Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/52/f8b381-692a-4830-8d7d-21bf708f3cad/1/Uylu4zFT725pONV6KhMsHlJtxDA.mft
File: Uylu4zFT725pONV6KhMsHlJtxDA.mft (raw, json)
Hash identifier: hdNsvgkdknJAalVRWbghf2xHp9XAtQ38yERQnUDmyMY=
Subject key identifier: DC:A0:0D:E9:B0:66:98:AA:A5:DA:07:9C:64:DC:FA:16:32:30:5F:C5
Authority key identifier: 53:29:6E:E3:31:53:EF:6E:69:38:D5:7A:2A:13:2C:1E:52:6D:C4:30
Certificate issuer: /CN=53296ee33153ef6e6938d57a2a132c1e526dc430
Certificate serial: 0196549296E7061423754D047906E98D28C0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Uylu4zFT725pONV6KhMsHlJtxDA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/52/f8b381-692a-4830-8d7d-21bf708f3cad/1/Uylu4zFT725pONV6KhMsHlJtxDA.mft
Manifest number: 13D3
Signing time: Sun 20 Apr 2025 19:00:14 +0000
Manifest this update: Sun 20 Apr 2025 19:00:14 +0000
Manifest next update: Mon 21 Apr 2025 19:00:14 +0000
Files and hashes: 1: Uylu4zFT725pONV6KhMsHlJtxDA.crl (hash: RONeGx8Oe9RXb82gHdbv1kCJsaXlzuYVX9R2uYo/RpU=)
2: kWgx2Wjql2LYt0QNUa7UD3E-ZNs.roa (hash: NPB7ZX6Td6/rM0WpZJID5mJD7qpTT41mPi5DDVNwg5U=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/52/f8b381-692a-4830-8d7d-21bf708f3cad/1/Uylu4zFT725pONV6KhMsHlJtxDA.crl
rsync://rpki.ripe.net/repository/DEFAULT/52/f8b381-692a-4830-8d7d-21bf708f3cad/1/Uylu4zFT725pONV6KhMsHlJtxDA.mft
rsync://rpki.ripe.net/repository/DEFAULT/Uylu4zFT725pONV6KhMsHlJtxDA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 21 Apr 2025 16:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:54:92:96:e7:06:14:23:75:4d:04:79:06:e9:8d:28:c0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=53296ee33153ef6e6938d57a2a132c1e526dc430
Validity
Not Before: Apr 20 19:00:14 2025 GMT
Not After : Apr 21 19:00:14 2025 GMT
Subject: CN=dca00de9b06698aaa5da079c64dcfa1632305fc5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:8f:fb:97:f7:bc:f8:18:11:d6:bc:b3:65:4e:
96:da:7d:4c:8a:49:30:95:7f:86:e2:b1:8e:3f:f2:
6f:49:c3:90:61:08:bc:3a:33:35:cf:83:e6:00:56:
12:b9:63:9c:20:fb:46:1d:e4:f1:9c:0d:c6:dd:2c:
08:11:15:be:52:2c:e1:0d:ef:05:ab:4f:47:40:8d:
37:a0:5f:97:b3:53:43:33:eb:84:f7:b5:99:ea:8d:
44:e1:08:9b:4c:94:42:3e:2d:4e:77:64:92:e7:ce:
6b:b3:6c:3d:92:7f:99:e1:a4:1b:7f:88:50:31:a1:
45:b9:e9:fa:cd:99:cd:a2:24:71:68:7b:dd:41:4b:
bd:7f:57:61:cb:65:90:2d:d6:c8:08:50:b5:dd:b3:
91:8a:b9:7d:83:41:32:56:c1:e6:b4:ad:58:78:9e:
7c:af:70:78:63:0a:6e:1a:0e:61:dd:e9:e7:96:c0:
36:c5:14:4e:db:72:ab:ca:15:fa:a6:8c:f4:45:88:
96:13:ba:28:f3:15:5b:7b:af:3d:ec:30:10:a1:a0:
71:0d:ee:06:a9:e5:c7:b6:45:2e:e4:3a:c8:30:fe:
a7:b4:1d:c7:be:92:22:f1:8a:1d:0b:f2:c2:83:58:
4f:eb:98:b2:7f:e2:fe:27:43:a4:a4:34:be:72:da:
29:3f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DC:A0:0D:E9:B0:66:98:AA:A5:DA:07:9C:64:DC:FA:16:32:30:5F:C5
X509v3 Authority Key Identifier:
keyid:53:29:6E:E3:31:53:EF:6E:69:38:D5:7A:2A:13:2C:1E:52:6D:C4:30
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Uylu4zFT725pONV6KhMsHlJtxDA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/52/f8b381-692a-4830-8d7d-21bf708f3cad/1/Uylu4zFT725pONV6KhMsHlJtxDA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/52/f8b381-692a-4830-8d7d-21bf708f3cad/1/Uylu4zFT725pONV6KhMsHlJtxDA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
7d:10:7c:8e:f9:0c:28:c4:72:91:63:93:da:89:43:d3:f3:f6:
10:a2:f6:71:c8:df:27:0c:68:f8:fb:c1:4b:6d:f9:e8:22:76:
5b:5e:45:b2:3a:40:f5:09:e4:53:af:71:22:3c:b9:ea:f6:db:
7f:53:2b:dc:55:43:cf:d6:77:dc:89:32:89:2c:4e:ae:8c:0e:
dd:82:1b:91:e2:04:c0:5b:a8:f5:59:18:f6:3e:67:3b:b8:39:
bb:bb:d3:3e:60:22:41:bb:4b:26:96:21:8a:7a:e0:a1:d3:d6:
07:d4:e7:df:0d:76:70:c9:c5:f1:88:57:c8:4a:0d:e3:4b:65:
98:76:9f:91:8f:ea:fb:92:e3:96:8a:32:2d:ad:09:cf:54:4f:
a5:c5:aa:9f:4a:55:cd:07:19:4d:3b:71:a6:8c:5e:58:71:ca:
c4:67:94:70:64:f4:c4:7f:13:5e:15:1e:cd:f3:dd:19:17:01:
20:33:c3:17:e9:39:76:30:9d:98:0f:53:de:7c:98:46:50:ae:
ec:6e:49:8c:47:01:68:6c:fe:21:cd:4b:c5:78:77:a9:be:90:
3d:1f:85:5d:07:ac:86:f1:6f:dc:cc:93:7e:17:61:25:89:24:
bf:94:51:e6:4c:5b:22:e4:91:f0:55:b1:87:df:3b:fc:96:29:
da:01:1d:96
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZZUkpbnBhQjdU0EeQbpjSjAMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDUzMjk2ZWUzMzE1M2VmNmU2OTM4ZDU3YTJhMTMyYzFlNTI2
ZGM0MzAwHhcNMjUwNDIwMTkwMDE0WhcNMjUwNDIxMTkwMDE0WjAzMTEwLwYDVQQD
EyhkY2EwMGRlOWIwNjY5OGFhYTVkYTA3OWM2NGRjZmExNjMyMzA1ZmM1MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqo/7l/e8+BgR1ryzZU6W2n1Mikkw
lX+G4rGOP/JvScOQYQi8OjM1z4PmAFYSuWOcIPtGHeTxnA3G3SwIERW+UizhDe8F
q09HQI03oF+Xs1NDM+uE97WZ6o1E4QibTJRCPi1Od2SS585rs2w9kn+Z4aQbf4hQ
MaFFuen6zZnNoiRxaHvdQUu9f1dhy2WQLdbICFC13bORirl9g0EyVsHmtK1YeJ58
r3B4YwpuGg5h3ennlsA2xRRO23KryhX6poz0RYiWE7oo8xVbe6897DAQoaBxDe4G
qeXHtkUu5DrIMP6ntB3HvpIi8YodC/LCg1hP65iyf+L+J0OkpDS+ctopPwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFNygDemwZpiqpdoHnGTc+hYyMF/FMB8GA1UdIwQY
MBaAFFMpbuMxU+9uaTjVeioTLB5SbcQwMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvVXlsdTR6RlQ3MjVwT05WNktoTXNIbEp0eERBLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81Mi9mOGIzODEtNjkyYS00ODMwLThkN2Qt
MjFiZjcwOGYzY2FkLzEvVXlsdTR6RlQ3MjVwT05WNktoTXNIbEp0eERBLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC81Mi9mOGIzODEtNjkyYS00ODMwLThkN2QtMjFiZjcwOGYzY2Fk
LzEvVXlsdTR6RlQ3MjVwT05WNktoTXNIbEp0eERBLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAfRB8jvkM
KMRykWOT2olD0/P2EKL2ccjfJwxo+PvBS2356CJ2W15FsjpA9QnkU69xIjy56vbb
f1Mr3FVDz9Z33IkyiSxOrowO3YIbkeIEwFuo9VkY9j5nO7g5u7vTPmAiQbtLJpYh
inrgodPWB9Tn3w12cMnF8YhXyEoN40tlmHafkY/q+5LjlooyLa0Jz1RPpcWqn0pV
zQcZTTtxpoxeWHHKxGeUcGT0xH8TXhUezfPdGRcBIDPDF+k5djCdmA9T3nyYRlCu
7G5JjEcBaGz+Ic1LxXh3qb6QPR+FXQeshvFv3MyTfhdhJYkkv5RR5kxbIuSR8FWx
h987/JYp2gEdlg==
-----END CERTIFICATE-----
Generated at Sun Apr 20 21:41:32 2025 by rpki-client