Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/53/08f5cd-8eec-4d55-8812-c93659f76737/1/D5XJyafxmprXF-TapTDIXPmauXU.mft
File: D5XJyafxmprXF-TapTDIXPmauXU.mft (raw, json)
Hash identifier: 3MC/tmWkmBMG4t9Xa85lLefYKuGWWun41xplX/ajUZU=
Subject key identifier: 05:F8:FB:77:D1:BD:49:C4:06:EF:2C:C7:A0:AD:DF:A3:5C:D5:33:29
Authority key identifier: 0F:95:C9:C9:A7:F1:9A:9A:D7:17:E4:DA:A5:30:C8:5C:F9:9A:B9:75
Certificate issuer: /CN=0f95c9c9a7f19a9ad717e4daa530c85cf99ab975
Certificate serial: 01958C29403A1F584BA886903C886B26718A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/D5XJyafxmprXF-TapTDIXPmauXU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/53/08f5cd-8eec-4d55-8812-c93659f76737/1/D5XJyafxmprXF-TapTDIXPmauXU.mft
Manifest number: 04C6
Signing time: Wed 12 Mar 2025 21:01:08 +0000
Manifest this update: Wed 12 Mar 2025 21:01:08 +0000
Manifest next update: Thu 13 Mar 2025 21:01:08 +0000
Files and hashes: 1: D5XJyafxmprXF-TapTDIXPmauXU.crl (hash: BbdQ/BJloyJz3uZxztNFEAmXlHukM/zNCu86+Sp+nvk=)
2: dJjjOIsvcmwG1yw0BY5P71sFVUw.roa (hash: 71ssAltTmbpploHF43pU09n+JXavvKYPHb8mMd4Firs=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/53/08f5cd-8eec-4d55-8812-c93659f76737/1/D5XJyafxmprXF-TapTDIXPmauXU.crl
rsync://rpki.ripe.net/repository/DEFAULT/53/08f5cd-8eec-4d55-8812-c93659f76737/1/D5XJyafxmprXF-TapTDIXPmauXU.mft
rsync://rpki.ripe.net/repository/DEFAULT/D5XJyafxmprXF-TapTDIXPmauXU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 13 Mar 2025 19:14:49 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:8c:29:40:3a:1f:58:4b:a8:86:90:3c:88:6b:26:71:8a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0f95c9c9a7f19a9ad717e4daa530c85cf99ab975
Validity
Not Before: Mar 12 21:01:08 2025 GMT
Not After : Mar 13 21:01:08 2025 GMT
Subject: CN=05f8fb77d1bd49c406ef2cc7a0addfa35cd53329
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:73:ef:69:42:48:38:9f:bd:33:0f:fe:b0:20:
ee:67:6b:4b:76:39:d0:e2:27:c1:9b:0e:99:25:47:
38:c8:c3:89:12:57:38:fa:94:f6:75:53:6e:4d:58:
3a:e9:35:84:9a:ff:84:83:4f:59:18:a9:f3:ea:91:
4f:a8:da:93:51:d8:fb:58:c3:da:56:82:5e:61:a3:
7a:35:1d:50:65:06:48:68:d3:ea:c7:5c:03:da:7b:
f7:f7:36:a9:45:b2:b7:87:16:86:01:21:fa:54:c8:
ce:5e:a2:ae:b7:bc:9a:b8:8f:f4:de:12:44:b1:3c:
71:85:60:0c:bb:91:8a:81:fd:80:94:4a:ea:58:05:
94:f6:7f:90:cc:30:5f:11:ab:ea:96:53:f7:90:c8:
39:9b:99:4a:7c:91:f6:76:39:a2:1e:c8:8d:1d:37:
8d:ff:c6:f6:26:83:49:b1:e0:6d:f0:dd:48:34:21:
ff:25:ec:1b:80:f7:e9:50:6f:b4:e5:38:b0:aa:74:
70:76:e2:f8:ae:79:62:07:bc:5c:64:6e:c6:93:05:
c3:d6:9b:1f:75:3a:cf:b8:59:f7:2b:a5:9e:6f:15:
f5:95:17:ae:08:72:b8:04:8e:db:78:25:ac:42:3e:
7b:51:04:7a:99:b9:10:cb:4c:a0:6d:d2:e4:52:af:
6c:df
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
05:F8:FB:77:D1:BD:49:C4:06:EF:2C:C7:A0:AD:DF:A3:5C:D5:33:29
X509v3 Authority Key Identifier:
keyid:0F:95:C9:C9:A7:F1:9A:9A:D7:17:E4:DA:A5:30:C8:5C:F9:9A:B9:75
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/D5XJyafxmprXF-TapTDIXPmauXU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/53/08f5cd-8eec-4d55-8812-c93659f76737/1/D5XJyafxmprXF-TapTDIXPmauXU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/53/08f5cd-8eec-4d55-8812-c93659f76737/1/D5XJyafxmprXF-TapTDIXPmauXU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
45:be:49:8d:33:35:78:7c:fd:ca:e6:49:83:00:ac:e6:1d:79:
cc:41:83:e1:d5:cd:09:9e:72:22:45:65:16:90:af:b9:0b:65:
d0:bb:fc:cb:72:21:fb:b8:8a:04:8c:c7:43:7c:e3:c1:72:0e:
ee:4c:18:2d:f4:7f:0a:f3:bf:1c:83:ef:73:e1:b7:ac:88:a6:
7c:0b:27:32:04:f0:2c:b0:f9:e3:8b:47:68:4d:5a:2a:ec:40:
d6:a9:31:b9:71:41:64:56:21:e6:a3:9e:e6:40:c2:bc:a9:7e:
e8:04:9a:2e:df:92:9e:cd:41:d6:ae:57:c8:f5:88:96:8f:11:
a3:3d:44:5d:df:89:5f:6b:b1:36:d2:19:7b:87:61:27:6a:05:
55:ea:46:6a:ab:75:34:ca:2e:81:c2:9b:c6:ab:29:d9:2a:43:
68:11:ec:ab:c7:72:b6:ef:72:e9:14:c5:19:83:af:3f:ea:48:
d5:77:d0:39:59:f8:4c:b6:bb:5a:02:cd:1c:a3:f5:fe:f1:c1:
fb:59:6b:9d:77:d7:08:2e:3c:fd:b7:4b:9f:69:51:dc:4f:6e:
ea:db:72:b4:24:d3:8e:d6:23:ff:93:24:9c:8d:cd:eb:62:a2:
7b:27:f6:fc:dc:e2:05:32:68:37:08:dd:31:bc:04:08:ba:10:
0e:80:93:0f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 13 02:49:34 2025 by rpki-client