Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/65/745fcb-f472-4039-8b1d-44efd130659c/1/Ba5fI9uYP9E2rp1x6H4eUTC89tQ.mft
File: Ba5fI9uYP9E2rp1x6H4eUTC89tQ.mft (raw, json)
Hash identifier: HRe4IZVlWUVbYCJLsgiibpg+mRmFOVcfrKA5sdIboPY=
Subject key identifier: 7A:CC:D3:22:32:85:16:E6:A6:13:28:0B:8F:3D:3F:ED:73:51:FF:D0
Authority key identifier: 05:AE:5F:23:DB:98:3F:D1:36:AE:9D:71:E8:7E:1E:51:30:BC:F6:D4
Certificate issuer: /CN=05ae5f23db983fd136ae9d71e87e1e5130bcf6d4
Certificate serial: 0197715104289045B1C5AA04A5E89364E73A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Ba5fI9uYP9E2rp1x6H4eUTC89tQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/65/745fcb-f472-4039-8b1d-44efd130659c/1/Ba5fI9uYP9E2rp1x6H4eUTC89tQ.mft
Manifest number: 1592
Signing time: Sun 15 Jun 2025 02:00:24 +0000
Manifest this update: Sun 15 Jun 2025 02:00:24 +0000
Manifest next update: Mon 16 Jun 2025 02:00:24 +0000
Files and hashes: 1: Ba5fI9uYP9E2rp1x6H4eUTC89tQ.crl (hash: 6nqNYmgtocrSrFVXjrrsiUCTYMHrgOiBMZFSlJeVUo4=)
2: xQ3PdmMDye_3ODxtjF3bxTEbrgU.roa (hash: OnYXJU1mRvo0V2FhsSO8D1b8k47DbXdYSrQ7JN4NAuQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/65/745fcb-f472-4039-8b1d-44efd130659c/1/Ba5fI9uYP9E2rp1x6H4eUTC89tQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/65/745fcb-f472-4039-8b1d-44efd130659c/1/Ba5fI9uYP9E2rp1x6H4eUTC89tQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/Ba5fI9uYP9E2rp1x6H4eUTC89tQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 16 Jun 2025 02:00:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:71:51:04:28:90:45:b1:c5:aa:04:a5:e8:93:64:e7:3a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=05ae5f23db983fd136ae9d71e87e1e5130bcf6d4
Validity
Not Before: Jun 15 02:00:24 2025 GMT
Not After : Jun 16 02:00:24 2025 GMT
Subject: CN=7accd322328516e6a613280b8f3d3fed7351ffd0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:e1:ac:25:6d:c9:59:f0:1f:d1:01:25:a5:ea:
4b:48:7c:2c:43:8d:08:e5:11:0c:c0:73:e8:f9:59:
0e:14:05:2f:0d:18:57:ce:84:62:a0:ba:2d:c2:09:
8c:03:0e:00:11:43:c6:24:c1:bc:fa:28:a2:e0:bb:
d8:1d:6a:b8:fd:9e:2a:35:b0:15:4a:c7:a4:47:b2:
eb:66:22:5d:7d:9a:36:33:3d:30:b1:12:05:58:71:
1e:94:8f:ec:41:58:6b:96:bf:da:fb:21:e0:2d:8a:
18:59:ce:87:bd:d5:f5:07:73:62:ff:71:df:43:61:
d2:e1:8f:f8:6b:42:c3:a6:1f:4b:20:25:37:16:b3:
89:bd:37:ba:79:53:d1:ef:80:99:d6:37:f1:19:01:
bf:8e:d3:58:a0:19:aa:96:97:04:f0:93:e1:2e:32:
7b:52:71:48:18:1c:88:7a:a5:a3:1a:a1:84:28:a2:
07:fa:76:1b:08:42:5a:0f:a8:80:f1:0b:17:a2:ac:
a4:15:9a:9e:df:3b:df:fc:4a:ca:7e:d6:d6:67:9d:
bb:9b:49:58:86:da:80:df:8c:6b:7c:26:7e:8a:a5:
fb:46:fa:cf:00:cd:73:04:4c:7b:01:fe:00:d4:6d:
5c:91:33:1f:0f:4e:e5:b0:bb:21:a4:1a:f7:e6:85:
97:8b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7A:CC:D3:22:32:85:16:E6:A6:13:28:0B:8F:3D:3F:ED:73:51:FF:D0
X509v3 Authority Key Identifier:
keyid:05:AE:5F:23:DB:98:3F:D1:36:AE:9D:71:E8:7E:1E:51:30:BC:F6:D4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Ba5fI9uYP9E2rp1x6H4eUTC89tQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/65/745fcb-f472-4039-8b1d-44efd130659c/1/Ba5fI9uYP9E2rp1x6H4eUTC89tQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/65/745fcb-f472-4039-8b1d-44efd130659c/1/Ba5fI9uYP9E2rp1x6H4eUTC89tQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
22:6a:8b:a2:d7:f7:1b:fd:ee:26:14:8c:47:47:be:cc:e0:82:
fa:43:74:e0:2d:ec:4b:7a:30:ab:1c:e5:51:d9:f7:f9:f5:a6:
9b:63:51:95:4e:01:40:65:56:4d:a7:be:97:67:96:5f:79:1e:
91:67:be:94:85:d0:a0:54:05:3c:64:ca:e7:46:d6:73:4c:b1:
0b:6e:61:d6:99:50:03:a5:3f:04:a4:5e:d4:a1:aa:44:42:eb:
c7:db:0e:c5:f6:07:8d:b0:fa:0a:b1:2a:23:c6:ec:1b:9c:8e:
8e:82:d0:8f:c6:01:64:ec:ad:52:0d:0e:ce:41:fe:88:ca:7d:
2c:9c:aa:af:c5:7d:e6:3c:2b:52:58:5d:77:88:05:90:b7:72:
bb:04:1d:2b:ab:69:9b:1b:7e:03:33:cf:ae:c2:81:33:15:c7:
5a:62:4c:da:73:7c:67:fe:47:df:45:7c:0a:a0:56:dd:4f:cf:
61:52:fc:0a:2f:53:aa:a2:bf:5c:e2:01:54:1e:b5:b8:c5:bc:
fb:26:27:71:13:4a:28:79:a3:98:36:2c:31:e2:e0:95:db:4b:
e2:51:aa:8e:d4:74:95:4c:1b:97:86:81:55:7d:fa:b5:1c:3c:
92:29:4e:ba:14:71:c7:d9:78:87:61:8e:01:9c:1e:73:6d:df:
09:bd:d2:02
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 15 10:10:13 2025 by rpki-client