Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/35/04e8b2-c76f-4629-95ad-a7d945af14e5/1/U-Ou3ZG-gkUTQtzRyYKDRdtmGl8.mft
File: U-Ou3ZG-gkUTQtzRyYKDRdtmGl8.mft (raw, json)
Hash identifier: KZev6g/xOuAP3DImAa4gqU9w6/eqiMXI6wJLnDn9TuQ=
Subject key identifier: 15:C6:77:C0:BD:17:73:35:06:4C:5C:A0:E1:BD:59:50:1B:47:53:D7
Authority key identifier: 53:E3:AE:DD:91:BE:82:45:13:42:DC:D1:C9:82:83:45:DB:66:1A:5F
Certificate issuer: /CN=53e3aedd91be82451342dcd1c9828345db661a5f
Certificate serial: 0196759E5D527FEEC0A4755DE7B41505EA34
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/U-Ou3ZG-gkUTQtzRyYKDRdtmGl8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/35/04e8b2-c76f-4629-95ad-a7d945af14e5/1/U-Ou3ZG-gkUTQtzRyYKDRdtmGl8.mft
Manifest number: 079A
Signing time: Sun 27 Apr 2025 05:00:34 +0000
Manifest this update: Sun 27 Apr 2025 05:00:34 +0000
Manifest next update: Mon 28 Apr 2025 05:00:34 +0000
Files and hashes: 1: If5j4KjsWFg3kwDUxrHpbFCCjpg.roa (hash: iGbVOgQjxfoZ4tZTHfIMlZvCv27war8Yd/ywUcGl39o=)
2: U-Ou3ZG-gkUTQtzRyYKDRdtmGl8.crl (hash: 9+x4/XWQ+78uo1xro6xsWgGqxvXrM9Saxzx0UHJ6o+s=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/35/04e8b2-c76f-4629-95ad-a7d945af14e5/1/U-Ou3ZG-gkUTQtzRyYKDRdtmGl8.crl
rsync://rpki.ripe.net/repository/DEFAULT/35/04e8b2-c76f-4629-95ad-a7d945af14e5/1/U-Ou3ZG-gkUTQtzRyYKDRdtmGl8.mft
rsync://rpki.ripe.net/repository/DEFAULT/U-Ou3ZG-gkUTQtzRyYKDRdtmGl8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 28 Apr 2025 05:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:75:9e:5d:52:7f:ee:c0:a4:75:5d:e7:b4:15:05:ea:34
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=53e3aedd91be82451342dcd1c9828345db661a5f
Validity
Not Before: Apr 27 05:00:34 2025 GMT
Not After : Apr 28 05:00:34 2025 GMT
Subject: CN=15c677c0bd177335064c5ca0e1bd59501b4753d7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:db:e7:0a:45:f6:78:d9:7d:24:a9:0b:a1:0a:
c1:31:4f:ed:60:34:f7:81:c9:83:2c:9a:1a:88:ff:
af:c9:03:08:d8:28:cf:ed:55:00:1b:8e:7c:94:33:
af:ab:34:3d:b5:f1:09:78:cc:aa:b1:c9:11:59:c4:
5a:68:33:e0:c8:17:d6:0d:11:58:dd:0a:f8:a2:4d:
da:22:bb:79:b0:b0:40:75:8c:63:96:5b:6a:e9:e4:
5f:2f:c7:95:8d:4b:13:55:57:e8:4a:7b:c0:0f:b0:
2d:68:01:62:66:42:d0:23:24:f7:cd:0e:8a:c6:70:
86:2a:7a:15:1b:bf:f5:ae:a9:17:01:1d:d0:78:d7:
28:49:1d:e5:8f:ee:cd:cf:51:1a:be:fd:73:74:f6:
9b:e4:ae:60:18:e5:e3:42:f9:be:b1:eb:00:44:7d:
6b:7e:0f:92:2d:73:89:0d:5b:5a:d4:b6:ea:0d:74:
22:cf:b1:76:c6:68:37:06:c1:f3:a9:b7:0e:02:af:
03:3c:b6:99:2a:35:83:cc:a1:e9:2b:c8:17:71:19:
27:c5:52:41:44:96:1c:0e:d6:1c:1c:b0:70:6d:16:
55:2e:ae:1b:45:2a:44:b5:ff:d4:3a:b5:e7:91:13:
71:ce:79:a1:3c:0f:cc:ff:ef:1e:fb:66:88:1e:d6:
86:81
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
15:C6:77:C0:BD:17:73:35:06:4C:5C:A0:E1:BD:59:50:1B:47:53:D7
X509v3 Authority Key Identifier:
keyid:53:E3:AE:DD:91:BE:82:45:13:42:DC:D1:C9:82:83:45:DB:66:1A:5F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/U-Ou3ZG-gkUTQtzRyYKDRdtmGl8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/35/04e8b2-c76f-4629-95ad-a7d945af14e5/1/U-Ou3ZG-gkUTQtzRyYKDRdtmGl8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/35/04e8b2-c76f-4629-95ad-a7d945af14e5/1/U-Ou3ZG-gkUTQtzRyYKDRdtmGl8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
62:1b:5b:41:38:f9:53:11:59:28:2d:32:8a:32:39:aa:1b:40:
7e:21:ad:59:02:1b:de:25:83:ac:1f:5b:0b:84:73:61:75:fa:
86:6d:ac:2c:3d:78:c4:63:f0:7d:6c:28:6e:fe:70:cc:57:54:
34:61:d9:a5:58:a3:8c:f5:68:a8:89:61:2a:3c:04:30:9e:58:
eb:40:74:8c:0e:bd:62:51:8d:ad:90:0c:65:ed:71:4c:91:78:
4a:1e:d4:6f:df:51:e8:64:52:91:57:b7:8e:d3:a6:eb:4c:16:
ab:69:eb:56:a0:b9:7d:fe:93:61:80:33:f4:77:f0:4c:94:c4:
22:2b:c3:65:c8:ce:c3:4e:64:25:0c:0c:ba:8e:78:d5:b7:36:
83:b5:43:d2:26:08:5c:21:b2:25:d2:53:fb:81:ec:13:17:e5:
66:a6:b8:20:d9:95:43:eb:0d:a2:68:d6:bd:2c:a8:bb:96:89:
c2:d1:dd:bd:ce:f4:4e:ae:2d:90:fe:03:fc:ea:a1:37:78:86:
d5:b0:1c:02:49:33:13:82:94:9e:6a:fa:af:05:6f:39:8a:70:
60:b0:58:1d:c7:4a:68:97:a4:1f:6a:83:e5:32:7b:03:a9:c8:
8e:2e:8c:2f:41:ed:92:15:88:ce:08:fb:11:22:9e:ae:78:70:
ee:01:f4:4a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 27 13:09:08 2025 by rpki-client