Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ce/5974d6-6c67-442b-993a-7ae5987bee62/1/UmLT8nzAW-WSS7e9iQ9-be_7SX0.mft
File: UmLT8nzAW-WSS7e9iQ9-be_7SX0.mft (raw, json)
Hash identifier: kxYI4u8g9qMkkCIxahH32Ip5LTyx+EqKgQz39ZG9ONo=
Subject key identifier: 7C:EC:13:23:EA:89:DF:81:67:ED:AA:89:E2:2F:B5:6F:70:D3:39:86
Authority key identifier: 52:62:D3:F2:7C:C0:5B:E5:92:4B:B7:BD:89:0F:7E:6D:EF:FB:49:7D
Certificate issuer: /CN=5262d3f27cc05be5924bb7bd890f7e6deffb497d
Certificate serial: 0196827E1E9610127A2E1030DA0160268FBD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UmLT8nzAW-WSS7e9iQ9-be_7SX0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ce/5974d6-6c67-442b-993a-7ae5987bee62/1/UmLT8nzAW-WSS7e9iQ9-be_7SX0.mft
Manifest number: 1473
Signing time: Tue 29 Apr 2025 17:00:25 +0000
Manifest this update: Tue 29 Apr 2025 17:00:25 +0000
Manifest next update: Wed 30 Apr 2025 17:00:25 +0000
Files and hashes: 1: UmLT8nzAW-WSS7e9iQ9-be_7SX0.crl (hash: RNhkAAdPj1RzH5BUOUE/iUrA/CKUmxKV7Kj7p/opwGA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ce/5974d6-6c67-442b-993a-7ae5987bee62/1/UmLT8nzAW-WSS7e9iQ9-be_7SX0.crl
rsync://rpki.ripe.net/repository/DEFAULT/ce/5974d6-6c67-442b-993a-7ae5987bee62/1/UmLT8nzAW-WSS7e9iQ9-be_7SX0.mft
rsync://rpki.ripe.net/repository/DEFAULT/UmLT8nzAW-WSS7e9iQ9-be_7SX0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 30 Apr 2025 17:00:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:82:7e:1e:96:10:12:7a:2e:10:30:da:01:60:26:8f:bd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5262d3f27cc05be5924bb7bd890f7e6deffb497d
Validity
Not Before: Apr 29 17:00:25 2025 GMT
Not After : Apr 30 17:00:25 2025 GMT
Subject: CN=7cec1323ea89df8167edaa89e22fb56f70d33986
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:83:61:3b:24:a5:f0:80:f8:8d:84:90:13:0c:
87:0a:b8:2c:71:36:04:bd:9e:ac:b4:15:70:60:9b:
80:0d:de:53:d7:16:db:b9:47:75:1b:07:b8:5f:2b:
6a:fa:e1:f4:ab:85:5d:ae:fb:de:95:b0:ff:27:fd:
8b:c1:0f:2b:3c:ef:51:56:96:34:1f:2b:4f:f2:49:
c9:2c:be:c0:e0:ad:ef:6c:c0:62:79:be:71:41:1f:
c9:a6:b1:f4:8d:30:bf:05:65:9c:38:28:5f:6c:3b:
69:d1:d4:36:37:c7:1b:c8:ce:10:de:34:89:35:3c:
6c:b9:68:45:7a:52:c3:fe:4b:2e:e7:87:23:1d:02:
0d:50:a6:a7:1c:96:05:d9:b0:ef:3d:76:17:8c:d9:
85:87:d0:92:be:89:6b:73:85:86:69:9a:7d:aa:4f:
b9:7b:24:50:5b:13:8f:d4:f8:33:13:8d:88:30:a5:
77:de:6a:0b:9d:6b:e4:98:b4:65:14:41:23:3b:a4:
3f:36:94:bc:42:11:55:12:c0:89:c9:03:ba:9a:9e:
75:b1:ed:fe:e5:c5:ed:0b:4c:f5:00:3e:66:f5:88:
31:23:95:57:e6:01:01:dc:25:d1:f4:e9:56:3d:35:
29:78:c7:2f:a2:b1:26:55:d6:f7:89:80:24:02:2a:
17:d9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7C:EC:13:23:EA:89:DF:81:67:ED:AA:89:E2:2F:B5:6F:70:D3:39:86
X509v3 Authority Key Identifier:
keyid:52:62:D3:F2:7C:C0:5B:E5:92:4B:B7:BD:89:0F:7E:6D:EF:FB:49:7D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UmLT8nzAW-WSS7e9iQ9-be_7SX0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ce/5974d6-6c67-442b-993a-7ae5987bee62/1/UmLT8nzAW-WSS7e9iQ9-be_7SX0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ce/5974d6-6c67-442b-993a-7ae5987bee62/1/UmLT8nzAW-WSS7e9iQ9-be_7SX0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
1f:a2:60:df:77:8d:41:d9:4b:cd:6f:07:28:b5:4c:29:05:1e:
ff:22:4a:7a:04:13:ce:b6:03:78:37:86:4c:a0:97:32:14:80:
fe:34:6c:2b:fc:6e:1a:0a:31:c0:5f:c2:15:b0:50:ba:0b:eb:
80:a6:71:66:64:25:1e:5f:2b:97:19:e8:b5:74:27:88:f2:91:
ff:59:e5:79:ef:9b:82:08:31:3d:56:20:18:66:c9:81:63:fa:
31:e0:a8:96:78:aa:e0:5c:9a:3c:ab:13:c4:44:6d:0e:38:ac:
a1:8a:f7:ec:bc:96:09:75:5c:5e:99:cc:b9:1f:3e:b3:5e:f0:
a4:38:cb:43:41:9d:ca:78:19:c0:32:21:c7:5f:c2:1b:b0:3d:
86:21:06:ee:34:ec:f9:8c:29:ec:69:95:72:2a:95:d5:e4:40:
bf:d1:44:fa:ec:07:43:bd:00:34:23:2f:7b:24:3d:e9:69:c8:
fc:c0:f7:08:f2:72:67:5a:a1:15:53:1e:94:bf:95:2a:2e:bc:
6f:d9:d3:fe:42:96:3c:93:3f:e8:e3:72:a2:96:e7:df:fe:67:
57:c6:25:e1:4e:2f:2f:fc:b7:41:dd:7a:89:b7:d7:67:85:e3:
0b:04:38:75:e5:cc:2f:e6:03:97:e9:74:5a:83:05:60:64:a9:
07:37:07:f5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 30 03:57:27 2025 by rpki-client