Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/04/17667e-0219-421e-8412-31f60373a092/1/5zfJpEKotKTJEvEbwrbTzxAK30I.mft
File: 5zfJpEKotKTJEvEbwrbTzxAK30I.mft (raw, json)
Hash identifier: Ez5OXILQG8B2zYwcIh000fWfrROc9Y2vNv1/RwCK3zU=
Subject key identifier: E4:30:60:1F:74:BB:8B:CC:40:B5:B9:0D:9D:CA:BC:69:3C:5D:88:8C
Authority key identifier: E7:37:C9:A4:42:A8:B4:A4:C9:12:F1:1B:C2:B6:D3:CF:10:0A:DF:42
Certificate issuer: /CN=e737c9a442a8b4a4c912f11bc2b6d3cf100adf42
Certificate serial: 019754FE6372AD5B6864D41364F49587CAC7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/5zfJpEKotKTJEvEbwrbTzxAK30I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/04/17667e-0219-421e-8412-31f60373a092/1/5zfJpEKotKTJEvEbwrbTzxAK30I.mft
Manifest number: 1584
Signing time: Mon 09 Jun 2025 14:00:47 +0000
Manifest this update: Mon 09 Jun 2025 14:00:47 +0000
Manifest next update: Tue 10 Jun 2025 14:00:47 +0000
Files and hashes: 1: 5zfJpEKotKTJEvEbwrbTzxAK30I.crl (hash: 0Wfsp28dzyk4pEQISbEe5xHs7OxngAYsXhGZ8JcIHTU=)
2: 9Gaptu7OegDOTWgwtAQ4TQ0AHTI.roa (hash: rkESQzEqL5Foo1j28OK1lOudeGd3GtI+57JqeG8POXM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/04/17667e-0219-421e-8412-31f60373a092/1/5zfJpEKotKTJEvEbwrbTzxAK30I.crl
rsync://rpki.ripe.net/repository/DEFAULT/04/17667e-0219-421e-8412-31f60373a092/1/5zfJpEKotKTJEvEbwrbTzxAK30I.mft
rsync://rpki.ripe.net/repository/DEFAULT/5zfJpEKotKTJEvEbwrbTzxAK30I.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 10 Jun 2025 11:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:54:fe:63:72:ad:5b:68:64:d4:13:64:f4:95:87:ca:c7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e737c9a442a8b4a4c912f11bc2b6d3cf100adf42
Validity
Not Before: Jun 9 14:00:47 2025 GMT
Not After : Jun 10 14:00:47 2025 GMT
Subject: CN=e430601f74bb8bcc40b5b90d9dcabc693c5d888c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:d7:d8:9c:f9:25:ff:c8:04:e9:de:9c:ae:59:
8e:da:be:46:3a:bb:30:17:75:a5:ed:73:89:56:6f:
e9:bc:81:15:6c:32:59:36:c5:0e:a8:30:e2:8e:06:
bf:41:23:98:bf:af:9a:63:38:f9:3a:49:40:5e:e1:
12:ba:15:48:9d:51:b2:7f:8f:c6:64:05:c9:9a:1b:
d1:61:13:53:e1:3c:42:8b:c0:23:1a:ef:e1:3d:2f:
13:a0:55:bb:d4:f1:85:a8:76:3a:98:e6:b9:ab:1f:
43:c0:09:b4:8f:f9:a0:9c:d0:d4:27:84:f2:37:de:
4c:4b:38:79:55:5d:7f:1b:f6:ee:9a:69:39:0b:16:
d7:91:bd:c6:05:e8:b7:3a:e7:90:22:c2:f2:47:a9:
d8:ea:19:a3:6b:92:33:20:6b:86:d9:2c:ce:5f:c3:
b6:ea:8e:f3:80:fa:1b:d3:7c:0b:54:b8:33:d6:eb:
4c:0d:3a:59:87:dc:a6:30:20:5c:ef:e5:95:9a:f9:
06:0d:4f:32:af:0e:04:a7:5e:5a:41:07:d9:15:4f:
cc:14:9c:5e:fb:52:72:a7:c1:6a:7b:e4:d6:e7:e0:
da:f1:75:3d:5e:36:12:e2:f6:03:91:8b:f5:39:3e:
db:82:52:a2:26:b7:fa:b8:f3:cf:bc:b5:5e:bf:71:
91:07
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E4:30:60:1F:74:BB:8B:CC:40:B5:B9:0D:9D:CA:BC:69:3C:5D:88:8C
X509v3 Authority Key Identifier:
keyid:E7:37:C9:A4:42:A8:B4:A4:C9:12:F1:1B:C2:B6:D3:CF:10:0A:DF:42
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/5zfJpEKotKTJEvEbwrbTzxAK30I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/04/17667e-0219-421e-8412-31f60373a092/1/5zfJpEKotKTJEvEbwrbTzxAK30I.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/04/17667e-0219-421e-8412-31f60373a092/1/5zfJpEKotKTJEvEbwrbTzxAK30I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
c2:64:9b:08:04:09:c7:a6:88:04:55:2b:ac:c1:1d:0a:27:7a:
7f:8b:45:32:aa:39:9c:9a:e4:56:2b:f1:bb:92:0e:1d:e4:09:
65:8f:a7:04:8f:d9:62:c5:24:53:1f:e9:34:86:0c:f8:a4:f6:
7b:90:88:a9:bb:fc:f7:70:41:cb:62:62:a5:54:30:4c:f9:a6:
97:e4:cd:3b:50:c0:0d:34:31:72:e5:1a:61:47:f9:b2:32:c3:
c5:76:1e:1d:19:55:94:9f:49:72:70:2d:0a:cd:03:5f:17:1b:
14:c4:91:a0:89:de:81:f2:24:3b:61:c3:67:b7:30:bd:cb:46:
a7:05:d7:06:66:a8:e5:80:60:23:bb:41:f3:de:d2:41:da:dd:
09:ae:fe:28:21:38:33:a7:9c:16:32:03:88:68:c0:f7:e6:fe:
ab:5e:32:c2:3e:07:e2:7b:3c:11:44:bc:a8:66:04:6e:d5:e8:
2b:65:22:62:53:a5:fb:f2:c5:67:4e:10:d1:1d:56:ad:93:0c:
58:d6:39:7f:4f:e4:07:2e:35:42:4b:c7:06:e7:12:db:3a:e9:
e9:24:92:1d:21:a9:92:33:a6:1e:4b:9e:5e:75:55:94:d2:3b:
c1:7e:38:76:48:d1:fd:81:38:6c:79:35:8d:10:88:a6:86:9c:
8f:bb:02:74
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jun 9 17:29:47 2025 by rpki-client