Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/56/3bbe01-0a14-41bf-97da-2b2a8ba612fd/1/4z5OBZxk_xm-EKehUEV1YeRV0U8.mft
File: 4z5OBZxk_xm-EKehUEV1YeRV0U8.mft (raw, json)
Hash identifier: ez/eVSH5oxtCRYCmOHhL60skeA1jszmFT86KCwjSvSY=
Subject key identifier: BF:2A:A1:19:02:E0:2D:65:7D:1D:9F:E2:35:A5:42:AB:FE:BB:7E:95
Authority key identifier: E3:3E:4E:05:9C:64:FF:19:BE:10:A7:A1:50:45:75:61:E4:55:D1:4F
Certificate issuer: /CN=e33e4e059c64ff19be10a7a150457561e455d14f
Certificate serial: 0196CACE202A0E606E5F6726B11FA1D637A8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/4z5OBZxk_xm-EKehUEV1YeRV0U8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/56/3bbe01-0a14-41bf-97da-2b2a8ba612fd/1/4z5OBZxk_xm-EKehUEV1YeRV0U8.mft
Manifest number: 0643
Signing time: Tue 13 May 2025 18:00:27 +0000
Manifest this update: Tue 13 May 2025 18:00:27 +0000
Manifest next update: Wed 14 May 2025 18:00:27 +0000
Files and hashes: 1: 4Vx5uY-wUi0YX0Kfqz3unLfjiuA.roa (hash: CqAh2hOC6+tjEARJLtXVTVdqWTjo1Zk7c/vuGkdSa5s=)
2: 4z5OBZxk_xm-EKehUEV1YeRV0U8.crl (hash: bw/pxbfa9t1ThQ3VwVAaBr/KbTYXakX7+euhMuAEtWY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/56/3bbe01-0a14-41bf-97da-2b2a8ba612fd/1/4z5OBZxk_xm-EKehUEV1YeRV0U8.crl
rsync://rpki.ripe.net/repository/DEFAULT/56/3bbe01-0a14-41bf-97da-2b2a8ba612fd/1/4z5OBZxk_xm-EKehUEV1YeRV0U8.mft
rsync://rpki.ripe.net/repository/DEFAULT/4z5OBZxk_xm-EKehUEV1YeRV0U8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 14 May 2025 18:00:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:ca:ce:20:2a:0e:60:6e:5f:67:26:b1:1f:a1:d6:37:a8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e33e4e059c64ff19be10a7a150457561e455d14f
Validity
Not Before: May 13 18:00:27 2025 GMT
Not After : May 14 18:00:27 2025 GMT
Subject: CN=bf2aa11902e02d657d1d9fe235a542abfebb7e95
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:32:a8:50:b7:1f:a6:22:f6:94:6c:69:08:32:
7e:e4:87:58:02:d3:fc:5e:0a:2a:ed:dc:4a:6c:a2:
8f:14:0c:71:fa:da:7f:b7:64:a6:eb:90:54:13:6d:
72:0a:31:55:64:13:e7:c7:7e:4d:02:f4:1e:b4:b1:
79:8b:63:08:ce:8c:75:f2:8a:ce:6b:ff:79:52:60:
b6:a6:9d:0a:83:b8:e6:3f:23:db:63:2c:95:90:56:
df:5c:c9:b8:c8:0b:d6:fa:53:83:f1:fa:b2:2f:fc:
fe:06:b8:98:5c:c1:cf:bf:ee:b6:44:f7:c1:bd:d9:
da:5b:49:1d:2f:22:e0:b6:c3:c1:bf:f0:31:c5:bc:
d7:72:01:ad:32:91:53:c6:6d:57:74:be:5a:b7:3d:
90:26:66:94:49:07:20:c4:a0:25:7c:cb:29:62:86:
0f:38:3d:b9:8f:ea:36:51:9c:45:1b:b2:71:38:28:
ec:7b:80:2c:8e:31:97:1e:08:92:66:74:f3:f6:2f:
a7:0c:23:43:90:d1:e6:fd:5f:0b:1a:8c:da:16:b9:
3f:51:4c:6d:dc:47:bd:bd:13:cc:cb:17:1a:af:72:
5c:1f:dc:09:ca:89:49:5f:91:5b:73:48:e0:fb:89:
c4:e2:05:48:a8:ac:08:d6:3a:6d:8f:1f:b2:be:e6:
54:c7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BF:2A:A1:19:02:E0:2D:65:7D:1D:9F:E2:35:A5:42:AB:FE:BB:7E:95
X509v3 Authority Key Identifier:
keyid:E3:3E:4E:05:9C:64:FF:19:BE:10:A7:A1:50:45:75:61:E4:55:D1:4F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/4z5OBZxk_xm-EKehUEV1YeRV0U8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/56/3bbe01-0a14-41bf-97da-2b2a8ba612fd/1/4z5OBZxk_xm-EKehUEV1YeRV0U8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/56/3bbe01-0a14-41bf-97da-2b2a8ba612fd/1/4z5OBZxk_xm-EKehUEV1YeRV0U8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
43:75:28:1b:1b:ff:0f:7f:d0:da:b4:e7:ea:7a:c2:4e:fa:91:
fe:8c:b7:46:dd:34:88:63:e7:71:ee:93:82:e8:a4:64:ee:65:
2c:fb:62:b4:10:a2:9d:a1:45:84:19:83:0f:e1:38:6f:df:4d:
2c:02:12:9a:95:79:8c:f2:36:f8:04:da:bb:a3:f9:9e:7f:5d:
d7:e8:cc:f9:d1:5c:19:04:27:8c:32:7b:90:7b:c1:87:fc:d7:
53:10:a6:32:10:bf:1a:96:6c:77:14:26:37:94:12:94:9d:32:
a3:b0:78:6f:35:93:c7:d2:42:33:8f:0e:1a:d6:c1:51:cc:b8:
aa:5f:95:70:78:8c:0d:7f:67:66:ca:d7:2e:a4:d3:e1:16:e7:
96:c6:de:d2:fb:b0:2f:fd:76:13:43:ec:8a:db:2c:1e:70:b2:
26:a1:0f:89:c5:05:7d:d8:99:b8:75:3a:8e:0d:74:56:e6:4c:
49:25:03:d8:4d:18:42:6a:7f:c8:7e:0f:ce:5b:69:ee:5c:08:
6f:5f:39:3e:bc:88:c1:9a:f6:4e:16:c6:a8:45:df:3b:76:b4:
30:08:30:a3:49:d3:e2:4c:af:b3:8b:8b:70:da:ee:c4:9c:5f:
ba:4e:de:76:8e:72:60:6d:62:e6:b8:59:d5:bc:e8:46:a4:18:
e7:c5:b5:f2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 14 00:59:13 2025 by rpki-client