Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/11/9ff86c-1f7b-4bc7-976a-dfb79bba1b68/1/uv5tfV8eRHjRoCUXHaawObJjAR8.mft
File: uv5tfV8eRHjRoCUXHaawObJjAR8.mft (raw, json)
Hash identifier: rDTqwWgB4W8YUJQoCHLhY+vLtuKeyFDNox0L8ooIsqI=
Subject key identifier: 9A:C6:CE:20:5A:11:24:F0:61:08:92:B6:9E:1A:CE:03:4C:CF:B7:6A
Authority key identifier: BA:FE:6D:7D:5F:1E:44:78:D1:A0:25:17:1D:A6:B0:39:B2:63:01:1F
Certificate issuer: /CN=bafe6d7d5f1e4478d1a025171da6b039b263011f
Certificate serial: 019656EF5C2BEA7A3F4CF2A62D2BC4ED51D4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/uv5tfV8eRHjRoCUXHaawObJjAR8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/11/9ff86c-1f7b-4bc7-976a-dfb79bba1b68/1/uv5tfV8eRHjRoCUXHaawObJjAR8.mft
Manifest number: 08A2
Signing time: Mon 21 Apr 2025 06:00:49 +0000
Manifest this update: Mon 21 Apr 2025 06:00:49 +0000
Manifest next update: Tue 22 Apr 2025 06:00:49 +0000
Files and hashes: 1: uv5tfV8eRHjRoCUXHaawObJjAR8.crl (hash: x6R5msJX+R+WES9qcpsm8cLSuoxKSH1SPiQjhMP7gG8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/11/9ff86c-1f7b-4bc7-976a-dfb79bba1b68/1/uv5tfV8eRHjRoCUXHaawObJjAR8.crl
rsync://rpki.ripe.net/repository/DEFAULT/11/9ff86c-1f7b-4bc7-976a-dfb79bba1b68/1/uv5tfV8eRHjRoCUXHaawObJjAR8.mft
rsync://rpki.ripe.net/repository/DEFAULT/uv5tfV8eRHjRoCUXHaawObJjAR8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 22 Apr 2025 01:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:56:ef:5c:2b:ea:7a:3f:4c:f2:a6:2d:2b:c4:ed:51:d4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=bafe6d7d5f1e4478d1a025171da6b039b263011f
Validity
Not Before: Apr 21 06:00:49 2025 GMT
Not After : Apr 22 06:00:49 2025 GMT
Subject: CN=9ac6ce205a1124f0610892b69e1ace034ccfb76a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:c9:03:1d:92:45:49:b8:14:4e:d1:6c:ef:08:
60:75:1d:9d:d2:cc:cc:3a:98:62:2d:08:82:3b:0c:
cc:38:04:ea:a3:c9:1a:55:db:1c:57:ec:c5:0a:74:
32:9e:50:43:9b:1b:57:7b:78:cc:2d:8f:05:b0:4f:
6b:29:95:df:04:d0:cc:6c:4a:a4:24:a3:5f:29:38:
cf:c6:2e:b2:2d:7f:53:4b:70:6d:c4:94:5f:98:d7:
46:dd:33:e2:95:a2:bf:01:6d:4a:28:b0:01:02:f1:
6c:c6:5e:54:af:d3:7c:41:fe:86:3d:de:0f:1c:c7:
d5:2c:49:da:a2:f2:49:09:44:18:8f:16:da:2b:de:
e3:9d:44:e3:bb:42:60:d0:96:8b:50:06:84:04:2c:
19:e2:e5:b3:a4:f7:3e:59:50:81:3b:31:3e:48:bf:
ed:63:63:db:ad:c5:a0:03:8e:52:e1:f7:2b:6c:a9:
7d:e2:fb:31:0d:02:87:39:df:62:1c:5f:03:97:53:
34:05:35:77:da:92:40:32:3f:38:b4:28:d3:97:99:
cd:ef:93:85:48:f1:7d:f7:2a:a2:db:96:c6:10:fb:
7e:25:70:4c:df:dc:36:56:7f:6e:fb:82:6d:1c:6a:
34:39:fd:e7:72:fc:d4:25:63:aa:67:cb:a3:3d:83:
35:0d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9A:C6:CE:20:5A:11:24:F0:61:08:92:B6:9E:1A:CE:03:4C:CF:B7:6A
X509v3 Authority Key Identifier:
keyid:BA:FE:6D:7D:5F:1E:44:78:D1:A0:25:17:1D:A6:B0:39:B2:63:01:1F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/uv5tfV8eRHjRoCUXHaawObJjAR8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/11/9ff86c-1f7b-4bc7-976a-dfb79bba1b68/1/uv5tfV8eRHjRoCUXHaawObJjAR8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/11/9ff86c-1f7b-4bc7-976a-dfb79bba1b68/1/uv5tfV8eRHjRoCUXHaawObJjAR8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
a0:c8:4d:1e:90:b9:b4:e6:55:c9:16:30:8f:92:0e:ca:ce:91:
9e:6f:3e:45:b2:79:9d:a7:d1:6e:7c:7c:48:4f:22:78:df:cd:
00:92:f3:d7:1c:33:1d:2a:ba:7e:29:27:f3:4f:ae:59:ba:14:
83:76:49:da:c3:50:7e:3f:3b:58:1d:46:a4:f6:a4:dd:a8:6b:
9c:57:72:c4:e3:6e:93:9e:62:91:83:71:43:76:e7:80:02:dc:
f0:64:af:72:83:f2:f5:1b:b3:86:e8:77:0b:92:c4:be:c9:5c:
07:05:e6:0f:bb:44:22:fd:dc:65:ab:75:1d:96:fe:8c:5b:a2:
fd:d2:7e:c4:5d:6b:70:aa:8b:37:ff:a2:43:f1:47:e8:3f:7c:
55:af:50:b1:13:17:0d:7f:2e:10:10:73:ea:75:84:20:96:ab:
53:d6:fd:60:a9:5b:7a:37:a8:9e:71:a4:86:c0:22:51:2f:58:
af:6b:d6:18:17:5e:6e:ba:af:2f:b0:32:64:cb:3f:ad:cc:15:
af:cd:fe:1f:1b:62:3e:e8:5b:06:32:ca:82:44:34:02:74:f1:
d5:a5:43:21:dd:a4:32:ba:72:d7:28:72:0a:ca:fb:37:fd:a5:
a0:4e:5a:4c:a2:5e:e4:76:2f:ce:37:b6:89:49:29:d7:98:d6:
af:37:91:49
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 21 10:37:58 2025 by rpki-client