DF
Signing time: Sun 04 May 2025 19:00:52 +0000
Manifest this update: Sun 04 May 2025 19:00:52 +0000
Manifest next update: Mon 05 May 2025 19:00:52 +0000
Files and hashes: 1: Ma-3caS5EQsRSqgHr7cIaxplN54.crl (hash: p8EcmxacLKAYo9IlaW5wpD5K7OpNTLwniy8GekFxcV8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/52/13d48a-d0ee-4d55-a33b-b0eb4c06a1e7/1/Ma-3caS5EQsRSqgHr7cIaxplN54.crl
rsync://rpki.ripe.net/repository/DEFAULT/52/13d48a-d0ee-4d55-a33b-b0eb4c06a1e7/1/Ma-3caS5EQsRSqgHr7cIaxplN54.mft
rsync://rpki.ripe.net/repository/DEFAULT/Ma-3caS5EQsRSqgHr7cIaxplN54.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 05 May 2025 19:00:52 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:9c:ac:32:da:b4:8c:94:96:52:af:71:6c:1e:a0:88:4c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=31afb771a4b9110b114aa807afb7086b1a65379e
Validity
Not Before: May 4 19:00:52 2025 GMT
Not After : May 5 19:00:52 2025 GMT
Subject: CN=5216c0f8f015d3fab43c4ef280c07329abac1adb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:e3:1c:16:cb:32:84:ee:1d:13:03:9e:e0:44:
74:50:a6:9e:ed:e5:ca:d9:49:4d:77:e7:ae:56:ea:
2b:72:c0:19:6b:77:a2:97:dc:8c:29:22:a2:85:4c:
ef:31:d3:d8:71:fe:7f:b0:de:fb:05:46:97:d3:fc:
2a:9b:5b:ea:74:06:a0:3c:8e:9f:7f:1c:a6:6e:b0:
c0:61:09:cd:51:86:fd:71:8a:5b:8d:c8:d6:23:4e:
75:df:5d:e7:7c:0a:b1:b3:bf:3d:60:0e:14:45:f7:
31:cf:cb:ec:98:e4:ab:d4:ac:be:38:b1:74:e7:07:
f2:68:8a:1b:c3:df:f7:7e:84:10:f7:5b:63:5e:d1:
ee:f1:d3:18:48:41:df:0a:7f:7f:b9:a7:9a:10:7b:
5c:26:91:59:69:89:4d:50:0f:63:ae:ff:9d:00:e0:
5e:e7:4d:80:f9:ac:af:0f:4a:2a:d4:28:e3:32:ba:
17:e8:89:34:2d:90:6d:9c:ba:d2:40:88:7f:22:d9:
c0:35:21:ae:c3:c6:53:6d:f2:92:53:b9:21:6c:14:
94:1f:e2:f5:6a:bf:6f:a5:33:ae:de:9f:d7:66:ae:
a4:ff:ae:67:df:77:94:07:58:eb:52:96:84:9b:37:
97:6c:6d:1a:c7:9b:37:e1:8e:8c:7b:31:e4:3b:27:
d6:93
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
52:16:C0:F8:F0:15:D3:FA:B4:3C:4E:F2:80:C0:73:29:AB:AC:1A:DB
X509v3 Authority Key Identifier:
keyid:31:AF:B7:71:A4:B9:11:0B:11:4A:A8:07:AF:B7:08:6B:1A:65:37:9E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Ma-3caS5EQsRSqgHr7cIaxplN54.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/52/13d48a-d0ee-4d55-a33b-b0eb4c06a1e7/1/Ma-3caS5EQsRSqgHr7cIaxplN54.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/52/13d48a-d0ee-4d55-a33b-b0eb4c06a1e7/1/Ma-3caS5EQsRSqgHr7cIaxplN54.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
69:a2:66:b2:09:b8:cd:03:a4:6d:07:e5:59:29:ef:fe:ad:40:
f7:52:13:96:10:7c:c9:10:f0:e9:fe:cd:80:e7:50:05:a1:ea:
e7:57:8f:f5:e3:04:96:92:12:d5:e7:e5:5d:e8:f8:1f:c2:b1:
aa:7e:fb:9f:93:00:5b:3e:e1:80:97:83:7e:69:50:ef:a1:93:
0a:29:01:84:5d:d8:0e:b3:a1:17:87:8b:de:45:e3:a4:b1:4e:
69:13:42:56:07:24:43:aa:f8:14:f3:d2:da:d4:8b:d7:11:34:
99:0c:68:5d:47:e5:56:d9:c9:f2:35:d1:1a:b5:3e:69:74:e5:
72:76:51:dc:48:b8:4a:d0:81:6c:63:6e:5f:8f:5b:17:30:2f:
a1:24:f4:9e:da:7c:26:5e:cc:aa:d2:94:be:71:46:bb:2b:5b:
2d:29:da:e8:90:ff:88:28:82:79:e3:d3:1c:15:05:c9:cd:a3:
af:93:ef:1d:64:ce:28:22:80:b1:84:7d:a4:0c:7a:dc:de:85:
81:9a:a8:25:43:0b:fb:96:46:20:06:c3:4d:3e:8d:47:0c:b9:
c2:dd:e0:71:14:86:98:85:cc:f9:79:0e:32:3a:df:f5:7c:5b:
85:f1:f5:12:e8:c9:b1:83:d1:f0:35:d0:1c:a8:31:c5:1e:1c:
67:70:1d:0f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon May 5 04:00:54 2025 by rpki-client