Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b5/3a6bdd-0d3c-4a0d-8db6-2dd25184b0d0/1/1DNtXnTx-LfbEynwC7hXJBrnTRk.mft
File: 1DNtXnTx-LfbEynwC7hXJBrnTRk.mft (raw, json)
Hash identifier: RpuavlRMgt6gg7uUtKArV6Zaw77mF3aTf3Zny5A/Cgw=
Subject key identifier: F5:2B:5E:20:9C:62:52:0E:D2:9B:B9:99:53:11:B5:5C:F5:03:CF:3F
Authority key identifier: D4:33:6D:5E:74:F1:F8:B7:DB:13:29:F0:0B:B8:57:24:1A:E7:4D:19
Certificate issuer: /CN=d4336d5e74f1f8b7db1329f00bb857241ae74d19
Certificate serial: 01967A5714D69FDE424408BB7C5FB1A0338E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1DNtXnTx-LfbEynwC7hXJBrnTRk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b5/3a6bdd-0d3c-4a0d-8db6-2dd25184b0d0/1/1DNtXnTx-LfbEynwC7hXJBrnTRk.mft
Manifest number: 029A
Signing time: Mon 28 Apr 2025 03:00:49 +0000
Manifest this update: Mon 28 Apr 2025 03:00:49 +0000
Manifest next update: Tue 29 Apr 2025 03:00:49 +0000
Files and hashes: 1: 1DNtXnTx-LfbEynwC7hXJBrnTRk.crl (hash: sBrc3p1/pKU5dyp0CNdiO81wSqTB7cRmd9ehNqxeFoE=)
2: L86Czh-hgFnJfXYShvX9w1KKWEg.roa (hash: UlpXjqDOYfOCQf+VBo1cHNYWZUpj4u/uB6dnGVYlbBQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b5/3a6bdd-0d3c-4a0d-8db6-2dd25184b0d0/1/1DNtXnTx-LfbEynwC7hXJBrnTRk.crl
rsync://rpki.ripe.net/repository/DEFAULT/b5/3a6bdd-0d3c-4a0d-8db6-2dd25184b0d0/1/1DNtXnTx-LfbEynwC7hXJBrnTRk.mft
rsync://rpki.ripe.net/repository/DEFAULT/1DNtXnTx-LfbEynwC7hXJBrnTRk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 28 Apr 2025 23:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:7a:57:14:d6:9f:de:42:44:08:bb:7c:5f:b1:a0:33:8e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d4336d5e74f1f8b7db1329f00bb857241ae74d19
Validity
Not Before: Apr 28 03:00:49 2025 GMT
Not After : Apr 29 03:00:49 2025 GMT
Subject: CN=f52b5e209c62520ed29bb9995311b55cf503cf3f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:95:a2:82:7b:c2:19:ff:18:60:ca:81:81:2e:
9e:2c:81:4f:a8:bd:dc:ab:0b:4d:04:66:b9:20:e1:
ad:0f:d3:3e:06:0b:80:ad:ec:c6:d9:b3:99:ee:5e:
fa:78:bb:07:cc:f8:86:b3:7d:2f:be:f9:37:d3:a3:
86:e1:35:0d:78:76:73:64:69:15:34:fc:73:4d:c5:
d3:21:f8:09:68:48:ba:28:9b:83:a6:a6:8c:2e:ef:
37:7a:e8:90:17:37:92:e1:5d:56:af:13:7a:b9:8b:
f6:6b:7c:99:a4:82:d0:1c:d3:41:3a:df:a0:a7:9b:
1b:05:0c:74:80:0c:07:5c:65:8b:5a:91:16:81:50:
66:29:b2:19:9d:10:17:2b:00:5a:90:e3:91:9e:6a:
67:48:31:f3:79:35:f4:62:a1:93:e5:ac:8a:cc:1c:
c7:fa:9d:ff:b0:a7:95:74:5e:47:a1:48:df:c0:80:
df:f5:24:86:0e:95:f1:b0:0f:a0:92:4b:dc:7a:2b:
e4:ad:14:79:0f:bd:51:e6:a8:ef:20:44:eb:53:3f:
c4:9b:44:b2:a2:72:d6:af:39:09:38:52:c6:10:19:
64:e7:71:fb:63:58:b6:f2:ef:f0:bd:44:a2:94:62:
ce:85:12:c5:6f:03:05:32:87:c5:41:64:6e:f0:6d:
24:b3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F5:2B:5E:20:9C:62:52:0E:D2:9B:B9:99:53:11:B5:5C:F5:03:CF:3F
X509v3 Authority Key Identifier:
keyid:D4:33:6D:5E:74:F1:F8:B7:DB:13:29:F0:0B:B8:57:24:1A:E7:4D:19
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1DNtXnTx-LfbEynwC7hXJBrnTRk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b5/3a6bdd-0d3c-4a0d-8db6-2dd25184b0d0/1/1DNtXnTx-LfbEynwC7hXJBrnTRk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b5/3a6bdd-0d3c-4a0d-8db6-2dd25184b0d0/1/1DNtXnTx-LfbEynwC7hXJBrnTRk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
0b:9f:c6:3c:2c:96:ed:8c:0e:cc:c4:df:f9:56:6d:7d:08:c5:
19:47:b0:62:28:e3:32:6d:cf:86:54:22:bb:10:53:82:ad:ab:
4b:d7:56:7b:7e:54:f2:95:da:5c:fd:0a:d1:0d:6d:77:4c:50:
35:31:b6:89:93:83:b9:c1:d2:9f:95:9e:a4:cb:a4:7f:38:84:
e2:ab:a3:1e:eb:4d:0c:20:3d:6d:4d:ac:c0:5f:ad:cb:8b:34:
d9:9b:a0:60:32:8d:73:d0:cd:3d:49:bf:82:b9:00:bd:6b:fa:
04:74:b2:d0:5d:ac:ae:79:a7:67:21:5f:26:f3:bc:ed:fc:5e:
69:eb:27:d8:e5:f5:92:5e:af:86:fb:4b:b8:7d:40:b3:26:7c:
86:92:dc:a8:1d:6e:bf:46:ac:fa:bc:60:8d:7e:20:5b:38:97:
db:63:53:cc:c3:cc:a0:48:67:28:65:5c:f0:8b:3b:95:9c:03:
84:14:4b:a2:9a:1c:6d:e8:ae:5b:ab:c5:84:1b:15:d0:69:9c:
cb:2d:14:93:03:35:09:a7:69:a9:9b:5b:f7:77:51:bb:c0:c0:
11:7f:7a:85:76:71:ea:3a:63:c7:c3:9d:2e:a6:f2:58:fd:56:
df:1b:cd:0c:66:ad:96:aa:32:0a:8c:42:70:67:8c:1d:86:76:
19:5f:34:db
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 28 09:11:31 2025 by rpki-client