Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c3/07e105-5680-40aa-8c9d-0d66c75b026d/1/U6hLUj3-Mriom5zdMKn4cRAH_bk.mft
File: U6hLUj3-Mriom5zdMKn4cRAH_bk.mft (raw, json)
Hash identifier: hOv/fktCGUwD4MrKKtFkhvJVfjhPlntE99NMM0FQ2Es=
Subject key identifier: 13:A4:62:67:1B:BA:62:6B:83:EE:B4:63:B2:5C:EC:C5:D6:2F:71:F1
Authority key identifier: 53:A8:4B:52:3D:FE:32:B8:A8:9B:9C:DD:30:A9:F8:71:10:07:FD:B9
Certificate issuer: /CN=53a84b523dfe32b8a89b9cdd30a9f8711007fdb9
Certificate serial: 01965C836F6C2B8B8996D54CD5F83A31A74F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/U6hLUj3-Mriom5zdMKn4cRAH_bk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c3/07e105-5680-40aa-8c9d-0d66c75b026d/1/U6hLUj3-Mriom5zdMKn4cRAH_bk.mft
Manifest number: 0BD8
Signing time: Tue 22 Apr 2025 08:00:39 +0000
Manifest this update: Tue 22 Apr 2025 08:00:39 +0000
Manifest next update: Wed 23 Apr 2025 08:00:39 +0000
Files and hashes: 1: GZldOEJkrutoTjn3MQnXcf09taM.roa (hash: vlltg4veeHpXkbEneS2WFuhIZv9HwJeSmQM3GzCbD1k=)
2: U6hLUj3-Mriom5zdMKn4cRAH_bk.crl (hash: hnwpKHbMldx8cbSWElmZq+eXamZdUpxAdiyxQuUy9K0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c3/07e105-5680-40aa-8c9d-0d66c75b026d/1/U6hLUj3-Mriom5zdMKn4cRAH_bk.crl
rsync://rpki.ripe.net/repository/DEFAULT/c3/07e105-5680-40aa-8c9d-0d66c75b026d/1/U6hLUj3-Mriom5zdMKn4cRAH_bk.mft
rsync://rpki.ripe.net/repository/DEFAULT/U6hLUj3-Mriom5zdMKn4cRAH_bk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 23 Apr 2025 04:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:5c:83:6f:6c:2b:8b:89:96:d5:4c:d5:f8:3a:31:a7:4f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=53a84b523dfe32b8a89b9cdd30a9f8711007fdb9
Validity
Not Before: Apr 22 08:00:39 2025 GMT
Not After : Apr 23 08:00:39 2025 GMT
Subject: CN=13a462671bba626b83eeb463b25cecc5d62f71f1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:3e:84:53:b4:51:ba:29:87:46:a7:40:2a:80:
fe:eb:4a:51:9d:22:79:59:49:fb:2e:b7:b3:fe:54:
a8:64:c1:ac:7d:13:01:fb:2d:e9:9e:59:2f:36:c8:
7c:40:52:2e:5e:7c:f5:c0:66:0f:0b:af:a2:82:31:
22:30:66:dc:d7:2b:80:41:52:f3:a8:0c:d1:a7:93:
8c:9a:16:23:ca:51:be:da:c4:74:d8:60:2c:95:8e:
13:27:fc:58:1f:dd:6a:87:94:84:10:f9:b4:20:db:
d4:1e:31:8a:ac:fc:32:8d:5c:06:04:48:0f:2a:d4:
6f:6c:ac:13:87:f7:63:67:a9:cb:69:5a:38:86:f1:
c3:39:4f:0d:2b:a4:22:d0:1a:6b:2a:ab:af:6c:2c:
af:87:94:15:2a:b0:d2:2c:cc:22:03:f5:5b:fe:93:
bd:30:c7:64:8f:83:dd:ea:c7:a7:0e:de:d3:ca:db:
99:5f:6c:9c:0c:a2:d6:60:bb:5b:48:1e:59:02:6d:
db:a4:15:48:e1:8b:b8:f4:47:3b:bf:b8:c2:e1:56:
bb:8b:0f:c6:86:89:12:64:1f:83:55:2e:b3:8c:2f:
6c:b1:94:5d:ad:f7:d3:a7:21:3c:40:4f:8b:e5:1c:
ad:5b:c2:ee:29:9d:54:ac:79:c5:ed:2b:2f:98:c7:
2e:9f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
13:A4:62:67:1B:BA:62:6B:83:EE:B4:63:B2:5C:EC:C5:D6:2F:71:F1
X509v3 Authority Key Identifier:
keyid:53:A8:4B:52:3D:FE:32:B8:A8:9B:9C:DD:30:A9:F8:71:10:07:FD:B9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/U6hLUj3-Mriom5zdMKn4cRAH_bk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c3/07e105-5680-40aa-8c9d-0d66c75b026d/1/U6hLUj3-Mriom5zdMKn4cRAH_bk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c3/07e105-5680-40aa-8c9d-0d66c75b026d/1/U6hLUj3-Mriom5zdMKn4cRAH_bk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
48:ee:df:5e:c7:2a:3c:6e:39:20:54:33:64:5a:6d:bf:81:ee:
c7:f1:74:66:43:ec:49:95:4a:66:af:2b:fa:e1:a2:d5:ca:95:
5d:2c:9b:1a:70:3d:5f:92:3e:8e:ec:c0:45:a2:93:d4:3a:21:
53:b0:ba:b8:19:f8:b7:e4:d5:92:cd:da:b1:f0:eb:1e:07:9f:
ac:4e:da:c5:4c:cd:36:a6:e2:7b:b4:69:e2:48:3e:46:09:b8:
6a:9d:2c:fd:33:85:99:22:c5:8c:c0:1f:52:a9:60:e6:a7:ba:
9f:0b:97:77:db:74:2b:89:46:e3:59:a9:9e:8f:3d:90:03:6c:
3c:da:73:a4:f9:0c:99:a3:b6:0a:d4:a0:54:57:95:8f:15:2d:
a3:7d:b7:50:1c:1d:91:bf:48:9a:a9:e2:ae:cc:97:aa:48:ed:
e1:c6:df:f1:bc:32:7b:bd:fc:6c:82:a7:33:be:0f:a7:f1:aa:
a1:30:01:6a:8e:0c:fe:e7:de:a8:50:4d:8e:84:b4:24:b4:b1:
a7:1c:3c:58:dd:07:9b:1f:c1:f1:d8:a4:70:ee:cd:a1:54:9f:
15:bc:33:37:d4:c1:af:93:fa:54:31:85:f3:12:74:6a:8c:85:
0a:2a:2f:cc:b2:17:67:af:c5:76:b0:a9:e8:13:e5:19:0f:30:
01:00:45:b0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 22 10:26:47 2025 by rpki-client