Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a5/060cea-e920-40de-90da-8d49ebcae9b3/1/5gSc-H3Y8f1MgCS1psnqlPF7b70.mft
File: 5gSc-H3Y8f1MgCS1psnqlPF7b70.mft (raw, json)
Hash identifier: QnPthEmVpjRRZ0GGaM8paUzsB9QQP/NixYJ87XWRd7I=
Subject key identifier: E5:E9:4E:D2:51:DD:3C:26:23:8D:D9:28:CF:76:A8:15:42:2A:A9:C3
Authority key identifier: E6:04:9C:F8:7D:D8:F1:FD:4C:80:24:B5:A6:C9:EA:94:F1:7B:6F:BD
Certificate issuer: /CN=e6049cf87dd8f1fd4c8024b5a6c9ea94f17b6fbd
Certificate serial: 01964D7E12BBBCF05BA97E6C562A14D901C2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/5gSc-H3Y8f1MgCS1psnqlPF7b70.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a5/060cea-e920-40de-90da-8d49ebcae9b3/1/5gSc-H3Y8f1MgCS1psnqlPF7b70.mft
Manifest number: 148D
Signing time: Sat 19 Apr 2025 10:00:29 +0000
Manifest this update: Sat 19 Apr 2025 10:00:29 +0000
Manifest next update: Sun 20 Apr 2025 10:00:29 +0000
Files and hashes: 1: 5gSc-H3Y8f1MgCS1psnqlPF7b70.crl (hash: hQ0WZLznMQ5/dmTnw0LsT8Ox2GDcnm2JzUgc9wBVxVM=)
2: cu8xrGCLqiGHp1db_MgiG0UxHW8.roa (hash: giP9e0QpRuK7Urrt2Hhvj2cOHwVCXlF67CRutRL96MA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a5/060cea-e920-40de-90da-8d49ebcae9b3/1/5gSc-H3Y8f1MgCS1psnqlPF7b70.crl
rsync://rpki.ripe.net/repository/DEFAULT/a5/060cea-e920-40de-90da-8d49ebcae9b3/1/5gSc-H3Y8f1MgCS1psnqlPF7b70.mft
rsync://rpki.ripe.net/repository/DEFAULT/5gSc-H3Y8f1MgCS1psnqlPF7b70.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 20 Apr 2025 07:26:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:4d:7e:12:bb:bc:f0:5b:a9:7e:6c:56:2a:14:d9:01:c2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e6049cf87dd8f1fd4c8024b5a6c9ea94f17b6fbd
Validity
Not Before: Apr 19 10:00:29 2025 GMT
Not After : Apr 20 10:00:29 2025 GMT
Subject: CN=e5e94ed251dd3c26238dd928cf76a815422aa9c3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:1b:5a:2a:ab:d4:73:f9:53:c8:aa:96:15:15:
7d:10:b1:03:53:08:27:cc:25:47:ac:38:22:e7:0f:
89:44:2d:02:03:c8:11:2e:43:8b:de:96:b3:53:d3:
5c:7c:31:48:6f:d2:f9:49:de:a0:8e:c2:57:42:71:
63:8d:a8:4b:c2:20:aa:28:4c:8f:db:ce:8d:ab:f3:
bb:f8:8b:ff:42:08:de:44:f3:e9:12:8c:30:a8:e5:
72:0c:da:23:96:b2:d4:93:8a:94:9f:00:12:82:a7:
45:52:a3:81:f9:ad:47:16:56:5d:da:52:6c:0e:8e:
98:1a:39:9e:1d:3b:8a:7f:a9:43:7f:c6:9a:2e:14:
12:21:e8:46:df:ae:d6:f6:c0:7a:b4:93:24:40:06:
81:87:c8:6b:66:d1:6a:05:77:b0:58:ee:8a:98:9f:
45:83:9a:64:cc:5e:82:e0:19:72:69:91:43:14:1a:
b7:dd:ca:38:74:3c:ca:13:4d:4c:a2:dd:b6:ce:0b:
8b:32:89:ea:46:20:f9:b9:fa:c1:89:a3:18:cc:d5:
13:f4:7e:89:ed:4f:ac:cf:7d:6b:dc:56:b2:6c:f0:
f4:6d:0c:8d:6e:df:46:7c:cf:17:3e:35:cd:9e:29:
e4:6b:66:a4:c6:32:b9:6e:f8:d7:64:4e:b0:14:3b:
77:4b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E5:E9:4E:D2:51:DD:3C:26:23:8D:D9:28:CF:76:A8:15:42:2A:A9:C3
X509v3 Authority Key Identifier:
keyid:E6:04:9C:F8:7D:D8:F1:FD:4C:80:24:B5:A6:C9:EA:94:F1:7B:6F:BD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/5gSc-H3Y8f1MgCS1psnqlPF7b70.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a5/060cea-e920-40de-90da-8d49ebcae9b3/1/5gSc-H3Y8f1MgCS1psnqlPF7b70.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a5/060cea-e920-40de-90da-8d49ebcae9b3/1/5gSc-H3Y8f1MgCS1psnqlPF7b70.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
99:5c:b3:83:4a:d6:d8:0d:76:9f:3a:77:b3:1b:b6:35:d0:f6:
9b:7d:38:8f:17:f8:73:fd:13:1e:cd:3c:c4:90:f1:60:dc:7d:
96:67:ea:72:f0:49:88:38:8f:43:ab:9b:40:0d:9d:e4:c9:87:
68:14:46:cb:de:a6:78:0d:12:6a:3b:90:67:8d:93:7d:80:6d:
ec:45:15:48:81:b7:a4:16:62:6c:0b:fb:81:6b:0f:4c:9c:63:
30:a8:b5:26:35:cf:13:74:f1:01:6e:3e:62:28:b5:a0:c4:85:
09:1a:3b:b1:2e:6a:78:ad:a4:52:03:cc:51:d9:52:70:42:94:
aa:7e:20:b7:06:b5:fd:b8:0e:90:19:f1:1b:e2:dc:c8:78:8b:
3c:c7:03:2d:12:7f:af:61:bf:7f:6f:41:4d:5f:e3:0d:f5:d4:
a3:a2:01:cc:fc:62:0b:73:8c:89:56:8b:aa:1c:aa:ff:78:05:
7d:cb:3a:36:71:e0:fa:83:fd:07:10:6a:25:90:b9:ba:9c:46:
ba:e4:c0:1c:5e:6d:e1:42:39:77:80:42:e1:97:eb:45:7d:8b:
60:f9:0b:61:2c:da:8c:a2:26:71:cb:0d:59:b9:27:1a:3c:72:
db:5f:0b:9c:b7:3c:67:f6:9b:3c:f1:2f:17:02:42:68:00:d5:
4d:75:97:af
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 19 16:18:41 2025 by rpki-client