Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4a/7f8f76-0d9d-46af-9bea-47e4e274cf64/1/uqWupvGAqaitmEU17S5kvPyz_ho.mft
File: uqWupvGAqaitmEU17S5kvPyz_ho.mft (raw, json)
Hash identifier: dhjoJV6mKLENzmmnosJIjnoqfq4tv6qgKk9QOJaTvRE=
Subject key identifier: AC:C2:51:24:9B:02:42:AC:EB:47:9A:F6:A8:4D:39:DF:A3:9A:8C:04
Authority key identifier: BA:A5:AE:A6:F1:80:A9:A8:AD:98:45:35:ED:2E:64:BC:FC:B3:FE:1A
Certificate issuer: /CN=baa5aea6f180a9a8ad984535ed2e64bcfcb3fe1a
Certificate serial: 0196789F42A84FAE198BC2DC77C1CFB548F1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/uqWupvGAqaitmEU17S5kvPyz_ho.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4a/7f8f76-0d9d-46af-9bea-47e4e274cf64/1/uqWupvGAqaitmEU17S5kvPyz_ho.mft
Manifest number: 0D04
Signing time: Sun 27 Apr 2025 19:00:25 +0000
Manifest this update: Sun 27 Apr 2025 19:00:25 +0000
Manifest next update: Mon 28 Apr 2025 19:00:25 +0000
Files and hashes: 1: CsvQEVK-EVJUj9O9Oyr9a1ZVDj8.roa (hash: KNjghiY6hSTnyBcRx4J/plbhEv6EisGMOlJT9AxkWNs=)
2: uqWupvGAqaitmEU17S5kvPyz_ho.crl (hash: LTwNJU0aOh9jNltGQxi7Dlw0R0q43MPTta4Rj/oqLCg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/4a/7f8f76-0d9d-46af-9bea-47e4e274cf64/1/uqWupvGAqaitmEU17S5kvPyz_ho.crl
rsync://rpki.ripe.net/repository/DEFAULT/4a/7f8f76-0d9d-46af-9bea-47e4e274cf64/1/uqWupvGAqaitmEU17S5kvPyz_ho.mft
rsync://rpki.ripe.net/repository/DEFAULT/uqWupvGAqaitmEU17S5kvPyz_ho.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 28 Apr 2025 14:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:78:9f:42:a8:4f:ae:19:8b:c2:dc:77:c1:cf:b5:48:f1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=baa5aea6f180a9a8ad984535ed2e64bcfcb3fe1a
Validity
Not Before: Apr 27 19:00:25 2025 GMT
Not After : Apr 28 19:00:25 2025 GMT
Subject: CN=acc251249b0242aceb479af6a84d39dfa39a8c04
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:ad:23:eb:5d:c1:32:08:b0:c4:95:16:79:05:
16:5c:c3:aa:b1:ff:09:9b:7e:3c:df:a7:64:a4:03:
be:78:ba:e6:cb:9c:c8:ea:6d:47:72:84:6e:88:53:
00:2b:38:d7:9d:d6:c4:a8:21:e8:4b:b5:e3:de:8e:
2d:e5:db:e5:de:88:de:10:9a:f0:0d:53:70:28:3e:
eb:88:31:bf:73:83:c3:0f:41:71:49:eb:55:30:17:
14:04:c0:ae:9d:fd:65:8f:7e:56:b7:5f:2e:c8:6f:
62:dd:61:17:b5:be:3c:00:36:98:78:95:65:b4:9d:
bf:0b:90:3c:3b:09:9d:fe:9a:73:f1:10:74:4c:7a:
85:57:71:de:d4:c6:f6:b7:c4:30:c4:86:f0:cf:84:
0e:97:8c:31:69:3d:14:18:b8:5e:bd:8a:01:61:70:
45:c1:1e:78:f3:6f:16:95:fe:72:4c:44:94:90:4c:
e0:89:07:cd:e6:39:9c:99:c3:3f:a0:55:d4:80:85:
24:c5:16:c3:54:f2:97:dc:94:be:0d:cd:d9:3d:75:
05:b4:6e:a0:89:f8:ec:28:63:cc:d5:35:55:eb:e7:
fd:db:6b:85:1d:3e:4b:43:4d:ab:96:91:13:24:99:
73:ba:8e:e7:d5:67:8b:a9:b4:6b:cf:29:52:82:4d:
61:43
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AC:C2:51:24:9B:02:42:AC:EB:47:9A:F6:A8:4D:39:DF:A3:9A:8C:04
X509v3 Authority Key Identifier:
keyid:BA:A5:AE:A6:F1:80:A9:A8:AD:98:45:35:ED:2E:64:BC:FC:B3:FE:1A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/uqWupvGAqaitmEU17S5kvPyz_ho.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4a/7f8f76-0d9d-46af-9bea-47e4e274cf64/1/uqWupvGAqaitmEU17S5kvPyz_ho.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4a/7f8f76-0d9d-46af-9bea-47e4e274cf64/1/uqWupvGAqaitmEU17S5kvPyz_ho.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
a5:43:ed:22:12:13:7a:a1:f8:f8:d9:60:d9:06:c4:e2:d3:be:
aa:35:35:ee:bc:f1:3f:39:58:4e:bc:bc:7a:c3:db:6b:1d:25:
bc:8a:64:8c:22:c0:88:5d:ba:3f:08:76:43:b9:83:37:fe:d9:
b5:99:3d:bd:a3:bc:76:3e:4d:c4:f6:02:f9:db:4f:29:76:16:
23:a8:d7:1e:af:df:c8:91:eb:90:49:f5:e0:a4:b0:7f:24:54:
5f:a9:fb:3c:43:c8:6d:84:c4:09:42:5f:2e:1d:cd:41:e3:53:
8f:42:3b:27:11:f9:10:0a:0e:dc:1b:51:94:e8:72:c5:4a:2e:
e5:37:b6:4d:09:79:a5:6c:56:23:8c:1c:7f:dc:64:e9:c6:73:
02:a8:31:24:40:a6:38:51:59:5f:da:1a:c6:8a:27:d4:3f:4c:
86:c6:ad:1c:d1:56:3c:ba:c9:39:06:e1:03:78:24:fb:3d:46:
84:11:de:57:18:e4:1a:7c:fe:db:7a:20:6b:7a:cf:8e:c0:e5:
aa:1e:76:fb:28:b3:32:eb:0d:06:de:39:4f:f1:db:22:0b:b6:
e0:db:3d:38:93:4f:7a:33:fe:de:71:f7:01:30:10:df:46:a2:
6d:62:4f:9f:f6:5a:76:5b:21:e9:d0:5b:7e:37:62:0c:0d:f2:
e5:24:d8:25
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 27 23:26:53 2025 by rpki-client