Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2b/3afc81-30e6-4b8e-8d3b-57f54ea43e16/1/5aiGWRTezNyYByQf1wtrsIOkRLM.mft
File: 5aiGWRTezNyYByQf1wtrsIOkRLM.mft (raw, json)
Hash identifier: vHQfw0Hb842yEA9FYmdE7mVT1IZC39LI4VHkYApNpqo=
Subject key identifier: 7C:AA:D9:BF:BD:06:69:CF:30:C8:0D:07:1F:DC:64:9E:7F:D8:7D:D0
Authority key identifier: E5:A8:86:59:14:DE:CC:DC:98:07:24:1F:D7:0B:6B:B0:83:A4:44:B3
Certificate issuer: /CN=e5a8865914deccdc9807241fd70b6bb083a444b3
Certificate serial: 0197488CE7DF72A5C600F20629A54DB32A0F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/5aiGWRTezNyYByQf1wtrsIOkRLM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2b/3afc81-30e6-4b8e-8d3b-57f54ea43e16/1/5aiGWRTezNyYByQf1wtrsIOkRLM.mft
Manifest number: 0EF7
Signing time: Sat 07 Jun 2025 04:01:23 +0000
Manifest this update: Sat 07 Jun 2025 04:01:23 +0000
Manifest next update: Sun 08 Jun 2025 04:01:23 +0000
Files and hashes: 1: 5aiGWRTezNyYByQf1wtrsIOkRLM.crl (hash: wWzJpIC2aCGyrCCB6sJrcQaxSysG9BDpD/z3Su9t26E=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2b/3afc81-30e6-4b8e-8d3b-57f54ea43e16/1/5aiGWRTezNyYByQf1wtrsIOkRLM.crl
rsync://rpki.ripe.net/repository/DEFAULT/2b/3afc81-30e6-4b8e-8d3b-57f54ea43e16/1/5aiGWRTezNyYByQf1wtrsIOkRLM.mft
rsync://rpki.ripe.net/repository/DEFAULT/5aiGWRTezNyYByQf1wtrsIOkRLM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 08 Jun 2025 04:01:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:48:8c:e7:df:72:a5:c6:00:f2:06:29:a5:4d:b3:2a:0f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e5a8865914deccdc9807241fd70b6bb083a444b3
Validity
Not Before: Jun 7 04:01:23 2025 GMT
Not After : Jun 8 04:01:23 2025 GMT
Subject: CN=7caad9bfbd0669cf30c80d071fdc649e7fd87dd0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:7c:f0:fa:bc:dd:87:d5:c1:91:1a:c8:e8:14:
a6:7d:4b:40:5b:1b:30:bc:3c:60:76:a0:c8:a4:80:
53:f8:8a:09:86:39:e9:02:68:e0:65:d2:e7:85:11:
d7:39:22:dd:58:e9:6c:2a:7a:f5:09:b8:27:3f:2c:
4c:d1:a6:5e:ae:b0:a1:6b:a5:e6:b7:e8:f8:ab:9e:
f7:65:e2:d1:ef:f5:f0:5d:b1:ca:3d:4a:60:4b:de:
54:44:2a:f7:eb:9c:8b:c7:e2:0f:d6:27:6f:dc:ef:
05:f0:86:89:ba:ba:90:2f:19:83:04:63:d7:f7:b5:
aa:b0:ba:fa:46:fb:22:69:70:1f:c9:62:c3:0b:48:
25:5f:16:73:2f:87:79:6e:5f:f6:3a:7c:35:3e:0b:
a8:42:75:85:bb:a3:35:a1:ad:48:d1:31:e4:31:20:
8d:a6:b5:13:4a:04:10:70:dc:61:f5:82:92:1e:c2:
08:3e:b1:5b:2d:a2:69:1d:f8:9a:d0:9c:9e:8e:c0:
6c:0f:62:05:16:69:cb:23:c2:f7:d2:fc:6b:56:79:
0c:85:46:d1:3e:a1:5b:25:78:75:7b:54:07:1c:cb:
a9:8d:9d:e3:5f:2e:86:43:e1:63:15:78:d4:95:77:
03:e6:3e:57:e5:6f:1f:73:a2:f8:a0:08:94:81:a9:
55:fb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7C:AA:D9:BF:BD:06:69:CF:30:C8:0D:07:1F:DC:64:9E:7F:D8:7D:D0
X509v3 Authority Key Identifier:
keyid:E5:A8:86:59:14:DE:CC:DC:98:07:24:1F:D7:0B:6B:B0:83:A4:44:B3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/5aiGWRTezNyYByQf1wtrsIOkRLM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2b/3afc81-30e6-4b8e-8d3b-57f54ea43e16/1/5aiGWRTezNyYByQf1wtrsIOkRLM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2b/3afc81-30e6-4b8e-8d3b-57f54ea43e16/1/5aiGWRTezNyYByQf1wtrsIOkRLM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
77:fb:47:8d:22:6a:c7:e3:9b:6d:8e:a8:ee:8b:d2:25:55:4b:
90:ad:07:b6:c0:23:db:f5:67:da:4a:44:93:f2:54:31:5e:d5:
c1:63:42:fa:95:3b:3c:19:b9:b0:a8:ff:b7:38:73:bb:95:26:
c0:a0:52:63:51:2b:2b:7b:0b:18:c6:a6:66:a5:34:54:4c:3f:
63:91:39:24:81:36:9a:2a:3d:b5:62:af:dd:71:47:95:ca:fb:
0c:32:99:09:0c:2a:00:47:99:ed:2f:93:17:a7:8e:79:bf:87:
f8:9f:a5:45:22:0e:fd:08:f4:5b:3e:52:44:ea:0c:36:24:8e:
ab:80:12:79:5d:7d:ff:51:b5:cf:f6:b4:02:ef:d3:10:bb:f6:
47:89:bd:a7:40:53:f3:d3:2a:8c:cb:a4:d0:b5:68:75:70:9d:
b4:40:aa:c2:70:1e:ed:79:ab:e4:af:a4:81:6a:a9:bc:ba:c1:
69:8b:d3:2f:dd:77:aa:b7:22:80:02:5f:1e:14:bc:09:91:ad:
6c:e4:8f:6e:b4:20:1a:f1:9a:c7:93:d0:f9:b9:3f:1c:ca:00:
d1:3e:cf:fd:ce:2b:70:cb:65:a3:31:79:a6:b1:f8:79:a3:17:
3a:27:e5:04:18:fe:4f:60:2d:3a:4e:91:3e:25:59:86:8e:21:
a8:13:4e:ff
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 7 13:32:25 2025 by rpki-client