Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ee/150355-c11a-4d37-a182-23762aa09717/1/5O8X9MtP6SrQU-7yXznWOuEgfdM.mft
File: 5O8X9MtP6SrQU-7yXznWOuEgfdM.mft (raw, json)
Hash identifier: Wwbhm2f2iizfw7q83mPSQRJ+Q6CGmH3o0ZF9vcJe6jM=
Subject key identifier: 48:28:ED:D9:AF:B3:6E:6D:3D:A8:84:C8:C4:17:9F:A3:4B:A4:BF:65
Authority key identifier: E4:EF:17:F4:CB:4F:E9:2A:D0:53:EE:F2:5F:39:D6:3A:E1:20:7D:D3
Certificate issuer: /CN=e4ef17f4cb4fe92ad053eef25f39d63ae1207dd3
Certificate serial: 019759EDDEE5D8DF9DAA399680B50AABEFB1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/5O8X9MtP6SrQU-7yXznWOuEgfdM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ee/150355-c11a-4d37-a182-23762aa09717/1/5O8X9MtP6SrQU-7yXznWOuEgfdM.mft
Manifest number: 01BB
Signing time: Tue 10 Jun 2025 13:00:50 +0000
Manifest this update: Tue 10 Jun 2025 13:00:50 +0000
Manifest next update: Wed 11 Jun 2025 13:00:50 +0000
Files and hashes: 1: 5O8X9MtP6SrQU-7yXznWOuEgfdM.crl (hash: /eEj3ipPXSh4efiV9Wmc2fC/7+sjk2VqKB/D0icTsHk=)
2: hkqw3W9-pdwewEMPwrQBPExOldQ.roa (hash: GNMEaQG7JI+6R+GxCRi11C7wb2KrqYyAM0elThFtbVY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ee/150355-c11a-4d37-a182-23762aa09717/1/5O8X9MtP6SrQU-7yXznWOuEgfdM.crl
rsync://rpki.ripe.net/repository/DEFAULT/ee/150355-c11a-4d37-a182-23762aa09717/1/5O8X9MtP6SrQU-7yXznWOuEgfdM.mft
rsync://rpki.ripe.net/repository/DEFAULT/5O8X9MtP6SrQU-7yXznWOuEgfdM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 11 Jun 2025 13:00:50 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:59:ed:de:e5:d8:df:9d:aa:39:96:80:b5:0a:ab:ef:b1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e4ef17f4cb4fe92ad053eef25f39d63ae1207dd3
Validity
Not Before: Jun 10 13:00:50 2025 GMT
Not After : Jun 11 13:00:50 2025 GMT
Subject: CN=4828edd9afb36e6d3da884c8c4179fa34ba4bf65
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e0:21:7e:25:79:5d:32:de:5d:db:6f:36:81:62:
34:36:ce:ed:dc:69:ca:e6:c6:ec:dc:b2:99:60:f0:
46:4c:08:6f:60:2f:99:33:61:0f:e8:bd:10:b1:7f:
7d:a8:a8:75:ad:6e:0d:89:99:c5:3c:b6:98:e2:eb:
df:b9:9b:c5:26:c5:cf:64:f6:8d:0c:b0:58:12:28:
44:62:3e:2c:42:9a:c7:4d:a0:25:5b:7d:00:93:7b:
3f:5a:f1:2f:a9:7c:e0:ff:8b:13:db:ee:52:57:cc:
04:7e:08:eb:02:02:5e:b9:86:01:07:6f:40:76:f7:
bf:d1:1f:f3:5d:c4:b2:fe:12:7d:e7:91:a0:1b:05:
1c:a5:80:12:df:68:ab:30:d4:31:37:b1:83:a0:50:
70:15:9c:57:dd:f7:69:e7:0e:ba:38:ee:02:94:61:
b9:73:f0:2f:07:59:d6:70:51:15:7c:ea:ec:72:36:
7e:33:20:89:ba:e6:cc:fc:66:bf:01:4c:cf:73:0b:
e3:b0:d9:36:75:52:a4:b5:46:8f:7f:a0:e7:71:07:
cd:7a:f4:e2:68:19:d1:af:af:c2:44:be:b9:f0:9a:
bd:57:f1:0e:48:5a:75:97:98:3d:f0:81:e7:7b:31:
b1:ed:d7:c0:44:d5:04:51:8c:68:39:1f:b7:df:aa:
44:d9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
48:28:ED:D9:AF:B3:6E:6D:3D:A8:84:C8:C4:17:9F:A3:4B:A4:BF:65
X509v3 Authority Key Identifier:
keyid:E4:EF:17:F4:CB:4F:E9:2A:D0:53:EE:F2:5F:39:D6:3A:E1:20:7D:D3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/5O8X9MtP6SrQU-7yXznWOuEgfdM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ee/150355-c11a-4d37-a182-23762aa09717/1/5O8X9MtP6SrQU-7yXznWOuEgfdM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ee/150355-c11a-4d37-a182-23762aa09717/1/5O8X9MtP6SrQU-7yXznWOuEgfdM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
60:2c:d4:2f:ec:b4:4b:8c:68:f1:4d:d0:6d:be:3c:42:68:59:
52:a6:61:13:9c:a0:d4:44:ac:a0:7e:7a:cf:a2:a1:2c:cd:e1:
e1:c7:1c:e1:1c:17:a5:e2:5d:1f:24:e0:c1:0b:37:61:ac:ad:
0b:f7:53:a7:f4:b8:c7:ef:81:fc:32:fc:61:23:3b:41:fc:a5:
10:53:c2:15:09:26:d4:17:a9:d1:d1:79:e7:40:4b:6e:61:96:
c9:45:11:ef:71:e8:f5:7b:c2:dc:00:92:81:41:f2:cb:b8:91:
8f:41:f1:7e:56:b2:7e:6b:66:9c:66:50:0f:6d:8d:b4:2b:70:
0d:25:e7:04:59:2b:58:28:f3:c0:09:3f:72:a0:e4:44:11:21:
f2:e6:7d:b1:66:b9:92:04:21:58:c5:89:a1:b5:55:4d:b8:d7:
f7:9a:03:8a:5a:1f:4b:a9:82:51:db:39:21:ba:bd:87:60:cd:
38:97:25:4b:97:f3:76:b1:18:49:27:bb:f0:30:72:bd:44:a1:
d0:11:73:2f:5f:08:9d:17:e2:33:f8:9e:40:8f:21:3c:bd:9c:
68:1b:57:38:e3:a7:68:c6:92:ba:51:5e:5f:19:b3:d4:fd:42:
7d:ac:9b:00:b9:ec:f2:a5:94:85:ee:3d:e3:3a:44:39:bc:9d:
47:af:19:c2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jun 10 16:05:42 2025 by rpki-client