Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ed/bda3ef-4a2f-4ccc-b295-b22eb948515c/1/5YW66mL41gYmJIc4xF370iFzf0w.mft
File: 5YW66mL41gYmJIc4xF370iFzf0w.mft (raw, json)
Hash identifier: orlDKKrU2Kud3+NJ/X+pnrAlV6KynK6sGaTBxCnt+XY=
Subject key identifier: AA:77:AD:CB:AD:A5:1A:92:4F:56:23:A9:A0:33:83:77:66:7E:85:0A
Authority key identifier: E5:85:BA:EA:62:F8:D6:06:26:24:87:38:C4:5D:FB:D2:21:73:7F:4C
Certificate issuer: /CN=e585baea62f8d60626248738c45dfbd221737f4c
Certificate serial: 01964DB4DC00D72B7B96E278C6F052B68BA8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/5YW66mL41gYmJIc4xF370iFzf0w.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ed/bda3ef-4a2f-4ccc-b295-b22eb948515c/1/5YW66mL41gYmJIc4xF370iFzf0w.mft
Manifest number: 148A
Signing time: Sat 19 Apr 2025 11:00:20 +0000
Manifest this update: Sat 19 Apr 2025 11:00:20 +0000
Manifest next update: Sun 20 Apr 2025 11:00:20 +0000
Files and hashes: 1: 5YW66mL41gYmJIc4xF370iFzf0w.crl (hash: Q5P9SMHwIisTd5TpNtfsdGTHcmBXhFMRnckMRYJqquk=)
2: 8aYlnDZg4v75vC6LNHm5OghRmm0.roa (hash: ST2fwGD3DZOiSeI3vgn+uSP6XW7Dy6QYeIzwYCfP/n0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ed/bda3ef-4a2f-4ccc-b295-b22eb948515c/1/5YW66mL41gYmJIc4xF370iFzf0w.crl
rsync://rpki.ripe.net/repository/DEFAULT/ed/bda3ef-4a2f-4ccc-b295-b22eb948515c/1/5YW66mL41gYmJIc4xF370iFzf0w.mft
rsync://rpki.ripe.net/repository/DEFAULT/5YW66mL41gYmJIc4xF370iFzf0w.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 20 Apr 2025 04:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:4d:b4:dc:00:d7:2b:7b:96:e2:78:c6:f0:52:b6:8b:a8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e585baea62f8d60626248738c45dfbd221737f4c
Validity
Not Before: Apr 19 11:00:20 2025 GMT
Not After : Apr 20 11:00:20 2025 GMT
Subject: CN=aa77adcbada51a924f5623a9a0338377667e850a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:04:b5:de:cb:3c:22:a4:db:77:9f:95:98:72:
b8:11:de:1a:60:51:48:07:35:6c:0b:8f:e4:88:17:
d9:92:78:8b:dc:98:81:fa:44:99:34:ab:f4:f8:4d:
83:63:2e:c3:23:48:64:6a:68:ba:f9:0d:77:c1:7f:
74:6b:67:57:23:d9:e8:1a:4c:70:67:ae:20:ca:5d:
60:2b:41:26:5e:9d:28:b3:6c:02:9b:1b:52:e8:76:
01:49:70:d2:d2:31:79:1f:0d:7d:a9:b2:5c:59:0b:
f0:24:c0:89:23:1f:77:ec:c1:48:99:d4:5e:8c:0d:
2a:6c:aa:aa:ed:40:65:5f:8b:d6:34:99:8a:ff:cf:
4c:36:c6:bf:2e:cf:7f:85:c7:e0:1c:95:1d:bc:a5:
ae:dd:8b:9c:e2:8c:e8:76:5b:fa:44:52:6d:e7:ff:
2d:ad:cb:88:6e:4c:68:0a:69:54:6a:2c:b2:8a:39:
26:3c:ac:5e:7e:b2:4d:9f:a4:24:cf:c9:4b:ed:73:
58:4e:48:fd:14:0a:58:ea:5f:21:6e:73:21:e5:db:
e8:f4:48:20:ec:ea:94:63:b4:b2:60:29:e7:9d:00:
8d:15:95:aa:91:70:0d:70:7c:f8:1f:0a:e3:76:46:
1b:62:24:dd:73:f7:18:3a:f3:e4:82:a9:05:c7:f8:
03:a9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AA:77:AD:CB:AD:A5:1A:92:4F:56:23:A9:A0:33:83:77:66:7E:85:0A
X509v3 Authority Key Identifier:
keyid:E5:85:BA:EA:62:F8:D6:06:26:24:87:38:C4:5D:FB:D2:21:73:7F:4C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/5YW66mL41gYmJIc4xF370iFzf0w.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ed/bda3ef-4a2f-4ccc-b295-b22eb948515c/1/5YW66mL41gYmJIc4xF370iFzf0w.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ed/bda3ef-4a2f-4ccc-b295-b22eb948515c/1/5YW66mL41gYmJIc4xF370iFzf0w.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
73:c6:23:cb:14:a4:cf:2b:2f:8e:95:18:f2:ea:b9:85:f2:63:
66:62:77:13:61:3a:36:03:2d:55:25:e7:81:99:cd:ea:31:1e:
00:cc:d3:a5:73:cb:12:4f:c2:74:6c:ef:90:48:f6:e5:83:09:
17:1e:a0:dd:51:96:78:16:be:2d:3e:27:c7:12:9b:41:89:51:
68:bd:e4:fe:b3:1a:87:fd:34:7c:e9:51:1e:98:cf:22:9e:1d:
fb:2d:3f:6d:ef:96:b1:0e:09:1d:03:9a:01:06:04:07:6b:f4:
e5:9c:2f:65:a0:f3:40:75:c9:f9:d8:da:e9:0d:ef:85:b1:67:
73:e6:98:f3:c4:47:77:e7:43:0a:0c:8b:8b:e1:50:7b:72:72:
b2:ab:e4:2c:3e:f1:4d:4a:8e:60:88:07:56:d3:32:33:53:f2:
9c:24:40:3c:1b:cf:ca:c0:74:44:fc:0e:c6:2a:85:1d:c8:f6:
30:b7:32:68:47:6c:d9:b4:3a:55:34:d0:dc:ae:ce:f9:57:3b:
fb:d7:d4:e1:cb:34:17:3a:b9:48:40:8f:dd:ce:96:4d:70:53:
16:48:0b:f8:2c:0b:de:b4:b1:37:bf:99:d9:c5:af:ff:01:97:
79:7c:4d:24:0e:39:c8:77:46:40:d2:b4:64:e1:65:98:10:6d:
b2:46:0c:33
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 19 14:08:32 2025 by rpki-client