Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2e/5ec970-7965-4e0b-b947-2857e8a23558/1/53ltjBnzKhyvvVt49Sds6N-ZXQo.mft
File: 53ltjBnzKhyvvVt49Sds6N-ZXQo.mft (raw, json)
Hash identifier: NOCFkPbbXMClYc66CJeUSHY47UhvMFN8sSkGSWRpTM4=
Subject key identifier: D3:3B:C1:E4:1D:C5:EF:02:2A:1A:58:4C:28:56:A4:E3:FE:07:E2:80
Authority key identifier: E7:79:6D:8C:19:F3:2A:1C:AF:BD:5B:78:F5:27:6C:E8:DF:99:5D:0A
Certificate issuer: /CN=e7796d8c19f32a1cafbd5b78f5276ce8df995d0a
Certificate serial: 01965E04166E128C5ADB9F04D92468DE7C4C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/53ltjBnzKhyvvVt49Sds6N-ZXQo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2e/5ec970-7965-4e0b-b947-2857e8a23558/1/53ltjBnzKhyvvVt49Sds6N-ZXQo.mft
Manifest number: 1502
Signing time: Tue 22 Apr 2025 15:00:48 +0000
Manifest this update: Tue 22 Apr 2025 15:00:48 +0000
Manifest next update: Wed 23 Apr 2025 15:00:48 +0000
Files and hashes: 1: 53ltjBnzKhyvvVt49Sds6N-ZXQo.crl (hash: Zzpnkq3DiP+HdjlP8WO/QD4m6w1mz6eCGJktO14bXk0=)
2: NSSboe1wxlMIOf4H1ym0BPT-rCY.roa (hash: dKR82CR6RtrhKiyhhDRuSTP5OlKpaGcPWazs+LJAU9w=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2e/5ec970-7965-4e0b-b947-2857e8a23558/1/53ltjBnzKhyvvVt49Sds6N-ZXQo.crl
rsync://rpki.ripe.net/repository/DEFAULT/2e/5ec970-7965-4e0b-b947-2857e8a23558/1/53ltjBnzKhyvvVt49Sds6N-ZXQo.mft
rsync://rpki.ripe.net/repository/DEFAULT/53ltjBnzKhyvvVt49Sds6N-ZXQo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 23 Apr 2025 14:46:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:5e:04:16:6e:12:8c:5a:db:9f:04:d9:24:68:de:7c:4c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e7796d8c19f32a1cafbd5b78f5276ce8df995d0a
Validity
Not Before: Apr 22 15:00:48 2025 GMT
Not After : Apr 23 15:00:48 2025 GMT
Subject: CN=d33bc1e41dc5ef022a1a584c2856a4e3fe07e280
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:9b:7f:2c:9b:f5:2a:f5:10:92:b1:d3:4f:65:
d4:b6:65:54:1d:ce:73:21:85:ae:aa:0b:15:6a:65:
1f:36:ec:30:ff:1f:97:f4:a2:3c:1e:f4:80:91:ea:
05:8f:be:be:a7:9a:60:24:85:bb:ec:14:fe:e4:4d:
5b:86:d4:a4:61:3b:36:29:ab:5c:d0:9f:48:e4:30:
1a:bd:88:13:49:16:03:a8:b6:bf:4a:68:cb:09:c0:
a7:92:21:eb:37:e3:9d:33:0a:e2:64:1b:eb:79:14:
5c:4b:10:e5:1a:a3:1f:fc:c7:70:df:38:c3:8b:ed:
de:4e:95:b7:80:45:9f:b2:22:70:33:ed:12:78:e8:
ca:30:3d:fa:0d:45:cf:2a:2c:28:7c:bd:92:16:c2:
76:84:65:08:33:78:48:2f:97:01:93:37:ae:f3:a1:
f8:f4:93:53:cd:e5:a9:24:03:13:c3:90:2b:a0:57:
1c:f6:53:a8:a4:ed:d3:e9:37:cc:4f:72:00:45:bb:
83:6e:40:54:17:59:03:ff:a4:2b:cb:64:4a:7d:a4:
2a:5d:ab:4e:9d:ad:50:12:52:67:e6:65:56:95:93:
d5:10:f2:58:20:92:de:f2:c8:27:23:51:b4:37:99:
cf:1e:83:b6:17:09:f0:93:6c:d5:02:15:f2:1b:e6:
df:a9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D3:3B:C1:E4:1D:C5:EF:02:2A:1A:58:4C:28:56:A4:E3:FE:07:E2:80
X509v3 Authority Key Identifier:
keyid:E7:79:6D:8C:19:F3:2A:1C:AF:BD:5B:78:F5:27:6C:E8:DF:99:5D:0A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/53ltjBnzKhyvvVt49Sds6N-ZXQo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2e/5ec970-7965-4e0b-b947-2857e8a23558/1/53ltjBnzKhyvvVt49Sds6N-ZXQo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2e/5ec970-7965-4e0b-b947-2857e8a23558/1/53ltjBnzKhyvvVt49Sds6N-ZXQo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
8e:ab:be:8f:e0:74:5b:0c:9c:ec:8a:c7:db:7d:85:4d:f5:0a:
c0:ee:4a:ea:b4:5a:55:47:b5:15:5a:b3:6c:8e:78:18:be:6b:
5d:58:e0:9e:54:31:28:77:22:1e:7b:2a:db:b6:6d:a3:ba:7d:
d8:38:94:bc:f6:2d:26:6e:c6:60:8f:18:f9:af:cb:56:d1:c3:
a9:60:36:7c:c1:b6:15:d4:1d:c2:49:b0:6f:a2:16:64:34:de:
f4:80:0b:69:ab:37:18:23:33:c9:ec:3e:d1:e0:14:38:49:bb:
40:09:16:34:d9:3c:1a:8e:6c:6d:12:6a:b0:b9:87:75:d0:78:
16:a2:13:76:bf:b1:9c:01:ea:43:c8:62:79:22:70:ca:1e:27:
bd:28:2f:1c:d1:f8:fe:60:97:f7:3b:d4:b9:77:21:2a:af:9e:
d3:6f:f7:8a:6d:c6:a8:61:c8:3b:87:93:bb:cd:4b:63:68:90:
87:df:ea:00:8a:b5:3a:f9:23:63:d9:d7:eb:70:1a:6e:12:e3:
73:93:78:a2:26:6a:e7:0a:41:11:15:4f:3d:fe:a1:3e:9c:5a:
76:f0:06:7e:24:84:81:a7:54:39:96:39:d6:98:db:fb:8a:91:
82:83:aa:77:3a:1b:33:0f:cb:5e:a0:14:1a:23:30:06:f7:94:
ce:d5:9e:3e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 22 18:31:28 2025 by rpki-client