Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6a/ba1c97-0e56-4840-b613-b361a2c457c4/1/5fmFqUAlRIkU3qoXQiBzBDklE90.mft
File: 5fmFqUAlRIkU3qoXQiBzBDklE90.mft (raw, json)
Hash identifier: Iwpy3wOAC0rBxZuFQ6xLk63hVX3T3qHeZz9ksQ5yDYg=
Subject key identifier: 8C:A4:5A:69:F5:EC:55:85:29:65:ED:CE:3B:4C:64:38:A9:95:D1:FB
Authority key identifier: E5:F9:85:A9:40:25:44:89:14:DE:AA:17:42:20:73:04:39:25:13:DD
Certificate issuer: /CN=e5f985a94025448914deaa1742207304392513dd
Certificate serial: 019679B1B6F9BB3B517A32F1268A60D2C330
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/5fmFqUAlRIkU3qoXQiBzBDklE90.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6a/ba1c97-0e56-4840-b613-b361a2c457c4/1/5fmFqUAlRIkU3qoXQiBzBDklE90.mft
Manifest number: E2
Signing time: Mon 28 Apr 2025 00:00:11 +0000
Manifest this update: Mon 28 Apr 2025 00:00:11 +0000
Manifest next update: Tue 29 Apr 2025 00:00:11 +0000
Files and hashes: 1: 5fmFqUAlRIkU3qoXQiBzBDklE90.crl (hash: VKnuyqnn5wuB3b0EnsX7E6ODTUxkmkSzpRSPp8NrP9Q=)
2: nAZJBZ6VvJoN3Mjanp3D7Pbl_-s.roa (hash: toI1tT2hR8zRYJnuO8W3FR+ZELFSDV5ej6CQ6AsxKnE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/6a/ba1c97-0e56-4840-b613-b361a2c457c4/1/5fmFqUAlRIkU3qoXQiBzBDklE90.crl
rsync://rpki.ripe.net/repository/DEFAULT/6a/ba1c97-0e56-4840-b613-b361a2c457c4/1/5fmFqUAlRIkU3qoXQiBzBDklE90.mft
rsync://rpki.ripe.net/repository/DEFAULT/5fmFqUAlRIkU3qoXQiBzBDklE90.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 28 Apr 2025 16:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:79:b1:b6:f9:bb:3b:51:7a:32:f1:26:8a:60:d2:c3:30
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e5f985a94025448914deaa1742207304392513dd
Validity
Not Before: Apr 28 00:00:11 2025 GMT
Not After : Apr 29 00:00:11 2025 GMT
Subject: CN=8ca45a69f5ec55852965edce3b4c6438a995d1fb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:eb:35:83:f7:6a:23:a6:a4:fa:e5:2e:44:0f:12:
d9:f0:50:7e:34:56:a2:64:6f:34:f3:e4:11:f6:67:
f6:56:61:8d:85:d2:dd:82:9a:7d:b6:72:55:8a:dd:
6a:ab:47:9c:7e:d4:c7:b2:6c:18:67:51:a7:ce:9c:
d3:ba:e3:4f:e0:21:04:4f:a6:07:20:4d:ae:42:86:
de:51:9e:15:5d:65:fb:69:41:b2:dc:3c:9d:56:8a:
07:46:20:45:0f:56:a4:b3:76:1d:4b:40:7d:00:1e:
6a:82:be:d2:5c:b8:95:25:32:77:62:83:03:22:c0:
85:01:39:bd:3f:57:eb:03:54:66:cd:31:aa:ae:00:
95:17:e5:ff:4e:47:c6:f1:bb:37:9e:98:45:6d:f3:
a7:e0:e8:1f:5d:5c:74:b1:b4:4d:0d:04:af:66:e7:
b4:d2:64:b4:23:cc:9d:fc:87:b5:45:63:1b:cf:44:
d7:77:c3:c3:76:f9:c5:46:6c:12:91:4b:be:e6:b4:
1f:86:db:d3:94:76:e7:3d:3d:31:71:22:40:d3:5e:
aa:8a:d8:60:68:57:ac:2a:23:76:6c:c5:0b:52:54:
75:a5:26:43:74:70:7f:e0:fd:43:47:83:ed:00:31:
7b:ca:42:28:eb:be:bc:9e:d1:cf:5e:a2:0b:df:0b:
eb:19
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8C:A4:5A:69:F5:EC:55:85:29:65:ED:CE:3B:4C:64:38:A9:95:D1:FB
X509v3 Authority Key Identifier:
keyid:E5:F9:85:A9:40:25:44:89:14:DE:AA:17:42:20:73:04:39:25:13:DD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/5fmFqUAlRIkU3qoXQiBzBDklE90.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6a/ba1c97-0e56-4840-b613-b361a2c457c4/1/5fmFqUAlRIkU3qoXQiBzBDklE90.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6a/ba1c97-0e56-4840-b613-b361a2c457c4/1/5fmFqUAlRIkU3qoXQiBzBDklE90.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
3d:6c:eb:4c:43:c6:e7:ec:a2:ea:e1:6b:68:6e:90:7c:7e:b0:
40:30:f5:df:8e:d2:e3:33:d1:7a:32:b0:1e:36:ad:a9:31:2f:
77:90:bd:9d:f0:c1:b6:b1:1b:43:56:82:60:25:80:0d:d5:c7:
68:a3:c9:ff:de:f0:a3:73:e6:2f:e3:93:e3:c4:cd:1e:a6:8b:
94:c7:ff:b4:70:c1:b1:6a:ea:48:d3:9e:09:92:b5:57:2c:a6:
f5:fd:a3:40:9c:f3:e4:ed:01:f2:d5:66:b1:af:a5:33:67:76:
79:82:0b:5c:57:0a:8b:98:9c:b7:6d:e2:55:bb:a0:f5:11:b2:
b4:75:6d:f3:1e:98:26:ce:fd:6a:76:56:85:73:10:4d:04:4e:
4a:0a:e5:99:eb:2f:2c:a5:dd:24:98:df:b9:9b:6d:05:d0:98:
b1:69:1c:75:7f:ab:85:b5:0b:33:f0:99:14:89:99:42:94:3a:
89:10:01:c8:4c:49:ef:2b:9e:8b:20:ef:92:93:62:56:fd:4e:
c5:4b:09:1c:41:47:4a:c5:8d:44:90:35:1a:56:1f:6e:fb:fc:
35:b8:b3:4d:90:0a:7b:0c:19:e1:6a:28:bf:2f:c9:04:55:f1:
ed:45:38:88:81:01:b9:c6:06:94:d8:34:08:32:a8:f8:48:1b:
77:a8:8a:70
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 28 02:48:10 2025 by rpki-client