Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fe/472a4d-fcae-4454-9967-02ded9b2e0c9/1/umhZWZeQDe0wDpklcJ2mJ-k_Njo.mft
File: umhZWZeQDe0wDpklcJ2mJ-k_Njo.mft (raw, json)
Hash identifier: TR8pHgk8387Cbd6Q1i4qhNcq+U47oiAlbw62Dg0Av2k=
Subject key identifier: 07:C1:57:BA:61:2F:46:28:4A:9B:20:C3:B2:78:22:24:9E:44:10:A3
Authority key identifier: BA:68:59:59:97:90:0D:ED:30:0E:99:25:70:9D:A6:27:E9:3F:36:3A
Certificate issuer: /CN=ba68595997900ded300e9925709da627e93f363a
Certificate serial: 0196783199B94FD04C0951F303E92F1D7D70
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/umhZWZeQDe0wDpklcJ2mJ-k_Njo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fe/472a4d-fcae-4454-9967-02ded9b2e0c9/1/umhZWZeQDe0wDpklcJ2mJ-k_Njo.mft
Manifest number: 0DAD
Signing time: Sun 27 Apr 2025 17:00:38 +0000
Manifest this update: Sun 27 Apr 2025 17:00:38 +0000
Manifest next update: Mon 28 Apr 2025 17:00:38 +0000
Files and hashes: 1: Vevc9vrQGyVF5o4NzN0QFHnZAiA.roa (hash: AOWcNE88wNCBWfSzm2+MmaRV4c7usJ5kQGrhyE8Gj6M=)
2: umhZWZeQDe0wDpklcJ2mJ-k_Njo.crl (hash: /jtc0QQWlFv6HHT8JIl7mYhrC7KFxZk7AN2AWNvxTQQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/fe/472a4d-fcae-4454-9967-02ded9b2e0c9/1/umhZWZeQDe0wDpklcJ2mJ-k_Njo.crl
rsync://rpki.ripe.net/repository/DEFAULT/fe/472a4d-fcae-4454-9967-02ded9b2e0c9/1/umhZWZeQDe0wDpklcJ2mJ-k_Njo.mft
rsync://rpki.ripe.net/repository/DEFAULT/umhZWZeQDe0wDpklcJ2mJ-k_Njo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 28 Apr 2025 14:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:78:31:99:b9:4f:d0:4c:09:51:f3:03:e9:2f:1d:7d:70
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ba68595997900ded300e9925709da627e93f363a
Validity
Not Before: Apr 27 17:00:38 2025 GMT
Not After : Apr 28 17:00:38 2025 GMT
Subject: CN=07c157ba612f46284a9b20c3b27822249e4410a3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:21:e9:e0:91:ab:25:62:89:65:35:2d:b0:8e:
52:ab:81:8b:be:2a:a0:28:c3:51:ac:24:7b:b9:b6:
1d:24:79:a1:e3:02:66:22:c6:7c:91:15:f0:02:15:
63:12:5c:83:b8:2c:f7:f9:4a:41:3c:10:1c:67:26:
32:ce:e5:0d:53:94:1b:b7:c7:d0:08:6e:b5:6b:36:
20:dd:e0:35:97:f4:8a:93:c1:c3:ae:59:b3:d6:3d:
fd:e6:1c:c6:66:3e:6d:85:a0:d6:d0:22:12:90:b9:
7e:4a:09:18:09:8d:9e:35:7d:8b:5f:ca:7c:89:0a:
d2:eb:c6:67:15:44:b4:3c:08:ab:6d:ca:14:85:1e:
46:61:19:15:bd:f3:b3:96:49:ab:e6:17:63:e2:78:
e6:88:95:d1:e1:49:8b:c6:a5:56:80:09:e8:d8:4d:
9e:0d:43:8f:aa:57:6a:f7:27:b8:ff:3c:60:93:eb:
57:da:0f:ba:d8:83:a7:f6:48:57:41:31:bf:0f:da:
35:3a:d2:d3:20:b2:fd:09:c3:b2:06:ec:8f:74:43:
4c:51:b5:0d:9d:db:f4:b6:bc:0b:52:5c:83:af:fc:
b2:ed:5f:93:59:da:c3:d1:e2:7c:67:d9:a1:62:d8:
01:3f:d5:29:ff:7e:4b:4d:e4:2f:58:86:69:a0:7d:
bf:f5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
07:C1:57:BA:61:2F:46:28:4A:9B:20:C3:B2:78:22:24:9E:44:10:A3
X509v3 Authority Key Identifier:
keyid:BA:68:59:59:97:90:0D:ED:30:0E:99:25:70:9D:A6:27:E9:3F:36:3A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/umhZWZeQDe0wDpklcJ2mJ-k_Njo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fe/472a4d-fcae-4454-9967-02ded9b2e0c9/1/umhZWZeQDe0wDpklcJ2mJ-k_Njo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fe/472a4d-fcae-4454-9967-02ded9b2e0c9/1/umhZWZeQDe0wDpklcJ2mJ-k_Njo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
2e:c4:d9:c6:1d:5b:f3:8d:94:e8:88:3e:95:c3:46:a3:07:1d:
b0:f9:41:bf:1c:4f:5a:f8:2f:d0:c5:9f:27:da:47:c6:46:90:
5f:6f:ec:bf:cc:9a:81:f0:2a:d4:61:73:55:65:af:52:1c:5e:
78:3a:6c:e4:0d:79:85:89:2d:d7:9e:bf:1c:97:91:77:da:60:
91:f0:54:f8:81:ef:37:59:e4:c0:cb:92:ed:03:bf:dd:e0:1d:
58:79:31:8b:6b:a0:62:a8:1a:74:f8:78:d5:5b:eb:d4:42:dd:
bc:9a:c5:ec:a7:96:d5:81:2e:f3:11:e5:17:37:b5:15:3e:4f:
4b:ad:bc:de:30:49:67:07:dc:f4:61:10:c8:a6:ce:e0:1b:79:
ee:bc:65:c5:3b:71:e1:db:fc:11:28:31:52:42:8f:72:db:25:
5c:8e:2f:42:1e:aa:e0:a0:e8:63:9a:ba:c8:60:8c:dd:29:a9:
0f:f9:6f:b0:d8:73:74:aa:a4:22:8e:d3:3c:9f:d7:9e:e4:14:
7c:7e:35:b2:03:a8:19:1f:06:1b:97:61:a6:68:52:0b:e3:01:
10:50:f2:43:36:c2:48:73:45:ef:7a:a4:ac:31:ec:a8:98:76:
fb:47:83:8d:4b:c7:df:c3:6e:e9:6c:26:eb:67:1c:48:22:83:
31:e0:cb:fa
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 27 23:58:08 2025 by rpki-client