Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ed/bda3ef-4a2f-4ccc-b295-b22eb948515c/1/5YW66mL41gYmJIc4xF370iFzf0w.mft
File: 5YW66mL41gYmJIc4xF370iFzf0w.mft (raw, json)
Hash identifier: azhZlmaFZ8iuz0J1MMojo7CgEwA29crT3CeFDS/EL2c=
Subject key identifier: BA:6F:65:84:ED:82:49:4F:A1:34:FD:2A:3A:29:38:E6:EC:F0:B6:FD
Authority key identifier: E5:85:BA:EA:62:F8:D6:06:26:24:87:38:C4:5D:FB:D2:21:73:7F:4C
Certificate issuer: /CN=e585baea62f8d60626248738c45dfbd221737f4c
Certificate serial: 019748C3026DA45C6802AE3296458398665E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/5YW66mL41gYmJIc4xF370iFzf0w.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ed/bda3ef-4a2f-4ccc-b295-b22eb948515c/1/5YW66mL41gYmJIc4xF370iFzf0w.mft
Manifest number: 150C
Signing time: Sat 07 Jun 2025 05:00:29 +0000
Manifest this update: Sat 07 Jun 2025 05:00:29 +0000
Manifest next update: Sun 08 Jun 2025 05:00:29 +0000
Files and hashes: 1: 5YW66mL41gYmJIc4xF370iFzf0w.crl (hash: pZ4JP6YiceaXC9YbYfyYL3Uun+DzEX0KUuWTEIjqDC8=)
2: 8aYlnDZg4v75vC6LNHm5OghRmm0.roa (hash: ST2fwGD3DZOiSeI3vgn+uSP6XW7Dy6QYeIzwYCfP/n0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ed/bda3ef-4a2f-4ccc-b295-b22eb948515c/1/5YW66mL41gYmJIc4xF370iFzf0w.crl
rsync://rpki.ripe.net/repository/DEFAULT/ed/bda3ef-4a2f-4ccc-b295-b22eb948515c/1/5YW66mL41gYmJIc4xF370iFzf0w.mft
rsync://rpki.ripe.net/repository/DEFAULT/5YW66mL41gYmJIc4xF370iFzf0w.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 08 Jun 2025 05:00:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:48:c3:02:6d:a4:5c:68:02:ae:32:96:45:83:98:66:5e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e585baea62f8d60626248738c45dfbd221737f4c
Validity
Not Before: Jun 7 05:00:29 2025 GMT
Not After : Jun 8 05:00:29 2025 GMT
Subject: CN=ba6f6584ed82494fa134fd2a3a2938e6ecf0b6fd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:bc:91:56:71:a6:05:55:dd:5c:52:ea:61:5b:
62:73:e7:e4:1c:4c:09:80:0c:44:2e:7e:f8:20:c9:
c7:1d:11:96:cf:eb:d9:ab:7c:66:35:f4:65:0d:50:
a6:d4:42:de:e2:9e:cb:94:0b:8f:eb:1c:08:c3:ad:
91:75:9f:1a:38:71:f2:3f:89:a0:34:3b:bc:e4:7a:
08:ed:3a:f6:3f:86:15:a4:af:7c:98:16:fb:2d:b4:
03:72:6f:49:d8:5b:47:24:7a:90:2c:df:e5:27:e7:
a9:74:49:42:53:08:4b:97:f5:42:c9:09:16:14:75:
af:21:a5:e2:c7:53:e0:a2:4b:0d:c4:ad:80:40:f8:
61:7e:5a:73:aa:ce:0c:f3:e0:ce:a7:8c:a1:9d:ee:
19:6d:81:a3:57:5d:90:35:34:d2:38:83:e5:44:f4:
b5:73:2f:67:2e:b3:7d:79:28:62:b3:58:25:66:54:
2e:42:86:8e:e8:89:be:64:70:71:2c:66:f6:5a:00:
da:23:c2:b0:b4:9f:e4:89:c6:16:a8:7f:f0:8d:55:
16:a4:de:0e:19:f8:bb:25:6a:03:c3:d3:be:cc:d3:
b6:f7:21:dd:d7:5b:a8:3d:79:81:76:c2:3b:52:6b:
f0:a9:b2:77:c1:e6:e5:a7:77:3d:41:9c:8b:e5:35:
78:81
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BA:6F:65:84:ED:82:49:4F:A1:34:FD:2A:3A:29:38:E6:EC:F0:B6:FD
X509v3 Authority Key Identifier:
keyid:E5:85:BA:EA:62:F8:D6:06:26:24:87:38:C4:5D:FB:D2:21:73:7F:4C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/5YW66mL41gYmJIc4xF370iFzf0w.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ed/bda3ef-4a2f-4ccc-b295-b22eb948515c/1/5YW66mL41gYmJIc4xF370iFzf0w.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ed/bda3ef-4a2f-4ccc-b295-b22eb948515c/1/5YW66mL41gYmJIc4xF370iFzf0w.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
76:b2:d0:90:08:c6:83:57:54:b9:23:76:49:ca:ff:af:05:d9:
b9:ef:73:ea:9b:10:05:91:c0:e2:53:1b:86:e3:46:8d:4e:05:
03:2d:04:a3:ef:09:62:4e:51:b4:e6:19:27:c3:ae:aa:03:04:
6d:45:a8:e4:f3:85:ad:82:aa:7f:58:bc:d6:8b:8a:42:3c:22:
c8:f1:84:1a:3f:fa:bc:01:79:91:4b:22:33:b9:80:be:31:32:
77:ed:e3:d2:5b:2e:d0:2c:f1:54:98:ee:21:e5:3c:08:7f:ed:
d3:95:57:6a:e0:25:0b:ee:46:55:a2:c5:11:70:f8:0a:a5:6e:
ce:1c:12:95:1b:09:f0:63:1b:32:ae:bb:58:5c:87:e7:16:e7:
c3:11:9e:2f:df:96:2a:57:59:3d:b0:31:b0:ab:a7:3f:8d:b4:
9c:05:b6:f8:bc:1c:b4:04:6b:23:76:aa:24:f3:d1:43:df:2a:
bc:a0:94:56:db:ff:7d:01:af:a5:09:49:30:a7:31:3c:27:7c:
4d:fe:68:cb:6e:36:a4:8b:bb:29:00:7d:3f:95:70:bf:7c:38:
e5:0e:b8:93:48:89:58:e3:61:1b:f2:b5:10:a2:44:9f:bb:c3:
7a:79:69:5f:b1:0e:9d:cd:47:af:06:47:1c:a5:65:25:69:89:
cb:91:41:b0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 7 13:44:39 2025 by rpki-client