Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f0/3b74f0-e753-4669-85fd-822eaf0d22b0/1/m5TSR2sxUeHn8DYNzk84USXu1fs.mft
File: m5TSR2sxUeHn8DYNzk84USXu1fs.mft (raw, json)
Hash identifier: 0NmuXb0MJcNv5DlfZvvzmbTSucxGnI5gvCpMLxZQcYI=
Subject key identifier: 05:2D:8D:5B:EA:10:89:71:14:72:AF:BB:3B:F1:69:9C:01:40:58:C5
Authority key identifier: 9B:94:D2:47:6B:31:51:E1:E7:F0:36:0D:CE:4F:38:51:25:EE:D5:FB
Certificate issuer: /CN=9b94d2476b3151e1e7f0360dce4f385125eed5fb
Certificate serial: 0197B70E51F49EFAFEA6795A2909EBF99F01
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/m5TSR2sxUeHn8DYNzk84USXu1fs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f0/3b74f0-e753-4669-85fd-822eaf0d22b0/1/m5TSR2sxUeHn8DYNzk84USXu1fs.mft
Manifest number: 15B4
Signing time: Sat 28 Jun 2025 15:00:58 +0000
Manifest this update: Sat 28 Jun 2025 15:00:58 +0000
Manifest next update: Sun 29 Jun 2025 15:00:58 +0000
Files and hashes: 1: m5TSR2sxUeHn8DYNzk84USXu1fs.crl (hash: r0nqLhNVV5M2TAvfNcxvZLTBO5QoO9xHGC+JgxuhBsc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f0/3b74f0-e753-4669-85fd-822eaf0d22b0/1/m5TSR2sxUeHn8DYNzk84USXu1fs.crl
rsync://rpki.ripe.net/repository/DEFAULT/f0/3b74f0-e753-4669-85fd-822eaf0d22b0/1/m5TSR2sxUeHn8DYNzk84USXu1fs.mft
rsync://rpki.ripe.net/repository/DEFAULT/m5TSR2sxUeHn8DYNzk84USXu1fs.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 15:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b7:0e:51:f4:9e:fa:fe:a6:79:5a:29:09:eb:f9:9f:01
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9b94d2476b3151e1e7f0360dce4f385125eed5fb
Validity
Not Before: Jun 28 15:00:58 2025 GMT
Not After : Jun 29 15:00:58 2025 GMT
Subject: CN=052d8d5bea1089711472afbb3bf1699c014058c5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:de:cd:55:14:cc:f1:29:1f:29:95:ea:28:fd:b5:
88:5c:86:4f:e3:50:e0:e0:95:6f:28:ad:fe:21:76:
73:31:bc:15:3a:4f:e0:70:f1:29:a7:08:1b:ff:d3:
a9:fb:e7:7d:eb:b3:f6:ac:89:d9:fc:36:17:df:26:
86:a6:50:25:ef:bb:74:0f:d9:a8:0a:f8:ca:94:65:
76:02:60:c8:66:16:94:eb:4f:13:65:b7:0a:eb:5b:
06:59:ad:b1:19:f5:e2:08:bd:8e:14:75:96:e6:da:
33:28:2a:0b:94:1f:ba:6c:ad:da:45:3a:50:cf:9e:
05:88:25:46:e6:ae:8b:fa:07:73:ac:2e:53:ce:bf:
06:0f:30:2b:d0:bd:39:b7:f0:cb:3d:55:91:ae:52:
e7:63:da:3a:50:35:dc:b0:58:8e:89:0e:be:62:16:
1d:5c:a5:6a:7c:a6:50:58:fd:2a:d2:33:be:a9:ce:
e0:40:1a:81:81:bb:58:8b:5a:b8:53:29:36:06:d4:
09:52:f1:6c:63:f9:d1:9a:b7:9f:07:d8:a7:db:1a:
48:a4:2a:c0:97:75:e6:f2:3d:ce:a3:61:99:12:a1:
e0:be:19:29:fd:8a:85:1e:a9:33:64:22:fd:8d:30:
8b:35:f9:8a:63:ea:de:b7:12:da:9c:9a:9c:e3:00:
c1:2f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
05:2D:8D:5B:EA:10:89:71:14:72:AF:BB:3B:F1:69:9C:01:40:58:C5
X509v3 Authority Key Identifier:
keyid:9B:94:D2:47:6B:31:51:E1:E7:F0:36:0D:CE:4F:38:51:25:EE:D5:FB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/m5TSR2sxUeHn8DYNzk84USXu1fs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f0/3b74f0-e753-4669-85fd-822eaf0d22b0/1/m5TSR2sxUeHn8DYNzk84USXu1fs.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f0/3b74f0-e753-4669-85fd-822eaf0d22b0/1/m5TSR2sxUeHn8DYNzk84USXu1fs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
ba:b5:c2:18:cd:de:3c:20:b4:1e:d4:da:68:5c:06:ea:1c:3c:
3a:43:b4:29:36:38:f6:ef:5d:a9:6c:1b:94:63:46:0a:71:ed:
74:2b:03:2b:b3:2b:b0:ef:c6:bd:80:48:65:d8:ff:be:d2:48:
9b:e3:51:eb:3b:85:2a:63:f5:68:42:57:65:d9:2f:50:ea:df:
be:99:dc:07:2b:aa:0c:91:50:db:81:9f:94:00:32:08:fa:b9:
5b:71:8a:78:bb:26:ca:b0:25:ba:00:14:68:ea:1b:61:38:a9:
08:51:3d:b9:03:6e:82:06:8c:9e:78:c9:e0:09:07:3c:72:23:
7d:a5:a5:1d:99:ea:15:05:73:86:f8:80:6f:01:e6:40:89:16:
ed:b2:59:cf:5c:d1:ff:0e:f0:7c:59:7e:f5:90:96:67:a2:36:
fc:2d:96:50:ec:7c:2e:66:dc:54:5e:36:e9:8b:1b:1c:49:77:
88:a5:67:e4:d3:e4:b4:7e:81:af:81:71:c2:f6:42:c9:91:00:
2e:4a:d2:a9:04:87:80:9d:4b:75:9e:39:72:d3:41:31:0a:54:
46:6b:5a:86:42:9f:b3:c5:9e:a6:19:22:e3:a5:b2:2e:7d:f2:
56:c2:2e:ec:74:77:6a:66:40:07:f2:d1:fa:2a:ee:a9:39:6c:
e7:5c:71:3a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 28 22:38:59 2025 by rpki-client