Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/62/be439e-d3c8-48a1-a7b7-c296ec4b2170/1/r5aNFt0rQdNStf0zxJs-xP2tQlg.mft
File: r5aNFt0rQdNStf0zxJs-xP2tQlg.mft (raw, json)
Hash identifier: 2PvCGBrdY2OfERKfTbdlTrXCcrxu9/F+9QdMmtTr5hI=
Subject key identifier: 9D:61:B6:08:8D:1B:F1:FC:F5:43:A1:F4:43:7C:28:17:12:3B:34:C6
Authority key identifier: AF:96:8D:16:DD:2B:41:D3:52:B5:FD:33:C4:9B:3E:C4:FD:AD:42:58
Certificate issuer: /CN=af968d16dd2b41d352b5fd33c49b3ec4fdad4258
Certificate serial: 0196AB79FC9E357CF446AFD61A56AED7CA3F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/r5aNFt0rQdNStf0zxJs-xP2tQlg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/62/be439e-d3c8-48a1-a7b7-c296ec4b2170/1/r5aNFt0rQdNStf0zxJs-xP2tQlg.mft
Manifest number: 0E3B
Signing time: Wed 07 May 2025 16:00:20 +0000
Manifest this update: Wed 07 May 2025 16:00:20 +0000
Manifest next update: Thu 08 May 2025 16:00:20 +0000
Files and hashes: 1: r5aNFt0rQdNStf0zxJs-xP2tQlg.crl (hash: QVMQJSg1wUt9wlrzCEfSpXD9xdJ8YqeM427a2iLxkII=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/62/be439e-d3c8-48a1-a7b7-c296ec4b2170/1/r5aNFt0rQdNStf0zxJs-xP2tQlg.crl
rsync://rpki.ripe.net/repository/DEFAULT/62/be439e-d3c8-48a1-a7b7-c296ec4b2170/1/r5aNFt0rQdNStf0zxJs-xP2tQlg.mft
rsync://rpki.ripe.net/repository/DEFAULT/r5aNFt0rQdNStf0zxJs-xP2tQlg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 08 May 2025 13:31:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:ab:79:fc:9e:35:7c:f4:46:af:d6:1a:56:ae:d7:ca:3f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=af968d16dd2b41d352b5fd33c49b3ec4fdad4258
Validity
Not Before: May 7 16:00:20 2025 GMT
Not After : May 8 16:00:20 2025 GMT
Subject: CN=9d61b6088d1bf1fcf543a1f4437c2817123b34c6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:c9:86:5d:cb:88:fd:50:a1:6b:f0:7a:b4:d2:
4e:87:47:1d:62:0d:34:84:68:fa:2b:d9:30:29:1a:
47:17:8c:9e:61:52:fb:93:ef:56:a5:5c:59:88:b3:
ab:bb:01:97:8f:31:12:6b:b7:4e:3e:c6:8a:16:94:
ad:84:88:d8:09:d6:1b:e5:e8:fd:9e:5e:37:2e:5a:
18:41:5b:a1:ec:ae:b3:6c:90:75:0b:c1:0b:11:e2:
44:6d:e7:2b:9f:25:98:1f:79:16:90:32:f9:04:9a:
a2:bd:4f:47:63:95:ce:d6:f0:95:e1:cf:85:0d:39:
d4:e7:aa:90:e5:fc:2a:41:3f:3c:06:94:2b:f8:bc:
f8:60:3b:99:86:5d:c5:f1:62:a6:56:5d:df:b0:00:
71:24:78:d0:02:cd:0e:d9:5e:82:91:52:fa:8c:f7:
19:4b:21:c5:47:b7:28:39:0d:5e:09:97:c1:37:0b:
69:b7:a2:96:04:93:19:b3:5d:4f:8f:56:fe:ef:db:
a7:2f:20:2a:a2:9e:11:ba:60:21:52:0d:e0:61:b1:
f6:39:57:16:96:82:76:f0:03:19:37:6e:b6:ce:ff:
29:1c:24:f1:94:20:dc:c9:86:32:94:a5:ed:e6:f0:
e0:2e:3b:3b:99:84:72:f3:ec:22:6e:dd:bf:ab:ee:
fe:d3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9D:61:B6:08:8D:1B:F1:FC:F5:43:A1:F4:43:7C:28:17:12:3B:34:C6
X509v3 Authority Key Identifier:
keyid:AF:96:8D:16:DD:2B:41:D3:52:B5:FD:33:C4:9B:3E:C4:FD:AD:42:58
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/r5aNFt0rQdNStf0zxJs-xP2tQlg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/62/be439e-d3c8-48a1-a7b7-c296ec4b2170/1/r5aNFt0rQdNStf0zxJs-xP2tQlg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/62/be439e-d3c8-48a1-a7b7-c296ec4b2170/1/r5aNFt0rQdNStf0zxJs-xP2tQlg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
27:a8:67:fd:99:6d:1e:e5:45:cb:7f:d2:8f:9c:f2:68:58:da:
b6:9b:e7:ee:31:46:73:ca:8a:24:e9:c2:66:c1:74:6e:77:9d:
b0:99:35:7a:06:47:d9:8f:8e:d6:69:c7:91:90:62:ac:19:02:
57:eb:c1:9d:2c:79:b0:63:2e:6f:a4:99:de:f4:f0:10:ff:b5:
b1:b2:6f:c6:55:e9:05:6d:a6:45:bb:a1:09:14:c6:25:ae:8a:
fb:0d:f8:26:f7:b3:bf:df:d0:2a:6e:aa:c9:31:25:1c:41:8e:
e9:6b:2c:ef:96:4c:00:0d:cb:0e:71:37:80:ea:a4:67:b3:7d:
33:b4:d5:f6:9a:6e:88:48:35:b6:35:ef:6c:d3:cf:f3:64:38:
f1:7d:4b:03:71:cf:53:38:8e:b9:9c:1e:da:47:64:19:a7:5f:
11:cd:0a:8f:f0:9b:7b:8c:1a:e6:90:e8:de:58:c7:33:84:31:
1a:97:ee:91:03:45:ae:3b:85:b5:bb:b1:0f:7a:d0:66:9c:3d:
ab:4e:78:5a:70:7b:23:84:55:77:10:d7:d9:61:01:53:45:1b:
ec:41:1e:66:1b:83:64:0c:2b:23:7b:f4:5b:3f:e2:bf:39:e2:
10:32:4a:9e:97:eb:e1:6f:be:d3:01:60:f9:3c:a1:f3:24:fd:
02:c5:24:6f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 7 17:55:17 2025 by rpki-client