Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/64/deca0e-dd4c-44ef-bf77-05dbe3df98f6/1/UIqaCKvvdNzFEAT0-uAmbWIDleM.mft
File: UIqaCKvvdNzFEAT0-uAmbWIDleM.mft (raw, json)
Hash identifier: pQ+/+eQ2Y7nKUGsWvSYkyIJ82gOrSbcmel7/fBVDMMk=
Subject key identifier: 47:0B:8C:43:4F:EB:0E:88:A7:34:8C:22:37:49:95:22:91:2E:68:8E
Authority key identifier: 50:8A:9A:08:AB:EF:74:DC:C5:10:04:F4:FA:E0:26:6D:62:03:95:E3
Certificate issuer: /CN=508a9a08abef74dcc51004f4fae0266d620395e3
Certificate serial: 01967C452C23D1B6468DC7EF923575F0833A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UIqaCKvvdNzFEAT0-uAmbWIDleM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/64/deca0e-dd4c-44ef-bf77-05dbe3df98f6/1/UIqaCKvvdNzFEAT0-uAmbWIDleM.mft
Manifest number: 0D06
Signing time: Mon 28 Apr 2025 12:00:30 +0000
Manifest this update: Mon 28 Apr 2025 12:00:30 +0000
Manifest next update: Tue 29 Apr 2025 12:00:30 +0000
Files and hashes: 1: 8CmFhnWxaCeDeglOctNQZC1ZN84.roa (hash: mRPJMJZCvcTnlYvn8UFVdthp3gWoolEvhKxuWOWcGDk=)
2: UIqaCKvvdNzFEAT0-uAmbWIDleM.crl (hash: 12G2pkMmZmBpNtfEHSwBnS8I0bis8TPuAHq0FmEESA0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/64/deca0e-dd4c-44ef-bf77-05dbe3df98f6/1/UIqaCKvvdNzFEAT0-uAmbWIDleM.crl
rsync://rpki.ripe.net/repository/DEFAULT/64/deca0e-dd4c-44ef-bf77-05dbe3df98f6/1/UIqaCKvvdNzFEAT0-uAmbWIDleM.mft
rsync://rpki.ripe.net/repository/DEFAULT/UIqaCKvvdNzFEAT0-uAmbWIDleM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 29 Apr 2025 12:00:30 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:7c:45:2c:23:d1:b6:46:8d:c7:ef:92:35:75:f0:83:3a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=508a9a08abef74dcc51004f4fae0266d620395e3
Validity
Not Before: Apr 28 12:00:30 2025 GMT
Not After : Apr 29 12:00:30 2025 GMT
Subject: CN=470b8c434feb0e88a7348c2237499522912e688e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8e:a6:9c:83:7f:63:c4:df:f3:6e:7e:99:31:a4:
f0:bb:6c:ae:5a:47:bc:2e:c4:3b:82:b3:88:a5:29:
6c:ac:ba:5f:ab:44:fe:2b:eb:1d:aa:c1:e1:f5:7e:
c0:fc:18:ab:be:9a:dc:d8:1a:13:f2:10:2a:d1:87:
09:7f:80:81:7b:51:1b:4b:68:ad:1a:f0:29:77:f6:
8a:ea:5e:1a:6f:06:5a:74:7b:09:f4:1c:df:3b:bf:
12:80:d6:f1:d4:d9:d0:a0:96:a5:ba:9c:bc:60:92:
55:38:bb:84:65:dd:22:04:97:7d:c6:0a:1e:6e:b5:
e2:97:67:c0:b2:05:c4:81:5e:1a:1b:0f:8f:35:bc:
cf:53:0c:07:d2:b6:c8:d3:55:07:ec:74:75:bd:8c:
ab:8f:a2:90:69:99:91:be:46:75:3a:fd:b9:4f:b6:
0d:99:36:d9:c7:b8:bc:45:b6:40:9f:07:dd:1f:5c:
d4:f6:48:4a:58:bf:ba:90:8a:e3:10:f9:27:b0:17:
f1:08:4a:cf:9d:58:01:31:ad:e7:6b:19:bd:8f:75:
4a:38:2c:2a:cb:75:0c:8f:b4:23:51:a0:ac:9a:7c:
40:e7:ab:95:c4:09:0f:57:93:60:d4:43:44:40:b8:
41:c9:14:da:40:83:77:e9:86:f3:36:54:17:4e:b7:
39:a5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
47:0B:8C:43:4F:EB:0E:88:A7:34:8C:22:37:49:95:22:91:2E:68:8E
X509v3 Authority Key Identifier:
keyid:50:8A:9A:08:AB:EF:74:DC:C5:10:04:F4:FA:E0:26:6D:62:03:95:E3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UIqaCKvvdNzFEAT0-uAmbWIDleM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/64/deca0e-dd4c-44ef-bf77-05dbe3df98f6/1/UIqaCKvvdNzFEAT0-uAmbWIDleM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/64/deca0e-dd4c-44ef-bf77-05dbe3df98f6/1/UIqaCKvvdNzFEAT0-uAmbWIDleM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
91:7b:3e:d8:3c:e3:c0:5d:5e:c4:0c:17:18:42:29:96:ae:d9:
d5:46:8a:c8:ed:ca:4d:2c:79:d2:fd:6e:d9:75:ef:b4:4d:89:
c5:9e:c7:f9:df:09:ce:65:fc:7e:ab:a3:03:15:b4:bd:8d:38:
50:82:d1:81:83:c6:7a:0f:42:f6:79:59:50:58:72:94:a8:f4:
26:a4:0b:b7:f7:df:aa:1b:34:29:d0:d2:c6:3c:00:a4:58:d1:
ce:88:55:23:79:36:84:57:59:1d:9c:53:03:bc:d8:37:b0:71:
e0:43:a6:b8:35:10:e3:20:ad:d5:b4:e2:a2:05:57:8b:47:b2:
0c:ea:63:dd:ee:0c:26:51:39:32:10:b0:bc:97:09:0a:f6:1b:
41:8b:92:21:8f:19:a8:7a:65:97:7a:07:46:d3:7d:fe:bb:58:
cd:8f:7f:90:1c:b6:40:76:28:f1:00:51:32:90:b8:4d:d9:ef:
b4:b4:97:4e:5b:75:f4:07:20:7b:1f:8a:20:07:f5:d9:85:1c:
44:67:3f:dd:f7:a4:bd:73:0d:d7:62:00:f8:23:93:56:de:49:
98:9c:bd:26:e6:97:59:86:25:6e:54:9f:eb:72:e6:49:64:9b:
3f:70:34:74:5c:49:67:d7:f5:04:89:e5:d9:c1:82:4b:30:10:
f5:86:0b:7c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 28 22:50:36 2025 by rpki-client