Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1d/e6ccc7-d1e5-4f07-8dab-506a4934cad5/1/UNlf0yarPwj3bczGVrs-Hia03Fc.mft
File: UNlf0yarPwj3bczGVrs-Hia03Fc.mft (raw, json)
Hash identifier: sCU4FXytjfr8Qwt8XWMthnJUnxiGCKkh/egV3n2zjDU=
Subject key identifier: 0B:12:01:AC:0E:06:CD:51:87:F8:5C:25:B0:E7:34:BE:14:81:A6:5B
Authority key identifier: 50:D9:5F:D3:26:AB:3F:08:F7:6D:CC:C6:56:BB:3E:1E:26:B4:DC:57
Certificate issuer: /CN=50d95fd326ab3f08f76dccc656bb3e1e26b4dc57
Certificate serial: 01964A0F5DF9751CACD0BA59871CEADBCF77
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UNlf0yarPwj3bczGVrs-Hia03Fc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1d/e6ccc7-d1e5-4f07-8dab-506a4934cad5/1/UNlf0yarPwj3bczGVrs-Hia03Fc.mft
Manifest number: 9F
Signing time: Fri 18 Apr 2025 18:00:43 +0000
Manifest this update: Fri 18 Apr 2025 18:00:43 +0000
Manifest next update: Sat 19 Apr 2025 18:00:43 +0000
Files and hashes: 1: UNlf0yarPwj3bczGVrs-Hia03Fc.crl (hash: c7tTDM0d4zzvq5nGTJ4YVek0WxdvE9/J9ZofqnKVYT0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/1d/e6ccc7-d1e5-4f07-8dab-506a4934cad5/1/UNlf0yarPwj3bczGVrs-Hia03Fc.crl
rsync://rpki.ripe.net/repository/DEFAULT/1d/e6ccc7-d1e5-4f07-8dab-506a4934cad5/1/UNlf0yarPwj3bczGVrs-Hia03Fc.mft
rsync://rpki.ripe.net/repository/DEFAULT/UNlf0yarPwj3bczGVrs-Hia03Fc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 19 Apr 2025 18:00:43 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:4a:0f:5d:f9:75:1c:ac:d0:ba:59:87:1c:ea:db:cf:77
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=50d95fd326ab3f08f76dccc656bb3e1e26b4dc57
Validity
Not Before: Apr 18 18:00:43 2025 GMT
Not After : Apr 19 18:00:43 2025 GMT
Subject: CN=0b1201ac0e06cd5187f85c25b0e734be1481a65b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:4a:e9:44:2d:31:7d:a3:de:80:27:8a:5f:d0:
4c:24:32:31:c9:57:6b:b0:9d:4f:73:cb:a6:b8:40:
2e:fd:b7:e6:6d:03:bc:76:cd:2c:18:1d:fd:4c:eb:
b8:f4:69:ca:ec:e3:e7:63:e4:8e:cd:ad:c7:2f:39:
0d:4d:b5:65:1f:82:51:79:a0:33:ef:30:33:6d:1e:
7e:a8:5c:7f:76:78:73:47:8c:a9:29:5a:a8:9b:e4:
55:bf:7e:88:fb:a3:2e:34:e7:5c:18:fc:01:85:5f:
45:cd:a7:a6:8f:a0:d1:a5:c0:74:a6:f0:63:43:ab:
cc:c9:13:bc:59:07:7d:fa:87:53:02:67:59:dc:91:
c4:ee:35:27:4a:77:33:33:45:03:37:63:c5:b6:d3:
c8:7f:53:42:eb:ee:eb:00:05:e2:bd:d0:85:70:44:
a4:53:89:aa:47:a7:63:ce:ab:12:81:59:e3:03:44:
27:3e:da:dd:e0:4d:00:62:e5:d0:2e:13:66:da:c0:
fe:f7:a4:27:4f:2a:5e:fa:de:7d:71:81:be:a3:1f:
0c:c4:b2:ba:d4:03:b7:16:90:db:44:4a:75:6d:10:
ed:c9:5d:13:56:7a:25:02:79:de:84:81:08:50:46:
79:83:97:5c:6c:0a:72:f6:f8:df:02:27:4a:65:08:
5a:69
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0B:12:01:AC:0E:06:CD:51:87:F8:5C:25:B0:E7:34:BE:14:81:A6:5B
X509v3 Authority Key Identifier:
keyid:50:D9:5F:D3:26:AB:3F:08:F7:6D:CC:C6:56:BB:3E:1E:26:B4:DC:57
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UNlf0yarPwj3bczGVrs-Hia03Fc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1d/e6ccc7-d1e5-4f07-8dab-506a4934cad5/1/UNlf0yarPwj3bczGVrs-Hia03Fc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1d/e6ccc7-d1e5-4f07-8dab-506a4934cad5/1/UNlf0yarPwj3bczGVrs-Hia03Fc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
05:52:55:5b:5e:ec:a0:f1:02:0c:87:1a:99:70:12:c7:05:cb:
ca:73:73:6d:93:65:94:31:dc:05:25:cc:c2:65:60:cc:de:ef:
fd:0c:f7:c0:b7:13:ae:bb:f3:33:2a:07:77:8f:0f:1b:61:57:
de:09:24:b9:f6:54:9a:43:4e:5e:74:d6:be:32:d6:c5:f4:3c:
ce:68:51:e3:e1:4d:f4:b6:7d:43:97:6d:93:ca:4f:fd:14:6b:
dc:71:80:d7:b2:b0:df:ac:28:31:4b:80:cd:da:ff:5d:81:67:
55:9f:d1:dc:dd:6c:53:36:ac:6d:65:7d:e3:ed:f6:98:43:42:
f7:75:d8:e6:2f:85:9b:d8:94:53:07:93:09:92:4b:03:17:19:
26:45:ab:82:5d:ec:42:a8:13:24:09:f1:97:bf:22:39:8d:f6:
80:04:5e:f2:4f:d9:25:73:5e:f2:be:d1:8d:23:99:44:88:05:
6d:20:03:97:f3:9e:6d:32:13:d9:2b:98:4f:c8:02:98:79:12:
bb:d0:5a:20:27:04:91:6b:53:43:d6:ae:05:03:86:16:e9:dd:
f7:eb:33:22:ec:83:8a:8a:35:f8:46:10:84:d2:a8:3c:c1:b9:
01:12:52:bc:60:ca:48:ef:f7:c2:cd:d6:38:c1:ef:50:ef:13:
e5:28:93:31
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 19 01:45:14 2025 by rpki-client