Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/11/9ff86c-1f7b-4bc7-976a-dfb79bba1b68/1/uv5tfV8eRHjRoCUXHaawObJjAR8.mft
File: uv5tfV8eRHjRoCUXHaawObJjAR8.mft (raw, json)
Hash identifier: hzKGH/Ln4+5sqyZ+eOTeJnUCf1a5aOjgqWJA016eb40=
Subject key identifier: 43:E6:76:BF:D4:02:82:AB:50:8B:99:AE:8E:69:7E:24:AE:1C:58:10
Authority key identifier: BA:FE:6D:7D:5F:1E:44:78:D1:A0:25:17:1D:A6:B0:39:B2:63:01:1F
Certificate issuer: /CN=bafe6d7d5f1e4478d1a025171da6b039b263011f
Certificate serial: 019677C3ECCF255573AFA5221CAB01BAC3C3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/uv5tfV8eRHjRoCUXHaawObJjAR8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/11/9ff86c-1f7b-4bc7-976a-dfb79bba1b68/1/uv5tfV8eRHjRoCUXHaawObJjAR8.mft
Manifest number: 08B3
Signing time: Sun 27 Apr 2025 15:00:50 +0000
Manifest this update: Sun 27 Apr 2025 15:00:50 +0000
Manifest next update: Mon 28 Apr 2025 15:00:50 +0000
Files and hashes: 1: uv5tfV8eRHjRoCUXHaawObJjAR8.crl (hash: pH3xKPZW+8WuRJjxOFWjrwr0M3dHv61pHzIvMEFbmQY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/11/9ff86c-1f7b-4bc7-976a-dfb79bba1b68/1/uv5tfV8eRHjRoCUXHaawObJjAR8.crl
rsync://rpki.ripe.net/repository/DEFAULT/11/9ff86c-1f7b-4bc7-976a-dfb79bba1b68/1/uv5tfV8eRHjRoCUXHaawObJjAR8.mft
rsync://rpki.ripe.net/repository/DEFAULT/uv5tfV8eRHjRoCUXHaawObJjAR8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 28 Apr 2025 14:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:77:c3:ec:cf:25:55:73:af:a5:22:1c:ab:01:ba:c3:c3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=bafe6d7d5f1e4478d1a025171da6b039b263011f
Validity
Not Before: Apr 27 15:00:50 2025 GMT
Not After : Apr 28 15:00:50 2025 GMT
Subject: CN=43e676bfd40282ab508b99ae8e697e24ae1c5810
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:04:ad:a1:62:8c:71:9a:02:fc:9a:d4:52:4d:
fa:6c:d1:83:dd:78:41:4c:01:0a:36:a2:31:5b:fc:
46:d9:03:5b:cf:08:ea:32:c2:1f:b1:83:2e:21:cb:
e0:52:fa:59:6d:a6:2e:69:77:d5:32:96:58:7f:16:
99:59:02:4d:bb:41:b6:84:60:59:3c:11:6f:b9:19:
68:40:85:3a:74:68:bb:66:35:0f:8c:39:4a:8f:71:
44:9c:9e:da:6e:4a:3d:cd:10:f3:a0:8d:d4:e9:53:
26:a1:a1:87:f3:15:3a:18:19:67:36:3c:1b:ec:4d:
98:76:2e:a2:45:5d:fe:72:27:87:df:bf:b0:e6:25:
17:9b:1b:4a:40:0e:e0:2f:71:0f:31:e4:f1:d1:c2:
af:7a:96:e7:49:d4:fb:35:75:d8:27:fd:9c:a7:a5:
2c:03:1f:19:d2:b3:58:c4:37:a1:3e:14:3e:a9:d8:
b6:10:e9:46:ed:00:1d:64:c1:88:e8:29:f2:3a:5b:
45:d7:de:4b:fd:34:74:d7:c1:c2:ed:04:7b:fa:80:
71:31:36:4a:02:74:78:0d:a5:7f:16:a7:6c:e4:0b:
27:3f:e5:b8:4e:99:ad:12:29:cb:86:39:a5:e9:23:
d5:c2:4f:1f:64:13:90:2c:f8:be:1e:13:f6:e2:d3:
db:b1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
43:E6:76:BF:D4:02:82:AB:50:8B:99:AE:8E:69:7E:24:AE:1C:58:10
X509v3 Authority Key Identifier:
keyid:BA:FE:6D:7D:5F:1E:44:78:D1:A0:25:17:1D:A6:B0:39:B2:63:01:1F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/uv5tfV8eRHjRoCUXHaawObJjAR8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/11/9ff86c-1f7b-4bc7-976a-dfb79bba1b68/1/uv5tfV8eRHjRoCUXHaawObJjAR8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/11/9ff86c-1f7b-4bc7-976a-dfb79bba1b68/1/uv5tfV8eRHjRoCUXHaawObJjAR8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
b1:d4:53:2e:7a:1e:0f:63:2b:eb:19:9d:27:65:3b:54:2d:ee:
f6:c3:3d:f9:d0:63:4f:ed:cd:1a:6e:a1:49:c4:f7:3c:0b:1c:
16:78:9d:6b:4d:d6:29:f8:49:a2:23:28:e8:90:23:0c:71:e3:
dd:52:a0:54:e4:a2:bd:c0:8d:8e:d0:a9:6d:95:87:10:e0:44:
c0:de:54:25:45:a3:4e:61:da:9b:47:83:29:aa:2d:c9:e8:c6:
08:8c:e5:d2:34:29:a6:88:66:95:f4:97:2e:08:25:f7:0b:7a:
c0:14:a2:82:67:df:11:d1:50:53:b5:bc:0e:11:91:59:1d:82:
15:71:0d:c6:fa:10:e0:a2:06:a8:9f:d1:bb:74:55:ee:39:13:
0c:fa:e4:a8:9a:5e:fc:09:85:0a:4c:b4:3f:c6:32:52:cb:6e:
f6:69:3b:76:a8:20:02:a7:45:ed:c2:d2:2e:4f:52:64:c8:a6:
32:46:84:70:87:13:7c:2b:d7:be:4d:d9:d7:1c:44:52:8a:50:
16:b4:2c:dd:40:e6:73:cc:3e:95:b0:48:a7:bf:4e:3d:b5:72:
ef:ca:59:cd:2a:07:8e:5f:76:2d:34:de:76:6e:2a:66:2f:b5:
47:ce:22:4b:1c:7b:43:59:4c:8d:1c:74:5a:c6:cc:43:03:f2:
21:19:09:4e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 27 23:17:33 2025 by rpki-client