Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d8/e674fb-2683-4cf4-967b-b7c67eacc3a5/1/uEWIWKHL3onJKQYPQvKw35JNTik.mft
File: uEWIWKHL3onJKQYPQvKw35JNTik.mft (raw, json)
Hash identifier: 12gQgQ0GeyrGsep2IaEkfISPC1pTTGd1c369iAcOWCI=
Subject key identifier: D8:BA:20:56:87:9F:99:C3:27:12:B7:19:2A:A7:84:1D:5D:7C:7F:39
Authority key identifier: B8:45:88:58:A1:CB:DE:89:C9:29:06:0F:42:F2:B0:DF:92:4D:4E:29
Certificate issuer: /CN=b8458858a1cbde89c929060f42f2b0df924d4e29
Certificate serial: 019681D91D924612B60206EDB711F59CFB86
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/uEWIWKHL3onJKQYPQvKw35JNTik.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d8/e674fb-2683-4cf4-967b-b7c67eacc3a5/1/uEWIWKHL3onJKQYPQvKw35JNTik.mft
Manifest number: 0995
Signing time: Tue 29 Apr 2025 14:00:11 +0000
Manifest this update: Tue 29 Apr 2025 14:00:11 +0000
Manifest next update: Wed 30 Apr 2025 14:00:11 +0000
Files and hashes: 1: TGrXflCdfRfW3fIuk1M0sun1vvs.roa (hash: alNQcjpWXoWXc70x5wuOV0VaoVsG9NOJ3xbbbXJM7RE=)
2: uEWIWKHL3onJKQYPQvKw35JNTik.crl (hash: kGKG/ZdCzZO/ffubdbpuTiQT1DzoGcnCiHTZdes/Vb4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d8/e674fb-2683-4cf4-967b-b7c67eacc3a5/1/uEWIWKHL3onJKQYPQvKw35JNTik.crl
rsync://rpki.ripe.net/repository/DEFAULT/d8/e674fb-2683-4cf4-967b-b7c67eacc3a5/1/uEWIWKHL3onJKQYPQvKw35JNTik.mft
rsync://rpki.ripe.net/repository/DEFAULT/uEWIWKHL3onJKQYPQvKw35JNTik.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 30 Apr 2025 14:00:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:81:d9:1d:92:46:12:b6:02:06:ed:b7:11:f5:9c:fb:86
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b8458858a1cbde89c929060f42f2b0df924d4e29
Validity
Not Before: Apr 29 14:00:11 2025 GMT
Not After : Apr 30 14:00:11 2025 GMT
Subject: CN=d8ba2056879f99c32712b7192aa7841d5d7c7f39
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:6f:f9:70:c5:41:f1:49:46:bd:07:b5:52:8d:
6e:6a:06:1f:6b:59:bd:0d:75:dd:71:8d:34:a5:76:
21:e4:a0:81:00:97:51:c4:ed:75:a0:bc:0f:38:20:
19:35:3f:9a:9e:34:8b:12:55:35:b0:c0:ba:9e:3f:
22:2d:99:84:0b:30:a5:7e:bd:4c:87:dc:3d:cc:c5:
2b:90:73:2f:c0:b3:07:21:e3:49:4f:a7:36:4f:88:
b1:75:93:45:55:46:8f:be:da:a5:4c:14:ec:a3:e5:
18:93:54:d2:f0:60:3c:e6:20:8f:50:1a:91:6f:04:
25:6d:c4:8a:a4:bf:d3:4a:74:c1:b3:84:1a:72:73:
db:10:5f:1b:a0:7d:5f:13:19:83:01:f7:f1:f3:47:
2b:5a:b9:79:d6:2c:6f:9e:8e:7b:ce:d3:59:a3:e8:
23:5f:14:69:c3:ee:28:46:66:98:f4:6b:ab:b6:6e:
1e:58:3e:db:5d:ae:31:76:76:75:fc:6a:75:c1:3b:
31:4d:0f:bd:14:c6:bb:a7:1a:5a:b9:c1:93:b2:41:
41:02:ac:63:01:89:be:a7:b7:16:74:6d:9b:b7:2a:
da:c4:c9:8d:87:96:12:6e:08:24:08:4d:b4:41:79:
03:48:1b:68:1c:a0:6d:8a:2e:b8:af:53:df:fc:57:
0d:4f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D8:BA:20:56:87:9F:99:C3:27:12:B7:19:2A:A7:84:1D:5D:7C:7F:39
X509v3 Authority Key Identifier:
keyid:B8:45:88:58:A1:CB:DE:89:C9:29:06:0F:42:F2:B0:DF:92:4D:4E:29
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/uEWIWKHL3onJKQYPQvKw35JNTik.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d8/e674fb-2683-4cf4-967b-b7c67eacc3a5/1/uEWIWKHL3onJKQYPQvKw35JNTik.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d8/e674fb-2683-4cf4-967b-b7c67eacc3a5/1/uEWIWKHL3onJKQYPQvKw35JNTik.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
05:ab:d4:32:fa:a7:93:1d:48:34:1a:79:b4:30:5c:9d:9d:5d:
19:11:3f:c5:9e:ba:e2:b7:27:f3:ca:09:dc:8f:bd:45:3c:de:
9e:64:ed:5d:fc:af:0a:f5:14:1c:c3:b3:08:ce:d4:6c:ca:f9:
d1:79:de:67:51:fd:00:fd:78:d8:00:61:fc:f2:e5:1a:26:c4:
8a:fd:dc:9d:7d:a0:ee:ea:61:96:46:ea:1d:d3:57:d3:c7:b6:
c4:25:f7:15:30:03:59:e8:72:91:2e:67:8a:27:ab:86:de:1a:
b3:b5:08:36:2e:ed:f0:40:3b:d3:8b:6a:b1:47:e9:6d:dc:fa:
c1:20:6d:14:0a:6e:c4:40:9f:ca:18:bc:0f:d5:26:63:42:71:
67:3f:d5:06:96:49:8c:05:05:56:89:ee:1a:ee:36:12:96:47:
b0:9f:0a:93:4a:2b:3e:6e:0e:ca:d5:60:09:1b:49:93:01:1a:
8b:95:ed:87:b9:d1:29:1f:d2:94:a6:59:4d:03:92:e5:1a:0e:
0f:a7:83:f3:4f:3d:50:4d:ba:1c:9e:d5:93:0c:33:d3:9c:1f:
57:04:74:d1:ba:00:60:55:66:82:31:57:a5:20:cc:6f:30:02:
65:25:0e:0c:65:d7:48:6f:37:a2:1e:fe:15:02:cd:cc:5f:08:
7d:a3:63:36
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 29 22:19:22 2025 by rpki-client