Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/65/745fcb-f472-4039-8b1d-44efd130659c/1/Ba5fI9uYP9E2rp1x6H4eUTC89tQ.mft
File: Ba5fI9uYP9E2rp1x6H4eUTC89tQ.mft (raw, json)
Hash identifier: acNDtYpFH0u74j7ujV50Qw4H1TbRRBN7O3E5d8OwezA=
Subject key identifier: DB:BA:EE:83:B8:A9:8E:09:FF:6C:9D:01:40:1B:22:56:69:76:4A:EF
Authority key identifier: 05:AE:5F:23:DB:98:3F:D1:36:AE:9D:71:E8:7E:1E:51:30:BC:F6:D4
Certificate issuer: /CN=05ae5f23db983fd136ae9d71e87e1e5130bcf6d4
Certificate serial: 01975C12F69D18F218F52C6C6DF4390F99F1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Ba5fI9uYP9E2rp1x6H4eUTC89tQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/65/745fcb-f472-4039-8b1d-44efd130659c/1/Ba5fI9uYP9E2rp1x6H4eUTC89tQ.mft
Manifest number: 1587
Signing time: Tue 10 Jun 2025 23:00:35 +0000
Manifest this update: Tue 10 Jun 2025 23:00:35 +0000
Manifest next update: Wed 11 Jun 2025 23:00:35 +0000
Files and hashes: 1: Ba5fI9uYP9E2rp1x6H4eUTC89tQ.crl (hash: 4ZgFDN6iA4/UA2PhaL0KMUPR4pXodSfkvYa3wzdyfDE=)
2: xQ3PdmMDye_3ODxtjF3bxTEbrgU.roa (hash: OnYXJU1mRvo0V2FhsSO8D1b8k47DbXdYSrQ7JN4NAuQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/65/745fcb-f472-4039-8b1d-44efd130659c/1/Ba5fI9uYP9E2rp1x6H4eUTC89tQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/65/745fcb-f472-4039-8b1d-44efd130659c/1/Ba5fI9uYP9E2rp1x6H4eUTC89tQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/Ba5fI9uYP9E2rp1x6H4eUTC89tQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 11 Jun 2025 20:45:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:5c:12:f6:9d:18:f2:18:f5:2c:6c:6d:f4:39:0f:99:f1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=05ae5f23db983fd136ae9d71e87e1e5130bcf6d4
Validity
Not Before: Jun 10 23:00:35 2025 GMT
Not After : Jun 11 23:00:35 2025 GMT
Subject: CN=dbbaee83b8a98e09ff6c9d01401b225669764aef
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:2a:86:32:86:eb:6c:2e:dd:95:29:1e:5c:0a:
f6:08:3b:88:d7:0f:83:e6:c5:c4:3f:ca:af:5c:e2:
d5:5e:1c:85:1b:58:cc:b2:18:7b:34:0f:1b:7b:1b:
4d:f0:13:e3:c2:1c:d1:6f:bc:be:32:27:ec:b8:6f:
48:b0:52:26:9e:7d:1f:04:05:51:74:77:8a:eb:e2:
b4:f8:96:5b:74:d0:5f:c4:88:9b:a5:6d:26:fb:a1:
06:a1:a2:e4:68:52:64:a8:d6:29:6c:10:ca:16:68:
3d:98:4a:54:4f:72:6d:68:ef:d0:2c:37:a6:a8:f8:
4d:f7:ea:48:f0:7f:d4:cd:15:cb:51:49:be:f3:74:
58:1f:f0:c5:e8:ee:53:24:04:21:dc:17:11:3e:f4:
a6:44:54:e1:b4:7f:a0:63:15:5b:e7:b7:eb:6c:80:
50:14:f3:be:62:05:ba:3d:46:dc:39:02:ed:12:d2:
85:1d:d2:81:b5:24:fa:d1:61:31:28:84:cb:a9:47:
07:e7:7a:5d:8d:a9:6c:37:68:4c:9f:55:7d:b1:f0:
de:93:d7:c0:d1:e7:73:fb:df:bb:31:ec:e6:9f:48:
d9:47:3b:43:7b:8b:a2:7d:fb:ab:cf:f1:1f:e4:bd:
17:37:70:05:5e:f8:a7:02:75:5f:4f:f2:f4:b6:8e:
43:2d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DB:BA:EE:83:B8:A9:8E:09:FF:6C:9D:01:40:1B:22:56:69:76:4A:EF
X509v3 Authority Key Identifier:
keyid:05:AE:5F:23:DB:98:3F:D1:36:AE:9D:71:E8:7E:1E:51:30:BC:F6:D4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Ba5fI9uYP9E2rp1x6H4eUTC89tQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/65/745fcb-f472-4039-8b1d-44efd130659c/1/Ba5fI9uYP9E2rp1x6H4eUTC89tQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/65/745fcb-f472-4039-8b1d-44efd130659c/1/Ba5fI9uYP9E2rp1x6H4eUTC89tQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
6b:32:31:e7:e4:ef:dd:6f:ab:03:78:d4:c9:43:7c:8c:39:3e:
38:95:14:99:f3:42:c2:08:04:38:da:12:d2:af:65:af:10:a1:
06:1d:62:69:f2:a3:64:3c:91:71:3d:ff:d1:b7:54:98:7c:3e:
c5:4e:d3:7b:a5:26:65:7c:4e:65:2a:41:fb:d3:a2:c0:8c:a4:
6e:af:67:91:1c:0c:50:7d:c3:00:5b:d6:db:24:86:60:dc:8d:
4c:b6:56:8c:5a:63:19:95:78:8b:c7:8a:9e:99:a2:38:b7:7b:
8e:d0:51:04:5e:ca:cb:c7:d5:a8:6b:70:d4:e9:d0:60:df:1d:
91:6c:38:b9:14:d2:82:76:09:a4:e6:87:1f:db:75:af:6f:75:
9c:c4:22:e3:b4:7a:b4:5d:cc:25:d8:fe:aa:e6:9f:bd:b5:19:
98:fd:09:59:8e:47:e1:91:da:17:8d:14:53:54:b1:1c:76:13:
2f:94:7a:7c:12:84:80:84:d3:3c:f7:f2:9f:f8:f6:1e:f6:91:
8c:47:16:d4:b0:1b:d8:25:15:2b:fc:ec:15:df:96:1a:3e:f8:
d2:67:1f:4b:24:7e:ed:b5:09:02:54:8e:e6:ec:24:c7:6e:6b:
2c:b5:19:8f:93:38:3a:0a:cb:b8:3e:50:2b:a2:01:a9:82:66:
27:2e:09:4d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jun 11 05:08:57 2025 by rpki-client