Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/07/96a928-819c-476c-bae1-50c9f5b3c3e4/1/UoUm3npC8eCAkWhA7r85A4uJPRY.mft
File: UoUm3npC8eCAkWhA7r85A4uJPRY.mft (raw, json)
Hash identifier: FVvfRyCBOS5PLLTCP7b6H1T8v6oNYcfYQ36o61F9G4M=
Subject key identifier: 54:E2:00:C5:2B:C9:7B:17:CC:3E:C4:F6:6F:52:B9:E1:9B:D9:E5:5F
Authority key identifier: 52:85:26:DE:7A:42:F1:E0:80:91:68:40:EE:BF:39:03:8B:89:3D:16
Certificate issuer: /CN=528526de7a42f1e080916840eebf39038b893d16
Certificate serial: 01964D7F22D7AC1ABEFD740997CA55E8DE12
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UoUm3npC8eCAkWhA7r85A4uJPRY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/07/96a928-819c-476c-bae1-50c9f5b3c3e4/1/UoUm3npC8eCAkWhA7r85A4uJPRY.mft
Manifest number: 087F
Signing time: Sat 19 Apr 2025 10:01:39 +0000
Manifest this update: Sat 19 Apr 2025 10:01:39 +0000
Manifest next update: Sun 20 Apr 2025 10:01:39 +0000
Files and hashes: 1: UoUm3npC8eCAkWhA7r85A4uJPRY.crl (hash: 6zx+iRIJ17HyUWU9Lk7VtcVXrWKSp5k1AP/ztt2BLtM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/07/96a928-819c-476c-bae1-50c9f5b3c3e4/1/UoUm3npC8eCAkWhA7r85A4uJPRY.crl
rsync://rpki.ripe.net/repository/DEFAULT/07/96a928-819c-476c-bae1-50c9f5b3c3e4/1/UoUm3npC8eCAkWhA7r85A4uJPRY.mft
rsync://rpki.ripe.net/repository/DEFAULT/UoUm3npC8eCAkWhA7r85A4uJPRY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 20 Apr 2025 10:01:39 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:4d:7f:22:d7:ac:1a:be:fd:74:09:97:ca:55:e8:de:12
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=528526de7a42f1e080916840eebf39038b893d16
Validity
Not Before: Apr 19 10:01:39 2025 GMT
Not After : Apr 20 10:01:39 2025 GMT
Subject: CN=54e200c52bc97b17cc3ec4f66f52b9e19bd9e55f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8d:23:f5:9f:c2:3b:44:d8:61:b0:3b:47:c9:83:
09:1a:5e:05:e1:67:09:94:f3:82:d2:40:d2:a7:f2:
07:b6:de:e1:ae:c5:c2:09:ca:15:5e:1e:e3:6c:b8:
a0:00:66:19:6b:74:0b:be:8f:55:f7:37:a6:ad:9c:
79:cf:6e:dc:74:ec:47:8d:c9:a8:c2:70:69:9c:da:
e8:82:c4:b8:70:3d:7f:0c:6c:34:b8:f0:79:86:5b:
0b:5f:f2:0e:40:4b:55:cf:f5:1a:f1:67:57:fe:14:
60:5c:2d:3f:e7:25:dd:6d:f8:7f:04:ac:fe:f8:4a:
80:51:f8:13:83:24:ef:60:7a:61:c1:03:37:bf:9e:
6b:ff:3e:e9:24:71:f3:31:67:ea:b8:f8:39:ae:d3:
65:c9:07:3b:40:e0:4d:ae:f2:58:1c:5e:78:9d:13:
b9:0c:5c:d7:36:7f:5e:6f:73:77:f1:a2:b6:d7:29:
a1:54:58:55:f2:ee:2a:7a:e8:01:37:6e:52:b1:76:
a9:68:23:16:18:8e:9c:10:81:10:89:c7:8e:aa:ae:
9d:61:c8:65:c7:39:8d:4b:aa:49:1c:f1:71:fe:2b:
a1:d6:cf:fa:a0:86:b0:0c:7a:0b:45:5e:fe:20:2d:
0d:34:9e:91:67:9f:28:c4:54:a4:f5:84:8b:4f:f7:
de:51
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
54:E2:00:C5:2B:C9:7B:17:CC:3E:C4:F6:6F:52:B9:E1:9B:D9:E5:5F
X509v3 Authority Key Identifier:
keyid:52:85:26:DE:7A:42:F1:E0:80:91:68:40:EE:BF:39:03:8B:89:3D:16
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UoUm3npC8eCAkWhA7r85A4uJPRY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/07/96a928-819c-476c-bae1-50c9f5b3c3e4/1/UoUm3npC8eCAkWhA7r85A4uJPRY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/07/96a928-819c-476c-bae1-50c9f5b3c3e4/1/UoUm3npC8eCAkWhA7r85A4uJPRY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
68:07:12:c1:5a:3a:ab:82:39:51:02:c8:91:eb:3b:14:b1:be:
49:d5:51:e8:fb:ff:d7:7c:48:61:eb:1c:ed:a3:e8:fa:fb:ae:
20:ad:4b:92:d8:dc:16:15:c0:01:4b:96:69:86:97:ea:3d:e3:
b4:1e:90:77:2e:77:e2:e2:60:31:61:58:12:1b:e9:1e:23:17:
b7:dc:99:8c:10:03:96:97:46:4e:13:e9:1c:b5:0d:6b:d5:1b:
b8:62:4e:04:eb:84:01:16:d8:23:9c:77:fa:26:d1:59:dc:65:
4d:54:45:59:17:6b:d6:9b:b4:85:03:e2:87:77:b0:1e:22:f3:
2d:52:7e:ab:aa:3c:97:6a:2b:a2:3e:38:36:e0:01:a5:0d:6b:
2f:07:96:5c:37:36:e9:06:a8:5e:fa:05:09:07:da:18:dd:42:
22:f4:8c:c1:f0:c6:2e:5b:ff:5a:e9:3f:50:61:77:df:84:8c:
a4:46:1c:48:96:87:57:94:8d:18:1f:30:82:8c:84:06:e3:25:
cb:d0:32:f5:9c:2b:60:38:37:53:8f:47:3a:cb:06:58:d3:fe:
58:36:61:f2:46:18:be:ed:7c:c6:64:ee:64:23:16:40:e8:40:
41:95:08:02:a2:a5:65:c9:67:60:24:56:50:10:45:f0:d6:5e:
81:aa:af:74
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 19 18:37:12 2025 by rpki-client