Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b9/b40d25-f444-4f60-b162-d1502f7cf234/1/5oClYQES3yA5h_MvDl4VrTXnENI.mft
File: 5oClYQES3yA5h_MvDl4VrTXnENI.mft (raw, json)
Hash identifier: Ze6H5c+MtW0+7sm/D6J4jHWXheU9tHQWAnJfc7NaVT8=
Subject key identifier: 5E:5E:71:39:2F:9A:A3:C4:76:3D:7A:9B:F6:93:2E:52:F7:61:F0:03
Authority key identifier: E6:80:A5:61:01:12:DF:20:39:87:F3:2F:0E:5E:15:AD:35:E7:10:D2
Certificate issuer: /CN=e680a5610112df203987f32f0e5e15ad35e710d2
Certificate serial: 01976E19995046C0F3BD637F16B2B030E860
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/5oClYQES3yA5h_MvDl4VrTXnENI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b9/b40d25-f444-4f60-b162-d1502f7cf234/1/5oClYQES3yA5h_MvDl4VrTXnENI.mft
Manifest number: 0569
Signing time: Sat 14 Jun 2025 11:01:00 +0000
Manifest this update: Sat 14 Jun 2025 11:01:00 +0000
Manifest next update: Sun 15 Jun 2025 11:01:00 +0000
Files and hashes: 1: 5oClYQES3yA5h_MvDl4VrTXnENI.crl (hash: x1iZukQUZH05OCQbMGMzMptLYjEXTJjQL151vQqDEAE=)
2: DhNK6wzjByDnasFkDiVozXApAMA.roa (hash: axPPgHJK+DsZDTes1Z8jvmiFkJ86vZLUMhnI7D0ebHM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b9/b40d25-f444-4f60-b162-d1502f7cf234/1/5oClYQES3yA5h_MvDl4VrTXnENI.crl
rsync://rpki.ripe.net/repository/DEFAULT/b9/b40d25-f444-4f60-b162-d1502f7cf234/1/5oClYQES3yA5h_MvDl4VrTXnENI.mft
rsync://rpki.ripe.net/repository/DEFAULT/5oClYQES3yA5h_MvDl4VrTXnENI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 15 Jun 2025 03:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:6e:19:99:50:46:c0:f3:bd:63:7f:16:b2:b0:30:e8:60
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e680a5610112df203987f32f0e5e15ad35e710d2
Validity
Not Before: Jun 14 11:01:00 2025 GMT
Not After : Jun 15 11:01:00 2025 GMT
Subject: CN=5e5e71392f9aa3c4763d7a9bf6932e52f761f003
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:66:4c:05:23:40:a0:fe:0d:e4:1e:71:14:3f:
0f:a0:16:97:8a:1c:03:67:9a:89:ba:d5:a8:1d:ac:
49:b9:52:23:5b:69:70:f0:b6:98:2b:b9:ea:df:4c:
1d:1d:de:9a:99:30:93:8a:a0:70:9f:c3:70:45:3b:
8f:50:01:f2:81:aa:18:13:48:7d:fd:d4:3b:d9:2c:
63:e6:d8:0c:f2:48:68:70:71:84:77:09:26:cb:2a:
65:3c:1a:78:2d:3e:58:c3:93:55:3f:09:0d:57:22:
ca:49:08:69:72:e4:29:7c:ba:72:88:75:d6:e6:57:
a1:02:a9:7a:65:20:e0:e4:a4:4a:01:6a:f3:ac:66:
5b:e8:a6:89:84:e3:a1:d0:38:fc:b4:9c:34:a9:69:
e0:2b:a9:9f:6e:e7:4b:68:7e:83:f9:73:5a:dc:f2:
8a:cc:3f:fb:2b:a7:66:fc:f5:2c:93:f3:2e:4b:23:
4d:27:63:c7:7e:b2:6c:8f:92:c0:6c:27:27:e8:bf:
2b:1c:30:79:c2:d6:dc:0b:30:ba:3e:aa:79:23:40:
15:70:ce:70:ac:f4:f2:12:3b:96:e5:39:b6:f4:58:
ec:43:5b:e4:aa:b6:0e:9f:ac:23:00:78:d8:7b:aa:
82:ec:35:bb:a0:ba:b2:fc:24:64:12:85:86:01:d2:
3e:11
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5E:5E:71:39:2F:9A:A3:C4:76:3D:7A:9B:F6:93:2E:52:F7:61:F0:03
X509v3 Authority Key Identifier:
keyid:E6:80:A5:61:01:12:DF:20:39:87:F3:2F:0E:5E:15:AD:35:E7:10:D2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/5oClYQES3yA5h_MvDl4VrTXnENI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b9/b40d25-f444-4f60-b162-d1502f7cf234/1/5oClYQES3yA5h_MvDl4VrTXnENI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b9/b40d25-f444-4f60-b162-d1502f7cf234/1/5oClYQES3yA5h_MvDl4VrTXnENI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
bd:d4:1d:5e:5a:ee:28:b9:cf:52:02:f0:66:be:bd:eb:0e:9a:
05:ab:fd:c4:8e:fd:06:62:df:e6:df:5e:e1:56:33:5d:56:e7:
5f:26:47:33:44:68:1b:33:f1:f4:1c:78:69:55:9c:5e:10:e5:
88:c9:cf:21:5d:59:b1:89:fd:0b:11:7f:63:bf:e8:a0:43:93:
d9:3e:9f:dc:0a:71:a3:bb:24:28:2d:b5:62:c6:62:5a:9b:dd:
1e:5e:0f:9e:2a:23:67:7c:9b:6b:fa:77:92:6d:62:ec:9b:f0:
e5:97:cf:a2:9d:74:f3:fb:1d:9b:fb:37:45:7e:d8:45:0c:72:
e5:95:83:0c:90:ec:74:78:f9:65:4d:6d:fd:5f:b8:c5:0f:10:
e7:61:cd:06:b9:49:04:74:64:26:aa:95:bc:70:f5:7e:55:f5:
e7:b1:46:26:22:d0:6c:f8:13:3a:44:83:24:17:19:53:f3:db:
88:47:38:9a:90:d7:dc:d3:61:f4:7e:8a:88:35:a6:b3:e2:9f:
86:da:90:e4:09:ef:3e:7a:86:8b:a0:8b:0b:1c:46:df:93:a3:
a7:3c:24:1c:b2:e9:a4:3b:a4:cb:c7:1b:23:86:2b:5b:d4:75:
ec:91:ed:e6:53:27:7f:d8:cf:ce:46:44:1d:5e:1e:c0:7b:1a:
65:7e:fa:1f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 14 13:15:12 2025 by rpki-client