Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/28/806917-af6b-4e1e-8773-9ad035474114/1/UnFDjiPOkl5mwlmYEiG1toOi8I8.mft
File: UnFDjiPOkl5mwlmYEiG1toOi8I8.mft (raw, json)
Hash identifier: yP1G+RWJXDfm9W52nHRZon3Lh89UktkgJo5V5hYECD4=
Subject key identifier: F4:75:42:8A:D6:1C:D7:C2:46:B9:2F:8E:AB:8B:28:17:D3:32:D3:B9
Authority key identifier: 52:71:43:8E:23:CE:92:5E:66:C2:59:98:12:21:B5:B6:83:A2:F0:8F
Certificate issuer: /CN=5271438e23ce925e66c259981221b5b683a2f08f
Certificate serial: 01965CF1802ACE9D511E85A5AFDE1940503C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UnFDjiPOkl5mwlmYEiG1toOi8I8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/28/806917-af6b-4e1e-8773-9ad035474114/1/UnFDjiPOkl5mwlmYEiG1toOi8I8.mft
Manifest number: 0A66
Signing time: Tue 22 Apr 2025 10:00:52 +0000
Manifest this update: Tue 22 Apr 2025 10:00:52 +0000
Manifest next update: Wed 23 Apr 2025 10:00:52 +0000
Files and hashes: 1: UnFDjiPOkl5mwlmYEiG1toOi8I8.crl (hash: HhaImlvNJ+Vl0veXYP974zTQrflptjbQAKZKGuOu20Q=)
2: b23Ppzc40t1gh2jcC0tEEtTjq-Y.roa (hash: PLO31FJDvhLM1rCGRuVKcX7pZ7U9Xsy2KrFDiy0XrKY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/28/806917-af6b-4e1e-8773-9ad035474114/1/UnFDjiPOkl5mwlmYEiG1toOi8I8.crl
rsync://rpki.ripe.net/repository/DEFAULT/28/806917-af6b-4e1e-8773-9ad035474114/1/UnFDjiPOkl5mwlmYEiG1toOi8I8.mft
rsync://rpki.ripe.net/repository/DEFAULT/UnFDjiPOkl5mwlmYEiG1toOi8I8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 23 Apr 2025 10:00:52 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:5c:f1:80:2a:ce:9d:51:1e:85:a5:af:de:19:40:50:3c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5271438e23ce925e66c259981221b5b683a2f08f
Validity
Not Before: Apr 22 10:00:52 2025 GMT
Not After : Apr 23 10:00:52 2025 GMT
Subject: CN=f475428ad61cd7c246b92f8eab8b2817d332d3b9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:de:56:c5:c0:25:d8:d8:23:a5:ec:8e:31:ec:31:
e4:a0:b6:a7:f1:26:54:b7:d2:1d:95:f3:33:1e:ed:
d4:b9:5d:c4:63:13:31:bc:d6:e2:3d:29:e8:29:3f:
19:6d:6c:78:a5:8b:13:5a:07:5e:b4:4d:a7:05:7b:
bc:1b:5e:dd:74:55:f9:eb:ca:a3:00:d1:41:80:38:
32:95:ef:75:5e:80:f6:fe:93:5f:c1:c1:b5:d2:da:
2d:60:36:9e:33:1d:9b:31:6b:ce:4c:32:55:20:1f:
c3:de:19:16:da:13:d8:62:3b:83:66:0c:17:12:ca:
f3:d7:b3:ba:46:00:b0:d4:1e:be:35:f6:ee:42:7b:
99:19:7d:a2:98:1d:a4:11:f6:21:fb:bf:0a:18:e5:
70:0a:20:dc:29:02:a7:69:41:0c:e3:46:14:f1:42:
a9:b3:02:79:1b:c5:41:3c:6b:89:56:14:e5:82:c9:
c0:b2:07:07:6d:25:59:c5:a2:c0:ad:26:92:1b:f7:
bc:72:4f:05:78:d2:15:ec:60:6d:50:d3:ce:65:31:
a9:d3:f4:87:7c:9a:3e:a1:eb:06:3e:37:a3:57:8e:
a8:e4:f1:b5:82:b4:1a:bd:e9:2c:1b:39:b0:97:77:
7f:bd:ea:d9:8c:63:b0:5d:ec:b2:f3:d1:b2:d6:23:
f3:c9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F4:75:42:8A:D6:1C:D7:C2:46:B9:2F:8E:AB:8B:28:17:D3:32:D3:B9
X509v3 Authority Key Identifier:
keyid:52:71:43:8E:23:CE:92:5E:66:C2:59:98:12:21:B5:B6:83:A2:F0:8F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UnFDjiPOkl5mwlmYEiG1toOi8I8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/28/806917-af6b-4e1e-8773-9ad035474114/1/UnFDjiPOkl5mwlmYEiG1toOi8I8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/28/806917-af6b-4e1e-8773-9ad035474114/1/UnFDjiPOkl5mwlmYEiG1toOi8I8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
71:cd:3d:f1:8a:93:26:bd:7c:8e:b2:62:19:5e:7f:b4:19:62:
98:95:00:84:25:5c:3e:81:4a:66:81:07:a1:89:02:0c:c9:53:
cb:70:8d:51:7a:0b:ad:aa:c5:39:84:84:11:f3:ef:f7:1c:5c:
6f:fd:1d:28:49:26:6a:f8:54:c6:af:78:4d:b6:a0:99:bb:f1:
cc:bf:7a:3e:e4:23:41:c3:72:6c:5d:90:54:3d:53:aa:13:7d:
ed:0c:e4:07:fc:70:bf:e5:33:77:48:09:e2:71:3c:a5:9d:1b:
28:1e:6a:90:b8:7a:09:84:fc:4a:df:ce:a8:1b:bf:c1:4d:3f:
c7:eb:be:61:99:70:c6:79:a8:9c:db:84:fc:ed:6d:17:26:c8:
74:a6:b5:a3:d3:50:a1:03:fc:07:5f:6f:73:ab:4b:db:0a:6b:
43:a2:12:59:d5:b7:32:b5:dd:b1:96:d5:52:a4:e8:6b:6b:2d:
39:f4:63:74:3e:2a:80:e7:44:c7:0c:21:01:78:dd:7f:86:0c:
7b:db:84:98:95:b2:5c:90:f4:8b:6c:76:64:ec:1a:07:ef:23:
df:94:8e:08:d7:24:26:fa:31:7f:95:a7:85:54:ff:ab:b0:7f:
49:e6:7b:24:12:31:21:0b:9c:fe:6d:68:6b:0c:ae:46:bb:3b:
30:34:9e:a1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 22 15:57:09 2025 by rpki-client