Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fd/8a2085-a6c3-4fde-8dba-6639bca7a1b0/1/UMrU5Xdbox7K4ibRBG89waEEgU0.mft
File: UMrU5Xdbox7K4ibRBG89waEEgU0.mft (raw, json)
Hash identifier: HHx2alOHuTjgVD+H0S7rvT4A9fKfpQbzjFuC5HcLfjg=
Subject key identifier: CE:33:91:52:10:4B:39:88:E2:52:92:26:A1:14:A8:22:DC:6D:64:46
Authority key identifier: 50:CA:D4:E5:77:5B:A3:1E:CA:E2:26:D1:04:6F:3D:C1:A1:04:81:4D
Certificate issuer: /CN=50cad4e5775ba31ecae226d1046f3dc1a104814d
Certificate serial: 01968323232347ED35D88ED6B01670B9E2B7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UMrU5Xdbox7K4ibRBG89waEEgU0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fd/8a2085-a6c3-4fde-8dba-6639bca7a1b0/1/UMrU5Xdbox7K4ibRBG89waEEgU0.mft
Manifest number: 04AB
Signing time: Tue 29 Apr 2025 20:00:40 +0000
Manifest this update: Tue 29 Apr 2025 20:00:40 +0000
Manifest next update: Wed 30 Apr 2025 20:00:40 +0000
Files and hashes: 1: UMrU5Xdbox7K4ibRBG89waEEgU0.crl (hash: H5CSkSE6Weeu8YeT1s7TWNs2B3AUJf6vGt6Dkon827k=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/fd/8a2085-a6c3-4fde-8dba-6639bca7a1b0/1/UMrU5Xdbox7K4ibRBG89waEEgU0.crl
rsync://rpki.ripe.net/repository/DEFAULT/fd/8a2085-a6c3-4fde-8dba-6639bca7a1b0/1/UMrU5Xdbox7K4ibRBG89waEEgU0.mft
rsync://rpki.ripe.net/repository/DEFAULT/UMrU5Xdbox7K4ibRBG89waEEgU0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 30 Apr 2025 20:00:40 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:83:23:23:23:47:ed:35:d8:8e:d6:b0:16:70:b9:e2:b7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=50cad4e5775ba31ecae226d1046f3dc1a104814d
Validity
Not Before: Apr 29 20:00:40 2025 GMT
Not After : Apr 30 20:00:40 2025 GMT
Subject: CN=ce339152104b3988e2529226a114a822dc6d6446
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d7:8e:3c:b6:46:52:dd:b9:9d:9c:be:4a:15:0a:
8d:68:14:42:ab:f6:1a:5e:37:be:03:e3:33:a7:c6:
d9:0c:3d:01:eb:a6:e7:99:75:a6:81:18:a9:1b:17:
66:96:4d:9c:50:55:5d:b1:c9:5d:92:03:e7:5f:d7:
3b:44:de:65:08:c5:ed:02:24:eb:bd:4e:93:7e:d6:
c8:c8:32:0d:1f:e6:77:65:f5:16:ec:16:49:e1:4c:
8b:50:da:ca:06:d8:ca:d7:69:e6:be:bb:cc:a1:53:
2a:7d:fc:d1:30:a2:09:66:65:b4:41:8d:69:be:9a:
83:dd:8e:98:f8:a4:44:c1:83:8a:c7:55:f4:b6:9f:
78:bb:ab:e7:56:f5:7a:fb:6b:7a:8c:18:0a:68:9b:
23:9f:3a:2c:ca:e6:69:82:ef:db:55:41:b2:34:66:
b4:92:a4:7a:e6:d3:3d:7a:9a:b1:a6:0b:cb:8b:ff:
f3:26:74:fb:7b:15:5b:23:63:5e:00:fd:b9:c2:42:
d2:2c:7f:ab:36:e6:23:2d:58:2c:07:c1:2c:4f:ed:
2c:c4:ca:68:f2:af:18:c3:60:c8:ab:07:68:86:ce:
16:0b:96:b2:d5:0b:a1:d9:f4:2b:b4:87:e4:fa:ea:
3e:a8:99:30:22:e4:ce:d2:04:f0:9a:4d:55:fa:2e:
38:7f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CE:33:91:52:10:4B:39:88:E2:52:92:26:A1:14:A8:22:DC:6D:64:46
X509v3 Authority Key Identifier:
keyid:50:CA:D4:E5:77:5B:A3:1E:CA:E2:26:D1:04:6F:3D:C1:A1:04:81:4D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UMrU5Xdbox7K4ibRBG89waEEgU0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fd/8a2085-a6c3-4fde-8dba-6639bca7a1b0/1/UMrU5Xdbox7K4ibRBG89waEEgU0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fd/8a2085-a6c3-4fde-8dba-6639bca7a1b0/1/UMrU5Xdbox7K4ibRBG89waEEgU0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
ab:43:5d:23:e9:72:cf:71:9c:06:80:6d:7f:d6:95:09:61:c5:
62:4b:d5:c0:9c:32:10:4f:d9:f1:61:10:44:e1:85:e3:6e:47:
e5:00:29:ff:02:b2:15:82:98:15:ce:b3:20:0b:45:ca:e1:a9:
7a:35:f3:4d:3a:c0:df:29:a8:90:54:95:75:68:d2:94:c8:71:
c2:48:32:89:fa:63:26:32:3f:4f:aa:b9:a2:df:37:29:e1:dd:
34:6f:2e:bd:f5:ab:0f:2b:fc:52:8f:16:c1:f7:ac:d7:a7:41:
1c:2a:87:eb:65:b3:9c:98:1b:10:a3:bc:91:14:c1:cd:28:fb:
fe:22:4c:32:2e:c7:c3:4b:0e:7b:02:65:6d:2f:42:51:11:df:
76:66:ef:6b:62:5a:1d:1f:be:20:e9:5b:38:b7:99:49:ba:68:
21:6b:71:1d:6a:bd:ea:14:3f:b6:13:5a:95:27:48:ea:8d:15:
bb:1f:5c:68:ac:1f:6b:2a:85:48:17:d4:aa:2e:1c:86:6f:6a:
5f:19:50:e2:2a:cd:68:c3:f3:d4:08:95:44:b3:c7:a1:82:fa:
5e:c3:b3:94:db:de:8f:b5:c4:26:00:b4:d5:03:25:e4:9b:c9:
97:87:de:1e:04:44:7b:63:67:b8:c1:8c:e9:23:d9:b0:c4:57:
69:bf:c4:7f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 30 03:32:27 2025 by rpki-client