Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c3/07e105-5680-40aa-8c9d-0d66c75b026d/1/U6hLUj3-Mriom5zdMKn4cRAH_bk.mft
File: U6hLUj3-Mriom5zdMKn4cRAH_bk.mft (raw, json)
Hash identifier: nSsO0LOGfV+x/bpr8gwZexek6wYCuge2nB1OiPUQfTc=
Subject key identifier: 8F:16:C3:25:CE:43:2A:3D:2C:66:E6:EE:B0:70:38:46:69:28:9D:29
Authority key identifier: 53:A8:4B:52:3D:FE:32:B8:A8:9B:9C:DD:30:A9:F8:71:10:07:FD:B9
Certificate issuer: /CN=53a84b523dfe32b8a89b9cdd30a9f8711007fdb9
Certificate serial: 0196778CA8C7884840225A18203E6F1D54C0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/U6hLUj3-Mriom5zdMKn4cRAH_bk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c3/07e105-5680-40aa-8c9d-0d66c75b026d/1/U6hLUj3-Mriom5zdMKn4cRAH_bk.mft
Manifest number: 0BE6
Signing time: Sun 27 Apr 2025 14:00:28 +0000
Manifest this update: Sun 27 Apr 2025 14:00:28 +0000
Manifest next update: Mon 28 Apr 2025 14:00:28 +0000
Files and hashes: 1: GZldOEJkrutoTjn3MQnXcf09taM.roa (hash: vlltg4veeHpXkbEneS2WFuhIZv9HwJeSmQM3GzCbD1k=)
2: U6hLUj3-Mriom5zdMKn4cRAH_bk.crl (hash: rvR2YCC6KOvMmg4FZrRIKFSl6oWeKpqrOrzSaEo1+F0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c3/07e105-5680-40aa-8c9d-0d66c75b026d/1/U6hLUj3-Mriom5zdMKn4cRAH_bk.crl
rsync://rpki.ripe.net/repository/DEFAULT/c3/07e105-5680-40aa-8c9d-0d66c75b026d/1/U6hLUj3-Mriom5zdMKn4cRAH_bk.mft
rsync://rpki.ripe.net/repository/DEFAULT/U6hLUj3-Mriom5zdMKn4cRAH_bk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 28 Apr 2025 07:29:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:77:8c:a8:c7:88:48:40:22:5a:18:20:3e:6f:1d:54:c0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=53a84b523dfe32b8a89b9cdd30a9f8711007fdb9
Validity
Not Before: Apr 27 14:00:28 2025 GMT
Not After : Apr 28 14:00:28 2025 GMT
Subject: CN=8f16c325ce432a3d2c66e6eeb070384669289d29
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:dd:3d:bd:7b:6b:85:1a:4a:90:8b:3d:01:1e:
b8:8c:c0:d5:c6:f5:6a:4d:68:ae:89:0d:0f:46:e5:
5e:cc:c8:fb:98:96:9d:a5:04:37:1b:da:28:dd:c5:
7d:06:ac:d9:c2:03:8d:c8:9b:b6:af:d0:f5:20:41:
03:62:36:39:46:6a:16:e9:c4:a5:a3:7b:7d:06:5c:
5d:b2:be:b7:54:f8:a9:bd:41:51:67:97:b1:82:08:
74:ad:fa:ce:10:10:6f:bd:42:98:bf:8e:16:d2:53:
9f:d6:7b:b9:af:3c:64:5e:11:b5:d5:70:48:5a:57:
89:cf:dc:a0:73:10:1e:72:a2:46:74:55:83:09:75:
b3:5f:9c:6f:ae:a7:54:22:d1:17:21:90:80:a3:d2:
8f:0e:cf:26:d0:7f:a4:e4:9a:bf:15:56:1e:f3:ec:
69:ae:4e:1d:28:f3:95:ea:7a:de:d3:1b:86:e5:be:
b0:7e:83:65:b0:f9:de:69:d1:89:13:ff:08:4d:d6:
7f:b7:b6:2a:83:3c:6f:03:28:bf:e9:29:4e:d6:7f:
7d:39:99:29:0b:8d:8c:35:79:c3:54:85:9e:40:af:
d7:7b:56:59:20:e4:87:64:fd:27:69:5c:f8:6f:df:
55:ac:b8:e0:cc:32:d5:f2:00:06:90:18:e0:03:c2:
04:7f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8F:16:C3:25:CE:43:2A:3D:2C:66:E6:EE:B0:70:38:46:69:28:9D:29
X509v3 Authority Key Identifier:
keyid:53:A8:4B:52:3D:FE:32:B8:A8:9B:9C:DD:30:A9:F8:71:10:07:FD:B9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/U6hLUj3-Mriom5zdMKn4cRAH_bk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c3/07e105-5680-40aa-8c9d-0d66c75b026d/1/U6hLUj3-Mriom5zdMKn4cRAH_bk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c3/07e105-5680-40aa-8c9d-0d66c75b026d/1/U6hLUj3-Mriom5zdMKn4cRAH_bk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
85:f9:77:22:43:6a:51:8f:aa:c3:b7:94:29:5d:16:77:d3:f9:
2b:bb:da:8b:0a:b5:d5:18:4b:05:96:a5:e6:1a:58:a0:59:1e:
b6:59:f9:94:83:c5:04:74:a4:e3:41:fd:e7:e4:41:32:8b:ba:
a1:d9:8b:ba:93:3f:ad:02:bb:5f:fc:d1:d0:72:0b:c7:7e:c4:
88:dd:24:af:a2:0d:bb:f8:7a:6e:8f:36:c6:a2:c0:b7:93:0c:
a4:df:88:52:13:a5:ca:2b:e7:93:8f:6a:2f:12:20:a9:d9:87:
8b:80:85:5c:41:89:96:98:bf:cd:68:f4:8e:b8:58:c6:d7:ed:
3f:72:e4:68:c6:5d:d9:80:ef:7a:2c:dc:c4:86:ef:27:bc:19:
50:72:fe:27:24:de:21:71:54:54:2e:c3:0e:67:68:6e:59:f3:
3e:3e:f9:41:54:d4:7c:70:e9:0a:35:22:77:cb:66:cb:99:15:
ba:5d:fe:8d:c6:66:f5:c1:d5:c4:b4:18:02:01:7b:eb:d2:ec:
1d:63:85:3f:4a:be:0e:e0:ca:2c:30:9c:23:60:33:a4:b1:8a:
a3:ec:71:0e:1f:bb:26:a5:e6:79:82:6a:fb:ec:c5:e7:ea:af:
bb:c8:c3:fa:73:66:25:1f:a8:73:f7:7a:35:f8:1f:5c:de:97:
08:b1:9c:0f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 27 17:58:18 2025 by rpki-client