Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c7/528e21-23b2-4436-bc8b-8f5e997ab1b5/1/i58lgoNRffGYWTiOE7rRrgJopfs.mft
File: i58lgoNRffGYWTiOE7rRrgJopfs.mft (raw, json)
Hash identifier: RNK8W3gNA7RUVqlXpkWhREmPq8xm2Y78j+4MyJ+jqh8=
Subject key identifier: 5E:15:98:17:C9:D1:75:E5:4E:0C:55:63:CF:BC:9C:2D:27:66:94:CB
Authority key identifier: 8B:9F:25:82:83:51:7D:F1:98:59:38:8E:13:BA:D1:AE:02:68:A5:FB
Certificate issuer: /CN=8b9f258283517df19859388e13bad1ae0268a5fb
Certificate serial: 0196D51B83E52765A2DFFBAE931C5C83BCF1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/i58lgoNRffGYWTiOE7rRrgJopfs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c7/528e21-23b2-4436-bc8b-8f5e997ab1b5/1/i58lgoNRffGYWTiOE7rRrgJopfs.mft
Manifest number: 1541
Signing time: Thu 15 May 2025 18:01:12 +0000
Manifest this update: Thu 15 May 2025 18:01:12 +0000
Manifest next update: Fri 16 May 2025 18:01:12 +0000
Files and hashes: 1: aUEo_6I1NIoEpJrfmKA_-34y2x4.roa (hash: qf/pPhy348tojuz4A7OR24KHAsQ8d6peWd65flxSoJ4=)
2: i58lgoNRffGYWTiOE7rRrgJopfs.crl (hash: HpjeyBeSQKWJsX7zxJJxdqt+EsK/eWPTcs2tXCkJOys=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c7/528e21-23b2-4436-bc8b-8f5e997ab1b5/1/i58lgoNRffGYWTiOE7rRrgJopfs.crl
rsync://rpki.ripe.net/repository/DEFAULT/c7/528e21-23b2-4436-bc8b-8f5e997ab1b5/1/i58lgoNRffGYWTiOE7rRrgJopfs.mft
rsync://rpki.ripe.net/repository/DEFAULT/i58lgoNRffGYWTiOE7rRrgJopfs.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 16 May 2025 14:01:21 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:d5:1b:83:e5:27:65:a2:df:fb:ae:93:1c:5c:83:bc:f1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8b9f258283517df19859388e13bad1ae0268a5fb
Validity
Not Before: May 15 18:01:12 2025 GMT
Not After : May 16 18:01:12 2025 GMT
Subject: CN=5e159817c9d175e54e0c5563cfbc9c2d276694cb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d1:c1:8b:77:ec:3a:49:e5:e6:66:20:b5:23:c9:
d1:e1:06:96:65:91:17:79:d0:60:23:a9:49:3f:24:
41:c5:c7:91:5e:36:bf:a2:80:f8:5d:28:68:45:46:
ba:a2:f5:82:f8:05:7f:77:49:c0:95:7b:5c:81:a5:
25:a9:bc:71:fd:6e:8f:3e:7a:46:e0:fa:31:51:09:
f8:64:a1:7c:f4:6b:cd:0a:97:55:a9:70:5f:2c:c9:
7e:d3:01:58:bc:09:71:2d:79:0d:8d:c6:13:6b:a6:
cb:71:45:92:b6:45:f6:59:8e:74:61:44:06:e9:1b:
91:41:9b:15:90:42:d6:c8:32:60:e2:58:be:01:26:
4e:2b:90:3a:42:d6:16:a3:d5:c0:7a:a8:a4:eb:e8:
ba:05:ad:17:89:7e:c5:52:f7:23:24:32:be:05:c1:
7c:56:c3:44:bb:d1:fb:59:14:6d:81:53:55:d9:02:
c1:50:a1:14:06:c8:c0:e5:78:35:64:66:a7:76:12:
fc:58:3e:de:cd:21:1b:7f:61:e4:d5:6b:ef:42:92:
b1:4a:4d:a4:99:c2:d5:93:6e:e3:ba:e1:a2:02:a7:
c7:92:87:9f:4b:79:d5:b8:64:bd:c4:f1:07:2b:cb:
a8:f6:f0:34:f6:e1:1e:88:17:9c:44:0d:a7:02:d1:
48:71
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5E:15:98:17:C9:D1:75:E5:4E:0C:55:63:CF:BC:9C:2D:27:66:94:CB
X509v3 Authority Key Identifier:
keyid:8B:9F:25:82:83:51:7D:F1:98:59:38:8E:13:BA:D1:AE:02:68:A5:FB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/i58lgoNRffGYWTiOE7rRrgJopfs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c7/528e21-23b2-4436-bc8b-8f5e997ab1b5/1/i58lgoNRffGYWTiOE7rRrgJopfs.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c7/528e21-23b2-4436-bc8b-8f5e997ab1b5/1/i58lgoNRffGYWTiOE7rRrgJopfs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
94:30:a4:ae:ae:4f:a0:3c:1b:80:0f:4e:c3:a7:04:d8:a3:a8:
60:47:50:4c:58:fa:d7:22:d0:36:c4:ff:e2:29:b2:25:cc:0d:
e9:e6:3b:25:5f:a4:49:3a:32:67:f5:9a:4d:ef:6a:4c:36:c7:
32:bc:f8:ac:88:96:39:4f:be:93:7a:54:a8:78:09:27:0e:5e:
e3:be:c1:55:b8:fe:b5:0d:67:89:62:1a:44:ed:f8:90:22:7f:
35:3b:aa:b3:56:f4:d5:21:db:d1:0d:72:9b:b8:71:6b:cd:23:
e8:6f:97:1a:b0:de:cc:83:81:cc:f7:2a:1f:93:16:69:61:b1:
b3:95:48:e6:b1:62:d9:25:79:c4:3b:b5:71:c5:4a:1e:80:8d:
42:ea:c1:07:a1:95:18:e6:50:8d:13:19:2c:89:a8:d0:57:d9:
e4:33:af:91:eb:b0:3d:ea:c8:86:eb:11:88:96:39:50:c8:ec:
2f:1a:e1:bc:0f:d2:ff:f6:81:50:e6:44:46:74:32:c6:72:f7:
ba:e9:64:ae:76:ba:fc:cd:14:40:1c:69:83:0f:8c:65:ec:13:
09:71:3f:d1:86:87:5f:d1:28:75:b1:20:fb:c3:1a:4e:2b:34:
de:32:47:c4:8a:f6:06:00:37:15:34:e0:5e:37:a5:ce:a7:61:
7f:bd:b1:f6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu May 15 23:46:03 2025 by rpki-client