Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/82/e4d7c6-a299-4b88-8247-9c4032963e17/1/U_tSQvmM_53qm6qMiuRmpCtTfFw.mft
File: U_tSQvmM_53qm6qMiuRmpCtTfFw.mft (raw, json)
Hash identifier: VItRvKRCUNg+lCwOtc58LSJpHTiQbyrdScCebP2au9Q=
Subject key identifier: 5F:7C:6C:EE:6C:22:B0:59:15:80:C8:75:9E:F1:3A:3A:7A:FC:9D:73
Authority key identifier: 53:FB:52:42:F9:8C:FF:9D:EA:9B:AA:8C:8A:E4:66:A4:2B:53:7C:5C
Certificate issuer: /CN=53fb5242f98cff9dea9baa8c8ae466a42b537c5c
Certificate serial: 0196D2BF0D9873C5956CF97D87F03E6471AB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/U_tSQvmM_53qm6qMiuRmpCtTfFw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/82/e4d7c6-a299-4b88-8247-9c4032963e17/1/U_tSQvmM_53qm6qMiuRmpCtTfFw.mft
Manifest number: 1524
Signing time: Thu 15 May 2025 07:00:58 +0000
Manifest this update: Thu 15 May 2025 07:00:58 +0000
Manifest next update: Fri 16 May 2025 07:00:58 +0000
Files and hashes: 1: U_tSQvmM_53qm6qMiuRmpCtTfFw.crl (hash: S4gjlUAP389v73IArBHCBxEdk1tsClOPpjxdewkHCFY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/82/e4d7c6-a299-4b88-8247-9c4032963e17/1/U_tSQvmM_53qm6qMiuRmpCtTfFw.crl
rsync://rpki.ripe.net/repository/DEFAULT/82/e4d7c6-a299-4b88-8247-9c4032963e17/1/U_tSQvmM_53qm6qMiuRmpCtTfFw.mft
rsync://rpki.ripe.net/repository/DEFAULT/U_tSQvmM_53qm6qMiuRmpCtTfFw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 15 May 2025 23:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:d2:bf:0d:98:73:c5:95:6c:f9:7d:87:f0:3e:64:71:ab
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=53fb5242f98cff9dea9baa8c8ae466a42b537c5c
Validity
Not Before: May 15 07:00:58 2025 GMT
Not After : May 16 07:00:58 2025 GMT
Subject: CN=5f7c6cee6c22b0591580c8759ef13a3a7afc9d73
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ea:db:b5:4c:45:bb:2b:68:10:a8:ab:98:f4:7e:
89:ab:0f:45:f8:cf:0c:71:de:e0:f8:ee:10:84:24:
01:57:9b:9e:8c:2e:b8:60:df:4e:29:c6:09:b3:89:
6b:87:96:fc:f3:da:c2:26:99:d8:5c:37:87:ca:ce:
62:25:97:37:fa:24:0b:e6:36:bf:d4:05:f2:cc:78:
77:2b:fb:03:d1:ce:12:e7:25:36:e0:e6:45:25:99:
53:43:05:99:86:d0:6b:f4:73:d6:3f:89:6a:f9:03:
6d:37:d3:03:2d:16:a4:50:99:54:ba:69:44:55:00:
c4:9b:90:0c:e8:89:8b:58:61:bc:18:58:73:ef:f8:
56:eb:fa:93:dc:b7:bd:8b:43:75:93:66:fd:27:0d:
98:62:56:d1:04:a9:84:ee:b5:d3:61:8c:ce:ce:d9:
f2:6c:92:51:5a:47:7a:e7:85:28:a9:28:bf:12:3f:
62:cf:58:2a:54:0e:d5:4d:5e:17:f3:7d:7d:19:a7:
ad:52:9b:55:0a:fb:c2:3e:4e:27:99:d3:ce:49:c9:
e9:19:b5:7a:46:52:be:08:b8:80:dd:bd:44:f0:5d:
7f:d0:56:ff:37:e7:5a:e1:22:1f:c4:3f:dd:97:c1:
07:a7:bb:5f:98:bd:01:03:10:dc:7a:1c:51:cc:b4:
e6:fd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5F:7C:6C:EE:6C:22:B0:59:15:80:C8:75:9E:F1:3A:3A:7A:FC:9D:73
X509v3 Authority Key Identifier:
keyid:53:FB:52:42:F9:8C:FF:9D:EA:9B:AA:8C:8A:E4:66:A4:2B:53:7C:5C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/U_tSQvmM_53qm6qMiuRmpCtTfFw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/82/e4d7c6-a299-4b88-8247-9c4032963e17/1/U_tSQvmM_53qm6qMiuRmpCtTfFw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/82/e4d7c6-a299-4b88-8247-9c4032963e17/1/U_tSQvmM_53qm6qMiuRmpCtTfFw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
83:f6:3b:ba:48:36:aa:0a:50:77:f8:7f:d5:a2:70:96:97:c0:
d7:16:a0:8f:05:3c:2b:dc:b0:ff:9c:c8:55:47:d3:0b:32:98:
8e:95:88:52:2c:2b:58:bb:4f:68:fb:ec:ab:7d:0f:cc:bf:53:
cd:9e:c6:15:b9:5b:2f:99:2f:2e:3e:f0:2a:dc:ac:42:02:8e:
5c:11:b6:b0:67:b6:dd:50:eb:f3:72:17:7e:22:f0:b6:03:f6:
28:55:1b:6d:08:62:48:16:6a:b2:e3:c9:3e:79:3b:d3:53:72:
d9:10:77:53:82:bc:1c:b3:14:65:b5:60:3b:21:4e:1f:ac:10:
b1:c0:b9:f0:46:89:19:c7:fd:b5:fb:31:b9:bf:ba:7a:d1:a5:
f9:19:63:76:10:cd:b7:14:40:a6:bf:fc:ad:c3:3e:30:16:40:
00:2e:71:9f:9f:90:52:04:53:bd:27:b8:62:37:3d:58:33:73:
36:31:ef:46:02:e7:02:7a:2b:dc:3f:3b:ff:29:b8:00:38:17:
be:c8:a5:65:ae:e2:6b:95:30:75:17:62:b0:4f:a6:a6:9d:45:
02:7b:bf:68:c4:39:1d:4e:ee:76:65:84:c8:3b:c2:22:81:42:
88:65:ea:fc:95:7f:6f:6f:e6:cf:bb:52:82:8d:db:68:91:ac:
f9:0b:81:ff
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu May 15 08:48:21 2025 by rpki-client