Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2e/5ec970-7965-4e0b-b947-2857e8a23558/1/53ltjBnzKhyvvVt49Sds6N-ZXQo.mft
File: 53ltjBnzKhyvvVt49Sds6N-ZXQo.mft (raw, json)
Hash identifier: zU8elABZEfYWRvOMZ0ntvG+IJBx863AeSY3hHNhQnkA=
Subject key identifier: 8B:DA:0E:E4:1B:62:8B:46:74:B6:B4:4D:DE:F7:8C:14:F1:8B:C0:F2
Authority key identifier: E7:79:6D:8C:19:F3:2A:1C:AF:BD:5B:78:F5:27:6C:E8:DF:99:5D:0A
Certificate issuer: /CN=e7796d8c19f32a1cafbd5b78f5276ce8df995d0a
Certificate serial: 01975724235DB00FE315E1EAC689BDC178AE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/53ltjBnzKhyvvVt49Sds6N-ZXQo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2e/5ec970-7965-4e0b-b947-2857e8a23558/1/53ltjBnzKhyvvVt49Sds6N-ZXQo.mft
Manifest number: 1583
Signing time: Tue 10 Jun 2025 00:01:15 +0000
Manifest this update: Tue 10 Jun 2025 00:01:15 +0000
Manifest next update: Wed 11 Jun 2025 00:01:15 +0000
Files and hashes: 1: 53ltjBnzKhyvvVt49Sds6N-ZXQo.crl (hash: xH/kG3edwGmofWNaXFkun8lQE7wHz66CJ249SylX1fk=)
2: NSSboe1wxlMIOf4H1ym0BPT-rCY.roa (hash: dKR82CR6RtrhKiyhhDRuSTP5OlKpaGcPWazs+LJAU9w=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2e/5ec970-7965-4e0b-b947-2857e8a23558/1/53ltjBnzKhyvvVt49Sds6N-ZXQo.crl
rsync://rpki.ripe.net/repository/DEFAULT/2e/5ec970-7965-4e0b-b947-2857e8a23558/1/53ltjBnzKhyvvVt49Sds6N-ZXQo.mft
rsync://rpki.ripe.net/repository/DEFAULT/53ltjBnzKhyvvVt49Sds6N-ZXQo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 10 Jun 2025 19:25:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:57:24:23:5d:b0:0f:e3:15:e1:ea:c6:89:bd:c1:78:ae
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e7796d8c19f32a1cafbd5b78f5276ce8df995d0a
Validity
Not Before: Jun 10 00:01:15 2025 GMT
Not After : Jun 11 00:01:15 2025 GMT
Subject: CN=8bda0ee41b628b4674b6b44ddef78c14f18bc0f2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:8d:89:b6:08:68:60:0b:a0:b3:10:7f:8c:e5:
fa:33:80:c1:6c:85:a8:eb:76:65:d8:3f:3b:07:cc:
05:f1:eb:5a:32:52:64:97:5a:6c:60:ef:75:f1:83:
bd:be:27:42:96:5c:18:0e:d1:15:15:69:c6:4a:69:
5d:1e:2f:29:3b:42:98:9c:73:ab:da:fb:f5:a3:9c:
02:fa:73:c3:ef:88:6b:e5:46:74:6c:65:38:5b:28:
28:fd:bf:28:fb:3f:c5:3f:64:c5:9e:16:4f:b9:d5:
2f:af:1e:ed:d3:c7:9b:34:64:45:1a:39:51:ac:1e:
62:72:2f:9a:7b:9f:57:7f:4a:e6:6c:ec:46:cb:fd:
45:76:93:f6:b3:c4:f0:35:7f:31:c1:57:ab:49:4e:
0d:f7:ce:90:49:82:74:e9:66:24:53:d6:c3:dd:f0:
21:c1:40:f9:06:7f:73:34:00:f3:f4:dd:07:21:53:
cc:65:2b:56:cf:dc:42:de:3d:bd:5b:6e:af:77:c8:
a8:e8:e9:00:b9:7a:54:1b:63:ec:1b:19:5d:69:44:
69:5b:27:d6:01:1b:64:8e:65:48:83:18:d9:a8:6d:
b5:00:57:71:20:3a:7e:24:7b:69:69:1e:c2:09:76:
c6:f7:33:7b:fb:97:3c:e4:cf:7e:e6:c6:df:36:58:
f6:e7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8B:DA:0E:E4:1B:62:8B:46:74:B6:B4:4D:DE:F7:8C:14:F1:8B:C0:F2
X509v3 Authority Key Identifier:
keyid:E7:79:6D:8C:19:F3:2A:1C:AF:BD:5B:78:F5:27:6C:E8:DF:99:5D:0A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/53ltjBnzKhyvvVt49Sds6N-ZXQo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2e/5ec970-7965-4e0b-b947-2857e8a23558/1/53ltjBnzKhyvvVt49Sds6N-ZXQo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2e/5ec970-7965-4e0b-b947-2857e8a23558/1/53ltjBnzKhyvvVt49Sds6N-ZXQo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
90:af:1a:49:19:a6:f6:d7:6c:b6:31:06:4f:c1:b8:3d:8b:5e:
4a:2e:53:90:a0:12:9c:e5:6c:4b:62:9f:1e:55:cc:0b:92:26:
d6:07:b4:ab:93:ed:20:43:23:32:a6:22:9d:dc:9e:52:32:91:
af:69:60:27:39:4c:69:7c:04:5c:51:58:20:1a:af:4f:dd:46:
2d:b7:34:57:ab:04:e7:ef:1d:ed:cb:b5:bb:8c:e1:14:b1:4a:
d9:3e:5c:46:bb:66:6e:ea:2a:4d:9e:08:47:6a:97:78:e8:53:
77:a7:c6:47:54:db:12:4b:ca:bf:f2:12:5b:76:8b:56:f3:5c:
85:08:ff:93:a6:93:cf:cc:19:bb:f2:87:bc:1d:38:d6:68:c8:
37:18:1d:1a:b3:d5:21:bf:65:73:18:36:2c:57:51:83:9a:21:
64:2c:1c:06:41:2a:1c:1f:a2:ec:54:81:77:53:8a:73:77:da:
3c:cd:57:f0:ac:56:24:ea:f8:1a:6a:d5:1e:f9:48:bd:13:53:
4e:9f:5e:66:52:51:2c:01:1d:fb:8b:8f:3d:ba:b3:88:13:b8:
74:f3:08:6a:11:f2:e9:a1:a7:38:32:21:3c:00:36:d5:62:d2:
cd:61:bd:61:c5:0c:68:d4:e8:90:52:90:1f:93:cf:2f:04:19:
ca:95:5c:b5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jun 10 05:33:38 2025 by rpki-client