Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/53/08f5cd-8eec-4d55-8812-c93659f76737/1/D5XJyafxmprXF-TapTDIXPmauXU.mft
File: D5XJyafxmprXF-TapTDIXPmauXU.mft (raw, json)
Hash identifier: YzhDoD5v046tn1JzdQfTL5zrHpoYrMF0q9RjS8fLi/4=
Subject key identifier: BD:29:81:4D:45:00:9C:AB:95:E2:9E:73:7F:25:CD:01:E8:3D:25:0C
Authority key identifier: 0F:95:C9:C9:A7:F1:9A:9A:D7:17:E4:DA:A5:30:C8:5C:F9:9A:B9:75
Certificate issuer: /CN=0f95c9c9a7f19a9ad717e4daa530c85cf99ab975
Certificate serial: 019748556793FF4F35CCC494C96FA099DF1C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/D5XJyafxmprXF-TapTDIXPmauXU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/53/08f5cd-8eec-4d55-8812-c93659f76737/1/D5XJyafxmprXF-TapTDIXPmauXU.mft
Manifest number: 05AC
Signing time: Sat 07 Jun 2025 03:00:45 +0000
Manifest this update: Sat 07 Jun 2025 03:00:45 +0000
Manifest next update: Sun 08 Jun 2025 03:00:45 +0000
Files and hashes: 1: D5XJyafxmprXF-TapTDIXPmauXU.crl (hash: m8LXFFjPzZmhgrHWMbti9CL26IlvQ4NcrjCiDYyX5rw=)
2: dJjjOIsvcmwG1yw0BY5P71sFVUw.roa (hash: 71ssAltTmbpploHF43pU09n+JXavvKYPHb8mMd4Firs=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/53/08f5cd-8eec-4d55-8812-c93659f76737/1/D5XJyafxmprXF-TapTDIXPmauXU.crl
rsync://rpki.ripe.net/repository/DEFAULT/53/08f5cd-8eec-4d55-8812-c93659f76737/1/D5XJyafxmprXF-TapTDIXPmauXU.mft
rsync://rpki.ripe.net/repository/DEFAULT/D5XJyafxmprXF-TapTDIXPmauXU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 08 Jun 2025 03:00:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:48:55:67:93:ff:4f:35:cc:c4:94:c9:6f:a0:99:df:1c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0f95c9c9a7f19a9ad717e4daa530c85cf99ab975
Validity
Not Before: Jun 7 03:00:45 2025 GMT
Not After : Jun 8 03:00:45 2025 GMT
Subject: CN=bd29814d45009cab95e29e737f25cd01e83d250c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e4:30:97:a6:ce:d2:8a:f5:f0:49:15:ec:7d:32:
49:30:43:e0:68:3c:03:c8:5f:c4:b7:34:5e:5b:f6:
9f:0b:1f:70:96:bf:a3:90:a5:53:79:3e:87:2b:9a:
dc:19:34:b3:ae:17:62:35:49:ae:ca:17:ab:14:c7:
97:03:fd:27:20:5d:b1:b1:ba:25:51:fa:5c:0a:16:
0a:52:d2:1c:f0:55:32:41:5c:1d:71:c2:9d:59:78:
3b:88:45:e5:99:76:1a:d5:54:fe:f4:29:84:73:ea:
79:86:59:95:81:44:ba:9e:09:d3:be:35:7e:62:4e:
10:36:5f:8b:19:c3:c5:68:6f:19:f9:d5:03:d8:f6:
d0:86:7b:72:02:a3:ef:8c:79:36:ab:9a:27:78:d2:
0b:5e:7c:35:a0:a3:1b:4b:9d:3b:6e:38:e3:ef:39:
21:8f:69:0b:24:4c:6f:d2:27:e0:2c:27:76:34:09:
bb:97:ec:50:40:68:48:cf:62:19:55:ad:d7:15:c3:
d7:d1:01:d1:18:31:29:02:5b:6a:e0:7e:ee:87:16:
18:95:cc:f0:78:de:40:62:99:80:a1:a7:bc:9b:97:
fb:ea:16:42:8d:93:8c:44:f6:52:04:f7:e1:d9:c3:
09:65:db:78:10:0c:b9:db:e6:31:ad:4c:cd:f7:33:
72:99
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BD:29:81:4D:45:00:9C:AB:95:E2:9E:73:7F:25:CD:01:E8:3D:25:0C
X509v3 Authority Key Identifier:
keyid:0F:95:C9:C9:A7:F1:9A:9A:D7:17:E4:DA:A5:30:C8:5C:F9:9A:B9:75
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/D5XJyafxmprXF-TapTDIXPmauXU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/53/08f5cd-8eec-4d55-8812-c93659f76737/1/D5XJyafxmprXF-TapTDIXPmauXU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/53/08f5cd-8eec-4d55-8812-c93659f76737/1/D5XJyafxmprXF-TapTDIXPmauXU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
6c:b1:ef:28:5b:af:b4:92:d7:97:69:89:e4:e6:7b:75:bf:1b:
cb:64:be:ff:ff:fa:5a:33:97:2b:17:41:07:44:55:ac:6a:69:
28:e8:38:3a:48:9e:85:26:8e:39:1e:f6:f9:91:67:53:4f:47:
c9:18:6e:29:99:52:c1:0d:6b:44:e3:70:60:7d:e3:46:75:1b:
10:aa:d4:60:40:59:2f:9c:40:c8:2e:2e:45:69:24:1a:5c:75:
5f:2e:e6:6a:e7:4f:e8:56:db:f5:e3:f2:17:58:3f:b6:2a:4b:
b9:d5:2e:bf:60:df:12:e5:5b:6f:4e:79:19:54:05:5c:ac:b9:
b9:6d:b8:6b:a8:3a:cb:42:e7:21:ea:9c:5c:5e:2e:80:21:18:
f4:9f:15:81:41:31:e1:d6:0a:ef:0f:2a:a2:d3:7a:b9:7f:33:
a8:a1:d9:51:c4:80:01:f9:42:19:63:3e:78:4b:90:3d:f4:7c:
d2:54:02:c1:e2:03:30:3f:a7:f8:d2:7f:c9:8d:48:e2:c7:4b:
a0:6b:55:73:c8:35:68:c6:11:63:af:95:e0:9f:9e:25:06:b8:
a2:bf:84:60:b4:39:1a:db:b3:e3:0d:9c:6d:01:27:22:96:fc:
56:3d:7f:60:09:4e:cd:e8:ce:60:3d:77:c9:6f:27:b5:d2:ca:
01:93:58:e8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 7 11:54:56 2025 by rpki-client