Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e0/53c487-f8fb-4035-9e28-4468d12f322b/1/T5mJlOtWGejymrO956sq0U6r_P0.mft
File: T5mJlOtWGejymrO956sq0U6r_P0.mft (raw, json)
Hash identifier: ohqWZNiin+QmDiKAN0uQ2UdQXoFIZqiQeEIqHbnXA3M=
Subject key identifier: 5F:A3:36:71:C9:99:DD:BC:5C:13:AF:87:EC:A1:3E:64:E0:07:FE:FC
Authority key identifier: 4F:99:89:94:EB:56:19:E8:F2:9A:B3:BD:E7:AB:2A:D1:4E:AB:FC:FD
Certificate issuer: /CN=4f998994eb5619e8f29ab3bde7ab2ad14eabfcfd
Certificate serial: 0196586FE05E6FF6A8CD94CF7D83C905A038
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/T5mJlOtWGejymrO956sq0U6r_P0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e0/53c487-f8fb-4035-9e28-4468d12f322b/1/T5mJlOtWGejymrO956sq0U6r_P0.mft
Manifest number: 14FB
Signing time: Mon 21 Apr 2025 13:00:48 +0000
Manifest this update: Mon 21 Apr 2025 13:00:48 +0000
Manifest next update: Tue 22 Apr 2025 13:00:48 +0000
Files and hashes: 1: T5mJlOtWGejymrO956sq0U6r_P0.crl (hash: k3N2vr5Gfz0BiysBplXg5jH1j5KVoHVOIOEuIUd6A2A=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e0/53c487-f8fb-4035-9e28-4468d12f322b/1/T5mJlOtWGejymrO956sq0U6r_P0.crl
rsync://rpki.ripe.net/repository/DEFAULT/e0/53c487-f8fb-4035-9e28-4468d12f322b/1/T5mJlOtWGejymrO956sq0U6r_P0.mft
rsync://rpki.ripe.net/repository/DEFAULT/T5mJlOtWGejymrO956sq0U6r_P0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 22 Apr 2025 10:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:58:6f:e0:5e:6f:f6:a8:cd:94:cf:7d:83:c9:05:a0:38
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4f998994eb5619e8f29ab3bde7ab2ad14eabfcfd
Validity
Not Before: Apr 21 13:00:48 2025 GMT
Not After : Apr 22 13:00:48 2025 GMT
Subject: CN=5fa33671c999ddbc5c13af87eca13e64e007fefc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:da:40:03:af:48:df:c0:c0:bb:20:ef:4a:3f:d7:
9b:23:49:48:d1:94:ee:d4:c0:18:1e:92:79:19:5c:
a5:6e:d0:fd:c5:78:a2:37:d3:75:0b:fb:27:e0:d3:
d7:af:45:16:d1:ae:9f:f0:fb:20:c0:27:13:17:5f:
08:ff:13:f3:d5:66:5e:28:a1:02:c5:8c:da:89:4a:
ed:47:cf:fa:de:c8:38:00:76:91:ce:e9:c7:85:bc:
95:99:5e:24:13:65:37:fe:96:a6:8b:13:1c:1c:08:
13:99:25:1d:7a:09:c1:3a:84:fc:a3:14:39:0f:70:
c7:d1:e5:fc:01:70:78:5c:b3:da:13:f0:38:00:e9:
6a:f2:9a:53:12:1f:c2:70:3f:cc:31:6e:b1:a6:3e:
14:92:42:3a:19:79:3f:97:ac:e8:75:74:cd:00:b4:
38:95:6d:ea:0d:e4:65:69:fd:15:c1:a2:6b:7c:39:
5b:06:91:c3:f2:54:51:89:e6:08:be:f9:b2:4b:15:
c7:8f:32:48:97:92:35:b0:c2:bd:17:f3:75:2e:73:
03:62:20:ab:4f:dc:90:c3:a4:6e:2e:54:9d:f9:e4:
07:59:a8:29:ba:ea:3f:74:20:ba:fd:6e:fd:e3:e9:
b7:62:f3:e2:0d:3a:24:3e:f2:0a:86:76:1a:59:a3:
1c:a9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5F:A3:36:71:C9:99:DD:BC:5C:13:AF:87:EC:A1:3E:64:E0:07:FE:FC
X509v3 Authority Key Identifier:
keyid:4F:99:89:94:EB:56:19:E8:F2:9A:B3:BD:E7:AB:2A:D1:4E:AB:FC:FD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/T5mJlOtWGejymrO956sq0U6r_P0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e0/53c487-f8fb-4035-9e28-4468d12f322b/1/T5mJlOtWGejymrO956sq0U6r_P0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e0/53c487-f8fb-4035-9e28-4468d12f322b/1/T5mJlOtWGejymrO956sq0U6r_P0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
72:44:db:3e:ce:01:9a:e4:54:38:d0:85:f7:ae:6b:1f:83:32:
2f:1d:ef:14:5b:77:35:fb:ae:17:46:60:7b:10:7d:1b:2a:c4:
17:3b:8c:09:73:10:63:8c:9e:7f:78:50:3c:54:8d:98:8c:11:
ad:27:2f:cb:dc:68:f8:75:21:ac:81:28:55:0d:c3:f2:c0:ef:
ce:23:9e:c5:6a:38:4e:99:46:33:63:b5:56:c3:2e:89:ec:e7:
aa:fe:a7:80:d4:b6:bd:3d:03:38:c9:4e:12:2d:65:07:c3:82:
02:66:d1:c1:1b:53:c6:f3:77:02:17:36:b5:ab:c0:c9:59:7b:
1e:63:a2:0a:6e:8c:63:2c:ae:d8:6b:d5:08:d2:bb:84:92:39:
2d:be:e9:0b:e1:3c:33:b9:4c:0b:fe:fc:42:22:b5:91:5e:17:
f3:38:df:28:3a:3f:ac:d3:fc:5e:ac:1a:f9:5f:31:df:4c:90:
a7:5e:79:40:1e:6b:39:33:58:5e:34:fb:2d:39:86:87:e2:91:
5e:54:d8:f5:a3:67:31:f1:f8:cc:99:9f:db:e4:3a:85:ef:95:
1a:03:a2:7a:4b:da:4d:40:5e:5a:df:e7:e0:70:2e:18:07:d2:
1d:b0:88:0d:e0:ff:7a:4b:76:e8:fa:f0:9d:4c:e7:c4:81:5c:
76:59:c8:55
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 21 15:07:29 2025 by rpki-client