Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f1/73af7c-5647-42d7-aa1d-1d5bc001a1de/1/5IKZWNgAyhrebhPKeygLIpzmYC4.mft
File: 5IKZWNgAyhrebhPKeygLIpzmYC4.mft (raw, json)
Hash identifier: 2G6oeUhJ+V6Lh8otqBp+IbiLhJutNxs8F/eqFyxlGC4=
Subject key identifier: 52:3F:ED:C7:30:97:72:83:7E:96:F4:17:4C:9F:6B:EA:4D:99:37:39
Authority key identifier: E4:82:99:58:D8:00:CA:1A:DE:6E:13:CA:7B:28:0B:22:9C:E6:60:2E
Certificate issuer: /CN=e4829958d800ca1ade6e13ca7b280b229ce6602e
Certificate serial: 01969E9A185E504241EB3B38ACA25DE2D9BA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/5IKZWNgAyhrebhPKeygLIpzmYC4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f1/73af7c-5647-42d7-aa1d-1d5bc001a1de/1/5IKZWNgAyhrebhPKeygLIpzmYC4.mft
Manifest number: 1521
Signing time: Mon 05 May 2025 04:00:20 +0000
Manifest this update: Mon 05 May 2025 04:00:20 +0000
Manifest next update: Tue 06 May 2025 04:00:20 +0000
Files and hashes: 1: 5IKZWNgAyhrebhPKeygLIpzmYC4.crl (hash: lmTbbdSivCv0S8Vc8yqhtv2FZCxVC0/w1Go/54Xw2I0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f1/73af7c-5647-42d7-aa1d-1d5bc001a1de/1/5IKZWNgAyhrebhPKeygLIpzmYC4.crl
rsync://rpki.ripe.net/repository/DEFAULT/f1/73af7c-5647-42d7-aa1d-1d5bc001a1de/1/5IKZWNgAyhrebhPKeygLIpzmYC4.mft
rsync://rpki.ripe.net/repository/DEFAULT/5IKZWNgAyhrebhPKeygLIpzmYC4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 06 May 2025 04:00:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:9e:9a:18:5e:50:42:41:eb:3b:38:ac:a2:5d:e2:d9:ba
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e4829958d800ca1ade6e13ca7b280b229ce6602e
Validity
Not Before: May 5 04:00:20 2025 GMT
Not After : May 6 04:00:20 2025 GMT
Subject: CN=523fedc7309772837e96f4174c9f6bea4d993739
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:9c:52:89:1d:4a:1e:32:d7:da:26:d6:47:d0:
9c:5a:55:4f:3d:01:fd:b4:c3:c1:93:ad:ca:ca:5b:
7c:4b:4c:5f:cf:6c:42:cb:bb:11:44:fe:24:3b:cc:
5b:1e:30:96:7c:81:36:79:87:5c:15:08:9a:ea:70:
60:79:35:d8:81:64:34:c1:f9:93:0c:ca:a0:d1:50:
65:1e:40:80:b8:47:d5:57:87:b8:25:fb:c4:93:bf:
05:48:d8:59:5f:fa:e7:85:74:52:63:56:c1:57:48:
e5:c0:5d:67:1c:dc:25:ad:ce:18:60:70:b5:e4:68:
86:00:16:1e:b7:b3:a5:46:76:e0:80:d0:7f:38:57:
29:ea:1f:39:4e:a5:87:bf:d8:be:52:10:6b:ea:52:
ea:dc:e7:22:14:ea:1a:11:c5:d5:3d:92:c0:98:d7:
9e:37:e3:49:f1:e4:64:54:3e:61:fd:5e:75:26:b7:
17:bf:d8:15:fe:01:bd:f1:69:21:3a:6a:65:a7:b2:
2c:89:a5:96:22:b8:a0:07:99:ae:0c:a8:d9:1b:8b:
d9:06:06:ad:f5:5c:c3:a2:1c:06:73:c9:11:bc:db:
8a:9a:d5:e3:d4:4a:21:9e:9e:fb:25:01:bf:9e:18:
e7:0a:e9:d0:d0:16:01:73:cd:08:a0:22:23:2d:ab:
24:fd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
52:3F:ED:C7:30:97:72:83:7E:96:F4:17:4C:9F:6B:EA:4D:99:37:39
X509v3 Authority Key Identifier:
keyid:E4:82:99:58:D8:00:CA:1A:DE:6E:13:CA:7B:28:0B:22:9C:E6:60:2E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/5IKZWNgAyhrebhPKeygLIpzmYC4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f1/73af7c-5647-42d7-aa1d-1d5bc001a1de/1/5IKZWNgAyhrebhPKeygLIpzmYC4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f1/73af7c-5647-42d7-aa1d-1d5bc001a1de/1/5IKZWNgAyhrebhPKeygLIpzmYC4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
13:12:ed:f8:d3:9f:3a:79:d1:84:b7:c5:cd:7e:51:43:b9:14:
a9:40:3b:51:7a:b5:c2:e0:18:7c:47:86:37:fe:31:88:4a:3b:
1f:dd:fc:3c:12:7d:e6:ce:0a:db:3b:27:3b:c1:31:fa:61:51:
06:46:07:41:69:df:c4:ef:01:e7:c9:06:94:2d:9c:f4:5f:7f:
17:89:c9:64:6f:ea:78:31:54:9b:d8:d1:9c:b2:be:4e:df:7d:
58:24:bf:20:d0:ec:15:fc:3c:31:d4:36:62:14:7a:d4:d6:7b:
22:d5:32:0c:15:82:fa:b8:b4:d0:0d:23:37:33:ea:3d:e6:df:
75:ed:09:ad:e3:c3:de:cb:a5:9f:16:7a:00:a4:f5:25:ee:f4:
d2:ba:54:0a:f6:b5:07:44:3a:08:bb:0f:1a:ac:15:68:a7:0e:
1e:22:10:36:b8:98:e3:aa:18:b4:0c:5d:bc:b7:dd:11:d3:9d:
97:52:2e:a9:f2:06:01:cb:db:a6:8c:68:b5:29:ac:95:fb:41:
fb:5f:72:6f:22:af:d1:a8:ef:bb:86:e8:6e:6a:01:33:48:4b:
5d:e6:bf:c2:df:32:41:73:dc:6f:d6:a5:9f:75:ed:d5:d6:c6:
fc:15:e0:b5:60:25:68:34:38:a4:06:9a:1a:b6:e3:a4:2c:ec:
80:38:f5:92
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon May 5 13:45:16 2025 by rpki-client