Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cc/a23c77-f4ad-40ba-b850-989f53b2cae0/1/U1zc9HjqgOsXXEwwd-efy3DF0jA.mft
File: U1zc9HjqgOsXXEwwd-efy3DF0jA.mft (raw, json)
Hash identifier: 85ci9hukfHErA1fwW0DhUjj6V5LCxIR+wMVtzFr0Bfs=
Subject key identifier: AF:BE:E0:91:BE:9C:F3:DB:8C:B8:18:C2:7B:88:05:2B:28:7A:35:57
Authority key identifier: 53:5C:DC:F4:78:EA:80:EB:17:5C:4C:30:77:E7:9F:CB:70:C5:D2:30
Certificate issuer: /CN=535cdcf478ea80eb175c4c3077e79fcb70c5d230
Certificate serial: 0196A46582984BDD75DB8A65DDF1901059D8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/U1zc9HjqgOsXXEwwd-efy3DF0jA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cc/a23c77-f4ad-40ba-b850-989f53b2cae0/1/U1zc9HjqgOsXXEwwd-efy3DF0jA.mft
Manifest number: 097E
Signing time: Tue 06 May 2025 07:00:38 +0000
Manifest this update: Tue 06 May 2025 07:00:38 +0000
Manifest next update: Wed 07 May 2025 07:00:38 +0000
Files and hashes: 1: U1zc9HjqgOsXXEwwd-efy3DF0jA.crl (hash: kmij9t2UoplLXOC+yQxxxbh1G/M4gZ3NKNizZukHsPI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/cc/a23c77-f4ad-40ba-b850-989f53b2cae0/1/U1zc9HjqgOsXXEwwd-efy3DF0jA.crl
rsync://rpki.ripe.net/repository/DEFAULT/cc/a23c77-f4ad-40ba-b850-989f53b2cae0/1/U1zc9HjqgOsXXEwwd-efy3DF0jA.mft
rsync://rpki.ripe.net/repository/DEFAULT/U1zc9HjqgOsXXEwwd-efy3DF0jA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 07 May 2025 04:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:a4:65:82:98:4b:dd:75:db:8a:65:dd:f1:90:10:59:d8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=535cdcf478ea80eb175c4c3077e79fcb70c5d230
Validity
Not Before: May 6 07:00:38 2025 GMT
Not After : May 7 07:00:38 2025 GMT
Subject: CN=afbee091be9cf3db8cb818c27b88052b287a3557
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:93:2e:eb:7e:c4:5c:dc:1f:28:fc:f2:2e:84:
e6:29:06:76:a9:2a:9b:5e:69:a7:1d:62:8f:7e:9a:
7f:e6:a2:44:8d:8d:76:72:04:0a:bb:f4:80:7b:2a:
f1:45:0d:51:0d:a0:0a:b8:95:02:07:41:1a:35:78:
95:45:ac:8b:49:6c:e4:73:e3:af:fa:c3:f6:e0:60:
e1:55:2e:56:ee:10:cd:26:7b:02:05:45:f5:56:f4:
f1:7f:f1:c2:19:44:6f:96:ec:d0:5a:d5:8b:fd:f5:
92:3e:52:0e:ed:b8:09:b7:f0:fa:f4:a8:cc:8a:43:
fa:25:39:74:17:01:57:9d:bd:77:3f:13:06:73:ca:
51:fb:71:e0:11:3b:d3:34:39:47:6c:af:b9:e8:de:
fd:ce:d0:f2:61:d6:f5:7e:ff:24:0e:0e:50:41:70:
14:66:5e:6a:99:b9:6d:2e:45:69:02:24:b4:cd:a0:
20:cf:f1:5b:bf:59:2a:fd:b0:e3:8e:12:e1:fa:d5:
c9:78:05:b3:bd:ea:f1:ea:d3:cc:cf:b8:23:48:c1:
57:52:f7:e2:f7:3c:a7:66:ff:ca:26:f4:d5:e5:0a:
e6:2b:12:02:74:15:9b:b6:ca:a4:98:b1:da:4b:63:
14:99:c5:ff:9f:63:0b:c1:02:79:83:72:be:77:44:
38:d3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AF:BE:E0:91:BE:9C:F3:DB:8C:B8:18:C2:7B:88:05:2B:28:7A:35:57
X509v3 Authority Key Identifier:
keyid:53:5C:DC:F4:78:EA:80:EB:17:5C:4C:30:77:E7:9F:CB:70:C5:D2:30
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/U1zc9HjqgOsXXEwwd-efy3DF0jA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cc/a23c77-f4ad-40ba-b850-989f53b2cae0/1/U1zc9HjqgOsXXEwwd-efy3DF0jA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/cc/a23c77-f4ad-40ba-b850-989f53b2cae0/1/U1zc9HjqgOsXXEwwd-efy3DF0jA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
98:db:d5:ca:82:13:e9:1d:93:9f:20:e3:9f:d2:0a:83:1b:b0:
78:cb:0a:f8:ca:48:fc:14:0f:77:c3:7d:66:7b:ac:25:84:93:
5b:29:49:ac:d2:7e:e2:e5:99:36:da:38:f4:8b:c6:f9:b6:79:
84:ff:9c:dc:0f:ea:15:02:8e:e7:38:99:93:9b:90:97:de:02:
c3:13:09:b6:63:f7:12:aa:a1:8b:d0:cf:df:c4:2a:db:3d:28:
b0:8d:24:c6:2a:96:fc:41:49:56:8c:f4:82:a0:5e:30:ba:02:
6c:6e:7d:62:e4:a1:86:0a:a7:86:c3:ad:7d:e0:06:88:20:68:
bc:2a:11:69:6e:40:9f:f4:21:25:71:65:b2:d1:4e:99:d8:c4:
38:32:7d:8e:74:a0:f4:39:7a:0a:89:5b:29:25:5b:1a:f5:3f:
3e:82:61:b8:61:9d:56:8c:98:a3:48:98:1b:2b:e4:ea:3f:48:
15:f8:d2:0c:90:c9:67:ad:63:76:27:52:c8:a6:c6:70:c7:31:
16:13:46:85:5a:15:8d:a4:84:51:8f:eb:46:06:1a:9d:b8:33:
0e:6f:1c:09:91:08:be:a4:ed:da:07:8a:4a:ea:7d:72:8d:b9:
cc:38:a0:42:84:c9:7c:a4:c1:61:46:85:39:ce:9a:66:9b:0c:
c5:ee:0b:bc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue May 6 14:13:27 2025 by rpki-client