Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ff/60fec7-0b51-4446-9b5d-c741c27b4e22/1/P5YkCZj85BJMPLTfusuw7RYYQFo.mft
File: P5YkCZj85BJMPLTfusuw7RYYQFo.mft (raw, json)
Hash identifier: LYl4dHcKfKa5bHpZmD73pKPPrmwID6Ti/IJoX0kpCSo=
Subject key identifier: 91:6F:AA:71:C2:13:A8:2E:AA:8F:6B:89:F9:58:0F:83:7F:59:34:B7
Authority key identifier: 3F:96:24:09:98:FC:E4:12:4C:3C:B4:DF:BA:CB:B0:ED:16:18:40:5A
Certificate issuer: /CN=3f96240998fce4124c3cb4dfbacbb0ed1618405a
Certificate serial: 0196A1D26BF9C2FE1B3130B9CB8D02487FD3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/P5YkCZj85BJMPLTfusuw7RYYQFo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ff/60fec7-0b51-4446-9b5d-c741c27b4e22/1/P5YkCZj85BJMPLTfusuw7RYYQFo.mft
Manifest number: 1528
Signing time: Mon 05 May 2025 19:00:43 +0000
Manifest this update: Mon 05 May 2025 19:00:43 +0000
Manifest next update: Tue 06 May 2025 19:00:43 +0000
Files and hashes: 1: P5YkCZj85BJMPLTfusuw7RYYQFo.crl (hash: DjyOkVHm38AXqFhymh/6+o0LZs1TgRX+Zmdx1iq4Kz0=)
2: UXaxt-b39pINfZ1Y1ojLfS7SwMw.roa (hash: IC6xINcQpVjUgVum+7114aRM3S8XEivwvk3gYzMafvQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ff/60fec7-0b51-4446-9b5d-c741c27b4e22/1/P5YkCZj85BJMPLTfusuw7RYYQFo.crl
rsync://rpki.ripe.net/repository/DEFAULT/ff/60fec7-0b51-4446-9b5d-c741c27b4e22/1/P5YkCZj85BJMPLTfusuw7RYYQFo.mft
rsync://rpki.ripe.net/repository/DEFAULT/P5YkCZj85BJMPLTfusuw7RYYQFo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 06 May 2025 19:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:a1:d2:6b:f9:c2:fe:1b:31:30:b9:cb:8d:02:48:7f:d3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3f96240998fce4124c3cb4dfbacbb0ed1618405a
Validity
Not Before: May 5 19:00:43 2025 GMT
Not After : May 6 19:00:43 2025 GMT
Subject: CN=916faa71c213a82eaa8f6b89f9580f837f5934b7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:ed:5e:15:9f:f3:b7:fa:8b:a6:4b:b3:3a:37:
8b:75:ea:e2:31:71:73:71:cc:ae:ef:8b:4d:e4:bd:
8c:af:39:a1:00:51:62:d3:61:8c:9f:0c:68:61:44:
24:b2:08:98:ef:ed:7a:dd:de:68:f0:c2:c7:e3:1b:
1a:ed:1e:aa:76:43:17:d9:7b:aa:96:76:29:4c:99:
9e:22:d6:13:e9:90:23:b1:41:57:98:27:5b:c0:d3:
f9:83:b4:41:9a:ab:0c:1e:46:76:e1:35:b9:51:ca:
58:01:66:87:c0:87:73:c5:79:48:de:d2:14:da:57:
59:38:be:d7:ee:f4:f6:12:c2:6e:8a:61:99:ca:b5:
09:cb:6c:39:37:00:c5:90:64:2f:a1:95:8f:fa:88:
60:f8:6c:27:4e:b8:5a:64:d8:cc:f7:96:cf:78:af:
bd:3b:b7:ac:28:e3:c0:18:16:f5:91:13:af:4e:fe:
80:a9:65:c3:17:e2:98:18:8c:02:51:f6:e5:ab:9a:
47:4d:c1:88:9e:b8:d9:72:b9:91:f2:1f:d6:95:d5:
e4:e7:22:a5:12:09:29:fd:3a:06:7e:ae:a5:dd:2c:
38:6b:e7:63:2c:1e:84:fd:15:0e:b1:c0:be:17:cf:
ec:b4:4a:54:47:4a:e8:64:2d:9a:6b:a1:fd:6a:e6:
8b:17
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
91:6F:AA:71:C2:13:A8:2E:AA:8F:6B:89:F9:58:0F:83:7F:59:34:B7
X509v3 Authority Key Identifier:
keyid:3F:96:24:09:98:FC:E4:12:4C:3C:B4:DF:BA:CB:B0:ED:16:18:40:5A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/P5YkCZj85BJMPLTfusuw7RYYQFo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ff/60fec7-0b51-4446-9b5d-c741c27b4e22/1/P5YkCZj85BJMPLTfusuw7RYYQFo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ff/60fec7-0b51-4446-9b5d-c741c27b4e22/1/P5YkCZj85BJMPLTfusuw7RYYQFo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
82:98:dc:43:8c:3c:56:20:ed:6d:f3:d0:58:da:2d:df:87:9d:
bb:4b:d3:00:b0:4e:12:01:4b:64:9c:27:37:21:11:8e:47:c6:
71:e9:6f:70:fd:1f:31:0f:f6:7f:16:03:a0:27:bb:c1:4d:e1:
77:74:b4:25:12:18:22:30:89:c5:8d:53:9c:86:62:f3:ec:ba:
f4:a3:2c:3f:52:11:f1:79:ee:2d:79:c0:59:7d:f7:2f:9f:1b:
fa:07:1a:49:d4:f8:32:83:3f:e2:b1:eb:6b:aa:39:4a:97:61:
76:84:48:b6:1e:bb:94:aa:72:d9:5b:46:a9:cc:1b:e2:bb:c8:
4a:e6:72:8f:d5:91:31:0f:fd:de:04:1c:c0:e9:99:f1:ae:db:
bc:c7:f8:d6:1a:3a:47:8d:39:50:d0:78:83:83:7e:e1:d0:25:
dc:40:0b:8e:58:12:4e:ab:7b:4f:72:e8:6e:ce:06:aa:00:96:
d6:96:87:77:b3:03:2e:e0:89:f7:74:6e:09:94:21:16:e3:b0:
b3:d4:60:ac:0b:57:5b:a3:ce:7c:4e:ed:f5:46:9c:36:1b:06:
f8:b6:87:46:c7:fc:c1:44:9a:3a:e0:5b:01:34:cb:1b:b9:e7:
8d:17:e0:83:67:99:25:b5:c8:6b:b9:43:55:53:3c:5c:97:fc:
ef:7f:79:36
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue May 6 04:10:40 2025 by rpki-client