Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f5/3be899-a52f-43ad-8e89-f1cd9fa28cc5/1/t53pRY0ZDmNDKfnfFQO1IiwWJO4.mft
File: t53pRY0ZDmNDKfnfFQO1IiwWJO4.mft (raw, json)
Hash identifier: rXn8qdNrrrdrew1GtHueqYAHSzmWtyZh3E4YDWAjvLw=
Subject key identifier: 5E:43:BE:DF:C4:E5:FD:98:38:78:3A:54:6F:8A:B8:91:0D:F5:C8:37
Authority key identifier: B7:9D:E9:45:8D:19:0E:63:43:29:F9:DF:15:03:B5:22:2C:16:24:EE
Certificate issuer: /CN=b79de9458d190e634329f9df1503b5222c1624ee
Certificate serial: 019675D55DD8E05FE551F6B6ACE7645ACD0D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/t53pRY0ZDmNDKfnfFQO1IiwWJO4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f5/3be899-a52f-43ad-8e89-f1cd9fa28cc5/1/t53pRY0ZDmNDKfnfFQO1IiwWJO4.mft
Manifest number: 071F
Signing time: Sun 27 Apr 2025 06:00:39 +0000
Manifest this update: Sun 27 Apr 2025 06:00:39 +0000
Manifest next update: Mon 28 Apr 2025 06:00:39 +0000
Files and hashes: 1: 33E6U-90LI21C0lkTnzQ6VfaiXI.roa (hash: t0pnwqLcy2OtfvtukL13J3l3uzKc9VJEEKWY4aTDjS8=)
2: KTNKEz9B68iNvMGQpqql8Umd6Rg.roa (hash: 4c3WZli6HrqpP5XT4I7aYzD+h8A8/oNoRJSDq9oByhk=)
3: t53pRY0ZDmNDKfnfFQO1IiwWJO4.crl (hash: j0Jqc+BgN6HIPJfLzSxGnS3LwC6KJQtNgj93vVqKq5g=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f5/3be899-a52f-43ad-8e89-f1cd9fa28cc5/1/t53pRY0ZDmNDKfnfFQO1IiwWJO4.crl
rsync://rpki.ripe.net/repository/DEFAULT/f5/3be899-a52f-43ad-8e89-f1cd9fa28cc5/1/t53pRY0ZDmNDKfnfFQO1IiwWJO4.mft
rsync://rpki.ripe.net/repository/DEFAULT/t53pRY0ZDmNDKfnfFQO1IiwWJO4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 28 Apr 2025 05:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:75:d5:5d:d8:e0:5f:e5:51:f6:b6:ac:e7:64:5a:cd:0d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b79de9458d190e634329f9df1503b5222c1624ee
Validity
Not Before: Apr 27 06:00:39 2025 GMT
Not After : Apr 28 06:00:39 2025 GMT
Subject: CN=5e43bedfc4e5fd9838783a546f8ab8910df5c837
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9a:1f:86:82:7b:b4:6b:ed:08:38:c7:21:04:3d:
53:5c:9b:f2:66:aa:fb:b0:ed:89:55:a6:b3:5d:bf:
14:06:74:d6:d1:ce:19:c4:a6:d0:40:d0:e6:71:c1:
c8:27:11:53:29:fb:5f:d9:23:57:8f:0e:0c:b3:05:
59:98:c8:34:2c:ca:9d:4a:ed:0a:3a:b9:1b:b4:37:
3e:4c:7a:5b:8d:18:35:6e:c9:97:76:28:69:f9:6c:
93:44:74:4b:93:7a:06:63:ce:3f:3d:9e:f6:51:60:
19:0b:61:1d:45:46:e9:67:19:d0:1b:85:59:0b:93:
79:dd:f5:91:f2:55:78:0b:b2:37:91:d3:60:cd:23:
85:40:82:74:ff:30:07:9b:9f:8d:eb:89:74:76:3a:
19:58:0d:24:70:c0:a6:b3:2f:d5:65:80:f8:ce:3d:
6c:7c:83:08:c7:7b:d6:64:24:c9:fc:ba:b7:68:a2:
06:8c:20:2c:8b:10:37:ac:22:65:e4:12:85:e1:15:
ba:be:27:b3:3a:3e:52:17:0b:10:62:b9:c9:81:10:
76:a8:f7:63:b6:3e:b8:80:ba:b3:66:aa:ba:bc:97:
bc:2a:50:99:a5:ba:0d:e2:37:4b:26:80:82:1c:db:
5c:d4:ff:b1:8a:7e:f6:82:1a:99:08:f2:43:de:98:
46:db
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5E:43:BE:DF:C4:E5:FD:98:38:78:3A:54:6F:8A:B8:91:0D:F5:C8:37
X509v3 Authority Key Identifier:
keyid:B7:9D:E9:45:8D:19:0E:63:43:29:F9:DF:15:03:B5:22:2C:16:24:EE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/t53pRY0ZDmNDKfnfFQO1IiwWJO4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f5/3be899-a52f-43ad-8e89-f1cd9fa28cc5/1/t53pRY0ZDmNDKfnfFQO1IiwWJO4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f5/3be899-a52f-43ad-8e89-f1cd9fa28cc5/1/t53pRY0ZDmNDKfnfFQO1IiwWJO4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
47:fb:29:14:5b:cd:93:b5:a2:2e:d7:34:05:87:74:16:03:a0:
9c:80:10:ac:d3:8c:e6:a7:89:90:65:29:5c:d6:22:50:bc:d7:
05:02:ee:ba:42:69:dc:7d:0d:dd:6a:fd:8d:a8:c5:52:8f:a0:
3a:e2:23:2e:46:ef:08:59:41:0e:60:c5:2c:97:63:6b:59:ef:
24:82:3f:9c:a8:98:ea:e7:4a:1f:d4:84:6d:2e:71:c2:8d:99:
67:c2:bb:71:02:8f:e6:f0:2d:46:f4:87:78:e7:45:56:3b:8b:
cb:0f:fa:36:ae:15:63:e3:a1:fc:1f:63:e1:a5:c5:6e:b3:5a:
4b:c4:d7:86:79:8b:05:f5:a1:bb:28:d6:6a:ca:12:96:ef:f0:
ee:88:83:c6:08:97:4c:f9:f8:6b:ca:3a:80:20:1e:28:21:ca:
6d:d4:fa:e4:9a:24:7a:02:7c:80:26:24:40:30:39:48:68:f4:
47:84:90:4d:5d:1a:3c:b2:fc:01:58:6d:89:49:d2:28:e9:9b:
f2:16:72:54:dd:87:13:06:d6:27:4f:07:6d:3c:4b:fd:e4:b2:
8f:36:67:6d:8a:b3:02:e1:88:f1:f1:14:ed:1a:a1:fe:48:02:
e1:1e:39:b2:1d:24:26:79:d8:8e:b7:f9:03:99:20:55:06:10:
9b:f6:05:4f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 27 09:52:52 2025 by rpki-client