Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f1/c2ee7a-cbb7-470e-b965-907daa46463b/1/cHl9sHv21Fl6wtyL40-JKYAI8s0.mft
File: cHl9sHv21Fl6wtyL40-JKYAI8s0.mft (raw, json)
Hash identifier: /d1/Su3CRPIJElUSuHo1XlsKQPjCE8wyaIl6H0LTpPQ=
Subject key identifier: C5:A5:3A:E6:0C:59:66:92:A3:B2:E4:CF:91:CA:A9:06:AF:92:1E:BD
Authority key identifier: 70:79:7D:B0:7B:F6:D4:59:7A:C2:DC:8B:E3:4F:89:29:80:08:F2:CD
Certificate issuer: /CN=70797db07bf6d4597ac2dc8be34f89298008f2cd
Certificate serial: 01968134A51D849AD8EB2782E85457EF72EC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cHl9sHv21Fl6wtyL40-JKYAI8s0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f1/c2ee7a-cbb7-470e-b965-907daa46463b/1/cHl9sHv21Fl6wtyL40-JKYAI8s0.mft
Manifest number: 1519
Signing time: Tue 29 Apr 2025 11:00:33 +0000
Manifest this update: Tue 29 Apr 2025 11:00:33 +0000
Manifest next update: Wed 30 Apr 2025 11:00:33 +0000
Files and hashes: 1: aSlfyLBw9tgMgXUQzZob6GMDMuM.roa (hash: DQ6riuAx/+y5wvPOEmkDzdZnToFJiPSBUt3sxo+9O3s=)
2: cHl9sHv21Fl6wtyL40-JKYAI8s0.crl (hash: Zm05ZhG9Z2kWBcGQdE0HlmVPIM352ej8Z8lelcWwbnA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f1/c2ee7a-cbb7-470e-b965-907daa46463b/1/cHl9sHv21Fl6wtyL40-JKYAI8s0.crl
rsync://rpki.ripe.net/repository/DEFAULT/f1/c2ee7a-cbb7-470e-b965-907daa46463b/1/cHl9sHv21Fl6wtyL40-JKYAI8s0.mft
rsync://rpki.ripe.net/repository/DEFAULT/cHl9sHv21Fl6wtyL40-JKYAI8s0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 30 Apr 2025 09:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:81:34:a5:1d:84:9a:d8:eb:27:82:e8:54:57:ef:72:ec
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=70797db07bf6d4597ac2dc8be34f89298008f2cd
Validity
Not Before: Apr 29 11:00:33 2025 GMT
Not After : Apr 30 11:00:33 2025 GMT
Subject: CN=c5a53ae60c596692a3b2e4cf91caa906af921ebd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:86:93:05:29:3b:0b:e6:43:79:62:21:d3:0b:
d0:ae:15:64:d7:ab:66:86:cb:ba:0d:53:21:31:5e:
c8:7b:46:e6:0e:4a:4b:34:4a:c4:72:d9:4b:50:76:
58:17:e3:1f:12:26:04:bd:00:c3:a8:07:41:b0:88:
64:6a:26:19:a8:27:69:be:9d:68:04:39:a1:84:19:
99:1c:96:3f:ab:26:ca:74:bb:d6:64:cf:0d:fd:2a:
e6:25:ee:a0:b8:0a:86:d9:57:eb:64:e6:e5:59:24:
b9:f5:42:a5:38:78:80:a8:c0:27:05:9a:8b:6e:c5:
f5:2e:36:22:d1:44:e2:5d:be:f2:1b:63:9b:4e:a7:
9c:89:5d:57:f4:09:f4:5f:fe:57:fa:ab:5f:70:9a:
22:d9:fe:41:b9:1b:de:5b:f1:69:13:d4:7c:54:91:
2a:f4:41:ec:d2:f1:d3:6c:0f:e7:f5:1d:89:55:d9:
8e:7b:c3:20:2c:1a:36:f1:63:58:9d:6f:57:a1:28:
0c:a9:7c:d0:ad:e0:2a:14:66:ad:4f:09:3a:4a:71:
ae:40:56:ce:c8:46:32:ef:57:82:44:79:29:62:81:
42:d0:6c:25:2e:f5:d1:c1:66:97:0a:e7:d9:21:4f:
27:6a:66:ce:f3:be:eb:97:1c:db:9a:69:63:d9:8e:
ce:a3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C5:A5:3A:E6:0C:59:66:92:A3:B2:E4:CF:91:CA:A9:06:AF:92:1E:BD
X509v3 Authority Key Identifier:
keyid:70:79:7D:B0:7B:F6:D4:59:7A:C2:DC:8B:E3:4F:89:29:80:08:F2:CD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cHl9sHv21Fl6wtyL40-JKYAI8s0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f1/c2ee7a-cbb7-470e-b965-907daa46463b/1/cHl9sHv21Fl6wtyL40-JKYAI8s0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f1/c2ee7a-cbb7-470e-b965-907daa46463b/1/cHl9sHv21Fl6wtyL40-JKYAI8s0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
ac:99:b2:4f:4f:f5:fe:58:18:29:fa:bc:4b:83:6c:d6:07:45:
d5:77:b3:c3:93:b3:ea:a1:ce:de:df:f8:63:40:4a:74:ed:c8:
c7:2d:1b:37:e5:83:96:4d:c1:2d:4e:1c:28:08:3b:11:49:b0:
b3:96:f1:33:0c:fd:a3:8b:cb:5a:da:dd:39:46:6c:31:24:76:
25:30:3c:01:d1:55:31:ab:4a:54:76:aa:29:97:20:d2:9d:ab:
2b:17:5e:f5:e9:64:9b:17:96:a2:eb:a9:5c:0c:75:37:1c:0c:
fe:e9:57:cc:cd:f0:bb:08:51:20:6b:d9:9e:af:37:6a:b1:d7:
c2:e8:18:1f:87:e3:3d:0c:66:4d:03:84:9b:8b:2e:25:5d:13:
c9:71:bf:88:a8:9b:ac:c3:74:d5:b6:1d:f4:26:c3:45:17:f0:
6b:90:04:40:4c:01:bd:03:47:49:09:99:c8:d5:07:a1:d2:0b:
30:70:65:71:89:ad:ea:ac:fc:cf:df:81:3c:6a:e9:da:4f:c8:
7b:bf:4a:1a:d1:da:00:80:cd:24:a6:73:8b:35:06:36:5a:b4:
54:df:61:d7:88:2e:cd:35:f6:59:3c:23:2c:ce:a9:c7:c8:ca:
55:2a:32:80:da:ae:bd:0c:82:54:b5:49:ef:6e:d5:86:90:6f:
ea:62:d6:98
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 29 14:14:19 2025 by rpki-client