Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1f/afa091-b16f-4527-8b00-1ddac2b08404/1/v5gt73eibXzBlHOzpAZNzFIX5HE.mft
File: v5gt73eibXzBlHOzpAZNzFIX5HE.mft (raw, json)
Hash identifier: R6XfElfSPtGNE3QvqXbLqOHpcjIabf3WMHX2NWcH63Q=
Subject key identifier: 78:68:77:1D:BE:5C:2A:5A:0B:CB:5D:BB:3A:68:65:78:F5:E4:B6:BC
Authority key identifier: BF:98:2D:EF:77:A2:6D:7C:C1:94:73:B3:A4:06:4D:CC:52:17:E4:71
Certificate issuer: /CN=bf982def77a26d7cc19473b3a4064dcc5217e471
Certificate serial: 0196808FA770840E32151CF281C9CB29E85D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/v5gt73eibXzBlHOzpAZNzFIX5HE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1f/afa091-b16f-4527-8b00-1ddac2b08404/1/v5gt73eibXzBlHOzpAZNzFIX5HE.mft
Manifest number: 1515
Signing time: Tue 29 Apr 2025 08:00:20 +0000
Manifest this update: Tue 29 Apr 2025 08:00:20 +0000
Manifest next update: Wed 30 Apr 2025 08:00:20 +0000
Files and hashes: 1: JoXkjArh1eQOEzJmDg5eyKhlAZU.roa (hash: IpnTumi25Jm35YnmbE0mTeFwDsMDbPll4BvRMHinz6I=)
2: v5gt73eibXzBlHOzpAZNzFIX5HE.crl (hash: VufrJftIat+Nn8OawRHzkACAPHVOtJjoONvXdTgCS+Y=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/1f/afa091-b16f-4527-8b00-1ddac2b08404/1/v5gt73eibXzBlHOzpAZNzFIX5HE.crl
rsync://rpki.ripe.net/repository/DEFAULT/1f/afa091-b16f-4527-8b00-1ddac2b08404/1/v5gt73eibXzBlHOzpAZNzFIX5HE.mft
rsync://rpki.ripe.net/repository/DEFAULT/v5gt73eibXzBlHOzpAZNzFIX5HE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 30 Apr 2025 08:00:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:80:8f:a7:70:84:0e:32:15:1c:f2:81:c9:cb:29:e8:5d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=bf982def77a26d7cc19473b3a4064dcc5217e471
Validity
Not Before: Apr 29 08:00:20 2025 GMT
Not After : Apr 30 08:00:20 2025 GMT
Subject: CN=7868771dbe5c2a5a0bcb5dbb3a686578f5e4b6bc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:3c:24:10:cd:42:6c:07:12:c0:28:17:67:0b:
c9:bc:24:b5:d9:33:37:0c:e7:1c:62:dd:30:d4:3b:
cc:fa:03:46:90:dd:72:87:ed:04:67:fd:d9:3d:47:
dc:2b:88:e3:68:60:b2:26:f6:c8:1f:04:85:97:eb:
e4:1e:7a:76:63:b8:66:c0:3c:28:d7:af:c7:b0:ca:
71:a5:6d:c6:ec:e7:74:33:4f:73:a4:d5:57:5d:e8:
16:95:ff:2f:0e:96:92:94:d3:9f:b2:61:8c:62:c7:
1e:8b:81:1a:d6:37:72:66:8c:b5:64:9d:6b:10:95:
4b:d1:2c:0a:a8:83:fd:83:09:63:a5:bc:59:a1:db:
3a:59:97:72:b2:15:d5:9f:36:27:fd:3f:33:7d:49:
59:e5:21:f3:60:0d:31:b7:f0:6e:a6:63:27:63:e3:
72:ab:a3:6e:82:a1:b1:3f:f4:0a:1e:d2:ea:a3:25:
90:62:24:58:f1:1d:05:67:2e:cd:18:de:bf:67:f0:
5b:7a:2f:d8:8d:39:12:ac:d6:96:8d:35:d0:7f:fd:
d8:3f:f3:b1:53:59:e3:1d:93:4c:8c:33:88:b6:c0:
c0:60:76:21:16:29:1a:0c:bf:e3:bf:25:d8:1d:35:
e5:c6:d6:31:14:9e:8f:b7:40:11:62:ac:fb:bc:8d:
11:87
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
78:68:77:1D:BE:5C:2A:5A:0B:CB:5D:BB:3A:68:65:78:F5:E4:B6:BC
X509v3 Authority Key Identifier:
keyid:BF:98:2D:EF:77:A2:6D:7C:C1:94:73:B3:A4:06:4D:CC:52:17:E4:71
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/v5gt73eibXzBlHOzpAZNzFIX5HE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1f/afa091-b16f-4527-8b00-1ddac2b08404/1/v5gt73eibXzBlHOzpAZNzFIX5HE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1f/afa091-b16f-4527-8b00-1ddac2b08404/1/v5gt73eibXzBlHOzpAZNzFIX5HE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
28:81:cf:5c:00:f2:68:2e:be:2a:d6:66:99:2a:2d:72:c2:fe:
65:d3:e8:ea:a9:b6:ea:60:bb:23:10:79:07:cc:ef:b8:0a:85:
9d:f0:29:bb:8c:57:40:11:94:75:38:fd:9d:b7:ed:55:50:34:
37:19:78:27:a7:cd:5e:17:2b:70:22:b3:5f:19:56:bf:ba:d3:
c3:9e:cb:21:fa:70:e8:b9:90:49:90:92:31:00:fd:3a:ab:57:
04:8b:99:ea:78:2c:62:3e:22:c4:68:10:d6:ce:df:68:69:65:
be:0a:3f:cc:b2:3d:f0:80:65:89:bc:7b:0e:46:59:09:c7:c4:
5d:27:7b:c0:67:2c:84:60:f1:19:2b:34:a4:a1:3d:a6:1e:4f:
20:df:31:8f:6c:57:f6:d7:0d:b5:7f:71:30:60:6b:f2:ee:c2:
19:06:5f:80:63:ef:45:d1:5a:02:15:d0:01:55:4e:e0:63:55:
40:90:c1:53:85:84:d5:b9:0b:ad:06:e3:3b:df:4a:1f:53:22:
a2:8c:b7:ea:ce:11:e5:16:b8:17:af:c5:61:79:c6:df:97:18:
0b:65:5b:50:50:b5:3a:32:87:85:f8:b5:25:b0:b7:23:48:e6:
f6:ca:9b:4f:5a:c0:d1:61:1e:0b:1a:a2:ef:bd:46:ad:99:34:
90:81:0b:f4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 29 15:10:16 2025 by rpki-client