Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5d/e7d974-e258-41fe-880a-4ec2d94e2ede/1/58OrlrdMKsTwSuYqt-gs3xmI7UA.mft
File: 58OrlrdMKsTwSuYqt-gs3xmI7UA.mft (raw, json)
Hash identifier: I+mEnpQL41sBRQeXqq0m6aLk0vnKuqOUQiIn9kja+Sk=
Subject key identifier: 15:6B:11:62:C0:4E:A2:EC:C5:A6:55:34:58:DB:CB:B7:32:A8:2A:1F
Authority key identifier: E7:C3:AB:96:B7:4C:2A:C4:F0:4A:E6:2A:B7:E8:2C:DF:19:88:ED:40
Certificate issuer: /CN=e7c3ab96b74c2ac4f04ae62ab7e82cdf1988ed40
Certificate serial: 01958F617C734DB4D6F0798DFEC754A8B7F2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/58OrlrdMKsTwSuYqt-gs3xmI7UA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5d/e7d974-e258-41fe-880a-4ec2d94e2ede/1/58OrlrdMKsTwSuYqt-gs3xmI7UA.mft
Manifest number: 0619
Signing time: Thu 13 Mar 2025 12:01:25 +0000
Manifest this update: Thu 13 Mar 2025 12:01:25 +0000
Manifest next update: Fri 14 Mar 2025 12:01:25 +0000
Files and hashes: 1: 58OrlrdMKsTwSuYqt-gs3xmI7UA.crl (hash: UgqJ+XbxZR/c+TfyAGh0I/gsEZvpzwfeuLS6hQ3YbTE=)
2: tRQVAZPhSI7yY2YBf58wHloNtVk.roa (hash: x6U/gqCwfyDYCGrA4HX4YKbEtJbHihcQ4Z9Ks5Bgn58=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5d/e7d974-e258-41fe-880a-4ec2d94e2ede/1/58OrlrdMKsTwSuYqt-gs3xmI7UA.crl
rsync://rpki.ripe.net/repository/DEFAULT/5d/e7d974-e258-41fe-880a-4ec2d94e2ede/1/58OrlrdMKsTwSuYqt-gs3xmI7UA.mft
rsync://rpki.ripe.net/repository/DEFAULT/58OrlrdMKsTwSuYqt-gs3xmI7UA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 14 Mar 2025 12:01:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:8f:61:7c:73:4d:b4:d6:f0:79:8d:fe:c7:54:a8:b7:f2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e7c3ab96b74c2ac4f04ae62ab7e82cdf1988ed40
Validity
Not Before: Mar 13 12:01:25 2025 GMT
Not After : Mar 14 12:01:25 2025 GMT
Subject: CN=156b1162c04ea2ecc5a6553458dbcbb732a82a1f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:86:e9:36:c5:64:ff:9a:86:6b:67:bd:6e:32:
00:fc:ab:73:bc:10:00:f0:b8:d5:27:2a:1c:b1:ba:
e1:77:8a:7f:07:7b:a2:45:52:5c:42:50:ff:c8:a9:
5c:44:e6:3a:4e:39:e0:95:99:6e:b8:92:ac:b5:04:
ad:7c:1c:12:a1:b5:10:7c:38:cc:f6:6d:01:fe:f8:
bc:29:5b:0d:2a:77:ef:59:a8:df:47:24:5e:8c:80:
37:ed:0b:0e:37:fb:74:a9:87:5c:4b:48:8a:be:05:
ab:94:46:19:a8:1a:ed:f3:68:5e:e4:83:da:72:f6:
76:55:01:d8:5f:ba:ec:87:b8:23:59:93:c8:5c:c8:
4b:1d:2c:c0:4d:89:93:31:b9:09:26:3c:46:cc:84:
06:f4:41:91:8e:c5:48:b1:d4:a5:7d:65:e7:cd:ae:
7e:5e:8d:98:7d:24:e5:91:db:97:26:85:0c:09:74:
d2:2b:76:ba:44:2b:5d:84:4f:8e:05:dc:25:1f:c1:
b2:d6:79:fa:e1:fd:9c:1b:28:40:23:00:d8:fb:31:
57:de:f9:e6:03:aa:64:05:e1:4c:aa:ab:ff:d4:78:
57:81:44:af:42:f5:9d:31:0d:65:e4:56:bd:80:b6:
8a:fa:66:27:56:63:8b:56:22:22:02:c0:f8:7f:c1:
61:23
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
15:6B:11:62:C0:4E:A2:EC:C5:A6:55:34:58:DB:CB:B7:32:A8:2A:1F
X509v3 Authority Key Identifier:
keyid:E7:C3:AB:96:B7:4C:2A:C4:F0:4A:E6:2A:B7:E8:2C:DF:19:88:ED:40
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/58OrlrdMKsTwSuYqt-gs3xmI7UA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5d/e7d974-e258-41fe-880a-4ec2d94e2ede/1/58OrlrdMKsTwSuYqt-gs3xmI7UA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5d/e7d974-e258-41fe-880a-4ec2d94e2ede/1/58OrlrdMKsTwSuYqt-gs3xmI7UA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
05:d9:27:05:99:1b:61:a0:ef:fe:9b:42:b2:a6:2d:bc:38:f9:
98:3f:36:82:b0:d8:27:55:25:fd:28:32:8d:2a:bf:fa:a8:bf:
26:9b:f4:57:c3:a2:0b:75:14:af:47:76:e0:7e:e6:dc:9a:15:
14:df:7b:85:02:f1:b0:9e:27:88:9c:4c:d5:ce:d8:99:c7:ba:
22:35:43:30:9f:bf:1a:c0:43:5c:9c:90:d5:f9:f1:17:2a:bc:
44:56:3d:12:70:53:be:2f:2c:ca:b1:2c:40:74:5a:a3:e2:e7:
5b:c5:30:67:b7:a9:1f:3f:56:81:1e:1a:7a:94:8c:c0:e7:fb:
1a:60:91:72:5d:06:d6:23:d4:1d:8c:d0:8c:e0:b6:84:7a:23:
59:80:b1:05:b9:ba:71:f6:51:15:61:b1:8c:51:ab:08:df:62:
70:b2:ac:04:3b:56:f4:09:3e:10:16:84:1b:78:de:ae:9f:a2:
47:48:8a:c3:d3:cf:0e:75:7d:ab:7d:af:9c:83:60:ae:a2:1f:
b2:d8:df:18:25:31:d3:42:dc:38:e5:f1:db:90:8e:bc:78:b6:
84:91:9e:ec:ee:3e:90:39:2b:82:31:df:bb:12:27:89:73:53:
ac:18:43:86:bd:f8:a9:59:ba:51:4d:90:b7:71:4a:b1:bb:bd:
34:aa:94:18
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 13 21:09:21 2025 by rpki-client