Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5e/d77168-133f-4553-b19d-56c94f326dc2/1/_Q7wQPukW857BxY0lc316FB3kZ0.mft
File: _Q7wQPukW857BxY0lc316FB3kZ0.mft (raw, json)
Hash identifier: JiD+bjrYwdfVDQDr5C9TwrnSO3e1b6gz6T2YaXRIafw=
Subject key identifier: 56:39:C7:5A:7F:EB:06:EF:6D:44:AB:C7:06:9F:C6:47:F8:C4:D4:C3
Authority key identifier: FD:0E:F0:40:FB:A4:5B:CE:7B:07:16:34:95:CD:F5:E8:50:77:91:9D
Certificate issuer: /CN=fd0ef040fba45bce7b07163495cdf5e85077919d
Certificate serial: 0196C6BAB8BF9D9DE91CDB86B6DB68849FAD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/_Q7wQPukW857BxY0lc316FB3kZ0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5e/d77168-133f-4553-b19d-56c94f326dc2/1/_Q7wQPukW857BxY0lc316FB3kZ0.mft
Manifest number: 0BCF
Signing time: Mon 12 May 2025 23:00:47 +0000
Manifest this update: Mon 12 May 2025 23:00:47 +0000
Manifest next update: Tue 13 May 2025 23:00:47 +0000
Files and hashes: 1: BrNhX11GN3gzWV-434wlzWriATQ.roa (hash: e/gkiYTr4M+ZdV4GBEAw4FBFr5Cgb0NfH0gUAD5dMJY=)
2: _Q7wQPukW857BxY0lc316FB3kZ0.crl (hash: O83nucz+MtpeyKjcaa+MUlMwVNFSM0yUYlDl2eCRiJM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5e/d77168-133f-4553-b19d-56c94f326dc2/1/_Q7wQPukW857BxY0lc316FB3kZ0.crl
rsync://rpki.ripe.net/repository/DEFAULT/5e/d77168-133f-4553-b19d-56c94f326dc2/1/_Q7wQPukW857BxY0lc316FB3kZ0.mft
rsync://rpki.ripe.net/repository/DEFAULT/_Q7wQPukW857BxY0lc316FB3kZ0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 13 May 2025 20:47:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:c6:ba:b8:bf:9d:9d:e9:1c:db:86:b6:db:68:84:9f:ad
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=fd0ef040fba45bce7b07163495cdf5e85077919d
Validity
Not Before: May 12 23:00:47 2025 GMT
Not After : May 13 23:00:47 2025 GMT
Subject: CN=5639c75a7feb06ef6d44abc7069fc647f8c4d4c3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:1a:54:4b:08:81:21:15:84:1a:9d:1b:37:1e:
ca:54:7c:c9:57:19:80:fd:e0:da:05:33:89:40:5c:
eb:53:93:34:9d:b2:ae:65:fe:30:35:2c:78:cb:dc:
5d:55:58:ff:cf:7d:41:80:b9:0c:f5:47:0d:a3:9e:
2b:98:40:f0:b6:34:d3:29:da:1a:9d:0f:43:57:75:
b7:6c:48:02:9e:59:5a:e4:9a:06:3e:f7:f6:45:02:
c9:ab:d3:32:92:4f:42:ff:16:8c:6e:01:1a:9a:22:
9a:1e:86:74:0b:8e:47:36:b9:53:0c:1f:b9:56:ff:
58:ed:37:fc:c5:05:48:56:0b:d4:1b:6f:60:b0:76:
87:71:58:64:2b:91:d1:bb:61:29:10:06:b0:b6:7a:
19:22:ea:44:8b:f9:7c:29:48:b6:0f:f3:83:6f:da:
2d:fe:4b:6f:90:42:c3:42:7a:75:aa:07:16:ff:3f:
38:b4:44:08:31:a5:2a:e8:f1:13:85:77:c9:9e:e9:
ee:9f:72:3a:84:2e:ed:c0:68:0a:bd:0f:a5:44:b5:
3f:ed:c6:bc:92:ab:48:2d:50:8b:81:42:06:46:3b:
79:06:dc:37:e1:94:42:fb:50:89:30:a5:c9:cc:70:
39:d8:68:4a:de:84:a7:9d:3e:19:e0:0f:5d:ae:5d:
81:d7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
56:39:C7:5A:7F:EB:06:EF:6D:44:AB:C7:06:9F:C6:47:F8:C4:D4:C3
X509v3 Authority Key Identifier:
keyid:FD:0E:F0:40:FB:A4:5B:CE:7B:07:16:34:95:CD:F5:E8:50:77:91:9D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/_Q7wQPukW857BxY0lc316FB3kZ0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5e/d77168-133f-4553-b19d-56c94f326dc2/1/_Q7wQPukW857BxY0lc316FB3kZ0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5e/d77168-133f-4553-b19d-56c94f326dc2/1/_Q7wQPukW857BxY0lc316FB3kZ0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
4c:f7:3f:43:77:3a:d8:aa:d0:87:9e:1c:8c:98:72:c4:75:3c:
e8:cd:80:43:fb:45:37:ad:a0:e8:49:70:db:a6:ec:6b:cb:c0:
32:9b:b6:34:a6:ff:da:87:75:b7:1c:b9:21:f4:2e:a1:60:de:
71:5d:8d:a6:ea:56:95:02:5d:b3:e8:00:4a:61:ba:78:dd:f2:
26:af:96:a0:13:63:b5:70:5b:ec:2f:7b:4f:06:ff:31:a6:f2:
31:be:3f:ae:1c:f0:7e:7a:bb:b0:63:b4:58:2e:cb:d5:cf:db:
b6:cc:75:c7:d2:4d:a1:f1:4e:9d:3f:44:98:e6:5a:e2:4b:ce:
b0:e0:e2:22:50:17:14:a5:01:fe:18:b9:58:44:20:a7:01:9c:
a9:d9:2b:79:16:1d:fe:13:d1:ae:0e:2d:f1:51:33:99:6c:84:
76:29:74:57:7b:4c:7e:71:2a:06:25:81:7a:2a:73:32:96:5d:
48:b1:26:09:34:a7:a2:37:e2:cd:ae:56:54:a4:a4:36:19:5a:
5d:c1:4c:97:d0:e0:89:69:b5:43:5d:54:60:d1:24:38:a4:ad:
50:a2:87:d1:a8:83:22:09:11:ed:80:89:2d:a0:f3:9b:5e:85:
4a:a1:a5:f3:4b:5a:34:c9:fd:07:25:d0:38:16:1a:91:1e:90:
87:42:62:a7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue May 13 01:16:08 2025 by rpki-client