Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/53/08f5cd-8eec-4d55-8812-c93659f76737/1/D5XJyafxmprXF-TapTDIXPmauXU.mft
File: D5XJyafxmprXF-TapTDIXPmauXU.mft (raw, json)
Hash identifier: +in4n6w+qx94YVH1LoK5dh6iqaoZ4LRSsGjVsUUaVpw=
Subject key identifier: CD:37:08:88:71:2E:30:29:65:38:16:8B:2F:56:60:02:F3:F1:F0:E8
Authority key identifier: 0F:95:C9:C9:A7:F1:9A:9A:D7:17:E4:DA:A5:30:C8:5C:F9:9A:B9:75
Certificate issuer: /CN=0f95c9c9a7f19a9ad717e4daa530c85cf99ab975
Certificate serial: 01964D4740BA4CE87AB856F2A38AED825181
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/D5XJyafxmprXF-TapTDIXPmauXU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/53/08f5cd-8eec-4d55-8812-c93659f76737/1/D5XJyafxmprXF-TapTDIXPmauXU.mft
Manifest number: 052A
Signing time: Sat 19 Apr 2025 09:00:37 +0000
Manifest this update: Sat 19 Apr 2025 09:00:37 +0000
Manifest next update: Sun 20 Apr 2025 09:00:37 +0000
Files and hashes: 1: D5XJyafxmprXF-TapTDIXPmauXU.crl (hash: Z7PTzuNR6FjXHKjntWqFW8i+XWB379JrzMYh/H9RK7s=)
2: dJjjOIsvcmwG1yw0BY5P71sFVUw.roa (hash: 71ssAltTmbpploHF43pU09n+JXavvKYPHb8mMd4Firs=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/53/08f5cd-8eec-4d55-8812-c93659f76737/1/D5XJyafxmprXF-TapTDIXPmauXU.crl
rsync://rpki.ripe.net/repository/DEFAULT/53/08f5cd-8eec-4d55-8812-c93659f76737/1/D5XJyafxmprXF-TapTDIXPmauXU.mft
rsync://rpki.ripe.net/repository/DEFAULT/D5XJyafxmprXF-TapTDIXPmauXU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 20 Apr 2025 09:00:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:4d:47:40:ba:4c:e8:7a:b8:56:f2:a3:8a:ed:82:51:81
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0f95c9c9a7f19a9ad717e4daa530c85cf99ab975
Validity
Not Before: Apr 19 09:00:37 2025 GMT
Not After : Apr 20 09:00:37 2025 GMT
Subject: CN=cd370888712e30296538168b2f566002f3f1f0e8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:74:b2:ba:e4:31:d2:c7:be:7d:0e:4f:98:d6:
54:f4:18:d4:4a:47:5d:2c:c0:9a:e6:82:b2:7d:5e:
c9:2e:c9:ab:94:4e:bc:02:07:b1:73:b5:4b:39:05:
e6:eb:6f:76:68:5c:5a:cc:70:e4:4b:47:84:37:dc:
82:81:4a:d0:e0:78:b1:9c:0b:39:d1:0a:81:49:9b:
ea:cc:df:12:aa:ec:15:00:04:64:9c:aa:49:fa:56:
b2:0b:45:ab:2b:25:91:31:e1:53:99:74:27:7e:7d:
5c:6d:43:8d:83:7a:b2:93:f9:27:22:26:00:36:1b:
af:fb:c0:9a:bf:0b:9f:d6:9d:dc:b3:21:c2:5e:24:
60:6d:5b:3f:c2:0f:0e:0e:74:6e:32:e8:36:e9:ad:
de:8e:9e:ac:f8:8c:a7:20:d8:1c:01:f1:8f:ad:ac:
fe:6e:6b:41:26:95:86:26:f7:95:ab:c4:02:25:cb:
10:b6:79:3e:ce:54:c3:31:73:df:bb:e3:45:35:aa:
66:7d:7a:3b:62:41:80:35:07:b3:a4:97:99:1e:4f:
fb:0f:95:d8:54:57:55:e8:57:2f:63:bd:8a:8d:b6:
fd:e1:2d:c7:7f:e7:9e:76:dc:b0:0b:24:9b:0b:d7:
4d:e1:8b:cc:e8:fe:70:a1:1f:b0:85:9f:75:59:a2:
37:0d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CD:37:08:88:71:2E:30:29:65:38:16:8B:2F:56:60:02:F3:F1:F0:E8
X509v3 Authority Key Identifier:
keyid:0F:95:C9:C9:A7:F1:9A:9A:D7:17:E4:DA:A5:30:C8:5C:F9:9A:B9:75
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/D5XJyafxmprXF-TapTDIXPmauXU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/53/08f5cd-8eec-4d55-8812-c93659f76737/1/D5XJyafxmprXF-TapTDIXPmauXU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/53/08f5cd-8eec-4d55-8812-c93659f76737/1/D5XJyafxmprXF-TapTDIXPmauXU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
09:ae:a5:df:b0:9c:8e:dd:32:a2:59:7b:15:a6:02:8f:6a:d0:
5b:be:eb:68:61:f8:31:f8:fb:6b:f8:9e:87:a7:8b:88:06:0b:
e0:07:52:30:74:42:f1:19:65:c1:65:7b:5c:be:e9:48:6a:67:
e2:e5:42:d8:a0:f1:d1:26:fc:f4:8b:ac:50:5b:0d:12:88:9a:
ab:5b:9d:ca:c7:64:24:de:21:b3:de:3a:da:2c:0a:f3:9f:79:
f3:7c:31:a3:a8:4c:0f:fc:93:01:8f:b1:16:4c:39:f0:60:d8:
25:ac:85:5e:37:9f:41:2c:57:34:f5:87:43:f0:67:24:ad:3e:
79:d6:fc:3e:46:88:b3:02:48:58:05:9f:48:ff:b7:ea:64:28:
bc:dd:8a:fd:d8:7e:7f:27:1b:ed:d1:45:ec:40:b4:51:8b:83:
a8:2b:fc:90:2c:82:41:95:41:6e:37:4d:51:10:5c:96:ac:18:
af:db:61:f6:96:99:71:09:09:36:2e:34:79:4f:99:77:2b:77:
7d:84:c9:db:c3:67:9b:c5:d0:85:a8:df:e9:f2:ac:c3:f8:3f:
f1:2a:9b:b5:ce:5e:fb:24:00:18:d8:98:55:b3:fc:84:90:af:
e6:66:eb:15:33:c7:b3:64:c1:a4:10:60:fb:46:b9:3d:fd:a9:
22:97:fc:06
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 19 18:37:47 2025 by rpki-client