Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a3/565ea1-2a36-4403-941e-f0d40f029673/1/59aKnrhqgmTp3cMSKEm4DMNC9dw.mft
File: 59aKnrhqgmTp3cMSKEm4DMNC9dw.mft (raw, json)
Hash identifier: C4YVyLLHBl6vyEr2BiJHNyV6anOQ8b4wSoY5P/xgunI=
Subject key identifier: E6:5A:FE:C1:95:13:73:41:61:76:EE:05:78:9D:FA:2B:DD:4F:32:86
Authority key identifier: E7:D6:8A:9E:B8:6A:82:64:E9:DD:C3:12:28:49:B8:0C:C3:42:F5:DC
Certificate issuer: /CN=e7d68a9eb86a8264e9ddc3122849b80cc342f5dc
Certificate serial: 0196C45DF01F42BACAEE7A75E1CFE00C980A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/59aKnrhqgmTp3cMSKEm4DMNC9dw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a3/565ea1-2a36-4403-941e-f0d40f029673/1/59aKnrhqgmTp3cMSKEm4DMNC9dw.mft
Manifest number: 1251
Signing time: Mon 12 May 2025 12:00:12 +0000
Manifest this update: Mon 12 May 2025 12:00:12 +0000
Manifest next update: Tue 13 May 2025 12:00:12 +0000
Files and hashes: 1: 59aKnrhqgmTp3cMSKEm4DMNC9dw.crl (hash: f/RLJDOvnWSAoOz/UyPC2qoiUNwD/jhgFqav2y2gxgE=)
2: qetS73-OE2CSttiMvug0TDfkr54.roa (hash: f7CQ5AXCS66V7YOxpVoih8o6XmqrwIeswAWr26eRNls=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a3/565ea1-2a36-4403-941e-f0d40f029673/1/59aKnrhqgmTp3cMSKEm4DMNC9dw.crl
rsync://rpki.ripe.net/repository/DEFAULT/a3/565ea1-2a36-4403-941e-f0d40f029673/1/59aKnrhqgmTp3cMSKEm4DMNC9dw.mft
rsync://rpki.ripe.net/repository/DEFAULT/59aKnrhqgmTp3cMSKEm4DMNC9dw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 13 May 2025 12:00:12 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:c4:5d:f0:1f:42:ba:ca:ee:7a:75:e1:cf:e0:0c:98:0a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e7d68a9eb86a8264e9ddc3122849b80cc342f5dc
Validity
Not Before: May 12 12:00:12 2025 GMT
Not After : May 13 12:00:12 2025 GMT
Subject: CN=e65afec1951373416176ee05789dfa2bdd4f3286
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:97:7e:0b:b4:e9:70:9b:31:73:c5:92:5e:19:dd:
eb:9d:48:c3:80:c5:e3:e5:8a:a7:f8:03:9a:cc:6f:
6e:c2:8e:d3:88:db:ca:09:2e:05:e3:ac:c9:fb:3e:
f0:f6:32:8e:ea:28:14:4b:6e:5e:e3:cb:19:4b:99:
e8:b6:fe:29:f8:da:be:a3:39:05:d9:f4:0b:0b:b6:
bf:00:7e:02:1f:6e:6d:d7:e7:a1:0c:57:bc:69:6d:
d4:ca:2e:a8:61:9a:b6:cd:ba:4d:58:73:a5:b9:16:
4a:51:09:60:c0:de:37:e6:1b:83:c6:b6:a1:86:23:
05:97:46:56:36:af:a6:04:0a:d3:59:d7:58:0c:59:
1a:c1:5f:be:d7:b8:dd:e6:2c:1f:1f:e1:d3:60:59:
10:c8:ea:08:d6:aa:fb:7f:64:0e:56:12:57:77:49:
60:6b:40:c0:8b:20:0e:e6:7c:cf:cf:88:9f:b9:78:
e2:12:ba:d2:2e:91:97:38:ef:11:43:5c:29:a8:de:
52:0f:e2:38:15:c4:41:59:c0:4f:d2:50:1d:d5:77:
c3:cc:7c:ca:b4:52:b1:f0:db:0e:1c:89:8f:e0:d6:
f2:83:40:86:12:09:79:93:33:eb:01:97:b2:f0:31:
e6:92:b8:05:9f:2c:0f:ac:9c:02:d4:fa:5a:7d:b1:
b0:b5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E6:5A:FE:C1:95:13:73:41:61:76:EE:05:78:9D:FA:2B:DD:4F:32:86
X509v3 Authority Key Identifier:
keyid:E7:D6:8A:9E:B8:6A:82:64:E9:DD:C3:12:28:49:B8:0C:C3:42:F5:DC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/59aKnrhqgmTp3cMSKEm4DMNC9dw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a3/565ea1-2a36-4403-941e-f0d40f029673/1/59aKnrhqgmTp3cMSKEm4DMNC9dw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a3/565ea1-2a36-4403-941e-f0d40f029673/1/59aKnrhqgmTp3cMSKEm4DMNC9dw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
27:3b:37:d7:07:a1:6d:6d:17:52:41:a5:29:98:bd:3f:2a:ae:
27:c5:f3:4e:4f:32:37:e3:ff:7f:0f:8c:a2:bb:00:b6:77:f1:
5e:15:c2:06:c5:8f:a3:b6:28:7d:56:e7:d8:02:ef:ea:83:16:
ba:2b:bd:0a:8b:a6:14:c3:c7:25:b0:18:08:ec:55:b6:b6:e1:
74:f7:03:d6:7e:4d:bb:35:bb:b7:60:28:80:94:d4:29:b5:0e:
67:5a:a8:8f:d1:6a:60:cc:53:2f:c7:46:05:17:53:89:8f:c8:
bd:c6:bc:2d:99:5e:7d:f3:e3:06:22:3b:a3:04:de:40:f4:8b:
e5:a9:5b:fe:4f:67:10:26:b0:8f:b6:c5:a8:b6:48:1e:79:78:
d5:2d:bb:d1:19:54:c0:bb:17:34:92:79:cb:b8:75:ca:d0:ea:
bf:e9:15:c1:5f:29:c2:ac:9a:54:2d:96:78:33:ce:d2:94:90:
0c:de:7b:ab:23:1d:61:75:2b:52:64:f8:7b:cf:79:fa:06:5f:
ad:1a:8d:d5:d4:7d:c2:92:14:a3:8e:b2:34:45:5a:15:ab:64:
3b:62:b0:51:de:50:34:3f:25:ee:ba:f4:42:00:64:de:2f:ca:
b0:22:15:78:60:10:aa:47:7e:f0:4b:71:f5:ab:e0:15:ea:85:
99:85:50:66
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon May 12 15:49:40 2025 by rpki-client