Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/04/2daa72-0314-46c5-be5b-9a69304258a0/1/5D7dxEvG9TRFds9ZrwATXGtiwB0.mft
File: 5D7dxEvG9TRFds9ZrwATXGtiwB0.mft (raw, json)
Hash identifier: 5j1Aw4cKMgGHKm1Xjqf4IJXqnR+6fbZyzDfsvtRHuF4=
Subject key identifier: 5A:69:2C:AA:01:D8:6D:36:12:FF:58:BB:54:88:05:02:4F:73:1A:8B
Authority key identifier: E4:3E:DD:C4:4B:C6:F5:34:45:76:CF:59:AF:00:13:5C:6B:62:C0:1D
Certificate issuer: /CN=e43eddc44bc6f5344576cf59af00135c6b62c01d
Certificate serial: 01964443F610F4C995D4829DB8816CE274D8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/5D7dxEvG9TRFds9ZrwATXGtiwB0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/04/2daa72-0314-46c5-be5b-9a69304258a0/1/5D7dxEvG9TRFds9ZrwATXGtiwB0.mft
Manifest number: 0B5C
Signing time: Thu 17 Apr 2025 15:00:26 +0000
Manifest this update: Thu 17 Apr 2025 15:00:26 +0000
Manifest next update: Fri 18 Apr 2025 15:00:26 +0000
Files and hashes: 1: 5D7dxEvG9TRFds9ZrwATXGtiwB0.crl (hash: o562lyrtmXDEQENUJTGdufML9wCdZiPzbZTVITSClwE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/04/2daa72-0314-46c5-be5b-9a69304258a0/1/5D7dxEvG9TRFds9ZrwATXGtiwB0.crl
rsync://rpki.ripe.net/repository/DEFAULT/04/2daa72-0314-46c5-be5b-9a69304258a0/1/5D7dxEvG9TRFds9ZrwATXGtiwB0.mft
rsync://rpki.ripe.net/repository/DEFAULT/5D7dxEvG9TRFds9ZrwATXGtiwB0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 18 Apr 2025 15:00:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:44:43:f6:10:f4:c9:95:d4:82:9d:b8:81:6c:e2:74:d8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e43eddc44bc6f5344576cf59af00135c6b62c01d
Validity
Not Before: Apr 17 15:00:26 2025 GMT
Not After : Apr 18 15:00:26 2025 GMT
Subject: CN=5a692caa01d86d3612ff58bb548805024f731a8b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:1e:7c:8e:f4:d5:56:b7:4a:24:ad:64:3f:d8:
39:88:81:6c:ab:95:87:ca:72:1f:ba:37:1b:02:14:
2f:b1:df:90:58:69:c8:3b:e3:45:dc:05:6f:63:6c:
14:6d:95:63:45:36:96:d5:12:df:e5:a5:31:f7:8b:
ba:dd:5f:84:65:94:37:0e:ed:6d:f8:db:2e:65:8b:
b7:97:eb:fa:41:88:b5:98:7d:fa:30:e1:54:99:d0:
7c:d7:ce:98:09:03:cd:69:ec:20:4c:65:d7:2f:00:
5b:9f:ff:31:f7:6e:f9:8f:42:de:38:50:78:a1:93:
31:64:3f:eb:74:91:fc:a5:5d:12:8e:6a:20:87:0e:
e7:2d:ea:a7:64:ca:ed:ad:eb:c9:80:c5:7c:99:2a:
15:f3:8b:9c:6c:0e:fe:e9:05:da:d4:ea:a3:18:1e:
a6:15:4f:61:e1:6e:74:a3:60:4b:85:78:96:5d:72:
2e:bd:e7:06:8b:0a:5a:9c:e5:2d:6a:8f:cd:ca:9d:
7f:27:80:f5:26:a3:a4:70:70:a3:0d:67:53:50:b4:
65:2c:53:ae:8c:30:d6:77:92:8e:13:6f:69:ab:a2:
3b:31:c4:49:79:98:c5:7b:b4:f8:85:9f:90:e6:f8:
d4:0d:8e:37:85:12:8b:d1:5e:14:17:c9:9c:21:f5:
45:ff
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5A:69:2C:AA:01:D8:6D:36:12:FF:58:BB:54:88:05:02:4F:73:1A:8B
X509v3 Authority Key Identifier:
keyid:E4:3E:DD:C4:4B:C6:F5:34:45:76:CF:59:AF:00:13:5C:6B:62:C0:1D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/5D7dxEvG9TRFds9ZrwATXGtiwB0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/04/2daa72-0314-46c5-be5b-9a69304258a0/1/5D7dxEvG9TRFds9ZrwATXGtiwB0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/04/2daa72-0314-46c5-be5b-9a69304258a0/1/5D7dxEvG9TRFds9ZrwATXGtiwB0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
3f:c5:50:42:5e:d4:67:e6:fc:98:f0:bf:d0:86:06:9c:5d:09:
48:57:97:7d:af:2c:0e:df:34:f4:8a:b6:62:60:78:53:e3:a9:
23:04:e2:30:9b:b7:95:4a:02:10:e9:d5:c3:cf:47:56:35:fc:
57:67:3a:07:d3:52:46:09:30:ad:de:2b:4a:8a:fc:90:71:d2:
b1:e5:69:32:2d:5b:03:d5:8a:0a:e2:0b:16:2b:d4:e5:94:20:
5f:c9:e4:dd:b6:bd:e5:09:73:5f:20:e3:72:2e:8a:22:1e:0a:
0f:91:77:0c:18:b6:1e:be:10:0f:10:3a:32:da:25:f8:e3:bd:
35:ea:51:a0:40:5c:a4:9f:40:c0:12:3e:cd:2c:c5:b2:11:8b:
05:7c:05:02:dd:db:24:b1:d4:00:a6:32:e0:48:fe:cd:0b:39:
1a:97:e3:e2:83:e6:fd:31:f3:41:08:39:57:98:11:6b:93:9b:
f0:11:29:eb:57:77:f1:05:81:37:43:be:38:bd:f8:41:69:40:
33:71:68:3a:4c:72:09:7d:b5:f1:6a:6d:11:b2:84:a3:fa:18:
de:cd:56:46:13:99:1a:d5:4d:5e:4e:35:23:51:ee:d9:d6:a0:
1c:ce:ea:49:a2:ea:41:e4:b0:1f:9a:ba:e4:96:0e:30:6c:8c:
df:1b:5f:4c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Apr 17 23:35:23 2025 by rpki-client