Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2e/5ec970-7965-4e0b-b947-2857e8a23558/1/53ltjBnzKhyvvVt49Sds6N-ZXQo.mft
File: 53ltjBnzKhyvvVt49Sds6N-ZXQo.mft (raw, json)
Hash identifier: yA6fcBEYi/3GH/Wksmu1bDlvU7IWuHdl1Idrh1SFLC4=
Subject key identifier: BF:EE:72:93:B8:90:C0:94:94:3D:80:DA:F5:53:A9:82:E7:98:46:9D
Authority key identifier: E7:79:6D:8C:19:F3:2A:1C:AF:BD:5B:78:F5:27:6C:E8:DF:99:5D:0A
Certificate issuer: /CN=e7796d8c19f32a1cafbd5b78f5276ce8df995d0a
Certificate serial: 01958B845AD4C8F66102FE2D3BF0D3BA9BAB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/53ltjBnzKhyvvVt49Sds6N-ZXQo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2e/5ec970-7965-4e0b-b947-2857e8a23558/1/53ltjBnzKhyvvVt49Sds6N-ZXQo.mft
Manifest number: 1495
Signing time: Wed 12 Mar 2025 18:01:01 +0000
Manifest this update: Wed 12 Mar 2025 18:01:01 +0000
Manifest next update: Thu 13 Mar 2025 18:01:01 +0000
Files and hashes: 1: 53ltjBnzKhyvvVt49Sds6N-ZXQo.crl (hash: 0+cZOlCG3AmszZ6VZpBXU56h0bVOS4XlGrWc2xrGlTo=)
2: NSSboe1wxlMIOf4H1ym0BPT-rCY.roa (hash: dKR82CR6RtrhKiyhhDRuSTP5OlKpaGcPWazs+LJAU9w=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2e/5ec970-7965-4e0b-b947-2857e8a23558/1/53ltjBnzKhyvvVt49Sds6N-ZXQo.crl
rsync://rpki.ripe.net/repository/DEFAULT/2e/5ec970-7965-4e0b-b947-2857e8a23558/1/53ltjBnzKhyvvVt49Sds6N-ZXQo.mft
rsync://rpki.ripe.net/repository/DEFAULT/53ltjBnzKhyvvVt49Sds6N-ZXQo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 13 Mar 2025 18:01:01 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:8b:84:5a:d4:c8:f6:61:02:fe:2d:3b:f0:d3:ba:9b:ab
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e7796d8c19f32a1cafbd5b78f5276ce8df995d0a
Validity
Not Before: Mar 12 18:01:01 2025 GMT
Not After : Mar 13 18:01:01 2025 GMT
Subject: CN=bfee7293b890c094943d80daf553a982e798469d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:64:28:c2:e7:7e:63:fb:92:13:16:47:74:38:
53:8d:8f:12:d8:be:2b:52:06:11:03:af:5f:4b:7c:
e3:e7:27:3e:58:ee:d8:94:1b:58:bd:0b:34:e8:91:
df:e0:fa:61:66:4f:2f:33:af:d8:0a:1f:ff:0a:1f:
62:7a:f0:5c:b9:58:13:9c:bc:45:58:e7:2d:72:d2:
3c:87:0b:7c:b0:91:bc:2e:59:87:49:fc:71:69:5d:
c0:5f:2a:94:f2:8b:bd:85:b5:63:6d:c5:ad:f2:18:
bf:04:29:62:71:a3:e6:06:af:48:25:15:c2:f8:e3:
c0:e2:13:9f:a5:94:81:e2:8d:1a:2e:f6:32:c6:50:
de:4e:69:70:a7:29:ff:49:ae:f7:a5:61:c2:15:5c:
ce:39:4c:ef:96:f1:7e:88:03:bf:6e:9c:d6:a1:12:
39:a9:fe:25:a8:0d:52:9b:28:65:8b:d8:63:ee:6e:
3a:30:c7:7c:ae:62:31:87:25:ca:65:2a:a4:29:fa:
38:9f:fd:18:cd:6c:f4:d5:18:1f:4f:42:06:e8:d0:
5e:cc:21:17:3c:ea:1a:2b:a5:45:36:13:b8:85:4e:
ad:5b:b6:17:07:1b:dc:91:c0:fe:9f:af:5c:e7:cc:
6c:2a:0a:ce:7e:1a:31:e3:33:12:39:e5:f9:60:fa:
87:07
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BF:EE:72:93:B8:90:C0:94:94:3D:80:DA:F5:53:A9:82:E7:98:46:9D
X509v3 Authority Key Identifier:
keyid:E7:79:6D:8C:19:F3:2A:1C:AF:BD:5B:78:F5:27:6C:E8:DF:99:5D:0A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/53ltjBnzKhyvvVt49Sds6N-ZXQo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2e/5ec970-7965-4e0b-b947-2857e8a23558/1/53ltjBnzKhyvvVt49Sds6N-ZXQo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2e/5ec970-7965-4e0b-b947-2857e8a23558/1/53ltjBnzKhyvvVt49Sds6N-ZXQo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
8c:18:21:d6:e9:ee:46:45:79:98:bb:bf:d4:25:1f:91:e8:e0:
ac:69:0d:3b:a1:65:84:96:40:84:a2:a8:20:5c:7b:6c:1b:a7:
5b:e4:d6:8c:61:a9:de:dc:f5:a4:7b:6c:50:ce:6f:3c:21:74:
4b:8e:56:cb:c4:d2:04:62:27:18:97:a7:c0:1e:e7:49:32:c4:
77:c5:e4:18:c7:83:4b:9a:dc:79:d7:12:01:bd:cd:8b:40:a1:
83:d5:2b:c8:1d:a6:c9:0c:a8:18:a6:8c:72:c0:c2:9d:85:cb:
c7:69:9b:ea:d0:ba:43:6d:ba:84:f5:28:a9:f0:ea:f3:21:f4:
55:35:6d:fd:a1:62:a3:a0:44:9d:9a:34:b5:9a:e1:86:8a:3a:
47:4c:00:da:84:a2:a9:c6:b5:35:7a:79:2c:9a:d7:02:fc:93:
83:74:a5:9d:90:8e:c6:4c:0a:12:d8:15:27:e3:57:f5:54:b1:
bd:f6:75:b4:d4:36:e0:26:3d:f3:2a:0a:17:20:6d:6d:30:43:
73:e2:c3:a7:92:76:e9:93:d7:7f:d3:f1:a9:aa:96:63:8f:73:
d1:72:68:45:cb:aa:97:96:0c:6b:d5:1f:b1:51:72:ac:8b:7b:
73:92:75:14:37:f2:9a:2f:f8:f1:5e:ac:53:51:50:8d:80:50:
6d:22:2f:61
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZWLhFrUyPZhAv4tO/DTupurMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGU3Nzk2ZDhjMTlmMzJhMWNhZmJkNWI3OGY1Mjc2Y2U4ZGY5
OTVkMGEwHhcNMjUwMzEyMTgwMTAxWhcNMjUwMzEzMTgwMTAxWjAzMTEwLwYDVQQD
EyhiZmVlNzI5M2I4OTBjMDk0OTQzZDgwZGFmNTUzYTk4MmU3OTg0NjlkMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtWQowud+Y/uSExZHdDhTjY8S2L4r
UgYRA69fS3zj5yc+WO7YlBtYvQs06JHf4PphZk8vM6/YCh//Ch9ievBcuVgTnLxF
WOctctI8hwt8sJG8LlmHSfxxaV3AXyqU8ou9hbVjbcWt8hi/BClicaPmBq9IJRXC
+OPA4hOfpZSB4o0aLvYyxlDeTmlwpyn/Sa73pWHCFVzOOUzvlvF+iAO/bpzWoRI5
qf4lqA1Smyhli9hj7m46MMd8rmIxhyXKZSqkKfo4n/0YzWz01RgfT0IG6NBezCEX
POoaK6VFNhO4hU6tW7YXBxvckcD+n69c58xsKgrOfhox4zMSOeX5YPqHBwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFL/ucpO4kMCUlD2A2vVTqYLnmEadMB8GA1UdIwQY
MBaAFOd5bYwZ8yocr71bePUnbOjfmV0KMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvNTNsdGpCbnpLaHl2dlZ0NDlTZHM2Ti1aWFFvLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yZS81ZWM5NzAtNzk2NS00ZTBiLWI5NDct
Mjg1N2U4YTIzNTU4LzEvNTNsdGpCbnpLaHl2dlZ0NDlTZHM2Ti1aWFFvLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8yZS81ZWM5NzAtNzk2NS00ZTBiLWI5NDctMjg1N2U4YTIzNTU4
LzEvNTNsdGpCbnpLaHl2dlZ0NDlTZHM2Ti1aWFFvLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAjBgh1unu
RkV5mLu/1CUfkejgrGkNO6FlhJZAhKKoIFx7bBunW+TWjGGp3tz1pHtsUM5vPCF0
S45Wy8TSBGInGJenwB7nSTLEd8XkGMeDS5rcedcSAb3Ni0Chg9UryB2myQyoGKaM
csDCnYXLx2mb6tC6Q226hPUoqfDq8yH0VTVt/aFio6BEnZo0tZrhhoo6R0wA2oSi
qca1NXp5LJrXAvyTg3SlnZCOxkwKEtgVJ+NX9VSxvfZ1tNQ24CY98yoKFyBtbTBD
c+LDp5J26ZPXf9PxqaqWY49z0XJoRcuql5YMa9UfsVFyrIt7c5J1FDfymi/48V6s
U1FQjYBQbSIvYQ==
-----END CERTIFICATE-----
Generated at Thu Mar 13 02:38:26 2025 by rpki-client