Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ca/afbb62-0098-42b3-81ae-f0bb2e15f6d0/1/5Xcx6oV7kDqkCo5f2NiERlBbUjM.mft
File: 5Xcx6oV7kDqkCo5f2NiERlBbUjM.mft (raw, json)
Hash identifier: 9C3RMHMvVNpE4NrN2BzetnyR48ermJa9CGHrENNpzOA=
Subject key identifier: 34:C0:7C:18:FE:B8:C6:B1:32:BA:2B:3A:E6:13:2D:D7:DF:F9:23:CC
Authority key identifier: E5:77:31:EA:85:7B:90:3A:A4:0A:8E:5F:D8:D8:84:46:50:5B:52:33
Certificate issuer: /CN=e57731ea857b903aa40a8e5fd8d88446505b5233
Certificate serial: 019618B52509CA2125D47EAE1E85384C36C4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/5Xcx6oV7kDqkCo5f2NiERlBbUjM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ca/afbb62-0098-42b3-81ae-f0bb2e15f6d0/1/5Xcx6oV7kDqkCo5f2NiERlBbUjM.mft
Manifest number: 14DF
Signing time: Wed 09 Apr 2025 04:00:46 +0000
Manifest this update: Wed 09 Apr 2025 04:00:46 +0000
Manifest next update: Thu 10 Apr 2025 04:00:46 +0000
Files and hashes: 1: 5Xcx6oV7kDqkCo5f2NiERlBbUjM.crl (hash: eFFv5COVCBRocwlgkhA2vgwEGiQ9dL0j/smreZk3odw=)
2: orFnLXI1TH7Jt_MUuyCNlezlJcQ.roa (hash: hsQhpxV8CsTitmZs0YwImGnMA+twiLDEhUnDv5rariM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ca/afbb62-0098-42b3-81ae-f0bb2e15f6d0/1/5Xcx6oV7kDqkCo5f2NiERlBbUjM.crl
rsync://rpki.ripe.net/repository/DEFAULT/ca/afbb62-0098-42b3-81ae-f0bb2e15f6d0/1/5Xcx6oV7kDqkCo5f2NiERlBbUjM.mft
rsync://rpki.ripe.net/repository/DEFAULT/5Xcx6oV7kDqkCo5f2NiERlBbUjM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 10 Apr 2025 04:00:46 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:18:b5:25:09:ca:21:25:d4:7e:ae:1e:85:38:4c:36:c4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e57731ea857b903aa40a8e5fd8d88446505b5233
Validity
Not Before: Apr 9 04:00:46 2025 GMT
Not After : Apr 10 04:00:46 2025 GMT
Subject: CN=34c07c18feb8c6b132ba2b3ae6132dd7dff923cc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:92:60:0e:7b:b7:e8:4a:a7:16:2e:fe:5e:d4:
26:2b:bf:64:9d:7a:47:4e:b4:62:5f:ea:32:ab:3b:
90:d8:75:5a:eb:ad:e7:16:73:0c:56:49:fb:31:4f:
10:3e:fe:3b:86:3f:e9:76:8d:c5:52:c0:64:c9:83:
3a:a4:b6:21:4e:66:06:25:b0:ba:7a:cc:6a:4a:e8:
d4:42:30:f6:52:0c:30:2b:bc:52:ab:4c:2d:21:2a:
b3:52:00:7d:15:a3:b4:2b:29:f0:c2:6d:87:2b:7c:
1b:40:ca:d5:33:f9:8d:2b:22:d4:d8:e7:2b:3a:c8:
76:fc:d0:89:29:e1:08:05:07:a0:3a:93:46:d1:8b:
1f:32:11:60:3a:74:67:6d:e6:a9:fc:05:2c:ac:70:
27:20:69:76:1e:aa:4a:e4:ce:83:aa:c0:db:8b:a9:
3d:b0:36:4c:ed:8b:e4:bf:d3:fa:11:06:e8:66:47:
6a:6d:8d:27:39:7d:11:d3:84:14:41:b6:3b:9b:89:
7d:78:ef:28:86:a4:cd:12:8c:b6:58:ff:8c:ca:f5:
60:75:7b:dc:df:a2:99:db:6f:b4:bd:f5:76:d2:ba:
21:e7:92:74:8f:aa:7a:3f:96:d0:dc:9f:0a:3c:d7:
86:ba:fa:39:78:7e:86:8c:fe:01:60:fa:98:3d:6c:
e4:e5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
34:C0:7C:18:FE:B8:C6:B1:32:BA:2B:3A:E6:13:2D:D7:DF:F9:23:CC
X509v3 Authority Key Identifier:
keyid:E5:77:31:EA:85:7B:90:3A:A4:0A:8E:5F:D8:D8:84:46:50:5B:52:33
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/5Xcx6oV7kDqkCo5f2NiERlBbUjM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ca/afbb62-0098-42b3-81ae-f0bb2e15f6d0/1/5Xcx6oV7kDqkCo5f2NiERlBbUjM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ca/afbb62-0098-42b3-81ae-f0bb2e15f6d0/1/5Xcx6oV7kDqkCo5f2NiERlBbUjM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
9a:3e:19:61:e3:92:81:ea:ef:6d:b0:13:63:d2:a8:85:66:31:
8c:42:0b:f0:36:f1:72:34:44:ab:b9:58:09:5d:ce:cc:69:dc:
f1:9e:27:d9:20:04:a3:7f:bb:d2:22:28:4b:ca:e8:0b:d5:67:
bc:89:78:7f:3a:49:69:73:29:4e:e9:52:9d:92:1e:60:21:3c:
20:fd:54:ed:64:3d:db:e0:01:78:e6:43:f6:84:1a:a4:69:7b:
10:24:e3:f0:1d:25:de:19:dd:4b:22:c5:0e:e9:11:f3:f0:df:
f0:cb:07:42:fc:bc:92:74:5d:80:6b:f4:17:da:44:50:0e:cb:
b1:ff:90:4e:34:21:f7:77:51:4a:06:b1:48:8a:91:2a:fd:40:
ab:d5:e4:74:20:c9:32:a3:6f:f3:af:ac:21:83:df:7f:9b:3a:
68:6c:f8:ec:fb:3e:ba:41:b8:49:84:8e:73:5c:8e:b0:24:60:
2e:68:86:5f:04:eb:0e:b9:50:38:66:85:0b:dc:c2:4e:93:95:
20:d0:0b:e1:f4:b5:b5:54:5c:4b:a7:e1:72:ba:03:00:e4:20:
62:31:b9:eb:3a:fc:6d:47:98:e0:70:93:ed:7c:7f:96:26:86:
15:da:60:77:61:29:fb:a2:7d:b1:1f:09:b3:e3:b0:49:d3:68:
1d:2f:52:ee
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 9 13:23:05 2025 by rpki-client