Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/dc/24a0bd-0838-4c95-9ccd-30f608ade48d/1/ufdKR6bRoL9MIW5fq02R-xKd89Y.mft
File: ufdKR6bRoL9MIW5fq02R-xKd89Y.mft (raw, json)
Hash identifier: sEObxX1Hfyar+syuZjcxp7SN7n5qsXkTKmHaLqsNzbw=
Subject key identifier: FE:32:E9:49:BC:AF:19:60:80:25:C1:B0:39:C9:DA:22:C9:E0:AC:1E
Authority key identifier: B9:F7:4A:47:A6:D1:A0:BF:4C:21:6E:5F:AB:4D:91:FB:12:9D:F3:D6
Certificate issuer: /CN=b9f74a47a6d1a0bf4c216e5fab4d91fb129df3d6
Certificate serial: 01968D3992BC8DAF478E0E6EC8ED3EAA286D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ufdKR6bRoL9MIW5fq02R-xKd89Y.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/dc/24a0bd-0838-4c95-9ccd-30f608ade48d/1/ufdKR6bRoL9MIW5fq02R-xKd89Y.mft
Manifest number: 0A51
Signing time: Thu 01 May 2025 19:01:22 +0000
Manifest this update: Thu 01 May 2025 19:01:22 +0000
Manifest next update: Fri 02 May 2025 19:01:22 +0000
Files and hashes: 1: 5AZ3tR0kmtggSX8GQL0nk_9vkNM.roa (hash: o7jn9b/bWLBA/ntIWwkYzFbMhpkdc8Mhco9rAn9gsO0=)
2: ufdKR6bRoL9MIW5fq02R-xKd89Y.crl (hash: OIyaC36t9z37/Uo24NmiFcA2vsUOtfGSGCrGHzmMnEc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/dc/24a0bd-0838-4c95-9ccd-30f608ade48d/1/ufdKR6bRoL9MIW5fq02R-xKd89Y.crl
rsync://rpki.ripe.net/repository/DEFAULT/dc/24a0bd-0838-4c95-9ccd-30f608ade48d/1/ufdKR6bRoL9MIW5fq02R-xKd89Y.mft
rsync://rpki.ripe.net/repository/DEFAULT/ufdKR6bRoL9MIW5fq02R-xKd89Y.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 02 May 2025 16:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:8d:39:92:bc:8d:af:47:8e:0e:6e:c8:ed:3e:aa:28:6d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b9f74a47a6d1a0bf4c216e5fab4d91fb129df3d6
Validity
Not Before: May 1 19:01:22 2025 GMT
Not After : May 2 19:01:22 2025 GMT
Subject: CN=fe32e949bcaf19608025c1b039c9da22c9e0ac1e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:8f:66:3b:9d:26:59:0c:e7:62:0c:5b:69:5c:
b1:b5:7f:8e:65:1c:f3:94:9f:1a:a0:93:38:37:01:
a0:58:f5:56:60:1b:14:02:7e:60:5e:99:99:b0:de:
f7:56:61:d1:96:9c:d8:eb:eb:b6:4f:57:cf:99:54:
aa:28:74:f8:96:16:1e:3e:5b:ad:15:73:a1:4e:95:
45:0d:fc:b0:e7:d8:b7:5d:4c:60:d9:be:2f:d2:09:
3c:fa:0d:0f:07:27:79:b9:aa:43:b3:28:7c:e6:53:
bd:e2:3f:19:c0:92:cb:4b:48:b1:eb:8c:3b:12:37:
89:a8:75:66:19:a4:68:f9:6b:4e:fe:0a:f0:2c:57:
de:18:ba:b0:15:f7:8b:5c:90:01:f6:9b:5c:6f:1f:
48:21:d2:97:65:c1:3d:23:b9:f6:f5:f2:da:7c:06:
48:86:70:8d:12:99:cc:47:b8:be:79:10:d9:9d:ea:
29:6e:ba:e2:0a:91:a1:bb:4c:fb:af:4c:f5:c4:19:
f0:12:37:cf:e0:13:2f:20:e9:92:66:14:de:9b:b4:
97:38:16:dd:f8:d9:f9:bf:8d:77:7f:ae:d4:b3:6e:
81:48:6f:54:a6:96:f7:63:1f:34:61:ba:23:b4:91:
7e:07:d4:2a:68:0c:48:81:42:58:a9:e3:9d:9c:90:
cd:ed
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FE:32:E9:49:BC:AF:19:60:80:25:C1:B0:39:C9:DA:22:C9:E0:AC:1E
X509v3 Authority Key Identifier:
keyid:B9:F7:4A:47:A6:D1:A0:BF:4C:21:6E:5F:AB:4D:91:FB:12:9D:F3:D6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ufdKR6bRoL9MIW5fq02R-xKd89Y.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/dc/24a0bd-0838-4c95-9ccd-30f608ade48d/1/ufdKR6bRoL9MIW5fq02R-xKd89Y.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/dc/24a0bd-0838-4c95-9ccd-30f608ade48d/1/ufdKR6bRoL9MIW5fq02R-xKd89Y.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
19:92:b4:3b:f9:b7:da:6b:68:dc:62:2c:c8:86:63:1c:72:09:
6c:67:a2:48:44:2c:09:ad:aa:bc:67:b6:2d:bd:14:b2:5f:4a:
ff:91:83:b2:1d:30:78:64:aa:c8:b1:9b:6a:7f:e9:44:64:8b:
b6:7e:14:c1:06:9c:a7:05:f4:e7:c3:2c:ef:6c:b0:b4:90:ed:
71:f1:75:c0:4c:fc:ea:bc:50:6b:64:67:ec:af:61:f9:dd:eb:
d1:57:e2:cc:91:80:69:3b:16:d6:6c:8b:2b:38:d8:e3:c7:11:
4f:4b:bf:63:a5:df:db:59:f8:b1:e2:6c:8b:aa:01:7b:17:c4:
29:05:7b:df:6e:30:bd:52:de:2d:ae:be:1c:cf:0e:8f:39:c8:
66:92:bf:ef:e6:33:9d:ef:b3:ee:be:70:48:56:7c:14:c3:5b:
71:4b:12:77:62:7a:98:6a:9d:51:bd:26:5f:81:70:4d:71:65:
e6:08:03:4b:e6:13:f6:9d:50:7d:6a:2c:4e:34:a8:63:5c:57:
54:03:72:5f:b4:84:6b:1b:67:98:dd:aa:bd:ed:e2:f7:ac:39:
95:a7:e7:3d:f3:55:b8:49:a8:bc:85:e3:ab:95:e5:3e:9f:54:
ec:01:12:4f:9d:30:11:7f:d3:db:9c:c7:a9:e9:aa:32:ad:4b:
de:56:bd:61
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 2 00:50:28 2025 by rpki-client