Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4e/7309a9-46c8-4240-afef-840881a4d30d/1/ds5jfUe3gATQzPrjceaBh2isP6U.mft
File: ds5jfUe3gATQzPrjceaBh2isP6U.mft (raw, json)
Hash identifier: jyFhPOj4QxqPPP6LRHEVjy/GPcSLx4BP/unmeqPi+i0=
Subject key identifier: A5:B4:62:F1:D8:4B:ED:4F:CE:77:D3:53:A9:EA:0E:20:FD:47:EF:BC
Authority key identifier: 76:CE:63:7D:47:B7:80:04:D0:CC:FA:E3:71:E6:81:87:68:AC:3F:A5
Certificate issuer: /CN=76ce637d47b78004d0ccfae371e6818768ac3fa5
Certificate serial: 01967ED85C4C397ED633304F69EBC13D6471
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ds5jfUe3gATQzPrjceaBh2isP6U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4e/7309a9-46c8-4240-afef-840881a4d30d/1/ds5jfUe3gATQzPrjceaBh2isP6U.mft
Manifest number: 1335
Signing time: Tue 29 Apr 2025 00:00:30 +0000
Manifest this update: Tue 29 Apr 2025 00:00:30 +0000
Manifest next update: Wed 30 Apr 2025 00:00:30 +0000
Files and hashes: 1: 2v9WLSFviNLhCEs3PI8ghWfG43g.roa (hash: s4HF4L3IMaVI3bReAfOPFKeWOp26BrTGFcFThVgszh4=)
2: ds5jfUe3gATQzPrjceaBh2isP6U.crl (hash: jV9/TGjSWmBud5suFJKxaWZTNVkczpdJ5L/7jICyKlI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/4e/7309a9-46c8-4240-afef-840881a4d30d/1/ds5jfUe3gATQzPrjceaBh2isP6U.crl
rsync://rpki.ripe.net/repository/DEFAULT/4e/7309a9-46c8-4240-afef-840881a4d30d/1/ds5jfUe3gATQzPrjceaBh2isP6U.mft
rsync://rpki.ripe.net/repository/DEFAULT/ds5jfUe3gATQzPrjceaBh2isP6U.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 30 Apr 2025 00:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:7e:d8:5c:4c:39:7e:d6:33:30:4f:69:eb:c1:3d:64:71
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=76ce637d47b78004d0ccfae371e6818768ac3fa5
Validity
Not Before: Apr 29 00:00:30 2025 GMT
Not After : Apr 30 00:00:30 2025 GMT
Subject: CN=a5b462f1d84bed4fce77d353a9ea0e20fd47efbc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d0:03:72:d8:5f:b2:67:93:e3:b1:bd:a9:b9:cd:
57:99:b1:ca:e9:8c:c2:78:6d:b2:fc:80:b8:62:39:
f3:39:ce:7a:41:01:24:69:da:12:5f:29:d8:54:c7:
0a:09:2e:db:94:ca:f2:91:42:e4:3b:98:32:f5:7b:
c7:ed:2d:9d:a0:79:9f:a1:80:e2:0e:7a:f4:d5:2a:
91:d3:49:c7:92:c3:51:d8:e5:ff:47:c0:36:3e:2d:
f5:68:df:28:73:3f:20:a8:e3:c3:72:15:7f:e3:ca:
87:28:5e:a0:77:6c:6e:c0:2c:9f:a1:16:fe:82:d3:
91:7a:ce:0c:6c:d5:90:1b:79:cc:d7:f5:48:74:b9:
a7:6e:4c:04:84:9e:fa:de:1e:b1:9a:1d:0e:11:e9:
0d:c4:ae:e5:db:43:d7:f8:8d:aa:2a:0d:fd:ea:25:
be:9d:b8:fb:3e:4b:1f:91:41:81:00:44:d1:70:18:
2d:5f:79:a9:d8:6f:53:30:73:6a:cc:c2:0a:93:48:
38:31:32:14:1e:b2:22:bb:f6:3c:5c:8e:1c:43:da:
05:77:cc:ac:3c:95:09:d8:78:a3:47:cc:64:17:03:
f7:3c:0b:9f:cd:cb:0a:ef:9c:ef:b5:d2:2c:5c:37:
40:39:4a:13:3a:25:c3:4c:00:fc:54:b9:a8:a1:74:
e2:31
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A5:B4:62:F1:D8:4B:ED:4F:CE:77:D3:53:A9:EA:0E:20:FD:47:EF:BC
X509v3 Authority Key Identifier:
keyid:76:CE:63:7D:47:B7:80:04:D0:CC:FA:E3:71:E6:81:87:68:AC:3F:A5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ds5jfUe3gATQzPrjceaBh2isP6U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4e/7309a9-46c8-4240-afef-840881a4d30d/1/ds5jfUe3gATQzPrjceaBh2isP6U.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4e/7309a9-46c8-4240-afef-840881a4d30d/1/ds5jfUe3gATQzPrjceaBh2isP6U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
c0:ba:8f:4f:78:ee:1a:17:5b:d8:6d:7e:7e:49:28:6f:45:b5:
da:d1:29:69:7c:6a:79:90:7a:1e:d5:62:8c:d9:21:15:0a:cf:
67:4b:87:aa:b2:f6:a6:8d:22:fd:5e:60:b6:57:e6:b3:d1:e7:
6e:f8:bc:0d:13:ee:52:b9:b6:ce:fb:0b:09:00:27:7e:0e:10:
30:76:a8:26:5c:14:18:2a:b1:54:82:c3:e3:57:4a:c2:bd:d9:
4c:bb:be:bd:2b:30:d4:4f:81:3b:6a:26:35:fc:f3:03:43:68:
fa:71:7c:96:c8:ae:ae:e3:a5:c8:58:18:89:8c:bd:4b:24:26:
2a:36:2d:95:fe:5d:02:d8:cc:cd:34:2a:ab:1b:b7:11:af:07:
a1:ca:93:c7:ad:49:f1:8e:26:05:41:64:8a:f3:01:36:4e:62:
eb:02:9b:61:8a:90:9f:b7:b5:e9:60:2e:ca:86:9f:2c:9b:e6:
8f:c9:61:c8:b1:21:e7:33:41:6d:0f:04:5b:0d:00:c4:d6:ce:
3c:86:2e:7a:a1:2a:cd:76:5b:0d:e0:69:be:8b:20:ac:35:c4:
8c:92:e5:0d:35:fd:90:1e:96:2b:ad:8a:4e:3d:ce:09:c5:2f:
5c:99:76:9e:48:26:6a:4f:72:1a:dc:f6:ca:1f:e3:fd:6a:59:
02:11:64:a7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 29 07:48:56 2025 by rpki-client