Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/54/5e3185-38c5-4a5b-bf24-c953e3398c63/1/_RHEZUr3AuWW61DRP6SG202bzgo.mft
File: _RHEZUr3AuWW61DRP6SG202bzgo.mft (raw, json)
Hash identifier: IYub7dXqYbwpy7B/1uG9qpuCA339ftjxDiZ/Jby7NeY=
Subject key identifier: 0C:56:7D:46:07:71:D9:9D:E4:46:48:3B:C3:2F:5C:EE:52:9E:79:5E
Authority key identifier: FD:11:C4:65:4A:F7:02:E5:96:EB:50:D1:3F:A4:86:DB:4D:9B:CE:0A
Certificate issuer: /CN=fd11c4654af702e596eb50d13fa486db4d9bce0a
Certificate serial: 0196A2ADEEC2AED0F7E48CC94048B56B39C1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/_RHEZUr3AuWW61DRP6SG202bzgo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/54/5e3185-38c5-4a5b-bf24-c953e3398c63/1/_RHEZUr3AuWW61DRP6SG202bzgo.mft
Manifest number: 1526
Signing time: Mon 05 May 2025 23:00:29 +0000
Manifest this update: Mon 05 May 2025 23:00:29 +0000
Manifest next update: Tue 06 May 2025 23:00:29 +0000
Files and hashes: 1: W3jKuxB_RcgliKc6SOrb-E9lQW4.roa (hash: flRFJj0cuA1GRJx+AJmEhdqQRbsG/XKga+ETKIMZCEI=)
2: _RHEZUr3AuWW61DRP6SG202bzgo.crl (hash: vKGFMTma6wOz/uOfqC0G4TEmqUF3+DEwyG9oS7La2qY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/54/5e3185-38c5-4a5b-bf24-c953e3398c63/1/_RHEZUr3AuWW61DRP6SG202bzgo.crl
rsync://rpki.ripe.net/repository/DEFAULT/54/5e3185-38c5-4a5b-bf24-c953e3398c63/1/_RHEZUr3AuWW61DRP6SG202bzgo.mft
rsync://rpki.ripe.net/repository/DEFAULT/_RHEZUr3AuWW61DRP6SG202bzgo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 06 May 2025 18:19:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:a2:ad:ee:c2:ae:d0:f7:e4:8c:c9:40:48:b5:6b:39:c1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=fd11c4654af702e596eb50d13fa486db4d9bce0a
Validity
Not Before: May 5 23:00:29 2025 GMT
Not After : May 6 23:00:29 2025 GMT
Subject: CN=0c567d460771d99de446483bc32f5cee529e795e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:e0:a3:3a:71:46:a5:ea:65:48:5d:a2:e2:9c:
c1:50:41:d9:55:4f:1a:be:66:c7:b8:5c:49:f1:0a:
0f:c6:97:8c:fb:60:40:04:2e:87:21:57:80:7c:cb:
5b:12:a7:1a:9a:6c:60:24:db:7c:35:02:4c:58:a8:
ac:c1:6f:eb:90:24:b9:d3:1a:1d:7c:7c:97:7f:13:
f0:c3:06:6b:d3:39:64:c5:92:74:c4:21:cf:b0:27:
77:40:b4:f5:ba:a0:37:cb:c4:be:5f:a2:7a:47:63:
16:1a:a8:26:24:46:e9:5f:bf:5b:93:91:9a:81:18:
cc:cd:9d:c8:9d:aa:08:a1:6f:74:45:07:b0:2e:fd:
c0:f3:1b:64:7e:f7:11:6c:44:64:bf:71:13:23:91:
32:0b:79:99:2a:ed:32:2f:88:a0:6b:d9:a7:6f:18:
85:ee:59:3c:9d:af:e0:5a:f3:76:7c:2d:94:a8:01:
a0:88:87:b9:1b:6b:21:3a:a7:74:ba:eb:ac:76:27:
f9:f3:cf:98:95:32:ea:ef:d0:8a:6a:41:52:15:ca:
3d:56:fe:b3:97:be:6a:b5:02:66:86:49:e0:9d:f2:
4e:09:64:50:05:17:bf:11:cd:91:8e:83:58:5d:22:
ec:8f:a5:8b:1b:8c:15:b2:01:26:fb:e0:89:d7:e2:
87:af
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0C:56:7D:46:07:71:D9:9D:E4:46:48:3B:C3:2F:5C:EE:52:9E:79:5E
X509v3 Authority Key Identifier:
keyid:FD:11:C4:65:4A:F7:02:E5:96:EB:50:D1:3F:A4:86:DB:4D:9B:CE:0A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/_RHEZUr3AuWW61DRP6SG202bzgo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/54/5e3185-38c5-4a5b-bf24-c953e3398c63/1/_RHEZUr3AuWW61DRP6SG202bzgo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/54/5e3185-38c5-4a5b-bf24-c953e3398c63/1/_RHEZUr3AuWW61DRP6SG202bzgo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
91:f4:24:5a:ad:37:64:11:52:9f:b1:bf:a9:56:82:17:89:a5:
24:8d:64:91:96:9c:15:9b:14:58:27:fa:d6:6f:9e:5e:14:0c:
a1:c0:0a:79:b2:80:b1:3c:75:3e:fc:cd:a0:3b:d2:8f:f8:fc:
47:2b:c5:20:18:ed:d6:fb:d0:ed:4b:bf:4d:56:ca:c8:f2:0b:
2d:c7:9c:6f:c7:8b:43:3c:51:ed:29:12:e0:6c:80:b1:4d:5c:
36:d6:af:52:94:b1:e5:3f:17:be:53:8c:28:81:20:43:75:50:
1e:ee:61:cf:fa:e2:9b:51:24:43:61:0c:3a:1e:2d:3b:e5:7c:
5b:b7:87:72:83:39:d3:df:e0:6a:6e:67:81:73:de:f7:89:a1:
6b:e8:1d:c8:32:4b:f6:88:84:69:5e:08:ca:c0:62:ef:86:ef:
af:ad:1b:f8:1d:2b:c3:7c:bb:97:39:e6:12:2c:1b:21:ec:00:
36:7a:f4:75:01:3b:e2:a7:9d:6d:d6:78:42:28:ba:56:be:66:
e8:6e:64:75:d0:4c:c7:5d:12:48:53:77:0e:f7:64:44:ed:b7:
bc:85:bc:ae:3e:6c:33:4b:1f:81:da:52:3e:81:6d:48:bd:36:
28:93:0c:b6:60:66:fb:c5:f0:8f:d1:3a:51:95:8b:f8:ef:8b:
62:35:dc:51
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue May 6 03:30:53 2025 by rpki-client