Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3f/03d0e2-a49e-4371-b21c-5015e1208119/1/UqZcYoSDp1Zoi7FYwoq3wNR94nw.mft
File: UqZcYoSDp1Zoi7FYwoq3wNR94nw.mft (raw, json)
Hash identifier: /YYNk2xK/nYB26O+usOSUkrIZMcj9MGtam4eOKTXmq0=
Subject key identifier: 84:AB:5A:83:D4:E9:83:92:F5:DE:9B:81:0D:27:0C:40:F1:30:B2:95
Authority key identifier: 52:A6:5C:62:84:83:A7:56:68:8B:B1:58:C2:8A:B7:C0:D4:7D:E2:7C
Certificate issuer: /CN=52a65c628483a756688bb158c28ab7c0d47de27c
Certificate serial: 0196729D2EC2E7EC82E55D0B45F220643DA3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UqZcYoSDp1Zoi7FYwoq3wNR94nw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3f/03d0e2-a49e-4371-b21c-5015e1208119/1/UqZcYoSDp1Zoi7FYwoq3wNR94nw.mft
Manifest number: 02DF
Signing time: Sat 26 Apr 2025 15:00:25 +0000
Manifest this update: Sat 26 Apr 2025 15:00:25 +0000
Manifest next update: Sun 27 Apr 2025 15:00:25 +0000
Files and hashes: 1: UqZcYoSDp1Zoi7FYwoq3wNR94nw.crl (hash: RwTyvZhUEEF/Ub/4k7d4Y2/lzXZkJuN3/BtbUjlTjiU=)
2: tqDHXiS7i5dxh3CeCoDJkGQqezg.roa (hash: l6w/oRDzimMT8gSmQ7FtqRNlVcpqgstHkEfCIU2SJhE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3f/03d0e2-a49e-4371-b21c-5015e1208119/1/UqZcYoSDp1Zoi7FYwoq3wNR94nw.crl
rsync://rpki.ripe.net/repository/DEFAULT/3f/03d0e2-a49e-4371-b21c-5015e1208119/1/UqZcYoSDp1Zoi7FYwoq3wNR94nw.mft
rsync://rpki.ripe.net/repository/DEFAULT/UqZcYoSDp1Zoi7FYwoq3wNR94nw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 27 Apr 2025 11:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:72:9d:2e:c2:e7:ec:82:e5:5d:0b:45:f2:20:64:3d:a3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=52a65c628483a756688bb158c28ab7c0d47de27c
Validity
Not Before: Apr 26 15:00:25 2025 GMT
Not After : Apr 27 15:00:25 2025 GMT
Subject: CN=84ab5a83d4e98392f5de9b810d270c40f130b295
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:d1:12:77:11:4b:0e:5a:f2:6c:cb:df:d8:cc:
87:1e:55:02:14:50:aa:5d:cc:c9:58:7f:0c:2a:8a:
97:28:7c:79:c8:44:77:56:7a:82:a2:14:e6:09:19:
10:d1:b5:0c:3f:83:87:96:ed:47:3b:a7:b8:aa:0d:
10:bf:c7:b9:58:ea:11:e6:84:8c:13:67:ac:65:1b:
93:32:32:fd:f7:89:b2:f2:fd:fe:34:bf:d5:29:da:
8b:03:2e:00:37:0a:37:19:bf:ad:33:68:93:b3:3d:
f5:62:01:fa:4d:b6:89:02:da:5a:03:36:29:cb:72:
67:db:fd:23:0a:3e:16:ab:cf:ee:b2:3e:97:9b:c5:
1c:6a:29:df:cb:db:4c:24:cf:fd:ba:0f:82:c2:96:
35:6f:ff:78:84:97:f4:1b:e4:44:d0:f7:8b:fc:ee:
20:b7:a1:a0:dd:cc:6c:b2:af:53:68:2a:43:b5:6a:
ec:eb:5a:af:25:fe:d2:2c:ba:26:e7:49:cd:10:92:
fd:d7:3f:9d:26:5a:8e:13:bf:12:0d:91:f4:7e:df:
12:85:d9:74:4d:94:eb:6c:4c:53:85:4f:e6:b5:c6:
9b:aa:82:f0:71:1c:7f:8e:ae:0d:e4:e5:3c:a6:68:
6f:7b:cb:3d:71:e5:d6:32:9e:79:59:c0:0c:80:dc:
cb:a1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
84:AB:5A:83:D4:E9:83:92:F5:DE:9B:81:0D:27:0C:40:F1:30:B2:95
X509v3 Authority Key Identifier:
keyid:52:A6:5C:62:84:83:A7:56:68:8B:B1:58:C2:8A:B7:C0:D4:7D:E2:7C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UqZcYoSDp1Zoi7FYwoq3wNR94nw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3f/03d0e2-a49e-4371-b21c-5015e1208119/1/UqZcYoSDp1Zoi7FYwoq3wNR94nw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3f/03d0e2-a49e-4371-b21c-5015e1208119/1/UqZcYoSDp1Zoi7FYwoq3wNR94nw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
b0:4d:9e:db:27:2a:85:2d:47:56:64:e6:46:5e:c3:9b:ca:39:
10:a9:03:a0:fc:ed:51:c3:76:e2:fb:01:63:1e:cc:e2:5e:c3:
27:2b:f1:a4:38:7a:db:5b:a5:98:56:9b:cf:0b:0d:56:a3:e1:
a9:46:7f:c5:b7:fd:db:39:ee:d0:b9:d4:91:9d:39:9f:0a:27:
b3:7a:f1:32:82:38:d0:ae:9c:47:03:32:be:50:ab:11:af:1a:
89:9f:10:4b:00:f9:6d:6f:24:33:93:f6:b1:c9:d7:5a:4b:13:
20:c4:a9:2b:0a:5f:9d:d6:a3:bf:35:a7:63:85:58:e8:bc:d7:
56:a9:de:75:a4:78:9b:38:de:a3:33:16:9d:0a:2c:67:97:28:
0f:a8:e1:de:55:2f:30:61:c1:e8:02:ec:e0:02:58:b9:cb:dc:
ae:94:71:05:c7:3e:cd:f2:08:32:f9:5f:b6:e8:e4:c4:1b:1a:
87:72:67:69:69:c5:cb:34:17:2d:db:29:66:8c:01:78:34:df:
0c:94:4d:ab:81:4c:db:ae:eb:df:49:9d:11:20:b1:3a:1e:c6:
3e:ab:68:1f:53:b6:9d:08:cd:23:da:a2:63:3d:b1:36:4d:4b:
55:f3:0b:54:e0:8f:4b:b7:35:cd:39:4b:5f:67:91:72:7a:0a:
14:60:7e:76
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 26 19:04:21 2025 by rpki-client