Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d1/caf5ea-626e-455a-8708-f5ca8fa7270d/1/ufHVsG9XAVVf9YiBVN0UG0iJYRc.mft
File: ufHVsG9XAVVf9YiBVN0UG0iJYRc.mft (raw, json)
Hash identifier: zxCROvsI+d/bIZPak2XFOq/rz74/MlpqklJzPOW1ozA=
Subject key identifier: 30:ED:EB:C7:21:8C:12:EC:10:F2:32:86:69:ED:ED:41:02:DE:71:B5
Authority key identifier: B9:F1:D5:B0:6F:57:01:55:5F:F5:88:81:54:DD:14:1B:48:89:61:17
Certificate issuer: /CN=b9f1d5b06f5701555ff5888154dd141b48896117
Certificate serial: 0196760C3A0FD36A9D4D56187274AFE1522B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ufHVsG9XAVVf9YiBVN0UG0iJYRc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d1/caf5ea-626e-455a-8708-f5ca8fa7270d/1/ufHVsG9XAVVf9YiBVN0UG0iJYRc.mft
Manifest number: 1526
Signing time: Sun 27 Apr 2025 07:00:34 +0000
Manifest this update: Sun 27 Apr 2025 07:00:34 +0000
Manifest next update: Mon 28 Apr 2025 07:00:34 +0000
Files and hashes: 1: ufHVsG9XAVVf9YiBVN0UG0iJYRc.crl (hash: gnJMlcnr6w576EvcOqo52+ht1Y+dnVHvA04R3XOuL1w=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d1/caf5ea-626e-455a-8708-f5ca8fa7270d/1/ufHVsG9XAVVf9YiBVN0UG0iJYRc.crl
rsync://rpki.ripe.net/repository/DEFAULT/d1/caf5ea-626e-455a-8708-f5ca8fa7270d/1/ufHVsG9XAVVf9YiBVN0UG0iJYRc.mft
rsync://rpki.ripe.net/repository/DEFAULT/ufHVsG9XAVVf9YiBVN0UG0iJYRc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 28 Apr 2025 05:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:76:0c:3a:0f:d3:6a:9d:4d:56:18:72:74:af:e1:52:2b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b9f1d5b06f5701555ff5888154dd141b48896117
Validity
Not Before: Apr 27 07:00:34 2025 GMT
Not After : Apr 28 07:00:34 2025 GMT
Subject: CN=30edebc7218c12ec10f2328669eded4102de71b5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:1e:13:b6:e8:10:b0:d1:39:58:cf:70:52:0f:
9c:b1:8b:43:37:6a:a1:92:4c:da:94:f0:ea:51:31:
1d:76:55:3d:e8:0d:f3:89:1d:39:19:22:af:ac:df:
37:1b:59:56:7f:e5:fd:58:41:5a:33:4f:1b:4f:68:
e8:e9:97:d0:80:2f:0e:72:59:c6:2b:63:59:83:e6:
ee:e2:0b:80:a6:de:b4:16:c5:a5:f8:f0:3b:3d:99:
a8:86:60:07:7f:80:88:67:f2:64:a7:d9:7c:24:68:
7a:db:57:46:2f:77:91:84:dd:bb:4f:4e:cb:a9:f5:
e0:8a:d1:e4:a3:db:27:51:0e:ca:88:23:f7:c1:09:
8b:51:30:37:9b:83:ed:3a:c1:4e:49:b8:a1:66:14:
63:3f:a3:71:bb:35:5a:cb:a9:b5:1f:f1:13:e1:1a:
8a:9e:ec:7c:db:e6:06:37:bc:3a:b6:08:1a:3a:44:
31:b6:cf:a4:6a:65:7b:79:fd:be:9a:7a:7a:21:2f:
17:0e:55:a2:9a:a3:1f:27:31:7c:4d:db:d3:f2:fb:
67:ac:fe:75:b6:5c:c0:f3:f4:ad:5b:65:6a:7f:e2:
30:92:38:91:f7:fc:80:88:29:f2:85:31:fc:54:a6:
1b:f2:72:17:93:b3:84:af:6e:c6:26:f9:6f:da:8a:
36:bd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
30:ED:EB:C7:21:8C:12:EC:10:F2:32:86:69:ED:ED:41:02:DE:71:B5
X509v3 Authority Key Identifier:
keyid:B9:F1:D5:B0:6F:57:01:55:5F:F5:88:81:54:DD:14:1B:48:89:61:17
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ufHVsG9XAVVf9YiBVN0UG0iJYRc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d1/caf5ea-626e-455a-8708-f5ca8fa7270d/1/ufHVsG9XAVVf9YiBVN0UG0iJYRc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d1/caf5ea-626e-455a-8708-f5ca8fa7270d/1/ufHVsG9XAVVf9YiBVN0UG0iJYRc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
12:bd:7d:d1:19:07:d9:f3:14:98:ef:7e:89:d2:27:38:af:d0:
b0:39:47:b0:08:03:be:d3:40:b1:f5:29:a6:ac:69:e3:75:2d:
e6:56:14:38:ce:5a:7f:d8:19:89:79:94:a5:f8:c0:b2:8e:2b:
25:4a:34:b5:58:fb:64:42:29:63:a5:67:7c:ee:8a:d4:60:53:
ad:e1:62:e7:b2:95:f5:46:c1:51:1c:cf:86:13:13:f4:c9:6b:
0f:4c:38:30:c6:a0:a8:f7:2e:58:15:27:4c:58:90:1f:ee:96:
e8:21:d0:f3:68:00:ce:0d:8e:7c:a6:24:b6:ed:62:3f:80:10:
75:ad:b1:33:74:fb:65:0f:7c:ba:c5:65:b8:85:b8:72:67:10:
c5:57:4d:f3:46:2c:5d:21:e2:00:32:67:f7:ed:2f:da:f0:00:
75:b5:12:53:84:5f:87:46:e5:82:00:ea:4d:06:e1:e3:98:aa:
79:ce:15:5d:06:1b:61:83:fb:aa:94:af:4e:94:69:d1:56:07:
2d:3a:ac:75:c7:ce:50:e8:55:84:65:2e:56:85:a8:2a:c8:3f:
b0:75:42:aa:b6:fd:cd:ad:66:c2:ee:da:c5:da:b9:6c:7f:99:
59:05:76:a7:aa:cc:96:70:8d:75:a6:c4:11:30:a0:21:27:5f:
68:bb:1d:8e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 27 15:05:39 2025 by rpki-client