Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/72/8b400d-1e8e-40da-b1d6-a6541ceb1e43/1/UjLUTZ4IyHPbNcAhUcpErlS0uK8.mft
File: UjLUTZ4IyHPbNcAhUcpErlS0uK8.mft (raw, json)
Hash identifier: 9WcxlxHvnmed7VeNpKcQKoAzd+4r1cWHMO1coZyYgVI=
Subject key identifier: 82:30:3C:34:51:EF:4E:8F:18:95:17:61:4C:14:7B:DF:3A:A0:8A:AC
Authority key identifier: 52:32:D4:4D:9E:08:C8:73:DB:35:C0:21:51:CA:44:AE:54:B4:B8:AF
Certificate issuer: /CN=5232d44d9e08c873db35c02151ca44ae54b4b8af
Certificate serial: 019679B24AC27561681E696EA9EABEBB53A6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UjLUTZ4IyHPbNcAhUcpErlS0uK8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/72/8b400d-1e8e-40da-b1d6-a6541ceb1e43/1/UjLUTZ4IyHPbNcAhUcpErlS0uK8.mft
Manifest number: 1272
Signing time: Mon 28 Apr 2025 00:00:49 +0000
Manifest this update: Mon 28 Apr 2025 00:00:49 +0000
Manifest next update: Tue 29 Apr 2025 00:00:49 +0000
Files and hashes: 1: MggUNL8VW9yE4LnaTyr5YJxrDwU.roa (hash: GpA5vo0L4EKCpZl/rQZR5bRixQFok1LnqW2Xg8KUiaQ=)
2: UjLUTZ4IyHPbNcAhUcpErlS0uK8.crl (hash: LbyMmqPEXO5E6Dmm64Rn3frgyoa0ZPYAQ4/ws4qAgSc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/72/8b400d-1e8e-40da-b1d6-a6541ceb1e43/1/UjLUTZ4IyHPbNcAhUcpErlS0uK8.crl
rsync://rpki.ripe.net/repository/DEFAULT/72/8b400d-1e8e-40da-b1d6-a6541ceb1e43/1/UjLUTZ4IyHPbNcAhUcpErlS0uK8.mft
rsync://rpki.ripe.net/repository/DEFAULT/UjLUTZ4IyHPbNcAhUcpErlS0uK8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 28 Apr 2025 16:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:79:b2:4a:c2:75:61:68:1e:69:6e:a9:ea:be:bb:53:a6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5232d44d9e08c873db35c02151ca44ae54b4b8af
Validity
Not Before: Apr 28 00:00:49 2025 GMT
Not After : Apr 29 00:00:49 2025 GMT
Subject: CN=82303c3451ef4e8f189517614c147bdf3aa08aac
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:e1:ee:11:7f:68:38:ae:1e:f4:be:f8:8d:a0:
a3:d0:36:d6:66:b2:dd:b3:d9:49:6b:d9:ce:ec:fd:
e9:37:19:4c:32:6f:94:fd:1b:87:5b:4d:8f:f8:6d:
00:6a:ef:fe:99:9f:5d:86:56:06:7e:3b:e0:66:45:
e6:9f:87:1f:be:9b:2e:c4:f2:bd:cd:ad:8f:3a:da:
ca:62:ac:23:0c:61:d1:31:7d:b4:6a:ca:35:e3:34:
48:41:52:ec:bc:6e:76:fb:3a:41:2d:ae:9a:ac:24:
a9:6e:ae:f6:68:f5:9f:5f:4d:ca:8a:eb:5f:b2:51:
75:91:33:c5:c2:92:70:35:92:22:5a:ce:a4:09:4a:
1d:a0:7e:be:3b:07:08:6e:9c:bb:6c:03:82:58:01:
0e:fc:6a:b7:b1:18:5e:84:71:df:5b:ef:aa:ae:e6:
c3:75:bb:cf:67:af:05:2c:3e:f8:dd:14:04:e8:c2:
2e:a5:8d:03:05:b7:a0:fe:0a:46:2d:80:36:23:ba:
43:44:0e:3f:48:7f:bb:bf:ad:aa:c4:21:90:d1:ea:
47:ea:41:0f:71:27:b4:57:fa:49:ea:6d:a6:c1:5f:
d5:b9:b0:ac:22:00:86:62:b7:ae:c5:30:18:6c:d1:
70:00:0d:36:95:45:2f:57:cb:e3:54:7f:3c:bf:69:
17:c1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
82:30:3C:34:51:EF:4E:8F:18:95:17:61:4C:14:7B:DF:3A:A0:8A:AC
X509v3 Authority Key Identifier:
keyid:52:32:D4:4D:9E:08:C8:73:DB:35:C0:21:51:CA:44:AE:54:B4:B8:AF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UjLUTZ4IyHPbNcAhUcpErlS0uK8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/72/8b400d-1e8e-40da-b1d6-a6541ceb1e43/1/UjLUTZ4IyHPbNcAhUcpErlS0uK8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/72/8b400d-1e8e-40da-b1d6-a6541ceb1e43/1/UjLUTZ4IyHPbNcAhUcpErlS0uK8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
85:64:c1:56:74:c3:cb:a2:8a:d5:df:81:bf:25:bf:6a:2a:39:
b6:e9:6b:bf:f6:43:45:a7:b9:0a:e9:f6:1c:33:e8:d3:31:74:
97:0a:8d:26:f9:31:af:ff:13:fb:c3:d0:cc:4f:60:df:fc:60:
da:b3:fe:81:9d:29:9f:0a:8f:31:11:d4:54:c3:0a:af:5b:08:
bd:74:ab:8e:39:a5:81:6d:5b:ae:28:e2:a4:c9:56:80:da:01:
e1:a5:e8:f7:b4:ca:c8:55:84:3e:e4:9a:eb:cf:e9:82:2a:0a:
d0:b7:70:24:f6:6c:84:33:a1:f1:94:10:f7:54:bb:b5:0c:35:
4a:9b:0c:5b:60:0a:54:41:d9:27:3b:ad:d4:da:cd:8f:da:f7:
e5:3d:0b:2c:3e:27:39:cb:c5:a4:0c:e3:f4:87:66:4f:7e:f4:
2a:17:e3:31:58:d5:f2:9d:e3:d1:bb:cb:8c:81:22:59:4d:98:
0f:c2:96:d7:d3:b4:cf:c3:5c:a0:af:33:19:31:0a:29:17:0d:
1c:d1:23:5c:fb:cc:d1:6e:0d:da:43:76:a1:fb:c1:4c:b4:ce:
8b:5f:17:7a:2b:0c:3d:52:e0:02:a1:42:f2:4e:b7:a8:37:b7:
cd:61:e0:81:7c:1a:fb:ad:15:25:29:39:e0:91:7a:85:f8:27:
5f:ac:d5:6b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 28 02:10:22 2025 by rpki-client