Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a5/060cea-e920-40de-90da-8d49ebcae9b3/1/5gSc-H3Y8f1MgCS1psnqlPF7b70.mft
File: 5gSc-H3Y8f1MgCS1psnqlPF7b70.mft (raw, json)
Hash identifier: sWfRbAKZPy6uVPgqytvD2DD85xrUrRKjgur8kqTLFpo=
Subject key identifier: A1:B3:EF:97:BC:C5:25:5B:31:A7:B9:C2:16:95:64:F3:1D:05:4B:01
Authority key identifier: E6:04:9C:F8:7D:D8:F1:FD:4C:80:24:B5:A6:C9:EA:94:F1:7B:6F:BD
Certificate issuer: /CN=e6049cf87dd8f1fd4c8024b5a6c9ea94f17b6fbd
Certificate serial: 0197469E586FF48752DFCCB01ADD8FB0FAED
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/5gSc-H3Y8f1MgCS1psnqlPF7b70.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a5/060cea-e920-40de-90da-8d49ebcae9b3/1/5gSc-H3Y8f1MgCS1psnqlPF7b70.mft
Manifest number: 150E
Signing time: Fri 06 Jun 2025 19:01:11 +0000
Manifest this update: Fri 06 Jun 2025 19:01:11 +0000
Manifest next update: Sat 07 Jun 2025 19:01:11 +0000
Files and hashes: 1: 5gSc-H3Y8f1MgCS1psnqlPF7b70.crl (hash: C0hvAbIRxTkT3d7Lb9Tm8RO7y/xBwMqKwslgk8fNB+U=)
2: cu8xrGCLqiGHp1db_MgiG0UxHW8.roa (hash: giP9e0QpRuK7Urrt2Hhvj2cOHwVCXlF67CRutRL96MA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a5/060cea-e920-40de-90da-8d49ebcae9b3/1/5gSc-H3Y8f1MgCS1psnqlPF7b70.crl
rsync://rpki.ripe.net/repository/DEFAULT/a5/060cea-e920-40de-90da-8d49ebcae9b3/1/5gSc-H3Y8f1MgCS1psnqlPF7b70.mft
rsync://rpki.ripe.net/repository/DEFAULT/5gSc-H3Y8f1MgCS1psnqlPF7b70.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 07 Jun 2025 19:01:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:46:9e:58:6f:f4:87:52:df:cc:b0:1a:dd:8f:b0:fa:ed
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e6049cf87dd8f1fd4c8024b5a6c9ea94f17b6fbd
Validity
Not Before: Jun 6 19:01:11 2025 GMT
Not After : Jun 7 19:01:11 2025 GMT
Subject: CN=a1b3ef97bcc5255b31a7b9c2169564f31d054b01
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:75:e7:df:c8:6d:74:52:27:c1:81:9d:37:40:
9d:e9:0b:21:0a:b6:f2:e1:41:a4:56:39:a3:02:2f:
f7:78:c9:ce:16:2b:66:58:58:0e:de:69:a6:a6:9e:
8b:03:48:e3:0f:db:3d:b1:9d:ec:b3:4b:6b:bd:32:
ae:8b:9d:92:13:92:99:41:42:09:1f:b1:20:6a:c5:
d4:5a:4f:de:88:9f:95:d1:d6:18:d6:0d:71:b5:df:
e4:32:f6:94:be:bb:f7:60:48:e6:36:18:60:fa:b2:
5b:fb:1e:a1:6a:24:c4:00:e3:af:21:f9:e7:58:a6:
5a:90:ef:f2:7c:ba:bf:61:e5:ae:aa:57:90:8d:62:
41:64:90:dc:c9:96:fb:f8:6d:c6:19:bf:66:3a:78:
15:80:42:4c:28:1f:ad:08:2c:3f:fc:3b:7f:a5:38:
6d:6a:ed:d4:63:7a:2b:fc:72:29:15:e0:20:27:73:
12:c2:28:6d:b2:86:5a:31:8c:ca:c4:f3:56:4c:d1:
cb:6d:2a:96:7d:6f:94:07:85:01:02:a0:ab:5c:3a:
c2:68:65:4e:52:81:52:9e:38:86:df:79:17:2f:c0:
e5:a9:80:bf:8b:e4:93:6f:13:3e:bb:66:c2:c1:f3:
e8:e5:73:83:46:29:07:97:dc:64:56:c6:59:78:22:
f4:3d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A1:B3:EF:97:BC:C5:25:5B:31:A7:B9:C2:16:95:64:F3:1D:05:4B:01
X509v3 Authority Key Identifier:
keyid:E6:04:9C:F8:7D:D8:F1:FD:4C:80:24:B5:A6:C9:EA:94:F1:7B:6F:BD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/5gSc-H3Y8f1MgCS1psnqlPF7b70.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a5/060cea-e920-40de-90da-8d49ebcae9b3/1/5gSc-H3Y8f1MgCS1psnqlPF7b70.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a5/060cea-e920-40de-90da-8d49ebcae9b3/1/5gSc-H3Y8f1MgCS1psnqlPF7b70.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
27:8e:54:5e:bc:5a:27:3c:13:e6:f4:fd:a7:26:23:9e:9d:3e:
f1:30:46:37:75:f3:87:76:74:c3:86:43:77:ab:68:ca:de:fc:
c3:1c:52:aa:29:1a:33:2e:b2:0e:a7:08:7d:a5:ca:8b:e6:64:
a4:f3:7d:b6:08:94:af:b0:18:7e:25:77:6d:84:73:25:00:c8:
20:fd:d6:70:6c:92:ff:74:44:57:28:ab:53:e0:62:eb:89:1c:
96:2a:76:a1:0a:1f:30:75:bb:6b:d0:b6:ea:ac:11:19:e9:8f:
4f:f2:e1:4a:99:7b:bd:31:7e:f1:bb:16:b8:67:a6:0d:ae:cb:
23:d2:88:04:d7:68:db:ee:95:6b:36:4e:30:b2:7e:d3:9d:16:
4b:2d:3a:d5:f3:e1:a2:27:7a:a3:e3:fe:e2:14:e2:cd:66:f1:
ab:e7:65:99:78:9c:7b:98:18:49:0e:fb:a8:92:db:61:7d:75:
55:53:13:16:10:98:3b:95:b6:78:ff:f1:6a:14:58:67:b9:c1:
5a:eb:49:8e:5b:a2:44:7b:59:68:1b:5f:d8:9e:5d:a5:05:a3:
b9:24:9e:c7:d3:95:3c:73:12:2e:70:19:8b:b7:63:34:3e:07:
08:a2:ff:e1:54:bc:5d:11:1f:c6:c3:d9:b6:27:21:6c:af:d2:
75:8b:63:c9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 7 05:51:52 2025 by rpki-client