Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b8/5f3a02-0650-4e5c-b8d0-c701f279c6de/1/65Hpk6SkDOfl2chjJfGG3waeys0.mft
File: 65Hpk6SkDOfl2chjJfGG3waeys0.mft (raw, json)
Hash identifier: 7Xq/xwdb+CPxrQWJsY3jukyTeDAeBOk5OaxdSAKugTM=
Subject key identifier: E4:C0:CC:35:59:85:70:75:3F:74:46:3E:A6:80:1A:80:CD:33:1D:AA
Authority key identifier: EB:91:E9:93:A4:A4:0C:E7:E5:D9:C8:63:25:F1:86:DF:06:9E:CA:CD
Certificate issuer: /CN=eb91e993a4a40ce7e5d9c86325f186df069ecacd
Certificate serial: 019619C85F64195AADC3AD76C6C356F9E977
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/65Hpk6SkDOfl2chjJfGG3waeys0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b8/5f3a02-0650-4e5c-b8d0-c701f279c6de/1/65Hpk6SkDOfl2chjJfGG3waeys0.mft
Manifest number: 05C9
Signing time: Wed 09 Apr 2025 09:01:24 +0000
Manifest this update: Wed 09 Apr 2025 09:01:24 +0000
Manifest next update: Thu 10 Apr 2025 09:01:24 +0000
Files and hashes: 1: 65Hpk6SkDOfl2chjJfGG3waeys0.crl (hash: Dy6OMyWl9+DkdvPlcjpwERKUrxYRoL1TuUEjOP8P7DY=)
2: ctxe5Lnf-P92Y-aRF-aTwCxvQ-Y.roa (hash: JuvYZG1KASTZcCfggftiqfbWLqoSmP/ETYKyhfPlx0Q=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b8/5f3a02-0650-4e5c-b8d0-c701f279c6de/1/65Hpk6SkDOfl2chjJfGG3waeys0.crl
rsync://rpki.ripe.net/repository/DEFAULT/b8/5f3a02-0650-4e5c-b8d0-c701f279c6de/1/65Hpk6SkDOfl2chjJfGG3waeys0.mft
rsync://rpki.ripe.net/repository/DEFAULT/65Hpk6SkDOfl2chjJfGG3waeys0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 10 Apr 2025 09:01:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:19:c8:5f:64:19:5a:ad:c3:ad:76:c6:c3:56:f9:e9:77
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=eb91e993a4a40ce7e5d9c86325f186df069ecacd
Validity
Not Before: Apr 9 09:01:24 2025 GMT
Not After : Apr 10 09:01:24 2025 GMT
Subject: CN=e4c0cc35598570753f74463ea6801a80cd331daa
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:98:16:e9:a3:d0:bd:af:f5:d0:03:6e:09:b5:e5:
e2:14:86:df:78:e2:5c:8d:b3:82:ac:db:89:35:12:
7d:c7:7c:8c:c7:98:a3:c8:bd:08:78:c9:17:b1:0f:
d0:66:19:87:f9:15:fc:01:a1:0f:e1:ed:f9:84:6d:
a2:0c:63:56:db:98:35:31:02:a0:39:42:f8:da:a9:
26:fb:86:15:78:79:07:84:ca:67:c6:0b:20:91:2e:
79:3c:c3:e4:87:61:a9:db:e3:20:c3:fc:a4:3f:d9:
22:61:9d:54:03:d7:49:f1:48:36:b5:2c:7d:6c:81:
08:da:01:d8:2d:6c:67:15:47:0f:7c:c4:87:10:9e:
1e:6d:0c:8d:70:79:c6:e6:09:5f:46:06:1a:8e:56:
97:91:da:b2:91:97:68:8b:00:36:5c:71:9f:a6:5a:
b3:ed:dc:1f:a4:93:4d:c0:eb:b6:b8:69:18:49:67:
0b:60:e7:fe:0c:a1:c0:c4:ee:5a:5e:8c:fc:fe:8a:
6e:f8:1b:c3:d7:b9:0a:e3:c0:9d:34:b9:3c:29:89:
fb:e9:0d:73:e6:a3:d7:8f:d2:86:f9:5d:6f:55:b7:
5c:ac:96:c1:60:68:47:39:0e:f9:0e:e3:ca:c0:a7:
f7:6c:85:db:00:22:9b:4e:5a:c9:f3:d5:94:c8:cf:
01:11
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E4:C0:CC:35:59:85:70:75:3F:74:46:3E:A6:80:1A:80:CD:33:1D:AA
X509v3 Authority Key Identifier:
keyid:EB:91:E9:93:A4:A4:0C:E7:E5:D9:C8:63:25:F1:86:DF:06:9E:CA:CD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/65Hpk6SkDOfl2chjJfGG3waeys0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b8/5f3a02-0650-4e5c-b8d0-c701f279c6de/1/65Hpk6SkDOfl2chjJfGG3waeys0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b8/5f3a02-0650-4e5c-b8d0-c701f279c6de/1/65Hpk6SkDOfl2chjJfGG3waeys0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
9d:41:da:f8:4c:f4:db:36:d1:58:3c:91:22:18:a0:37:83:c1:
33:da:5d:c9:60:84:6a:82:81:99:ae:f5:45:0e:85:36:2f:23:
04:27:ec:50:82:44:1c:49:0b:2e:1e:90:ef:28:8b:30:f6:18:
c5:38:10:64:93:50:2b:5d:3e:16:58:cc:3c:10:ed:28:84:7a:
c0:cf:ac:63:fc:be:3b:b6:af:98:a5:5f:cc:37:13:08:a0:a9:
27:80:21:f4:30:4a:18:f9:82:ea:f3:ed:bc:7b:cc:c0:a1:4c:
3f:7b:72:82:ca:f5:b7:dc:66:79:b2:e2:07:c9:f0:6f:5a:03:
30:37:cb:72:f3:4c:76:67:60:19:54:9d:e0:5e:f0:76:bb:e7:
0f:5e:fd:11:82:60:5b:25:d4:60:03:81:51:0a:48:a9:d4:b2:
55:31:57:2d:bf:51:89:58:59:7e:04:5b:eb:6e:03:7b:5a:45:
e2:c1:17:db:6a:05:8f:0d:ce:26:8c:7c:30:7e:ff:da:52:bd:
df:ea:67:37:a1:11:35:56:5f:97:83:08:a9:39:c4:f9:06:2f:
39:67:90:d2:da:16:8c:77:d0:7a:e6:a1:88:4a:ed:a6:d5:87:
b4:5f:df:dd:01:d3:b4:8e:1b:08:a1:fd:22:62:b3:f0:24:1a:
cd:5d:45:69
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 9 17:22:28 2025 by rpki-client