Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/38/a90423-0b4b-499f-be66-55608b694456/1/UFEncj6gz9ByRxOykXNMqjU-IOo.mft
File: UFEncj6gz9ByRxOykXNMqjU-IOo.mft (raw, json)
Hash identifier: f2ak1UC7gGaasD2icsoy46+0FjjgGImirMqA4TE3c2Y=
Subject key identifier: E6:ED:B2:37:08:A2:DA:5A:8B:F2:3A:AC:5E:18:22:4F:EB:6A:33:AB
Authority key identifier: 50:51:27:72:3E:A0:CF:D0:72:47:13:B2:91:73:4C:AA:35:3E:20:EA
Certificate issuer: /CN=505127723ea0cfd0724713b291734caa353e20ea
Certificate serial: 01968A6EDC4ACEBBB67F0FA759E5724D29D3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UFEncj6gz9ByRxOykXNMqjU-IOo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/38/a90423-0b4b-499f-be66-55608b694456/1/UFEncj6gz9ByRxOykXNMqjU-IOo.mft
Manifest number: 1528
Signing time: Thu 01 May 2025 06:00:43 +0000
Manifest this update: Thu 01 May 2025 06:00:43 +0000
Manifest next update: Fri 02 May 2025 06:00:43 +0000
Files and hashes: 1: DFgAMB_c4WeZyOx-eglKZBMeXuM.roa (hash: X7EnRSIwEjRtkMbUxZKI4C9GzuFGjpE6JJQKft4XunM=)
2: UFEncj6gz9ByRxOykXNMqjU-IOo.crl (hash: ucmtQtSExw4okS0ZyLfoI2b3t8kD4YkYMHM8JklSpJM=)
3: cwQffYg0kiYjH-1rNcYLA94-ef0.roa (hash: Kweid10quhXZ8y9/SE/PMiXEL+CcUKUXoutq1WDQ6Zk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/38/a90423-0b4b-499f-be66-55608b694456/1/UFEncj6gz9ByRxOykXNMqjU-IOo.crl
rsync://rpki.ripe.net/repository/DEFAULT/38/a90423-0b4b-499f-be66-55608b694456/1/UFEncj6gz9ByRxOykXNMqjU-IOo.mft
rsync://rpki.ripe.net/repository/DEFAULT/UFEncj6gz9ByRxOykXNMqjU-IOo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 02 May 2025 06:00:43 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:8a:6e:dc:4a:ce:bb:b6:7f:0f:a7:59:e5:72:4d:29:d3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=505127723ea0cfd0724713b291734caa353e20ea
Validity
Not Before: May 1 06:00:43 2025 GMT
Not After : May 2 06:00:43 2025 GMT
Subject: CN=e6edb23708a2da5a8bf23aac5e18224feb6a33ab
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dd:47:9c:4f:8a:35:19:85:f2:d6:60:8a:bc:a3:
a7:ad:99:82:6e:b2:a6:30:ba:e5:e0:dd:aa:f8:a0:
63:ed:84:e2:ad:56:67:a9:4d:bd:34:d5:66:43:60:
f0:9f:00:39:0c:2c:85:85:31:85:1e:d6:5b:28:f4:
c6:42:7f:6e:5b:32:30:ea:09:3a:1f:88:f5:93:0d:
f8:be:f1:0c:16:c3:af:66:95:34:a0:67:16:b4:44:
19:b9:5b:75:f3:e9:32:4b:2f:48:0f:e7:0d:a1:db:
8d:0d:85:40:94:38:66:0f:4b:57:7f:50:c8:6c:78:
5a:93:5d:12:53:a0:a1:93:c0:5a:17:1e:36:d7:8a:
4f:a5:38:5d:35:ad:09:a9:ff:db:53:98:f0:14:ea:
52:60:8a:a0:61:bf:10:37:1a:fa:91:c3:6a:38:f0:
40:9a:35:82:58:e3:a5:e5:e5:85:7a:17:03:59:d7:
d3:52:c1:77:7b:10:55:16:64:4b:0b:26:c3:66:51:
86:42:2f:7b:71:d4:9a:f8:f2:f5:38:61:39:bb:32:
4e:bc:28:f4:a8:83:9e:c7:9d:8b:ce:6b:e3:17:34:
f7:23:c4:ab:e3:12:2f:b8:46:cc:1d:73:0e:47:72:
b5:70:a1:73:85:18:35:d9:3d:48:d0:94:45:54:29:
4d:5d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E6:ED:B2:37:08:A2:DA:5A:8B:F2:3A:AC:5E:18:22:4F:EB:6A:33:AB
X509v3 Authority Key Identifier:
keyid:50:51:27:72:3E:A0:CF:D0:72:47:13:B2:91:73:4C:AA:35:3E:20:EA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UFEncj6gz9ByRxOykXNMqjU-IOo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/38/a90423-0b4b-499f-be66-55608b694456/1/UFEncj6gz9ByRxOykXNMqjU-IOo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/38/a90423-0b4b-499f-be66-55608b694456/1/UFEncj6gz9ByRxOykXNMqjU-IOo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
13:0a:87:84:c2:3d:2d:fa:bc:fc:6a:f6:9e:ff:8c:94:23:ea:
5e:7f:ef:07:85:c7:91:24:d4:4e:b8:cc:22:8e:91:8e:89:2e:
5a:ec:90:e4:d3:fa:53:e2:ba:1f:f4:cf:ce:1e:d1:1c:07:6d:
6c:ff:1d:cd:9b:c1:24:c5:fe:ae:98:0c:01:07:6f:ad:37:aa:
0d:73:09:9a:e8:c9:85:a7:cb:58:3d:31:63:5f:2b:b6:bd:16:
f2:39:d2:cb:ef:aa:71:ed:78:df:7c:3b:ea:e5:42:a6:ec:18:
69:71:04:1f:71:b5:af:ec:fb:87:64:2c:03:72:e8:a4:26:80:
e6:5c:17:15:f5:8a:19:d8:fe:90:89:01:ed:07:7e:4a:81:53:
4f:40:13:0c:e9:01:59:9b:27:0b:57:1b:c1:9c:b1:28:2f:7d:
88:00:bd:39:fc:b0:7d:61:86:e3:eb:fd:55:ad:26:36:6b:eb:
ac:a2:7d:29:78:83:f0:c9:6d:aa:40:7d:38:5d:b6:7a:2f:42:
14:a7:45:85:d4:46:1e:b1:c4:5b:7d:27:ae:e6:44:c0:1b:0a:
79:a6:fa:80:3a:29:40:be:03:34:0d:33:f2:bd:a7:ff:d2:97:
1e:a3:3b:3b:e5:68:a7:cd:39:59:48:6a:d7:c7:8a:10:ba:c1:
ae:20:4d:fb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu May 1 13:10:42 2025 by rpki-client