Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/53/08f5cd-8eec-4d55-8812-c93659f76737/1/D5XJyafxmprXF-TapTDIXPmauXU.mft
File: D5XJyafxmprXF-TapTDIXPmauXU.mft (raw, json)
Hash identifier: WkXgNuBztUGXUnKWNh3Gm3UkYg3qjSwA8W6VqTQnYkA=
Subject key identifier: F9:AD:80:C2:A5:29:DB:BC:F3:78:95:FA:3F:4D:2D:DE:93:5B:AB:10
Authority key identifier: 0F:95:C9:C9:A7:F1:9A:9A:D7:17:E4:DA:A5:30:C8:5C:F9:9A:B9:75
Certificate issuer: /CN=0f95c9c9a7f19a9ad717e4daa530c85cf99ab975
Certificate serial: 019687367D29582A1A29E23FDFB1459AC1BB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/D5XJyafxmprXF-TapTDIXPmauXU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/53/08f5cd-8eec-4d55-8812-c93659f76737/1/D5XJyafxmprXF-TapTDIXPmauXU.mft
Manifest number: 0548
Signing time: Wed 30 Apr 2025 15:00:17 +0000
Manifest this update: Wed 30 Apr 2025 15:00:17 +0000
Manifest next update: Thu 01 May 2025 15:00:17 +0000
Files and hashes: 1: D5XJyafxmprXF-TapTDIXPmauXU.crl (hash: maIlepeYeoon9kqjIX+5EEHc/1gTsmdj63sAm6p/1Gs=)
2: dJjjOIsvcmwG1yw0BY5P71sFVUw.roa (hash: 71ssAltTmbpploHF43pU09n+JXavvKYPHb8mMd4Firs=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/53/08f5cd-8eec-4d55-8812-c93659f76737/1/D5XJyafxmprXF-TapTDIXPmauXU.crl
rsync://rpki.ripe.net/repository/DEFAULT/53/08f5cd-8eec-4d55-8812-c93659f76737/1/D5XJyafxmprXF-TapTDIXPmauXU.mft
rsync://rpki.ripe.net/repository/DEFAULT/D5XJyafxmprXF-TapTDIXPmauXU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 01 May 2025 13:16:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:87:36:7d:29:58:2a:1a:29:e2:3f:df:b1:45:9a:c1:bb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0f95c9c9a7f19a9ad717e4daa530c85cf99ab975
Validity
Not Before: Apr 30 15:00:17 2025 GMT
Not After : May 1 15:00:17 2025 GMT
Subject: CN=f9ad80c2a529dbbcf37895fa3f4d2dde935bab10
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:db:ad:9e:33:5a:ec:d1:38:57:be:1d:bc:58:38:
cf:f0:f5:5b:a7:94:ef:94:ce:90:5d:b3:e7:84:3b:
fa:ac:1e:4d:db:b5:b8:98:08:fb:65:95:1e:89:71:
c8:9f:e3:e6:fc:40:ed:0e:c5:a3:6a:c6:19:fc:2b:
c9:f5:9b:20:ee:dd:77:12:a1:7d:c4:b1:2a:36:6b:
2a:9d:b4:16:b2:30:65:a9:7e:f9:af:04:99:6d:7d:
70:ce:ee:18:45:3a:bc:e5:a2:b0:10:66:98:09:b6:
28:96:ab:51:15:fc:ee:60:28:8e:27:1d:9c:b4:7b:
e6:00:f0:98:5b:3d:61:aa:7b:3d:72:a1:1f:2f:83:
90:6e:37:c8:72:f8:b4:0c:85:6a:d5:09:64:54:ec:
03:8e:02:63:db:cf:31:ba:a8:8e:11:fa:31:3f:dd:
cd:97:e2:df:38:a3:7c:06:4e:7f:78:c6:55:b4:e4:
9d:8e:9f:bb:69:ac:47:8c:87:99:8f:e8:bd:6f:df:
cb:47:b1:39:f8:a0:df:d4:9e:b5:93:81:99:40:8f:
b5:43:7d:98:c2:a7:0f:b8:23:ee:c8:48:62:fe:bd:
13:6a:30:c0:85:b3:9c:f0:fd:ed:28:0f:66:32:ca:
f3:bb:ac:a3:da:6b:50:90:fd:50:b9:05:8f:8d:a7:
ee:a3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F9:AD:80:C2:A5:29:DB:BC:F3:78:95:FA:3F:4D:2D:DE:93:5B:AB:10
X509v3 Authority Key Identifier:
keyid:0F:95:C9:C9:A7:F1:9A:9A:D7:17:E4:DA:A5:30:C8:5C:F9:9A:B9:75
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/D5XJyafxmprXF-TapTDIXPmauXU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/53/08f5cd-8eec-4d55-8812-c93659f76737/1/D5XJyafxmprXF-TapTDIXPmauXU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/53/08f5cd-8eec-4d55-8812-c93659f76737/1/D5XJyafxmprXF-TapTDIXPmauXU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
b6:0c:22:4b:b9:a2:c0:1f:05:d5:fa:a2:d6:70:24:46:f8:39:
80:1b:d8:51:7b:01:81:de:b9:ac:5d:b0:e1:6a:45:f3:00:34:
77:64:37:d5:05:e5:52:ee:4c:8b:4b:9d:05:26:fb:5d:22:75:
59:df:20:c0:38:84:39:b3:38:e7:45:0c:88:0e:9d:1b:75:ac:
1a:16:0c:c2:f6:f4:91:8f:bc:29:2c:61:7f:6a:51:18:72:90:
d4:e0:bb:6f:b4:58:07:9e:06:b2:85:a8:4b:be:a7:53:ad:f4:
29:b2:f0:22:ea:aa:4d:58:19:2b:b8:3b:e3:ba:d5:ff:02:bb:
54:8f:5c:44:7b:11:e5:42:28:7a:c6:41:42:ab:0b:40:18:20:
df:77:35:9b:ab:13:c1:ed:e1:57:57:34:0f:80:42:85:7f:a7:
e1:b2:3a:94:99:78:b5:8d:b7:15:bf:5e:97:d3:cb:74:7e:10:
da:9f:77:8e:56:5c:8f:83:3e:e6:75:35:dd:d3:7f:a4:6d:c1:
37:79:39:1d:05:ad:23:a8:16:03:cb:c5:dd:52:f4:93:38:9c:
2a:db:67:a3:3a:6c:6b:54:bb:e3:61:a1:37:46:c9:43:92:62:
df:65:73:14:56:30:98:ad:77:8f:18:06:a4:34:71:df:b1:01:
47:6c:ee:10
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 30 21:27:37 2025 by rpki-client