Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/28/9b674c-3657-4c25-9953-3f7040997682/1/5iNO09jKltxRjTXB58kr6_z2zk0.mft
File: 5iNO09jKltxRjTXB58kr6_z2zk0.mft (raw, json)
Hash identifier: t95C7+MBZQQhI3L13hFqpDIqSw95jsYaIB4ITXLgYh4=
Subject key identifier: 90:E4:D8:6B:EF:67:4E:D7:B1:F9:85:CE:68:94:E7:DD:29:5B:63:F9
Authority key identifier: E6:23:4E:D3:D8:CA:96:DC:51:8D:35:C1:E7:C9:2B:EB:FC:F6:CE:4D
Certificate issuer: /CN=e6234ed3d8ca96dc518d35c1e7c92bebfcf6ce4d
Certificate serial: 01975F4AD4BF28415CF652DB01426342C518
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/5iNO09jKltxRjTXB58kr6_z2zk0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/28/9b674c-3657-4c25-9953-3f7040997682/1/5iNO09jKltxRjTXB58kr6_z2zk0.mft
Manifest number: 1517
Signing time: Wed 11 Jun 2025 14:00:28 +0000
Manifest this update: Wed 11 Jun 2025 14:00:28 +0000
Manifest next update: Thu 12 Jun 2025 14:00:28 +0000
Files and hashes: 1: 5iNO09jKltxRjTXB58kr6_z2zk0.crl (hash: wmGG0QgIiE5qwtnUEVWZc5CaXzOwjI1Haooc5XT+qL0=)
2: 9wh4IjR2WdijxIEialrBfGScnoA.roa (hash: aGpT2hqWZX/M5kbSljEdFZvRHYfWgQ/Qc0ertXxiLJ4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/28/9b674c-3657-4c25-9953-3f7040997682/1/5iNO09jKltxRjTXB58kr6_z2zk0.crl
rsync://rpki.ripe.net/repository/DEFAULT/28/9b674c-3657-4c25-9953-3f7040997682/1/5iNO09jKltxRjTXB58kr6_z2zk0.mft
rsync://rpki.ripe.net/repository/DEFAULT/5iNO09jKltxRjTXB58kr6_z2zk0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 12 Jun 2025 14:00:28 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:5f:4a:d4:bf:28:41:5c:f6:52:db:01:42:63:42:c5:18
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e6234ed3d8ca96dc518d35c1e7c92bebfcf6ce4d
Validity
Not Before: Jun 11 14:00:28 2025 GMT
Not After : Jun 12 14:00:28 2025 GMT
Subject: CN=90e4d86bef674ed7b1f985ce6894e7dd295b63f9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:06:c4:4e:3c:3e:4c:e2:97:57:69:d6:a2:78:
83:f6:f5:53:0c:b6:bb:6d:b7:ae:a2:28:9b:03:4a:
c0:fe:c4:0e:a9:f2:ae:be:4e:f3:64:e9:37:cd:44:
87:d9:cf:51:b7:3f:90:53:91:61:e6:09:f4:a7:ca:
20:cc:49:f8:99:d0:09:2b:0a:a6:2c:bc:3a:b8:d5:
c8:ed:9a:f7:aa:50:b7:e8:ef:ab:4b:06:38:29:87:
dd:cb:50:f8:24:c1:84:08:30:b2:ea:26:8e:5b:30:
37:55:65:56:4d:99:6c:61:c8:3a:d9:2f:ad:b8:86:
e3:5f:e8:85:32:c7:91:f9:26:0d:dd:2e:4f:d8:d5:
25:ca:7c:7d:02:f6:95:a5:e1:26:71:a5:99:19:1f:
66:43:0a:4c:78:63:59:41:68:cf:40:94:6c:66:0b:
49:fa:a1:fd:8f:66:90:c5:56:53:fc:04:d1:56:a8:
8a:0e:01:8a:53:fa:08:dd:68:a5:1a:9c:4a:1a:b5:
ce:67:e5:e3:59:59:2b:11:86:ee:43:42:66:d6:fa:
f8:f0:ce:0a:d8:4f:d4:ff:58:ef:76:d7:75:03:a9:
cd:c3:6e:cc:c6:67:b1:44:c9:69:06:e2:09:0f:9a:
e7:60:88:e1:14:54:b9:74:91:0e:ce:4e:66:c1:23:
b4:e9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
90:E4:D8:6B:EF:67:4E:D7:B1:F9:85:CE:68:94:E7:DD:29:5B:63:F9
X509v3 Authority Key Identifier:
keyid:E6:23:4E:D3:D8:CA:96:DC:51:8D:35:C1:E7:C9:2B:EB:FC:F6:CE:4D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/5iNO09jKltxRjTXB58kr6_z2zk0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/28/9b674c-3657-4c25-9953-3f7040997682/1/5iNO09jKltxRjTXB58kr6_z2zk0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/28/9b674c-3657-4c25-9953-3f7040997682/1/5iNO09jKltxRjTXB58kr6_z2zk0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
29:de:62:a0:1a:40:f1:f4:d7:92:8f:9c:aa:03:c0:df:c5:90:
02:62:36:c6:4e:af:47:78:9d:4b:f8:21:9e:51:5e:e6:9d:33:
e0:83:50:af:c4:80:2a:45:4d:92:bb:fb:e6:93:d9:df:10:18:
cc:2a:8a:4c:27:f8:82:86:9d:79:66:21:cf:7f:44:2c:81:16:
3e:62:e5:59:74:62:6b:ca:e8:e0:d9:e0:2e:7e:74:34:d4:09:
de:d0:8f:df:13:42:b0:8b:d5:b4:e6:3a:2a:00:c3:e3:65:be:
92:f3:1b:77:5e:59:fc:14:f0:2c:47:28:ab:b4:31:bd:11:6e:
f4:32:e6:5d:39:a5:23:e9:94:8f:b4:db:8a:d3:8c:ee:0d:6a:
43:58:f7:80:c3:91:5f:d6:44:76:a2:af:c4:56:50:80:ec:70:
54:cf:ef:01:f9:af:d1:aa:5e:68:9d:e1:ac:aa:8e:f5:6d:50:
fa:38:0f:a9:98:21:03:d2:ef:b1:6a:5e:37:47:7e:14:d2:59:
01:e1:4b:ca:b7:37:e6:35:06:fc:40:87:f7:a7:dc:1d:00:29:
f8:d9:d7:88:65:12:9e:ec:37:cc:89:01:06:b6:d8:da:f7:c4:
a3:38:8d:c9:7f:15:88:31:32:fa:7e:dd:f1:78:eb:c8:f0:fa:
12:6d:83:d1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jun 11 21:13:24 2025 by rpki-client