Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9b/380c3c-f308-4dfe-a3a3-e21c6d0f8f04/1/UYnbLl9XTdoOPBfjldXwW2YlTsU.mft
File: UYnbLl9XTdoOPBfjldXwW2YlTsU.mft (raw, json)
Hash identifier: aaxVZA4kV73Uo60ZSdSYxUHFsHhlUV4wSjHE4CcFidA=
Subject key identifier: 23:E4:A2:52:44:42:2F:B4:B4:66:00:42:80:9F:58:3B:EB:1C:C0:0D
Authority key identifier: 51:89:DB:2E:5F:57:4D:DA:0E:3C:17:E3:95:D5:F0:5B:66:25:4E:C5
Certificate issuer: /CN=5189db2e5f574dda0e3c17e395d5f05b66254ec5
Certificate serial: 019654C9F4EC6A35C1785CC73998FB8562F5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UYnbLl9XTdoOPBfjldXwW2YlTsU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9b/380c3c-f308-4dfe-a3a3-e21c6d0f8f04/1/UYnbLl9XTdoOPBfjldXwW2YlTsU.mft
Manifest number: 0BE5
Signing time: Sun 20 Apr 2025 20:00:43 +0000
Manifest this update: Sun 20 Apr 2025 20:00:43 +0000
Manifest next update: Mon 21 Apr 2025 20:00:43 +0000
Files and hashes: 1: BfyClB3XmviPfJ6xZ2InO7FtLcs.roa (hash: 3EeV7dZbc++zjvyl5M1yeUuYRy/Llocvb96yJLQ1iig=)
2: UYnbLl9XTdoOPBfjldXwW2YlTsU.crl (hash: AFC4/GiptFdy7I1l+/1/qTdwpl8RtgoWxzdB3PV43xA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/9b/380c3c-f308-4dfe-a3a3-e21c6d0f8f04/1/UYnbLl9XTdoOPBfjldXwW2YlTsU.crl
rsync://rpki.ripe.net/repository/DEFAULT/9b/380c3c-f308-4dfe-a3a3-e21c6d0f8f04/1/UYnbLl9XTdoOPBfjldXwW2YlTsU.mft
rsync://rpki.ripe.net/repository/DEFAULT/UYnbLl9XTdoOPBfjldXwW2YlTsU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 21 Apr 2025 16:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:54:c9:f4:ec:6a:35:c1:78:5c:c7:39:98:fb:85:62:f5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5189db2e5f574dda0e3c17e395d5f05b66254ec5
Validity
Not Before: Apr 20 20:00:43 2025 GMT
Not After : Apr 21 20:00:43 2025 GMT
Subject: CN=23e4a25244422fb4b4660042809f583beb1cc00d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f1:2d:bb:b4:af:5f:31:03:fb:a0:ea:95:f8:fb:
2e:d1:34:20:c6:8a:5b:55:75:cd:72:d6:b2:1d:ac:
22:c1:63:ba:81:19:af:91:43:ba:6b:c0:dc:fc:df:
3b:31:3e:76:70:1b:3e:a0:f5:10:6a:23:30:70:23:
b9:06:72:d5:4d:36:31:8d:cf:fa:23:1f:e4:a7:b2:
40:1a:b1:3f:d9:00:d9:71:71:db:69:72:3c:8b:e4:
f6:64:70:27:59:da:aa:98:fe:b9:bb:e8:9b:0e:80:
a9:fc:01:5c:7b:5d:63:4f:44:e8:f7:9f:57:c2:9d:
e3:5f:47:6f:f1:79:f4:e9:6a:31:4e:de:ad:2a:a6:
aa:fe:c6:99:69:97:95:f7:cb:a6:56:43:cf:79:ac:
a3:75:01:82:06:37:46:e2:3a:87:98:79:03:73:1f:
73:dd:ff:a0:5f:31:aa:3c:5f:2a:d9:3f:f6:c9:49:
95:24:0c:53:9a:fe:44:43:a2:1a:e3:76:1f:e2:7b:
0a:24:d7:f0:21:d0:2b:54:17:6c:c3:fb:1c:52:a4:
dd:be:57:86:72:08:2c:2c:55:9f:55:5a:60:2d:ba:
30:e2:fb:b5:17:19:3b:55:70:16:21:c1:9a:59:a7:
dd:91:54:a4:36:ad:0e:5e:85:a4:2f:b2:e3:60:b1:
78:57
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
23:E4:A2:52:44:42:2F:B4:B4:66:00:42:80:9F:58:3B:EB:1C:C0:0D
X509v3 Authority Key Identifier:
keyid:51:89:DB:2E:5F:57:4D:DA:0E:3C:17:E3:95:D5:F0:5B:66:25:4E:C5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UYnbLl9XTdoOPBfjldXwW2YlTsU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9b/380c3c-f308-4dfe-a3a3-e21c6d0f8f04/1/UYnbLl9XTdoOPBfjldXwW2YlTsU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9b/380c3c-f308-4dfe-a3a3-e21c6d0f8f04/1/UYnbLl9XTdoOPBfjldXwW2YlTsU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
5b:67:2d:3f:be:0f:8d:98:b2:d2:04:fe:3a:04:fc:04:0e:ee:
98:96:d4:6c:3f:59:99:aa:0d:ed:ae:f5:99:54:04:27:a6:6c:
f1:26:b0:18:40:c7:76:15:42:55:2b:2e:07:3f:6b:45:b3:18:
b8:67:f9:26:cd:d8:72:d6:35:8e:f7:38:8a:73:da:13:ca:83:
13:3a:95:2d:80:1f:a7:0d:ba:1c:63:d2:21:a9:1a:e0:7d:70:
2a:33:fb:36:fc:81:ed:fa:29:d1:07:1b:39:4c:ce:e1:1d:92:
b6:f9:1c:68:2a:08:ee:7d:76:63:6f:02:9f:d4:21:d7:ef:12:
f2:a7:91:83:35:5a:54:21:70:e3:17:b8:c2:11:02:16:d0:ce:
9d:b0:11:a6:64:f5:c1:d7:f1:e4:2a:b1:76:14:d0:1a:d0:67:
05:1c:df:9f:44:20:8d:30:11:f5:e6:87:b9:05:63:d5:f5:48:
11:12:19:79:09:73:4b:6e:14:20:20:b8:60:35:85:b2:6d:c1:
d8:ae:a7:fc:6c:af:dd:ae:8d:46:69:c8:04:3c:56:d0:d3:85:
34:11:34:7c:b4:8b:ce:85:0a:29:74:93:6a:aa:ad:a2:71:1c:
26:3d:07:e3:a4:d9:61:af:bd:13:d0:d5:5c:0f:19:72:80:c2:
0b:a2:09:08
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 21 01:19:16 2025 by rpki-client