Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4a/248133-8670-4167-a195-6e2f588c0c7e/1/5H78nMPZxL0porvBVVH4LyXPEbo.mft
File: 5H78nMPZxL0porvBVVH4LyXPEbo.mft (raw, json)
Hash identifier: otQwibmAlyeRcjUab61AgeGUrSgHQWoPJFJjnzSV2Vo=
Subject key identifier: 7D:59:0B:11:5B:6F:84:28:0A:87:36:64:94:5C:7E:26:11:53:0A:16
Authority key identifier: E4:7E:FC:9C:C3:D9:C4:BD:29:A2:BB:C1:55:51:F8:2F:25:CF:11:BA
Certificate issuer: /CN=e47efc9cc3d9c4bd29a2bbc15551f82f25cf11ba
Certificate serial: 01978CFF2EFE57851382A07AA3B04830ABCE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/5H78nMPZxL0porvBVVH4LyXPEbo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4a/248133-8670-4167-a195-6e2f588c0c7e/1/5H78nMPZxL0porvBVVH4LyXPEbo.mft
Manifest number: 0D52
Signing time: Fri 20 Jun 2025 11:00:23 +0000
Manifest this update: Fri 20 Jun 2025 11:00:23 +0000
Manifest next update: Sat 21 Jun 2025 11:00:23 +0000
Files and hashes: 1: 5H78nMPZxL0porvBVVH4LyXPEbo.crl (hash: UyIL34NnWbCQqKS6cfttT/wNUGOBaBUv6KbEJ+CIUlI=)
2: SOdbfA4k2rHns_9FeEf2o6kdRPA.roa (hash: UCxkRGVqhqrA5LNMsKBYYs+r3jtWXwOD0Dbnu0MtoW4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/4a/248133-8670-4167-a195-6e2f588c0c7e/1/5H78nMPZxL0porvBVVH4LyXPEbo.crl
rsync://rpki.ripe.net/repository/DEFAULT/4a/248133-8670-4167-a195-6e2f588c0c7e/1/5H78nMPZxL0porvBVVH4LyXPEbo.mft
rsync://rpki.ripe.net/repository/DEFAULT/5H78nMPZxL0porvBVVH4LyXPEbo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 21 Jun 2025 11:00:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:8c:ff:2e:fe:57:85:13:82:a0:7a:a3:b0:48:30:ab:ce
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e47efc9cc3d9c4bd29a2bbc15551f82f25cf11ba
Validity
Not Before: Jun 20 11:00:23 2025 GMT
Not After : Jun 21 11:00:23 2025 GMT
Subject: CN=7d590b115b6f84280a873664945c7e2611530a16
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e6:f0:3f:e2:cc:bb:0a:bc:20:e9:55:02:71:51:
4f:2e:0c:ac:14:c1:d1:02:61:05:34:8e:42:1b:c8:
c3:67:18:2e:82:ee:00:13:89:33:60:b4:3a:64:b1:
16:a0:08:5c:81:94:32:37:c7:30:03:90:5e:b4:09:
91:44:2f:3d:8a:08:71:f3:ba:b8:04:7e:71:67:16:
8a:64:21:a3:63:1e:36:28:8b:b7:5e:d6:d0:4f:0c:
64:b5:21:cc:32:ec:99:f6:d5:d0:e1:76:0f:88:47:
37:aa:46:a6:e4:50:7f:9d:55:a1:e1:3b:d4:2c:05:
54:f9:bd:ec:85:7d:ed:48:c6:99:24:06:b5:47:31:
23:19:44:9a:2a:53:9e:a4:b5:e4:ed:ae:28:fe:1f:
0f:3c:6e:e9:05:4b:ef:c6:64:d6:e9:c5:0f:42:1f:
46:1a:99:88:6b:c1:42:b9:b1:cf:6c:0d:bf:1e:c7:
9a:78:28:f3:e9:47:d3:b6:23:2b:85:9f:95:b6:19:
48:76:d9:84:89:75:a4:56:0e:c7:d8:ef:ab:be:0d:
2f:20:14:2f:37:71:fe:ca:f9:d1:60:4c:c4:38:18:
47:7d:3a:20:d0:54:c8:ef:81:a8:77:58:5d:f8:fe:
d5:bb:17:b3:c1:d2:d5:91:25:5b:87:5b:1b:9e:52:
1b:ed
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7D:59:0B:11:5B:6F:84:28:0A:87:36:64:94:5C:7E:26:11:53:0A:16
X509v3 Authority Key Identifier:
keyid:E4:7E:FC:9C:C3:D9:C4:BD:29:A2:BB:C1:55:51:F8:2F:25:CF:11:BA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/5H78nMPZxL0porvBVVH4LyXPEbo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4a/248133-8670-4167-a195-6e2f588c0c7e/1/5H78nMPZxL0porvBVVH4LyXPEbo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4a/248133-8670-4167-a195-6e2f588c0c7e/1/5H78nMPZxL0porvBVVH4LyXPEbo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
8c:76:3e:fc:27:ae:60:77:26:6c:2d:9e:a0:8d:a6:be:7c:79:
ae:c5:d5:73:47:41:ae:5d:2d:a5:c3:9f:82:85:02:0f:c7:3d:
25:a4:20:6f:ff:be:0b:b7:cb:51:c7:eb:16:f3:e7:1e:ed:bd:
f5:cc:fd:46:85:87:b6:d3:ba:a4:cd:3c:ae:a6:0f:06:c2:6e:
92:d5:a1:ce:5f:5b:69:41:fa:82:7e:35:d6:1e:43:30:31:d5:
44:08:56:b7:02:6b:7b:fe:80:8c:36:80:be:86:84:43:a6:41:
08:e4:1f:2c:1d:0e:ce:d9:f7:49:f9:33:91:bc:44:98:92:fc:
10:08:f3:50:a2:7e:7f:10:b9:86:23:e6:c2:f1:8f:ce:7f:e6:
2b:4b:0a:89:5c:a6:d2:25:07:5b:94:46:6a:bc:77:8a:82:49:
51:85:0f:0d:a0:20:5a:28:30:c6:6a:ea:ac:77:a0:a0:e2:ed:
7c:62:87:b8:54:bd:4e:2d:f6:d9:9f:3d:05:3b:69:4b:50:98:
45:f5:1d:2c:96:a5:60:ee:f3:f9:c3:04:15:4c:49:70:d5:c4:
ac:b6:04:33:4c:46:ed:52:6f:1f:98:ea:6a:ce:e6:d7:82:42:
9f:94:0b:bf:ad:83:97:d1:37:6d:00:fa:80:ec:c9:80:0a:ba:
48:12:5c:c1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jun 20 20:43:44 2025 by rpki-client