Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/90/76a60e-0d81-4c41-b889-91fc0f51ea07/1/UUtNPv-4vQsTNu68uCe3fhKeD28.mft
File: UUtNPv-4vQsTNu68uCe3fhKeD28.mft (raw, json)
Hash identifier: yDvb7ufS5F+/HaEXeqd+WP+uBqHtP/fadzbpudG77tY=
Subject key identifier: 16:62:71:6A:99:C1:56:F7:57:3B:72:37:D2:56:1E:21:45:1B:78:02
Authority key identifier: 51:4B:4D:3E:FF:B8:BD:0B:13:36:EE:BC:B8:27:B7:7E:12:9E:0F:6F
Certificate issuer: /CN=514b4d3effb8bd0b1336eebcb827b77e129e0f6f
Certificate serial: 0196759E9B65601FF91FF0DBEE0517398F8E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UUtNPv-4vQsTNu68uCe3fhKeD28.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/90/76a60e-0d81-4c41-b889-91fc0f51ea07/1/UUtNPv-4vQsTNu68uCe3fhKeD28.mft
Manifest number: 097A
Signing time: Sun 27 Apr 2025 05:00:50 +0000
Manifest this update: Sun 27 Apr 2025 05:00:50 +0000
Manifest next update: Mon 28 Apr 2025 05:00:50 +0000
Files and hashes: 1: DkmUUaZoynIEdlR9hMmyYSS3NfA.roa (hash: JaWDKrMwIijsWs6TG8arC0MUQjJ3dz0V76FJO19Gqec=)
2: UUtNPv-4vQsTNu68uCe3fhKeD28.crl (hash: HcYPRyLOwjmjkkc8MnODd2qvZ4l31Sh+Co0GXJc2WcM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/90/76a60e-0d81-4c41-b889-91fc0f51ea07/1/UUtNPv-4vQsTNu68uCe3fhKeD28.crl
rsync://rpki.ripe.net/repository/DEFAULT/90/76a60e-0d81-4c41-b889-91fc0f51ea07/1/UUtNPv-4vQsTNu68uCe3fhKeD28.mft
rsync://rpki.ripe.net/repository/DEFAULT/UUtNPv-4vQsTNu68uCe3fhKeD28.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 28 Apr 2025 05:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:75:9e:9b:65:60:1f:f9:1f:f0:db:ee:05:17:39:8f:8e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=514b4d3effb8bd0b1336eebcb827b77e129e0f6f
Validity
Not Before: Apr 27 05:00:50 2025 GMT
Not After : Apr 28 05:00:50 2025 GMT
Subject: CN=1662716a99c156f7573b7237d2561e21451b7802
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:20:a7:d3:8d:98:fb:c7:21:23:c5:f2:1b:4c:
2a:30:bb:12:b3:cf:6e:50:e3:25:13:7a:88:50:d5:
71:08:3a:4d:00:69:ea:ec:a4:87:f1:46:db:2e:67:
19:18:90:d1:55:cf:37:65:22:7a:e4:72:4d:60:40:
44:c3:bb:87:f7:86:f7:80:b8:2b:ff:56:05:3b:05:
44:bf:de:2a:11:e8:ea:75:55:d6:0d:76:7c:e4:9d:
9c:ea:97:b1:dc:d0:3e:b7:e9:7a:64:91:58:cd:6f:
47:5a:65:39:41:e8:50:cb:23:a2:42:10:5e:65:2c:
53:c9:f8:a2:b5:3b:af:99:ad:c9:54:f3:f2:55:5d:
20:56:e3:50:de:6a:5b:d2:7e:3b:64:45:2d:53:e7:
51:04:2a:ca:bd:a8:ee:20:fd:84:05:e8:2e:d7:35:
d8:67:f3:0b:c3:3f:67:c8:83:a5:7a:2c:c8:9a:58:
87:ec:46:99:af:2a:d5:a8:d9:42:16:b5:40:65:13:
cc:e5:44:85:29:82:bb:cc:12:50:5a:5b:69:e6:a6:
e3:2c:f9:47:5b:02:48:a5:23:c2:bf:d6:b1:38:ed:
22:71:1d:35:12:34:79:5f:28:4c:7a:dd:21:af:2f:
9b:76:ce:5a:f0:a8:c2:56:2b:51:ef:09:4a:a8:ea:
d4:05
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
16:62:71:6A:99:C1:56:F7:57:3B:72:37:D2:56:1E:21:45:1B:78:02
X509v3 Authority Key Identifier:
keyid:51:4B:4D:3E:FF:B8:BD:0B:13:36:EE:BC:B8:27:B7:7E:12:9E:0F:6F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UUtNPv-4vQsTNu68uCe3fhKeD28.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/90/76a60e-0d81-4c41-b889-91fc0f51ea07/1/UUtNPv-4vQsTNu68uCe3fhKeD28.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/90/76a60e-0d81-4c41-b889-91fc0f51ea07/1/UUtNPv-4vQsTNu68uCe3fhKeD28.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
3a:32:60:31:af:c0:71:a8:37:96:01:69:73:32:87:a0:0c:32:
f7:9f:d1:d7:db:0f:4f:69:5a:0c:04:8c:20:bf:fc:26:54:eb:
fe:29:67:24:e3:8a:2e:3d:51:87:1b:6e:6b:dc:11:02:2e:1a:
20:db:ff:d7:42:95:ef:99:4a:5f:e4:d2:05:86:b3:a3:38:c8:
b1:1f:16:2b:ca:c5:2b:12:6d:59:e0:28:88:68:d5:c5:76:cf:
a1:51:35:71:39:84:a1:a9:81:d8:7d:e2:a9:a1:d6:04:d2:94:
ce:69:c6:cd:7b:59:fd:3a:4a:e7:0a:bf:4f:0d:91:41:99:5e:
e4:e9:a9:f5:6f:95:55:e9:41:f7:7c:b5:52:41:c1:a3:99:50:
a9:6b:c8:cf:72:ef:4f:a7:67:6a:dd:81:8d:24:da:3b:cd:55:
0a:79:7d:87:6c:fb:f4:a0:79:1a:c2:8e:dd:1c:6a:24:ce:b8:
32:5d:c3:df:d1:92:fc:c6:77:ca:e4:d8:e5:95:b0:cb:c5:00:
fc:a8:0f:60:4c:c7:1e:9c:06:8f:08:78:2d:93:54:75:8b:6a:
1c:72:64:31:14:21:40:9d:de:5d:37:6f:5c:78:63:02:09:5b:
5b:f2:47:43:3e:a7:cd:db:a2:d7:7d:96:92:8c:a4:aa:72:0a:
05:1b:35:8d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 27 10:31:26 2025 by rpki-client