Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a8/eadc95-daaf-4776-9be8-d2c0be448561/1/5KnudPLZhMiKs7ma5x0LfHuvgVA.mft
File: 5KnudPLZhMiKs7ma5x0LfHuvgVA.mft (raw, json)
Hash identifier: 2rOQxRH0Trk9aen6es3CvBdB2HUY+mhlEWqYMQU1FxA=
Subject key identifier: 3E:82:7F:93:51:49:58:0C:03:5A:64:57:9F:9A:74:6A:20:19:B0:A3
Authority key identifier: E4:A9:EE:74:F2:D9:84:C8:8A:B3:B9:9A:E7:1D:0B:7C:7B:AF:81:50
Certificate issuer: /CN=e4a9ee74f2d984c88ab3b99ae71d0b7c7baf8150
Certificate serial: 0196CCF413278687C7D8CCA393EFCE1487BF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/5KnudPLZhMiKs7ma5x0LfHuvgVA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a8/eadc95-daaf-4776-9be8-d2c0be448561/1/5KnudPLZhMiKs7ma5x0LfHuvgVA.mft
Manifest number: 153E
Signing time: Wed 14 May 2025 04:01:09 +0000
Manifest this update: Wed 14 May 2025 04:01:09 +0000
Manifest next update: Thu 15 May 2025 04:01:09 +0000
Files and hashes: 1: 1kmQygnKJuFomMWscO7_tmV5MPY.roa (hash: 1R7F/hqJ/U8XRXU5qTBNp/iBMwQ2HNOAJ68qC4TlDwI=)
2: 5KnudPLZhMiKs7ma5x0LfHuvgVA.crl (hash: CbOGbeTb5G5waEoZ7KCWbpbqCtwzLYXRWuNDmINSNaU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a8/eadc95-daaf-4776-9be8-d2c0be448561/1/5KnudPLZhMiKs7ma5x0LfHuvgVA.crl
rsync://rpki.ripe.net/repository/DEFAULT/a8/eadc95-daaf-4776-9be8-d2c0be448561/1/5KnudPLZhMiKs7ma5x0LfHuvgVA.mft
rsync://rpki.ripe.net/repository/DEFAULT/5KnudPLZhMiKs7ma5x0LfHuvgVA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 14 May 2025 23:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:cc:f4:13:27:86:87:c7:d8:cc:a3:93:ef:ce:14:87:bf
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e4a9ee74f2d984c88ab3b99ae71d0b7c7baf8150
Validity
Not Before: May 14 04:01:09 2025 GMT
Not After : May 15 04:01:09 2025 GMT
Subject: CN=3e827f935149580c035a64579f9a746a2019b0a3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:37:85:cf:9b:42:e1:b6:cc:86:05:29:c9:ed:
cd:e2:fe:fb:45:09:4f:85:fd:a2:50:6c:75:75:23:
5a:bc:87:2a:5c:ff:4c:78:61:92:30:8f:2f:cf:ed:
f9:f6:4e:32:bf:e1:14:d6:89:3e:c6:f4:2f:1e:47:
f7:7f:9a:4b:b2:ec:dd:2c:35:1c:83:8f:29:d2:21:
67:29:73:44:54:bd:d8:40:67:8f:18:6b:ff:dd:83:
2f:3b:6b:2d:01:27:e7:63:ba:2e:54:1e:b2:f2:8d:
2c:42:b5:34:ce:2a:e4:95:3e:10:2a:09:9b:0b:2c:
37:f9:48:73:76:30:dc:8f:c2:93:45:63:1b:06:9e:
f0:14:81:0d:59:29:b9:07:44:e7:4e:04:55:bf:05:
da:da:30:65:79:01:29:75:d9:1c:88:61:70:ca:53:
31:a1:07:31:26:51:db:04:00:d9:12:8b:83:87:98:
04:df:a3:dd:a6:f4:08:e4:34:ca:44:26:96:46:4b:
4d:ca:21:94:cc:a9:f8:c1:89:1e:d8:fc:0c:ce:98:
e1:9a:14:c9:e1:ec:77:8d:93:50:2c:78:dc:8d:a8:
7e:ee:78:6a:9d:dc:c8:10:b8:73:e9:c0:92:13:48:
cf:fe:ef:95:b9:cb:b2:b3:91:cf:d6:a5:12:2c:d8:
b5:19
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3E:82:7F:93:51:49:58:0C:03:5A:64:57:9F:9A:74:6A:20:19:B0:A3
X509v3 Authority Key Identifier:
keyid:E4:A9:EE:74:F2:D9:84:C8:8A:B3:B9:9A:E7:1D:0B:7C:7B:AF:81:50
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/5KnudPLZhMiKs7ma5x0LfHuvgVA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a8/eadc95-daaf-4776-9be8-d2c0be448561/1/5KnudPLZhMiKs7ma5x0LfHuvgVA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a8/eadc95-daaf-4776-9be8-d2c0be448561/1/5KnudPLZhMiKs7ma5x0LfHuvgVA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
ad:f5:6f:17:6c:ef:37:4b:23:6e:75:26:1d:59:95:1e:f8:19:
01:08:9a:7f:fd:46:4a:e6:0c:44:60:d1:a9:31:0c:ea:e3:65:
97:ea:1e:76:77:09:cd:a8:2c:5e:83:57:67:41:aa:28:75:65:
09:e9:c0:ba:65:19:1b:0e:44:9e:5d:af:30:5f:57:61:cb:63:
b3:2e:ba:dc:aa:cc:52:f0:50:bf:e9:f8:d1:83:5c:6e:1a:70:
ed:e2:0d:df:85:d1:24:02:e7:06:ac:15:c7:36:31:0c:0d:c5:
13:5c:1d:eb:12:4a:7a:27:29:b4:0e:39:12:2a:6e:ec:50:5c:
15:31:05:ad:12:ed:41:e9:49:d6:72:10:1c:4d:41:43:c2:74:
a0:0e:89:aa:51:2a:0c:93:c2:d3:ce:51:56:44:80:20:7f:d4:
d2:e9:02:e3:60:9b:9e:d1:d7:fb:f0:16:18:ab:6f:04:b1:0c:
5f:a7:70:ee:3f:d4:8a:1a:66:14:23:01:4e:fd:ec:5b:41:fd:
9a:c9:e0:a6:db:51:2f:73:39:4f:46:f7:32:a6:aa:c3:fd:62:
0e:c4:f3:1a:29:5a:20:7b:72:52:8f:55:d8:ee:0d:b6:44:76:
01:60:26:75:0f:53:c0:51:4b:df:52:3d:f9:76:7a:53:3f:de:
30:ff:53:9b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 14 09:16:33 2025 by rpki-client