Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/65/ca4471-34d0-4816-81d1-8bf5b1ed1209/1/uT2pHx9TY0JyxZEQh85my602FKM.mft
File: uT2pHx9TY0JyxZEQh85my602FKM.mft (raw, json)
Hash identifier: HlFb7UMRhcw2ge9bwFAWCQRlM3TO399DkPG9VgMx9lQ=
Subject key identifier: AC:1B:2E:A5:BB:10:07:37:1F:76:46:37:76:DC:36:87:22:DB:F9:3F
Authority key identifier: B9:3D:A9:1F:1F:53:63:42:72:C5:91:10:87:CE:66:CB:AD:36:14:A3
Certificate issuer: /CN=b93da91f1f53634272c5911087ce66cbad3614a3
Certificate serial: 01969115E9081446E7DB4713287BA401912B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/uT2pHx9TY0JyxZEQh85my602FKM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/65/ca4471-34d0-4816-81d1-8bf5b1ed1209/1/uT2pHx9TY0JyxZEQh85my602FKM.mft
Manifest number: 06BB
Signing time: Fri 02 May 2025 13:00:54 +0000
Manifest this update: Fri 02 May 2025 13:00:54 +0000
Manifest next update: Sat 03 May 2025 13:00:54 +0000
Files and hashes: 1: 0386LGj4Sidbyca8KneFkNR54TI.roa (hash: jcV5FqK/anJpS83+3AC/ntYQGRcWnZsS3JRi5ZH9EXg=)
2: uT2pHx9TY0JyxZEQh85my602FKM.crl (hash: bWb6XpRncAMMUGQi6316IBxX1TyaMQLyYVObn8ihvAs=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/65/ca4471-34d0-4816-81d1-8bf5b1ed1209/1/uT2pHx9TY0JyxZEQh85my602FKM.crl
rsync://rpki.ripe.net/repository/DEFAULT/65/ca4471-34d0-4816-81d1-8bf5b1ed1209/1/uT2pHx9TY0JyxZEQh85my602FKM.mft
rsync://rpki.ripe.net/repository/DEFAULT/uT2pHx9TY0JyxZEQh85my602FKM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 03 May 2025 10:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:91:15:e9:08:14:46:e7:db:47:13:28:7b:a4:01:91:2b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b93da91f1f53634272c5911087ce66cbad3614a3
Validity
Not Before: May 2 13:00:54 2025 GMT
Not After : May 3 13:00:54 2025 GMT
Subject: CN=ac1b2ea5bb1007371f76463776dc368722dbf93f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d2:23:86:08:77:45:b5:ad:37:9b:6f:4f:8f:95:
3e:84:7f:96:19:4c:8e:a9:37:9c:71:36:64:39:22:
43:9a:b9:4c:67:de:f2:2e:8f:ba:be:6b:5b:37:2f:
49:c5:39:fb:b8:f6:49:43:9c:ff:a5:94:ed:a8:68:
0a:08:7d:ce:6e:dd:03:a1:ce:1e:50:4b:83:25:61:
2e:c5:47:b8:7d:b3:a4:ec:07:52:e2:c2:f0:42:ca:
45:09:19:d3:6f:09:50:10:3d:fd:47:f8:30:7e:e4:
e3:9b:89:2d:6c:f1:87:85:ad:d6:bb:a0:68:59:9c:
b3:b5:48:6c:0e:f0:64:de:4a:52:c2:e0:ef:83:35:
9f:b6:9f:bf:2a:be:ef:45:ba:2f:ea:d8:46:ec:29:
4a:f7:ba:4f:aa:6e:06:09:8d:6e:80:2a:c3:25:3c:
93:56:8f:25:dd:e9:6d:1b:a2:5c:9b:a2:a3:95:43:
be:32:b9:9f:ed:dd:d8:29:12:d2:f4:d9:4d:7f:0c:
9f:65:2b:2e:cc:c9:c0:27:7b:9d:b4:e2:84:f6:69:
2a:85:ec:5b:52:ac:fd:35:65:2b:bf:ef:77:7e:2c:
58:6f:52:0b:dc:5a:4f:0c:ae:ca:41:15:7c:88:59:
11:52:af:9a:18:b7:90:3f:51:00:4d:4b:4a:8a:99:
35:4b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AC:1B:2E:A5:BB:10:07:37:1F:76:46:37:76:DC:36:87:22:DB:F9:3F
X509v3 Authority Key Identifier:
keyid:B9:3D:A9:1F:1F:53:63:42:72:C5:91:10:87:CE:66:CB:AD:36:14:A3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/uT2pHx9TY0JyxZEQh85my602FKM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/65/ca4471-34d0-4816-81d1-8bf5b1ed1209/1/uT2pHx9TY0JyxZEQh85my602FKM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/65/ca4471-34d0-4816-81d1-8bf5b1ed1209/1/uT2pHx9TY0JyxZEQh85my602FKM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
83:31:88:77:53:59:0a:d3:ab:f1:15:95:6e:ab:dd:c0:07:df:
da:84:7c:5d:b7:d6:87:46:8f:43:3f:8b:0a:cb:d5:5c:7c:72:
64:12:ee:62:74:d0:e8:f7:d6:31:5b:7f:d9:f8:20:07:de:aa:
22:f8:26:25:79:e7:e6:25:fa:b2:12:08:d0:5c:85:97:56:21:
08:1b:f9:f9:f6:f2:d5:90:f1:0c:ce:e5:29:bb:3d:9b:b0:c9:
07:15:00:ee:28:d5:f0:12:4a:35:55:b2:d5:67:9a:71:5e:e6:
42:d6:2a:9d:ed:46:d6:e5:19:54:82:0e:ad:ef:e3:ee:ed:ee:
12:3e:eb:57:18:dd:6e:3c:74:34:2c:c6:d2:3e:e5:c7:74:10:
1a:0c:ac:f2:10:2b:48:61:84:74:b1:e6:a1:c6:c6:7a:d5:7f:
c3:44:d4:32:a7:28:40:01:0e:b7:bc:27:d7:c4:69:da:cb:aa:
3b:b4:c7:9a:89:54:ff:53:09:70:c5:0c:ce:53:57:ed:ee:a0:
d8:93:0f:82:f0:6d:a2:23:cc:cd:7f:ad:af:e0:42:b6:3d:05:
c8:f8:e1:62:b1:2b:45:cc:af:0f:a0:c8:03:7e:8f:44:d8:ff:
a7:27:bf:19:01:80:49:52:1a:01:da:24:b6:ed:7e:2a:96:6b:
6a:2f:af:11
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 2 16:21:19 2025 by rpki-client