Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/48/2d0ca2-8c3e-4f8c-906c-6ce60226a9e8/1/5NozpY-0djTWFOwJpomN4PWABv4.mft
File: 5NozpY-0djTWFOwJpomN4PWABv4.mft (raw, json)
Hash identifier: 42XjiICIjFVq5jUXn5sz1gVal4+ttsFEOqTlFCVGpUs=
Subject key identifier: 46:CF:95:CB:04:72:81:56:00:F9:F4:3C:D4:25:EC:6C:82:15:3B:48
Authority key identifier: E4:DA:33:A5:8F:B4:76:34:D6:14:EC:09:A6:89:8D:E0:F5:80:06:FE
Certificate issuer: /CN=e4da33a58fb47634d614ec09a6898de0f58006fe
Certificate serial: 01974967F0D2E0A326F02EC61765FB4B04FA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/5NozpY-0djTWFOwJpomN4PWABv4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/48/2d0ca2-8c3e-4f8c-906c-6ce60226a9e8/1/5NozpY-0djTWFOwJpomN4PWABv4.mft
Manifest number: 0C53
Signing time: Sat 07 Jun 2025 08:00:37 +0000
Manifest this update: Sat 07 Jun 2025 08:00:37 +0000
Manifest next update: Sun 08 Jun 2025 08:00:37 +0000
Files and hashes: 1: 5NozpY-0djTWFOwJpomN4PWABv4.crl (hash: cBLkCyPxfImdPMWmdVr+1ln5W5vxxe8Nj5mIYx/ckPs=)
2: q_FuKEatt0zR6PfM8hStM_OAEUA.roa (hash: 2y3NDWHhYWGNF2joY5nRoFi6Rxr80fn/VSsCMypexYw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/48/2d0ca2-8c3e-4f8c-906c-6ce60226a9e8/1/5NozpY-0djTWFOwJpomN4PWABv4.crl
rsync://rpki.ripe.net/repository/DEFAULT/48/2d0ca2-8c3e-4f8c-906c-6ce60226a9e8/1/5NozpY-0djTWFOwJpomN4PWABv4.mft
rsync://rpki.ripe.net/repository/DEFAULT/5NozpY-0djTWFOwJpomN4PWABv4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 08 Jun 2025 08:00:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:49:67:f0:d2:e0:a3:26:f0:2e:c6:17:65:fb:4b:04:fa
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e4da33a58fb47634d614ec09a6898de0f58006fe
Validity
Not Before: Jun 7 08:00:37 2025 GMT
Not After : Jun 8 08:00:37 2025 GMT
Subject: CN=46cf95cb0472815600f9f43cd425ec6c82153b48
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:54:ad:22:2f:6d:50:c1:42:2f:42:d9:b7:9d:
f1:be:c5:2d:2d:8c:04:c2:63:fa:2a:0b:9f:b4:4e:
bf:57:19:90:57:b0:22:0d:d4:ac:98:8a:49:16:15:
61:41:0d:91:7a:97:1b:46:9f:d6:d9:65:f1:5f:d3:
6e:17:b1:a2:23:88:a4:ee:45:b0:38:af:25:83:f0:
44:c5:d8:b0:51:59:af:21:ed:09:00:8c:60:3c:cb:
39:21:e1:26:24:cf:ae:e5:63:06:14:ad:0d:f0:c1:
f9:bd:f5:82:e5:05:47:05:de:e0:fb:b3:78:07:bb:
cf:99:73:3a:80:2b:e4:08:ac:7a:f4:17:91:92:e0:
77:b4:ba:04:3f:bb:08:53:6e:ea:24:c2:06:eb:08:
99:c1:d9:f4:8b:c5:bb:43:e7:9b:64:c7:38:2a:1e:
c8:5d:ca:38:7e:ba:5b:95:85:72:cf:bf:2e:6c:84:
d2:27:66:1b:83:1b:d1:c0:8e:bd:88:96:38:84:c7:
07:8a:7f:9f:f7:d8:14:b8:42:ac:7b:3a:5e:5e:40:
d0:ab:56:5f:7a:8b:10:68:79:3b:96:de:ed:d0:a9:
0a:7a:3e:ab:11:6d:d4:4e:c3:1c:7b:2e:7d:3f:81:
1e:84:c2:3b:60:27:72:28:47:44:fd:b0:ff:7e:ab:
4f:1d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
46:CF:95:CB:04:72:81:56:00:F9:F4:3C:D4:25:EC:6C:82:15:3B:48
X509v3 Authority Key Identifier:
keyid:E4:DA:33:A5:8F:B4:76:34:D6:14:EC:09:A6:89:8D:E0:F5:80:06:FE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/5NozpY-0djTWFOwJpomN4PWABv4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/48/2d0ca2-8c3e-4f8c-906c-6ce60226a9e8/1/5NozpY-0djTWFOwJpomN4PWABv4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/48/2d0ca2-8c3e-4f8c-906c-6ce60226a9e8/1/5NozpY-0djTWFOwJpomN4PWABv4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
67:49:a2:73:89:1a:15:5f:c3:b4:de:3e:9c:64:ed:1e:7f:ee:
e7:be:14:ac:f6:35:8c:9e:ec:07:8a:25:83:fe:9e:1a:fe:e9:
2a:f1:03:81:89:a6:f7:b0:da:b7:50:97:76:03:3d:37:03:b3:
fe:c2:45:d9:ff:5e:78:96:2c:5f:06:88:51:63:41:e8:68:23:
6e:dd:65:ba:d4:f0:82:0e:6d:30:31:c3:f5:4e:4d:aa:dd:83:
31:9d:50:f4:87:11:7e:bf:98:12:26:dc:c4:18:e8:9c:ab:31:
4d:a0:59:bf:f6:44:0a:dd:a9:89:cd:56:24:04:45:60:93:9f:
17:a6:c8:50:74:8c:26:8a:a5:e3:09:47:65:95:ef:66:b5:e4:
21:85:cd:ee:6a:c7:36:58:a4:00:91:b9:1a:a8:55:e4:f7:bb:
0a:22:6c:6c:98:5e:ac:1a:5c:d0:eb:34:75:4b:f4:4f:bd:5b:
a0:3f:64:51:90:fe:7e:fa:a0:50:d0:49:6f:7c:17:ec:8c:c3:
37:08:7e:c9:d5:a2:f4:b4:7c:34:c4:10:1a:4d:4e:21:f9:e6:
49:2d:d9:05:e9:cb:4d:e0:a0:7b:93:17:ec:49:be:a2:94:6b:
90:10:72:9f:26:ea:b8:1d:fd:c3:83:27:aa:cb:d0:66:a7:88:
a1:7b:21:d9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 7 14:54:43 2025 by rpki-client