Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/86/65cf0a-ade3-40b1-9987-8c34e4cf9026/1/h5WLpmHENczSXCBgRi72ANJxnuA.mft
File: h5WLpmHENczSXCBgRi72ANJxnuA.mft (raw, json)
Hash identifier: mR/we0RNJI3dYWURJPmD01YcU0MVfeeWqOvaAsOxIIc=
Subject key identifier: 94:C6:43:9F:BF:FE:0D:49:90:3F:96:15:8A:29:0E:7B:C0:84:7F:8B
Authority key identifier: 87:95:8B:A6:61:C4:35:CC:D2:5C:20:60:46:2E:F6:00:D2:71:9E:E0
Certificate issuer: /CN=87958ba661c435ccd25c2060462ef600d2719ee0
Certificate serial: 019680225C82D2D88CD226E443BD8CF571AF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/h5WLpmHENczSXCBgRi72ANJxnuA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/86/65cf0a-ade3-40b1-9987-8c34e4cf9026/1/h5WLpmHENczSXCBgRi72ANJxnuA.mft
Manifest number: 1515
Signing time: Tue 29 Apr 2025 06:00:57 +0000
Manifest this update: Tue 29 Apr 2025 06:00:57 +0000
Manifest next update: Wed 30 Apr 2025 06:00:57 +0000
Files and hashes: 1: h5WLpmHENczSXCBgRi72ANJxnuA.crl (hash: u72DcMsg9PKvC9r+tkl5QipKdBJ6fJFix+x3BjdJriM=)
2: jQqQfOrb2tEbgL6-n1pYKtKDCGI.roa (hash: urbNu0k2kZWVDcdCEYQ210AYS3ke0pUxaEecPK2agnE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/86/65cf0a-ade3-40b1-9987-8c34e4cf9026/1/h5WLpmHENczSXCBgRi72ANJxnuA.crl
rsync://rpki.ripe.net/repository/DEFAULT/86/65cf0a-ade3-40b1-9987-8c34e4cf9026/1/h5WLpmHENczSXCBgRi72ANJxnuA.mft
rsync://rpki.ripe.net/repository/DEFAULT/h5WLpmHENczSXCBgRi72ANJxnuA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 30 Apr 2025 06:00:57 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:80:22:5c:82:d2:d8:8c:d2:26:e4:43:bd:8c:f5:71:af
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=87958ba661c435ccd25c2060462ef600d2719ee0
Validity
Not Before: Apr 29 06:00:57 2025 GMT
Not After : Apr 30 06:00:57 2025 GMT
Subject: CN=94c6439fbffe0d49903f96158a290e7bc0847f8b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:ee:dd:de:fa:2e:35:84:d0:e5:c6:19:e8:fb:
a8:8d:3f:83:28:79:21:f5:cc:81:95:69:08:f4:3a:
78:6b:3f:94:5c:60:7d:f8:ad:59:63:a4:54:a5:2b:
a3:8c:1e:5b:e0:db:8f:83:42:5b:78:3a:fa:8a:f2:
e8:3b:16:37:b7:99:01:28:a8:a9:f0:ee:15:3b:06:
91:81:f5:c6:85:73:47:1f:69:73:ed:8e:f7:59:f5:
d6:42:fd:da:58:3e:a4:04:1b:3c:f8:b0:ce:f3:bf:
f4:43:7d:7c:b8:93:85:06:45:57:b9:a1:17:e2:26:
2a:36:61:67:ac:71:1b:6f:53:7b:3f:f6:a6:95:e3:
4f:4c:ed:4f:61:18:5c:03:fb:8a:72:ee:f3:63:d4:
25:c7:0c:8e:31:93:c7:98:5c:f1:23:73:19:de:5c:
f9:3e:d4:cb:8e:ec:88:45:81:95:47:cf:a3:e0:c5:
21:c5:de:99:bc:9b:a2:b6:49:64:6c:40:04:20:fc:
8e:04:bf:07:17:57:3f:be:d0:37:71:f0:ef:d9:f0:
f6:58:8d:87:00:5a:76:66:d8:99:97:0b:cd:76:0b:
c3:9c:83:2c:4a:9c:9d:16:f8:24:23:c9:81:a0:22:
d0:e2:16:64:20:c9:30:0e:88:f4:f4:d3:6e:02:94:
2b:9f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
94:C6:43:9F:BF:FE:0D:49:90:3F:96:15:8A:29:0E:7B:C0:84:7F:8B
X509v3 Authority Key Identifier:
keyid:87:95:8B:A6:61:C4:35:CC:D2:5C:20:60:46:2E:F6:00:D2:71:9E:E0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/h5WLpmHENczSXCBgRi72ANJxnuA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/86/65cf0a-ade3-40b1-9987-8c34e4cf9026/1/h5WLpmHENczSXCBgRi72ANJxnuA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/86/65cf0a-ade3-40b1-9987-8c34e4cf9026/1/h5WLpmHENczSXCBgRi72ANJxnuA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
56:e9:e2:b3:fb:95:5c:47:28:3d:49:18:7f:e9:33:5c:e2:7c:
b1:c1:fe:30:fb:69:ab:d3:45:84:22:1b:30:64:0a:61:26:cd:
32:2b:e4:bb:6e:28:10:68:5f:06:85:99:b4:ae:d5:2a:2a:75:
20:16:6e:8f:2f:19:99:3e:ac:7d:9f:aa:7b:25:36:a6:03:7c:
67:f4:e7:b1:4c:96:d7:5c:4b:eb:2b:62:98:19:fe:c6:ca:cd:
c4:1e:e4:71:00:d5:86:b1:8d:d7:e6:ba:a5:fe:c2:d7:12:0d:
ad:37:2c:0e:65:2f:5e:91:08:ee:9e:70:ae:b4:19:0d:ec:e8:
14:ec:fe:0e:02:3b:ae:6a:f2:a7:d9:d4:d1:3f:43:99:8d:83:
71:e2:e3:ef:d9:fa:62:cc:0a:4c:e1:ba:b3:89:f2:54:d3:ac:
e6:b6:55:b2:b2:e4:5a:8c:3a:bb:d7:f3:91:2c:3f:88:76:5d:
8c:43:6c:e4:1f:8b:a0:53:cf:05:08:18:d3:a0:e2:7c:e5:7a:
33:80:7d:52:5a:36:f4:29:8c:27:82:0d:a8:3c:5e:c7:0b:d5:
a2:fc:4b:3d:41:48:e1:48:25:3c:f9:e0:65:4a:52:48:34:24:
f6:ab:64:25:7b:6a:59:2b:d0:f9:e1:9a:95:2d:7d:49:da:70:
83:8d:d8:f2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 29 11:31:16 2025 by rpki-client