
Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/04/17667e-0219-421e-8412-31f60373a092/1/5zfJpEKotKTJEvEbwrbTzxAK30I.mft
File: 5zfJpEKotKTJEvEbwrbTzxAK30I.mft (raw, json)
Hash identifier: xcp8sDFKLre4/CPPADts5GuA30yQAUc1XwqDGwp2h80=
Subject key identifier: BC:FB:3E:34:F5:4F:92:B1:DF:15:30:C9:C3:5A:12:59:A1:B8:4C:88
Authority key identifier: E7:37:C9:A4:42:A8:B4:A4:C9:12:F1:1B:C2:B6:D3:CF:10:0A:DF:42
Certificate issuer: /CN=e737c9a442a8b4a4c912f11bc2b6d3cf100adf42
Certificate serial: 01976A3CA357DBE7F08B09E5F276D9C7C107
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/5zfJpEKotKTJEvEbwrbTzxAK30I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/04/17667e-0219-421e-8412-31f60373a092/1/5zfJpEKotKTJEvEbwrbTzxAK30I.mft
Manifest number: 158F
Signing time: Fri 13 Jun 2025 17:00:48 +0000
Manifest this update: Fri 13 Jun 2025 17:00:48 +0000
Manifest next update: Sat 14 Jun 2025 17:00:48 +0000
Files and hashes: 1: 5zfJpEKotKTJEvEbwrbTzxAK30I.crl (hash: 8tFbksEpAMF2JXH1nDXE4WIOtMu6tleoP2W4uM/p7p4=)
2: 9Gaptu7OegDOTWgwtAQ4TQ0AHTI.roa (hash: rkESQzEqL5Foo1j28OK1lOudeGd3GtI+57JqeG8POXM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/04/17667e-0219-421e-8412-31f60373a092/1/5zfJpEKotKTJEvEbwrbTzxAK30I.crl
rsync://rpki.ripe.net/repository/DEFAULT/04/17667e-0219-421e-8412-31f60373a092/1/5zfJpEKotKTJEvEbwrbTzxAK30I.mft
rsync://rpki.ripe.net/repository/DEFAULT/5zfJpEKotKTJEvEbwrbTzxAK30I.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 14 Jun 2025 16:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:6a:3c:a3:57:db:e7:f0:8b:09:e5:f2:76:d9:c7:c1:07
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e737c9a442a8b4a4c912f11bc2b6d3cf100adf42
Validity
Not Before: Jun 13 17:00:48 2025 GMT
Not After : Jun 14 17:00:48 2025 GMT
Subject: CN=bcfb3e34f54f92b1df1530c9c35a1259a1b84c88
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:f3:e4:70:b6:a3:fe:ed:ab:a8:19:cb:f2:54:
50:2f:68:65:88:28:4b:56:cd:cc:d7:df:ba:d0:09:
78:3d:8b:ed:c4:33:8e:1b:a4:64:8d:09:e0:0f:bb:
bc:70:7f:f0:27:0d:54:56:d2:52:d0:f4:4b:f0:38:
85:75:a0:b9:6b:4f:65:3c:f0:97:36:da:8a:53:eb:
b1:66:bf:50:2d:63:f4:25:98:cc:7f:33:2b:62:e0:
2e:7b:7a:6c:88:0d:9f:44:59:75:2b:03:ac:2e:7e:
c4:8d:c7:17:29:a0:19:30:d3:d8:a9:8b:a4:4a:03:
14:9d:94:f8:39:c8:34:64:d8:2b:02:d0:40:27:6c:
0c:57:84:95:7a:a8:fc:db:c4:12:9c:b8:55:63:9e:
08:da:d2:98:a3:57:b4:f0:d7:36:ee:2b:1a:ac:6b:
28:a4:61:4f:7e:c0:76:8f:66:5d:92:ce:1b:7b:e9:
43:17:ab:52:33:48:95:f2:12:f8:44:43:29:32:76:
f7:e0:95:4b:85:e9:c6:16:f5:dc:f9:0f:6e:c6:07:
b3:cb:39:32:97:d7:e6:be:4c:c3:90:37:7c:be:a8:
f1:ec:bf:53:2d:c6:94:1f:0b:8a:c5:5b:b6:da:a2:
c4:bd:6a:3f:3e:55:82:0d:13:03:9d:fa:65:74:ea:
c0:25
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BC:FB:3E:34:F5:4F:92:B1:DF:15:30:C9:C3:5A:12:59:A1:B8:4C:88
X509v3 Authority Key Identifier:
keyid:E7:37:C9:A4:42:A8:B4:A4:C9:12:F1:1B:C2:B6:D3:CF:10:0A:DF:42
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/5zfJpEKotKTJEvEbwrbTzxAK30I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/04/17667e-0219-421e-8412-31f60373a092/1/5zfJpEKotKTJEvEbwrbTzxAK30I.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/04/17667e-0219-421e-8412-31f60373a092/1/5zfJpEKotKTJEvEbwrbTzxAK30I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
34:95:74:18:5d:25:65:0c:65:9f:ee:9d:df:7d:63:85:23:65:
f3:ce:5b:7d:93:fa:2f:25:8e:3d:5d:58:42:89:ce:db:51:fe:
7a:9a:02:2a:b8:8d:ec:ff:62:eb:cc:25:fb:31:86:da:de:5b:
7f:db:93:88:a1:d0:99:5e:4d:29:88:c2:55:09:fc:83:d4:4a:
12:5d:de:a5:48:30:fa:2a:b3:6b:4c:44:32:ee:1b:a4:7a:4d:
d6:2d:d4:44:35:0b:09:f0:c1:83:08:06:c5:98:c7:25:c9:fc:
8c:21:ed:1f:54:e8:23:fa:a1:45:f9:91:40:43:0b:c3:06:ea:
0d:81:b9:8b:96:26:b3:39:b5:36:da:86:af:9a:85:cb:da:2f:
db:f2:dc:28:8a:c5:a6:3a:e3:ec:48:6e:1a:44:42:df:07:f6:
81:8c:ab:30:88:1d:2f:22:cf:8c:91:14:bb:bc:fd:5c:f6:35:
4c:a9:b7:c5:a7:dd:ac:d7:de:bf:11:5e:9e:9c:80:2a:bf:1f:
be:3e:9d:c6:3e:e0:dc:b0:3c:21:94:f4:6d:d8:9a:a0:5c:6a:
fe:5d:28:00:ec:2a:3c:04:60:76:d8:97:42:2b:9b:44:80:9c:
be:2d:de:0c:4b:d0:d5:f2:27:d0:3e:db:81:61:d3:44:2f:02:
4e:ed:1e:7a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jun 13 21:37:28 2025 by rpki-client