Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/65/745fcb-f472-4039-8b1d-44efd130659c/1/Ba5fI9uYP9E2rp1x6H4eUTC89tQ.mft
File: Ba5fI9uYP9E2rp1x6H4eUTC89tQ.mft (raw, json)
Hash identifier: 0UUxz7/+BBpFjNZKK66eRmMGf3EKeJywxYsVG7jsfZI=
Subject key identifier: 86:DB:2A:47:8B:DE:63:2E:DC:06:B5:BC:D7:F7:DC:1B:CD:F5:A2:10
Authority key identifier: 05:AE:5F:23:DB:98:3F:D1:36:AE:9D:71:E8:7E:1E:51:30:BC:F6:D4
Certificate issuer: /CN=05ae5f23db983fd136ae9d71e87e1e5130bcf6d4
Certificate serial: 01975FEFC50B79FD67CE98B971CD2C8A5853
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Ba5fI9uYP9E2rp1x6H4eUTC89tQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/65/745fcb-f472-4039-8b1d-44efd130659c/1/Ba5fI9uYP9E2rp1x6H4eUTC89tQ.mft
Manifest number: 1589
Signing time: Wed 11 Jun 2025 17:00:38 +0000
Manifest this update: Wed 11 Jun 2025 17:00:38 +0000
Manifest next update: Thu 12 Jun 2025 17:00:38 +0000
Files and hashes: 1: Ba5fI9uYP9E2rp1x6H4eUTC89tQ.crl (hash: rmDRYGtr+wv/rAjOxvgsEEVfaPCIIoSzMmwzWvTO3QI=)
2: xQ3PdmMDye_3ODxtjF3bxTEbrgU.roa (hash: OnYXJU1mRvo0V2FhsSO8D1b8k47DbXdYSrQ7JN4NAuQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/65/745fcb-f472-4039-8b1d-44efd130659c/1/Ba5fI9uYP9E2rp1x6H4eUTC89tQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/65/745fcb-f472-4039-8b1d-44efd130659c/1/Ba5fI9uYP9E2rp1x6H4eUTC89tQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/Ba5fI9uYP9E2rp1x6H4eUTC89tQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 12 Jun 2025 15:40:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:5f:ef:c5:0b:79:fd:67:ce:98:b9:71:cd:2c:8a:58:53
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=05ae5f23db983fd136ae9d71e87e1e5130bcf6d4
Validity
Not Before: Jun 11 17:00:38 2025 GMT
Not After : Jun 12 17:00:38 2025 GMT
Subject: CN=86db2a478bde632edc06b5bcd7f7dc1bcdf5a210
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:55:0f:85:e0:87:8b:24:e4:c3:36:b7:7a:0a:
7d:08:37:5a:19:92:f9:a9:26:b7:69:19:3e:f7:c3:
be:ca:5b:31:74:27:07:7c:54:e6:c7:17:d2:8f:05:
fe:5a:4c:f0:20:20:17:c5:d7:98:2d:39:01:9c:a3:
86:aa:48:51:be:d2:bd:c6:32:3d:fb:ad:c2:8b:f8:
8e:ad:c8:d4:1d:42:73:9f:d6:f5:c4:45:8a:50:0b:
39:a2:83:41:40:7f:75:a1:84:90:1d:92:e1:8e:9a:
1b:71:86:a9:47:ab:e7:64:94:96:98:9d:05:5a:44:
a3:12:55:f1:74:64:54:cc:b8:f1:f9:b9:cc:f2:6d:
bf:32:57:50:91:f3:b7:a7:bc:61:90:58:d5:ce:0b:
5b:27:a2:9b:f4:1a:bc:29:6e:d4:7d:db:35:61:c8:
9e:32:5a:df:27:19:78:aa:f5:61:67:55:1d:37:5b:
a5:76:b2:9f:00:29:d3:1b:95:22:b2:6a:61:23:62:
13:e8:05:24:c9:5a:7f:41:6e:d5:54:03:2d:ae:bf:
53:00:3d:39:1c:d3:52:b8:40:8a:59:57:da:41:21:
9b:95:f8:b2:1e:5c:f0:7c:f9:37:fa:df:44:c6:3e:
c0:55:f0:20:6c:57:23:80:6b:e9:f4:ba:8a:7a:cb:
d8:b1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
86:DB:2A:47:8B:DE:63:2E:DC:06:B5:BC:D7:F7:DC:1B:CD:F5:A2:10
X509v3 Authority Key Identifier:
keyid:05:AE:5F:23:DB:98:3F:D1:36:AE:9D:71:E8:7E:1E:51:30:BC:F6:D4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Ba5fI9uYP9E2rp1x6H4eUTC89tQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/65/745fcb-f472-4039-8b1d-44efd130659c/1/Ba5fI9uYP9E2rp1x6H4eUTC89tQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/65/745fcb-f472-4039-8b1d-44efd130659c/1/Ba5fI9uYP9E2rp1x6H4eUTC89tQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
38:3c:e0:a9:20:29:b2:7b:6a:43:07:9a:1c:0b:6a:d5:a6:e1:
5d:b3:b9:a9:08:ab:5b:da:e3:c1:14:ea:fb:29:54:52:90:2c:
40:68:c0:4d:fd:f0:c5:b7:8c:4b:0d:31:3f:69:9a:31:cf:6a:
23:c4:ed:5a:05:ec:a8:e9:81:86:af:25:20:ac:46:60:93:5c:
31:32:c1:cd:15:2d:6f:0c:82:4a:41:a9:ee:d7:71:49:89:2d:
e1:ad:2a:3d:17:e3:ef:ad:b4:aa:bc:66:82:26:50:3f:f1:7d:
d0:ac:2a:04:69:46:35:c3:be:f0:cd:55:24:34:1f:0a:05:fc:
ed:d0:b3:9a:7c:b3:80:cd:47:04:36:b6:4e:4f:df:e6:b8:87:
f5:8b:e7:50:19:84:99:27:15:70:92:dc:8e:fd:e3:88:97:2f:
61:62:08:7a:d0:aa:0f:16:5e:61:c4:d1:65:05:23:cf:aa:b2:
b4:4d:e2:32:29:d0:89:e2:ca:ea:ee:64:82:34:e5:56:b0:19:
ed:61:51:26:40:32:0a:5f:4e:13:4a:cd:73:35:01:7e:d6:ff:
16:80:4e:72:fa:b6:06:0b:ca:40:77:86:0f:42:7e:fb:02:b9:
7f:ad:43:56:bd:40:1f:5b:29:8c:0e:bd:6a:e7:de:5b:3c:7e:
a8:b4:d3:be
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jun 11 22:49:57 2025 by rpki-client