Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5b/92332f-03e0-4116-b6f3-c82f424b6d0d/1/DNpch0NU2Dgm5DwlNbduINW2GwU.mft
File: DNpch0NU2Dgm5DwlNbduINW2GwU.mft (raw, json)
Hash identifier: 5ruijmgK/3/G7Arqc0pdzfB8vsOhokuonjjp+OXWnw0=
Subject key identifier: 16:52:B0:7C:10:8C:69:EC:F3:C9:4B:C0:FE:BA:A0:84:75:79:07:07
Authority key identifier: 0C:DA:5C:87:43:54:D8:38:26:E4:3C:25:35:B7:6E:20:D5:B6:1B:05
Certificate issuer: /CN=0cda5c874354d83826e43c2535b76e20d5b61b05
Certificate serial: 0196BD495368543A239DE0492A98CC795618
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DNpch0NU2Dgm5DwlNbduINW2GwU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5b/92332f-03e0-4116-b6f3-c82f424b6d0d/1/DNpch0NU2Dgm5DwlNbduINW2GwU.mft
Manifest number: 153F
Signing time: Sun 11 May 2025 03:00:21 +0000
Manifest this update: Sun 11 May 2025 03:00:21 +0000
Manifest next update: Mon 12 May 2025 03:00:21 +0000
Files and hashes: 1: 32CQUiCUfdquX7Jbo_dmPVa4RAU.roa (hash: FAfiLPwl0dHpiVR3Uys5QcBsWLGjmkF+BWAYhU6veIk=)
2: DNpch0NU2Dgm5DwlNbduINW2GwU.crl (hash: PyImiqd0DZgjiiJt6Vs229Z4i8I3T+gpCEtPmmCAQGE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5b/92332f-03e0-4116-b6f3-c82f424b6d0d/1/DNpch0NU2Dgm5DwlNbduINW2GwU.crl
rsync://rpki.ripe.net/repository/DEFAULT/5b/92332f-03e0-4116-b6f3-c82f424b6d0d/1/DNpch0NU2Dgm5DwlNbduINW2GwU.mft
rsync://rpki.ripe.net/repository/DEFAULT/DNpch0NU2Dgm5DwlNbduINW2GwU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 11 May 2025 22:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:bd:49:53:68:54:3a:23:9d:e0:49:2a:98:cc:79:56:18
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0cda5c874354d83826e43c2535b76e20d5b61b05
Validity
Not Before: May 11 03:00:21 2025 GMT
Not After : May 12 03:00:21 2025 GMT
Subject: CN=1652b07c108c69ecf3c94bc0febaa08475790707
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:7e:73:48:46:6a:84:7d:22:a5:71:3a:80:38:
58:fc:01:41:9d:ed:fc:01:c9:90:bb:d5:b7:e1:89:
15:95:c2:91:90:f8:39:e9:e3:46:4a:26:6a:30:f6:
ea:a2:05:c6:5b:ba:54:d9:16:c1:be:1d:d4:80:f7:
df:db:26:6c:cf:9e:ec:9a:0f:24:c1:fd:42:32:2a:
0a:28:3e:e0:c7:76:26:70:24:df:9c:e5:16:ae:32:
95:88:4f:d3:a1:a1:9e:2d:fa:2f:90:a6:02:39:1d:
13:0f:6f:18:5d:f5:df:fa:32:96:be:19:f8:be:7d:
1f:5e:b1:ee:fb:61:0c:28:cf:69:62:38:78:f8:6b:
f5:4a:6c:1c:23:57:eb:ea:29:ed:aa:78:23:43:7a:
ab:20:33:f6:4f:ca:df:e4:2e:a7:61:b9:60:31:ce:
1b:10:86:87:b6:87:bd:e8:ab:1c:8b:b7:82:a1:5a:
c0:dc:82:84:db:41:60:09:e9:ed:9a:64:09:b5:59:
6d:4a:54:e5:e2:a7:6b:1f:2a:3c:dd:8a:0b:b0:06:
7e:44:db:2b:9c:15:c4:a5:18:4b:47:c6:0e:c6:18:
20:4d:c3:16:1b:51:66:60:a0:da:90:83:3b:bb:21:
59:12:bb:a3:77:7e:a9:8b:a9:f3:5d:f4:1a:a6:16:
c4:05
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
16:52:B0:7C:10:8C:69:EC:F3:C9:4B:C0:FE:BA:A0:84:75:79:07:07
X509v3 Authority Key Identifier:
keyid:0C:DA:5C:87:43:54:D8:38:26:E4:3C:25:35:B7:6E:20:D5:B6:1B:05
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DNpch0NU2Dgm5DwlNbduINW2GwU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5b/92332f-03e0-4116-b6f3-c82f424b6d0d/1/DNpch0NU2Dgm5DwlNbduINW2GwU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5b/92332f-03e0-4116-b6f3-c82f424b6d0d/1/DNpch0NU2Dgm5DwlNbduINW2GwU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
9c:21:32:32:9f:0c:1a:6a:78:ae:18:ad:73:d5:36:4b:a0:0e:
8a:31:2c:05:96:7f:3a:af:5c:3b:1d:7b:f0:45:f4:c0:15:c8:
51:9d:65:26:ec:4b:4b:26:f4:b4:ed:11:29:b8:86:8d:5e:13:
ab:e0:d3:2f:12:6d:d8:72:2d:da:cb:4b:b4:29:91:d0:4e:f7:
dd:a4:8b:0c:1b:0c:43:1a:50:13:3c:75:ee:84:6b:38:d8:2b:
2d:84:2f:90:b7:f6:e9:01:b3:63:ba:5d:ba:52:60:91:25:55:
cc:1a:a6:d6:1a:13:ae:43:23:b7:0d:e1:24:f8:58:d6:1f:69:
c3:4c:43:65:70:a2:33:90:80:1d:30:4b:fd:3a:0c:ee:c2:dc:
d4:68:2e:58:51:74:e3:9a:13:81:26:29:20:f9:25:88:f2:61:
e9:81:02:94:bd:38:c7:80:76:c5:ad:db:eb:69:e7:83:33:bc:
02:96:60:26:fb:9f:fe:c4:94:d1:ec:c8:42:45:60:ae:50:1e:
21:bb:94:06:da:72:68:d2:e8:4a:34:3e:0b:9f:0f:dd:b6:2f:
2f:f1:74:34:c9:3c:87:3d:f0:eb:77:ab:e1:30:d6:84:90:ae:
c8:6b:96:68:51:51:3f:02:d5:79:f8:73:9c:ff:e3:c7:13:75:
59:99:27:f9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun May 11 06:16:11 2025 by rpki-client