Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/80/0a92a1-e594-41ee-855c-2ba6a022d4c9/1/UgO7TxlYEfjXcjygGgsv-963Whs.mft
File: UgO7TxlYEfjXcjygGgsv-963Whs.mft (raw, json)
Hash identifier: LdLniXOgx8T4OgRr+ENGc66gzCfik0sc4WL5AYIxPQM=
Subject key identifier: 10:17:F7:38:0F:63:3C:72:F8:9D:BD:F5:0A:FE:27:1A:5F:02:2D:CF
Authority key identifier: 52:03:BB:4F:19:58:11:F8:D7:72:3C:A0:1A:0B:2F:FB:DE:B7:5A:1B
Certificate issuer: /CN=5203bb4f195811f8d7723ca01a0b2ffbdeb75a1b
Certificate serial: 01965D5EC0322A3EDCBD3F68F928C75B3592
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UgO7TxlYEfjXcjygGgsv-963Whs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/80/0a92a1-e594-41ee-855c-2ba6a022d4c9/1/UgO7TxlYEfjXcjygGgsv-963Whs.mft
Manifest number: 0137
Signing time: Tue 22 Apr 2025 12:00:12 +0000
Manifest this update: Tue 22 Apr 2025 12:00:12 +0000
Manifest next update: Wed 23 Apr 2025 12:00:12 +0000
Files and hashes: 1: UgO7TxlYEfjXcjygGgsv-963Whs.crl (hash: jlmYMUq5hEyWQq+eZKX6ZJcsBLFLjBT3mmX89NPgH/0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/80/0a92a1-e594-41ee-855c-2ba6a022d4c9/1/UgO7TxlYEfjXcjygGgsv-963Whs.crl
rsync://rpki.ripe.net/repository/DEFAULT/80/0a92a1-e594-41ee-855c-2ba6a022d4c9/1/UgO7TxlYEfjXcjygGgsv-963Whs.mft
rsync://rpki.ripe.net/repository/DEFAULT/UgO7TxlYEfjXcjygGgsv-963Whs.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 23 Apr 2025 12:00:12 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:5d:5e:c0:32:2a:3e:dc:bd:3f:68:f9:28:c7:5b:35:92
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5203bb4f195811f8d7723ca01a0b2ffbdeb75a1b
Validity
Not Before: Apr 22 12:00:12 2025 GMT
Not After : Apr 23 12:00:12 2025 GMT
Subject: CN=1017f7380f633c72f89dbdf50afe271a5f022dcf
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:0d:79:81:01:68:0d:a5:8f:a1:60:e2:8c:5d:
c2:23:00:87:a5:32:26:4e:4d:18:02:86:56:81:bd:
75:3e:1b:30:52:3b:de:2e:b0:11:ea:4c:0b:3a:19:
b5:72:26:05:86:64:04:dc:28:d8:cd:81:a8:8f:ed:
12:bf:2e:57:67:b9:09:4f:9f:6c:ae:37:d5:58:f1:
e6:63:2c:a3:54:1e:08:b2:ad:69:f9:a2:57:30:56:
a6:0e:53:eb:16:73:c8:2f:1f:39:62:5f:ae:09:b9:
88:41:4c:77:47:ce:01:0a:76:95:3a:3f:e0:a4:f0:
f9:51:90:28:2d:79:59:5b:4d:b7:c8:d1:08:2e:7a:
ea:b4:d1:e1:7f:91:ff:9d:65:54:9c:7c:d4:13:8f:
6c:36:fc:4f:2a:55:58:c0:17:7c:76:63:bd:b8:1b:
bc:ff:65:88:cc:fa:51:2d:e0:7d:30:4d:a5:57:85:
9d:21:d6:c2:2a:90:3a:af:0a:84:8b:e3:6f:0b:1c:
6c:f5:9e:64:d3:ff:31:e7:e7:a0:e5:b1:ee:40:b4:
2a:80:6e:9e:a0:33:c1:a9:fe:3d:67:01:cf:d6:31:
5e:56:49:2c:c7:cc:e5:21:13:f0:20:13:f2:bc:3e:
12:92:09:d4:41:5c:56:ba:26:fc:3d:62:4a:54:f4:
8e:99
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
10:17:F7:38:0F:63:3C:72:F8:9D:BD:F5:0A:FE:27:1A:5F:02:2D:CF
X509v3 Authority Key Identifier:
keyid:52:03:BB:4F:19:58:11:F8:D7:72:3C:A0:1A:0B:2F:FB:DE:B7:5A:1B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UgO7TxlYEfjXcjygGgsv-963Whs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/80/0a92a1-e594-41ee-855c-2ba6a022d4c9/1/UgO7TxlYEfjXcjygGgsv-963Whs.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/80/0a92a1-e594-41ee-855c-2ba6a022d4c9/1/UgO7TxlYEfjXcjygGgsv-963Whs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
39:68:43:c3:f2:81:34:bb:2c:a2:06:2b:0e:12:d7:98:b3:8a:
38:b4:29:34:48:9e:59:ee:32:82:92:de:47:c8:54:7e:c0:d2:
5c:a3:2a:e2:fe:72:94:15:8c:6c:41:30:df:e2:30:43:a6:d5:
87:76:26:9a:00:f0:cd:a7:25:93:1c:e4:16:ce:09:c4:d1:6a:
28:ca:48:a3:2b:68:55:30:70:25:79:24:73:fc:c7:9b:b2:29:
e9:1f:92:95:93:00:9c:21:80:53:47:b4:9a:0a:5e:d9:54:ba:
f0:fb:13:0f:1f:4d:f7:f6:50:2f:92:cf:1a:5f:13:21:6a:ec:
76:58:74:e2:cb:cd:ab:ae:6b:77:9a:9a:fc:f4:e1:0a:22:8b:
9c:03:93:f4:eb:a6:0f:e0:18:bf:98:22:ff:1e:88:0d:07:77:
16:9a:6e:3c:12:9d:38:18:63:ca:63:57:2d:49:17:43:44:6b:
33:0b:95:61:80:14:9e:60:1e:3a:d5:db:90:56:0a:e2:7e:cb:
f0:99:1a:f9:f8:eb:99:7b:18:3b:ee:b1:bf:d2:5c:2b:31:d4:
a3:f0:ea:47:60:5e:ae:82:e7:ba:58:e8:91:ee:3a:41:f5:14:
89:d9:cf:84:4a:9c:91:a3:34:24:a1:35:89:83:b0:34:e6:6b:
96:40:34:81
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 22 17:01:15 2025 by rpki-client