Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/86/65cf0a-ade3-40b1-9987-8c34e4cf9026/1/h5WLpmHENczSXCBgRi72ANJxnuA.mft
File: h5WLpmHENczSXCBgRi72ANJxnuA.mft (raw, json)
Hash identifier: 6ZHDruTnfuPks34Ut2TtJwZKzJqFMsq8yoBeMJmtDeI=
Subject key identifier: 0C:24:11:0C:DF:7E:F3:DF:1F:20:2F:D3:09:A2:68:61:C1:C4:A6:B3
Authority key identifier: 87:95:8B:A6:61:C4:35:CC:D2:5C:20:60:46:2E:F6:00:D2:71:9E:E0
Certificate issuer: /CN=87958ba661c435ccd25c2060462ef600d2719ee0
Certificate serial: 0196BDEE281F53ED8C0E7DEC528B6BBD88DB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/h5WLpmHENczSXCBgRi72ANJxnuA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/86/65cf0a-ade3-40b1-9987-8c34e4cf9026/1/h5WLpmHENczSXCBgRi72ANJxnuA.mft
Manifest number: 1535
Signing time: Sun 11 May 2025 06:00:23 +0000
Manifest this update: Sun 11 May 2025 06:00:23 +0000
Manifest next update: Mon 12 May 2025 06:00:23 +0000
Files and hashes: 1: h5WLpmHENczSXCBgRi72ANJxnuA.crl (hash: QFLGO1td4KABXbdvP412n4qjL1yQyr+DacRc0A/WTbY=)
2: jQqQfOrb2tEbgL6-n1pYKtKDCGI.roa (hash: urbNu0k2kZWVDcdCEYQ210AYS3ke0pUxaEecPK2agnE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/86/65cf0a-ade3-40b1-9987-8c34e4cf9026/1/h5WLpmHENczSXCBgRi72ANJxnuA.crl
rsync://rpki.ripe.net/repository/DEFAULT/86/65cf0a-ade3-40b1-9987-8c34e4cf9026/1/h5WLpmHENczSXCBgRi72ANJxnuA.mft
rsync://rpki.ripe.net/repository/DEFAULT/h5WLpmHENczSXCBgRi72ANJxnuA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 12 May 2025 06:00:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:bd:ee:28:1f:53:ed:8c:0e:7d:ec:52:8b:6b:bd:88:db
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=87958ba661c435ccd25c2060462ef600d2719ee0
Validity
Not Before: May 11 06:00:23 2025 GMT
Not After : May 12 06:00:23 2025 GMT
Subject: CN=0c24110cdf7ef3df1f202fd309a26861c1c4a6b3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d3:28:ac:19:6f:c1:0f:1c:a8:57:1c:b2:40:ea:
ce:ff:c1:d3:e2:43:e9:d6:7c:86:9c:78:0f:ed:79:
48:f8:44:64:03:ce:3b:75:99:80:e0:ef:b3:ff:59:
f0:97:c0:3e:b3:83:f6:02:d0:45:c7:6b:84:9e:f3:
b7:1e:d1:6e:ab:6b:92:3c:b8:df:d6:54:6e:35:7c:
73:85:bf:37:98:af:38:21:e0:7f:b4:a9:be:d7:98:
91:5a:fc:c4:b8:ad:fe:58:fa:6a:91:22:fe:32:8a:
6d:8d:72:47:f5:d2:28:91:7e:92:58:a5:93:6c:7f:
55:a1:f6:8f:00:4f:cb:a9:fb:6d:59:d2:ff:60:32:
c8:07:54:02:1b:80:e5:da:1e:b9:de:83:72:b9:1f:
6d:12:e3:60:06:47:0c:33:43:33:9e:91:33:6a:7c:
92:29:4f:f6:6b:ca:7a:94:35:1e:37:bf:17:53:25:
a7:c1:ab:ad:0d:3c:a2:6e:90:2c:23:e5:a5:f7:7d:
e3:74:e6:86:f6:f1:99:5e:ad:ba:69:39:ba:46:fd:
96:67:84:c2:69:5a:ed:ce:ce:ea:6a:ba:ef:f8:98:
1c:eb:9d:d3:8a:df:68:f1:28:ff:67:9b:8b:16:b4:
c5:2d:1b:19:2b:07:c6:85:2c:90:ab:dd:6a:cf:ac:
34:d1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0C:24:11:0C:DF:7E:F3:DF:1F:20:2F:D3:09:A2:68:61:C1:C4:A6:B3
X509v3 Authority Key Identifier:
keyid:87:95:8B:A6:61:C4:35:CC:D2:5C:20:60:46:2E:F6:00:D2:71:9E:E0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/h5WLpmHENczSXCBgRi72ANJxnuA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/86/65cf0a-ade3-40b1-9987-8c34e4cf9026/1/h5WLpmHENczSXCBgRi72ANJxnuA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/86/65cf0a-ade3-40b1-9987-8c34e4cf9026/1/h5WLpmHENczSXCBgRi72ANJxnuA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
45:6b:7c:ec:6f:62:76:d1:2b:be:ed:62:76:bc:74:64:b4:b8:
c2:06:95:f7:45:65:4a:a1:12:71:2b:1e:a1:1f:42:c3:52:87:
46:05:80:65:11:af:28:3c:57:b5:42:5d:5e:1b:12:17:92:a6:
fa:c3:fc:a4:aa:c6:ce:ff:2b:9a:82:26:a0:16:02:39:ce:cd:
cb:5e:ef:aa:b8:4b:9a:64:da:a2:34:46:bf:38:13:07:bf:db:
39:15:d9:07:a0:92:ee:41:eb:2f:78:72:06:5e:81:8e:2b:5f:
8d:c7:95:9c:2e:f4:ee:5e:a4:e8:81:a0:a8:a8:d6:7a:56:fa:
40:24:cf:2b:b1:84:ab:bf:2e:8f:fd:cc:e9:5d:b3:fa:c9:89:
ad:9a:91:bb:c2:85:fc:a5:31:50:69:75:e3:ab:d6:6f:4f:9f:
5a:88:ce:12:9a:e3:28:aa:2e:73:0b:c3:c3:2f:f3:68:42:df:
b6:8d:5b:a9:02:f4:c6:7f:08:9e:e8:35:b7:0e:57:be:9d:b4:
91:c4:0b:89:3b:19:2e:83:ec:5e:4f:48:6b:3d:6b:1b:55:43:
3d:b4:b7:2d:5a:d1:5a:bb:f6:36:ee:01:fe:dc:df:b1:b0:a7:
3e:25:29:13:58:f9:3e:11:94:63:fe:ab:43:eb:3c:98:a8:c1:
a1:ff:10:35
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun May 11 13:52:15 2025 by rpki-client