Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5a/e0559d-abe6-443b-a978-5e7ded1421da/1/WzgltIs1me_6oLyBqN3bmPHYAsQ.mft
File: WzgltIs1me_6oLyBqN3bmPHYAsQ.mft (raw, json)
Hash identifier: TalwSQu5Ba8gvht1i5BLoQHJsXALNcXSRTp2kHfsLXU=
Subject key identifier: 96:FE:C7:0F:7E:DB:B0:36:F7:AD:07:BF:47:16:96:E0:7E:75:96:F3
Authority key identifier: 5B:38:25:B4:8B:35:99:EF:FA:A0:BC:81:A8:DD:DB:98:F1:D8:02:C4
Certificate issuer: /CN=5b3825b48b3599effaa0bc81a8dddb98f1d802c4
Certificate serial: 01976DABBFA0A64026BA0ED815A40AC93D70
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/WzgltIs1me_6oLyBqN3bmPHYAsQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5a/e0559d-abe6-443b-a978-5e7ded1421da/1/WzgltIs1me_6oLyBqN3bmPHYAsQ.mft
Manifest number: 1520
Signing time: Sat 14 Jun 2025 09:01:01 +0000
Manifest this update: Sat 14 Jun 2025 09:01:01 +0000
Manifest next update: Sun 15 Jun 2025 09:01:01 +0000
Files and hashes: 1: WzgltIs1me_6oLyBqN3bmPHYAsQ.crl (hash: AeWVyW4DZx0EVEpG1vTfoUFbzbtsW21UCK9BFQFFQs8=)
2: iiZidHMAHkbcf8XyOTt3Z_vw0jE.roa (hash: xKnilsXqPSaJ4FjR+VlNoOzanS4pqyzg7Ofj3A9rVOQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5a/e0559d-abe6-443b-a978-5e7ded1421da/1/WzgltIs1me_6oLyBqN3bmPHYAsQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/5a/e0559d-abe6-443b-a978-5e7ded1421da/1/WzgltIs1me_6oLyBqN3bmPHYAsQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/WzgltIs1me_6oLyBqN3bmPHYAsQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 15 Jun 2025 01:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:6d:ab:bf:a0:a6:40:26:ba:0e:d8:15:a4:0a:c9:3d:70
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5b3825b48b3599effaa0bc81a8dddb98f1d802c4
Validity
Not Before: Jun 14 09:01:01 2025 GMT
Not After : Jun 15 09:01:01 2025 GMT
Subject: CN=96fec70f7edbb036f7ad07bf471696e07e7596f3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:eb:5a:f9:3b:0c:c1:48:6c:00:ca:2f:68:c8:67:
22:b7:bc:cd:4a:27:be:9c:4e:09:a8:89:76:4a:e9:
32:65:71:71:4e:25:53:80:bf:2b:1d:38:c7:d7:bb:
ca:89:c7:a1:1e:d5:36:a0:2e:b0:fc:f3:4a:b5:98:
7e:b0:4e:88:c3:09:25:87:fa:9f:2a:ea:83:3c:24:
38:39:a0:77:54:42:5b:e3:32:47:d5:ba:35:30:63:
8f:5b:37:f9:00:25:bb:47:f6:e4:65:64:29:30:e8:
d9:7f:ba:18:b2:1c:ef:34:e7:63:66:99:35:18:16:
f6:8a:c2:48:e7:dc:ee:a5:1c:62:26:d2:46:08:05:
ff:a3:07:43:a6:39:39:b9:55:40:e0:88:4f:87:e8:
bf:04:db:a2:19:1a:c6:ec:88:75:13:8b:d1:43:c8:
70:18:d1:a7:38:f9:c8:d0:3e:94:5b:6b:d4:52:90:
ef:cd:ec:26:42:79:44:48:79:d4:3b:b6:bc:be:52:
62:35:50:30:86:98:42:4f:89:cb:5d:a2:6e:c8:c1:
70:58:6c:de:03:44:d9:63:bd:bb:39:cf:e8:d8:cb:
e8:a8:63:5a:51:8a:02:a9:ed:58:7d:58:2f:5a:bd:
d9:93:26:45:9e:4f:3f:85:f3:6a:0c:0a:76:e0:9c:
57:1b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
96:FE:C7:0F:7E:DB:B0:36:F7:AD:07:BF:47:16:96:E0:7E:75:96:F3
X509v3 Authority Key Identifier:
keyid:5B:38:25:B4:8B:35:99:EF:FA:A0:BC:81:A8:DD:DB:98:F1:D8:02:C4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/WzgltIs1me_6oLyBqN3bmPHYAsQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/e0559d-abe6-443b-a978-5e7ded1421da/1/WzgltIs1me_6oLyBqN3bmPHYAsQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/e0559d-abe6-443b-a978-5e7ded1421da/1/WzgltIs1me_6oLyBqN3bmPHYAsQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
a4:5b:04:c8:9f:29:5b:35:82:3e:f7:cc:db:12:d7:2d:28:1a:
3a:7f:54:83:6d:ab:27:fb:e1:e9:d0:9a:e4:0a:f4:b7:1f:68:
a6:6b:04:de:0b:57:f2:0b:42:7b:8b:fe:83:bb:a8:7e:18:58:
b8:39:14:bc:61:cb:4a:01:97:d8:82:42:d8:c3:12:e1:18:bd:
0d:6a:2d:3b:97:de:7b:d7:61:a4:d2:dc:02:9b:5e:e3:28:5b:
e1:eb:4e:dd:25:5a:ef:fe:cd:d1:05:fc:5c:a4:fc:d8:1b:8b:
18:5a:0a:b5:6d:60:3a:47:87:df:58:86:2c:e1:72:8f:ee:23:
da:aa:ab:9a:6c:ff:5c:e6:68:49:c7:12:14:b6:58:85:7f:4c:
d1:5d:c4:b1:0e:44:0e:c5:21:88:59:0f:e0:19:0a:0d:98:c6:
73:4f:89:64:86:46:e8:28:9f:09:6a:ac:fc:f2:7e:6a:20:48:
ba:e8:b4:d7:78:c1:6b:3c:93:27:0d:09:6e:fb:cf:a6:95:a8:
80:0c:59:92:b4:68:f3:62:5c:77:0c:48:bb:3d:2b:a1:ce:43:
e1:04:c1:f8:0c:d4:91:53:40:87:b6:33:a0:1a:c6:ae:07:ec:
45:33:30:72:d1:1f:a0:b8:98:d9:cf:d4:88:30:3e:f7:cc:8f:
2e:48:3b:06
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 14 12:09:14 2025 by rpki-client