Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4e/7309a9-46c8-4240-afef-840881a4d30d/1/ds5jfUe3gATQzPrjceaBh2isP6U.mft
File: ds5jfUe3gATQzPrjceaBh2isP6U.mft (raw, json)
Hash identifier: RmOAE3ZpAYeslPEzg/TWiBBLLxJfInGAFgzJTqkaPOw=
Subject key identifier: 13:2F:C0:F3:49:D9:CE:D1:95:19:B0:6B:9A:C2:18:09:15:96:95:9E
Authority key identifier: 76:CE:63:7D:47:B7:80:04:D0:CC:FA:E3:71:E6:81:87:68:AC:3F:A5
Certificate issuer: /CN=76ce637d47b78004d0ccfae371e6818768ac3fa5
Certificate serial: 01965649F8656E5E7590F72D675D6273D7FD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ds5jfUe3gATQzPrjceaBh2isP6U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4e/7309a9-46c8-4240-afef-840881a4d30d/1/ds5jfUe3gATQzPrjceaBh2isP6U.mft
Manifest number: 1320
Signing time: Mon 21 Apr 2025 03:00:10 +0000
Manifest this update: Mon 21 Apr 2025 03:00:10 +0000
Manifest next update: Tue 22 Apr 2025 03:00:10 +0000
Files and hashes: 1: 2v9WLSFviNLhCEs3PI8ghWfG43g.roa (hash: s4HF4L3IMaVI3bReAfOPFKeWOp26BrTGFcFThVgszh4=)
2: ds5jfUe3gATQzPrjceaBh2isP6U.crl (hash: VDYAiUhIF6JQYd3jYm00AFscdTKyPkUmlRt2Aag8VCc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/4e/7309a9-46c8-4240-afef-840881a4d30d/1/ds5jfUe3gATQzPrjceaBh2isP6U.crl
rsync://rpki.ripe.net/repository/DEFAULT/4e/7309a9-46c8-4240-afef-840881a4d30d/1/ds5jfUe3gATQzPrjceaBh2isP6U.mft
rsync://rpki.ripe.net/repository/DEFAULT/ds5jfUe3gATQzPrjceaBh2isP6U.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 22 Apr 2025 01:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:56:49:f8:65:6e:5e:75:90:f7:2d:67:5d:62:73:d7:fd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=76ce637d47b78004d0ccfae371e6818768ac3fa5
Validity
Not Before: Apr 21 03:00:10 2025 GMT
Not After : Apr 22 03:00:10 2025 GMT
Subject: CN=132fc0f349d9ced19519b06b9ac218091596959e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d6:70:e1:79:b8:e7:52:e9:37:94:7b:ec:86:e6:
f3:1c:b0:c7:80:3b:90:8d:8d:ad:a7:d5:a8:34:ee:
77:55:c4:f7:11:8b:2b:d1:08:a5:cd:21:c1:fa:61:
47:02:14:43:d1:26:d0:0c:65:eb:14:26:d6:b7:c6:
95:73:c2:e4:97:36:92:71:66:45:53:5d:c2:2b:0c:
93:1c:28:c4:97:82:60:3e:61:de:0d:5b:70:2f:75:
d2:31:27:5f:54:4d:d9:ac:de:fd:f6:48:40:b4:59:
c7:12:13:7c:de:04:51:9d:f3:95:6c:55:79:bd:4a:
45:c0:08:2f:3e:73:02:51:61:c3:18:e9:2a:fe:52:
95:b0:db:ea:04:40:26:10:88:47:31:1c:d5:03:e8:
4f:3d:ca:95:d2:41:8d:73:c0:19:fd:c6:78:0a:3b:
01:b1:10:a8:cf:5d:30:c5:9a:ca:21:f2:43:fb:2f:
35:c9:01:b8:05:87:14:ff:75:e0:52:24:30:69:88:
46:e4:95:c8:ad:05:5d:ae:e5:13:43:c5:80:bc:72:
57:28:7b:83:60:5f:03:a8:7e:bb:9a:77:3d:96:c5:
2a:4e:3a:a0:c2:3a:67:fe:44:7c:a5:f1:4a:f9:b2:
8a:59:33:d0:fb:7d:bf:22:cb:c2:46:b3:65:f3:ec:
f2:55
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
13:2F:C0:F3:49:D9:CE:D1:95:19:B0:6B:9A:C2:18:09:15:96:95:9E
X509v3 Authority Key Identifier:
keyid:76:CE:63:7D:47:B7:80:04:D0:CC:FA:E3:71:E6:81:87:68:AC:3F:A5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ds5jfUe3gATQzPrjceaBh2isP6U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4e/7309a9-46c8-4240-afef-840881a4d30d/1/ds5jfUe3gATQzPrjceaBh2isP6U.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4e/7309a9-46c8-4240-afef-840881a4d30d/1/ds5jfUe3gATQzPrjceaBh2isP6U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
5f:f4:97:cd:34:98:70:3a:cc:7c:2f:7d:78:21:31:a7:6b:8b:
1b:e5:c5:88:8f:11:48:e1:ef:e3:e2:f3:59:11:9a:12:4f:ce:
32:4d:91:e7:75:0c:c8:4f:87:6b:65:b3:8b:19:47:6c:fb:58:
71:e1:2c:b6:ab:c8:3f:95:44:e3:ed:64:c0:c1:36:eb:22:36:
66:09:e7:eb:06:e5:c1:70:f2:a9:80:a7:fe:b9:ed:25:34:6c:
c5:a8:b6:da:f2:aa:ca:5b:ec:06:65:12:33:2c:16:d1:82:f6:
68:db:c0:e9:44:28:0a:3f:fa:83:45:fa:85:d6:39:e7:ba:7d:
ae:2e:7b:d0:53:d9:95:13:85:4b:3b:74:2d:a5:93:f4:bc:31:
06:0e:b0:09:f9:e2:3b:07:7d:f4:e1:2b:2f:36:b4:f6:98:c6:
f7:93:d4:53:24:8b:8d:bf:19:77:13:09:f5:e5:9e:8c:b4:57:
06:c2:0b:1a:3c:de:b9:55:84:79:79:0a:d0:cf:32:7d:2a:db:
0f:f4:12:e7:9b:c7:d3:f5:68:c2:e3:72:e2:37:04:cc:ea:93:
ce:07:96:e5:9b:51:a8:d8:52:55:ea:8c:f6:57:c7:c8:76:2f:
46:34:34:53:6e:f6:fc:7d:8f:8c:dc:70:dc:78:13:59:9d:3d:
ad:f6:ee:96
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 21 06:46:39 2025 by rpki-client