Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b4/65bcff-ba01-498c-b54d-84026bc852f0/1/tU3fbwMzHNdzx-ersVQpuo0gvXg.mft
File: tU3fbwMzHNdzx-ersVQpuo0gvXg.mft (raw, json)
Hash identifier: vH3DTIHIYyca3C/BDuZ4CvNQxxfkxbHT/+/oEbAfG4U=
Subject key identifier: C5:9C:C9:4D:D1:C4:76:87:13:C1:3D:40:04:78:A7:72:33:DC:57:DE
Authority key identifier: B5:4D:DF:6F:03:33:1C:D7:73:C7:E7:AB:B1:54:29:BA:8D:20:BD:78
Certificate issuer: /CN=b54ddf6f03331cd773c7e7abb15429ba8d20bd78
Certificate serial: 0196BB922A74CBCEF101F9B01EDE7796D42B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tU3fbwMzHNdzx-ersVQpuo0gvXg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b4/65bcff-ba01-498c-b54d-84026bc852f0/1/tU3fbwMzHNdzx-ersVQpuo0gvXg.mft
Manifest number: 0676
Signing time: Sat 10 May 2025 19:00:40 +0000
Manifest this update: Sat 10 May 2025 19:00:40 +0000
Manifest next update: Sun 11 May 2025 19:00:40 +0000
Files and hashes: 1: 1SqAG3Japdqs2uBvGFHguJLvhqE.roa (hash: tRLIPOPh9GLi7wL54w2K0S63l5p5YYde2YPqeJx3wD8=)
2: tU3fbwMzHNdzx-ersVQpuo0gvXg.crl (hash: bvDEXypAoGwaO2+l6g5xuZ/yP4SwrOnKRgUThArBkfw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b4/65bcff-ba01-498c-b54d-84026bc852f0/1/tU3fbwMzHNdzx-ersVQpuo0gvXg.crl
rsync://rpki.ripe.net/repository/DEFAULT/b4/65bcff-ba01-498c-b54d-84026bc852f0/1/tU3fbwMzHNdzx-ersVQpuo0gvXg.mft
rsync://rpki.ripe.net/repository/DEFAULT/tU3fbwMzHNdzx-ersVQpuo0gvXg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 11 May 2025 13:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:bb:92:2a:74:cb:ce:f1:01:f9:b0:1e:de:77:96:d4:2b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b54ddf6f03331cd773c7e7abb15429ba8d20bd78
Validity
Not Before: May 10 19:00:40 2025 GMT
Not After : May 11 19:00:40 2025 GMT
Subject: CN=c59cc94dd1c4768713c13d400478a77233dc57de
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:cf:93:e3:e5:ca:0c:2f:88:c5:b4:ca:0d:1d:
1d:53:6e:5d:3c:1c:07:c6:ad:22:36:5a:8c:53:3a:
92:c0:8c:83:7b:f3:40:58:e4:51:f9:2d:2b:3e:b1:
33:a3:dc:b1:68:b8:66:f2:77:4a:64:6f:67:fa:c4:
2e:bc:a2:81:b8:32:22:b3:07:d6:ec:2a:6e:4e:11:
d3:fa:43:92:97:dd:27:42:80:b8:40:29:19:da:64:
eb:de:33:f9:76:0d:45:04:15:0d:60:d1:ec:5f:09:
b6:47:7c:5e:0e:ba:78:b9:12:0c:3a:c2:ab:f6:de:
8a:32:cf:e4:f8:a8:24:b4:4e:23:ef:d3:14:db:da:
f6:4f:47:fe:52:e2:97:88:3d:37:0f:50:80:a4:da:
06:b4:1b:94:94:6a:28:72:b1:ff:d3:d0:93:cc:c9:
8c:76:7e:90:6b:b0:ac:9e:63:ce:d9:0b:68:89:15:
2b:58:26:05:cc:8a:f3:4b:86:a4:f5:fe:7e:d1:ed:
12:f9:dc:39:14:5c:95:5d:a9:ac:d1:a7:4e:1b:84:
1a:4c:94:47:e6:c8:4f:48:8d:d4:ff:eb:67:96:c6:
38:3d:ff:2b:be:49:c8:58:72:a7:e3:d5:6a:22:06:
ac:ec:9f:bd:6a:aa:7a:12:dd:75:06:73:53:49:f1:
87:e9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C5:9C:C9:4D:D1:C4:76:87:13:C1:3D:40:04:78:A7:72:33:DC:57:DE
X509v3 Authority Key Identifier:
keyid:B5:4D:DF:6F:03:33:1C:D7:73:C7:E7:AB:B1:54:29:BA:8D:20:BD:78
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tU3fbwMzHNdzx-ersVQpuo0gvXg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b4/65bcff-ba01-498c-b54d-84026bc852f0/1/tU3fbwMzHNdzx-ersVQpuo0gvXg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b4/65bcff-ba01-498c-b54d-84026bc852f0/1/tU3fbwMzHNdzx-ersVQpuo0gvXg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
67:cb:ee:ae:4a:ac:41:f4:a0:f7:82:97:d5:e0:54:f4:26:41:
8c:a1:0f:35:d5:a1:cf:b7:66:ad:90:7e:ae:e2:1f:20:fe:d9:
af:4d:8a:af:b3:c2:30:fe:3d:57:14:1a:ff:82:56:db:0a:85:
41:5d:14:10:dd:ec:db:6b:c3:1b:8f:ea:be:59:c4:b9:70:3d:
c8:8f:90:1f:92:91:38:32:93:30:94:d1:f4:21:f6:f4:7b:8d:
29:c1:89:a7:4e:ee:42:1e:b0:4a:b6:95:2c:58:09:41:7c:6a:
76:2c:1a:2c:ba:09:31:a5:b7:3e:fc:d8:29:65:03:c2:ca:2f:
80:4b:8a:b7:8f:f7:2e:e7:1f:22:ee:3e:87:67:be:bf:c5:76:
f7:5f:7d:b6:c2:14:ca:35:9c:aa:a4:99:9b:28:97:ff:8d:e1:
aa:cf:67:37:73:cb:90:31:d1:39:60:2c:e6:9a:d9:6f:6c:c0:
7d:9f:96:26:76:09:76:f8:bf:97:95:4d:a4:b5:3f:e0:e0:02:
18:bf:e4:67:95:71:df:6d:c0:06:3b:c7:1b:c0:21:93:af:85:
93:ad:54:e8:af:97:7f:6d:97:45:78:35:12:3a:19:c9:cf:53:
e9:b4:3c:68:ce:90:c3:53:c7:e8:51:bb:f7:3e:bd:70:5a:4d:
04:7c:42:c7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat May 10 21:06:25 2025 by rpki-client