Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/aa/244958-aa2d-478c-b0ff-69efad6c3a80/1/UHeXmaO44PDx48dJjAWjP4X7u80.mft
File: UHeXmaO44PDx48dJjAWjP4X7u80.mft (raw, json)
Hash identifier: q30x+oKMRSQLbDDotULFH8s8HxjST64QjlryvLQO/1A=
Subject key identifier: 01:2A:8E:E1:12:79:8D:67:EE:C0:E7:00:68:D5:72:E0:90:83:E1:A6
Authority key identifier: 50:77:97:99:A3:B8:E0:F0:F1:E3:C7:49:8C:05:A3:3F:85:FB:BB:CD
Certificate issuer: /CN=50779799a3b8e0f0f1e3c7498c05a33f85fbbbcd
Certificate serial: 019678D694F2B62EE0BF446BFCCE9B552F37
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UHeXmaO44PDx48dJjAWjP4X7u80.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/aa/244958-aa2d-478c-b0ff-69efad6c3a80/1/UHeXmaO44PDx48dJjAWjP4X7u80.mft
Manifest number: 13D7
Signing time: Sun 27 Apr 2025 20:00:50 +0000
Manifest this update: Sun 27 Apr 2025 20:00:50 +0000
Manifest next update: Mon 28 Apr 2025 20:00:50 +0000
Files and hashes: 1: Sy9MkTO2BPRvKPMpsGDN-2TnmTk.roa (hash: Zvh1o0q4voreyVSKOLfHlxnIapN8G7OyPz3tE/wp4Tg=)
2: UHeXmaO44PDx48dJjAWjP4X7u80.crl (hash: WT4yo//mr3wFjTXyKHc70hKDPDMPXmQ9xFMTFOW4TeE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/aa/244958-aa2d-478c-b0ff-69efad6c3a80/1/UHeXmaO44PDx48dJjAWjP4X7u80.crl
rsync://rpki.ripe.net/repository/DEFAULT/aa/244958-aa2d-478c-b0ff-69efad6c3a80/1/UHeXmaO44PDx48dJjAWjP4X7u80.mft
rsync://rpki.ripe.net/repository/DEFAULT/UHeXmaO44PDx48dJjAWjP4X7u80.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 28 Apr 2025 16:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:78:d6:94:f2:b6:2e:e0:bf:44:6b:fc:ce:9b:55:2f:37
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=50779799a3b8e0f0f1e3c7498c05a33f85fbbbcd
Validity
Not Before: Apr 27 20:00:50 2025 GMT
Not After : Apr 28 20:00:50 2025 GMT
Subject: CN=012a8ee112798d67eec0e70068d572e09083e1a6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:93:fa:9d:06:83:9e:25:4d:d9:20:6c:73:5d:
62:22:af:08:b0:80:d6:b7:2e:77:1e:8b:3b:bf:fa:
88:ce:38:ca:42:b9:b7:fb:5a:d5:a2:c9:55:21:cf:
f1:16:a6:37:4a:7d:5f:b3:05:2f:f4:bb:8f:b0:59:
7d:73:b0:4c:61:5c:c2:36:db:21:c7:31:a2:4e:64:
91:9f:a8:d5:77:8c:1e:10:7e:42:37:35:17:be:2e:
7c:c7:a6:48:6c:7d:10:b4:16:66:c1:82:5d:45:00:
32:29:b7:84:19:0a:d1:c1:66:9d:77:6c:00:56:54:
08:60:d4:85:b3:00:bf:31:28:e3:bd:e9:fe:0d:5d:
57:e1:35:e3:a9:8e:d8:48:00:5c:82:94:1e:c8:24:
f9:4d:b3:28:53:c1:54:06:e9:97:1b:ec:ec:d4:c1:
05:2b:da:d0:b6:e8:70:e1:3f:b5:be:18:ee:95:5e:
38:39:a9:20:b9:17:c1:c1:89:34:76:b3:9d:fe:dc:
15:62:79:69:4a:1f:47:37:a3:49:73:8c:af:c6:57:
0f:02:39:bf:d2:cd:2a:11:ca:3a:58:d2:57:fb:b8:
5e:6b:53:78:9e:08:c5:1b:64:72:69:ee:71:1f:8d:
94:e7:f6:d0:51:45:88:50:0b:03:35:a3:5f:47:18:
88:55
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
01:2A:8E:E1:12:79:8D:67:EE:C0:E7:00:68:D5:72:E0:90:83:E1:A6
X509v3 Authority Key Identifier:
keyid:50:77:97:99:A3:B8:E0:F0:F1:E3:C7:49:8C:05:A3:3F:85:FB:BB:CD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UHeXmaO44PDx48dJjAWjP4X7u80.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/aa/244958-aa2d-478c-b0ff-69efad6c3a80/1/UHeXmaO44PDx48dJjAWjP4X7u80.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/aa/244958-aa2d-478c-b0ff-69efad6c3a80/1/UHeXmaO44PDx48dJjAWjP4X7u80.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
7b:98:7d:c3:c1:b5:5f:5e:23:37:65:4f:59:10:70:4d:88:cc:
a8:95:34:47:ee:a1:7f:41:f2:8a:07:08:43:70:28:ab:08:9e:
73:59:9b:3a:4b:8b:e5:67:ea:0d:49:04:4b:9d:e2:41:1d:3b:
49:e2:02:8a:eb:d7:d5:0e:9e:fa:68:3d:24:52:13:2c:40:de:
04:53:5e:da:c7:32:a7:e5:04:dd:ef:20:ac:45:44:fa:a6:83:
6f:03:bc:26:93:38:20:7f:7a:43:a7:03:97:e8:c4:76:62:82:
26:da:53:af:c7:1c:fa:0d:8e:44:f3:b3:bc:5e:61:c3:f2:c5:
aa:71:f4:7c:6e:fd:59:ac:b1:ec:a3:b8:1f:8f:bd:30:f6:a9:
2a:9e:ae:ec:52:6c:29:08:43:ec:ee:d3:79:de:50:ce:fe:63:
cb:fe:97:dd:66:da:e8:d0:81:cb:73:fc:c8:42:14:44:f0:e0:
63:97:54:54:60:0d:64:98:27:72:db:d2:2e:ce:0f:79:b7:ee:
59:e0:3f:67:56:28:5f:9c:6b:d8:d7:20:5b:28:c2:71:3b:f4:
8c:6a:74:10:dc:7e:d9:e5:28:58:51:cc:7e:ec:e2:e3:a2:92:
68:97:69:5e:00:17:39:81:2d:fa:36:75:ea:92:35:71:50:a6:
c3:64:6b:bf
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 28 02:11:08 2025 by rpki-client