Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/25/587a79-1b6c-4c2a-b139-24aab44f2539/1/U0bE0gD-UDXGGwyJS5RU5y0nyR8.mft
File: U0bE0gD-UDXGGwyJS5RU5y0nyR8.mft (raw, json)
Hash identifier: t8CQ0GweVV2/PryBaEJN+M1DwY2LHC/yg1R7p6n+sMc=
Subject key identifier: A5:F3:6C:22:CF:BD:AA:CB:5A:EB:0B:36:2D:12:D0:98:A4:B0:6C:8D
Authority key identifier: 53:46:C4:D2:00:FE:50:35:C6:1B:0C:89:4B:94:54:E7:2D:27:C9:1F
Certificate issuer: /CN=5346c4d200fe5035c61b0c894b9454e72d27c91f
Certificate serial: 0196447B0BCD2BC84B095192AF7F427ACBFA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/U0bE0gD-UDXGGwyJS5RU5y0nyR8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/25/587a79-1b6c-4c2a-b139-24aab44f2539/1/U0bE0gD-UDXGGwyJS5RU5y0nyR8.mft
Manifest number: 14F7
Signing time: Thu 17 Apr 2025 16:00:36 +0000
Manifest this update: Thu 17 Apr 2025 16:00:36 +0000
Manifest next update: Fri 18 Apr 2025 16:00:36 +0000
Files and hashes: 1: ECD7apX3eHOOfrh7KlF7PFjYZG4.roa (hash: 71V9g38SO7JBAaQym2ThymDLgJtxxyPJi6oj0bVn0zY=)
2: U0bE0gD-UDXGGwyJS5RU5y0nyR8.crl (hash: hO9pcgsq2fDuA7dSHs72Etfs+9btscYHhyfA2YRyVmY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/25/587a79-1b6c-4c2a-b139-24aab44f2539/1/U0bE0gD-UDXGGwyJS5RU5y0nyR8.crl
rsync://rpki.ripe.net/repository/DEFAULT/25/587a79-1b6c-4c2a-b139-24aab44f2539/1/U0bE0gD-UDXGGwyJS5RU5y0nyR8.mft
rsync://rpki.ripe.net/repository/DEFAULT/U0bE0gD-UDXGGwyJS5RU5y0nyR8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 18 Apr 2025 16:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:44:7b:0b:cd:2b:c8:4b:09:51:92:af:7f:42:7a:cb:fa
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5346c4d200fe5035c61b0c894b9454e72d27c91f
Validity
Not Before: Apr 17 16:00:36 2025 GMT
Not After : Apr 18 16:00:36 2025 GMT
Subject: CN=a5f36c22cfbdaacb5aeb0b362d12d098a4b06c8d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:dd:d2:04:5f:2f:dc:37:1c:9c:12:60:50:0d:
85:d6:ce:53:b3:1a:21:dd:2d:32:5f:d9:6c:f2:2c:
ca:74:dd:38:d9:0d:6c:f6:60:98:6c:03:ff:a7:71:
7d:0e:40:ff:19:6d:2d:88:4d:ea:cd:ab:c3:fd:43:
13:b8:39:ae:16:2b:f2:d5:e8:7d:8e:ee:a6:a0:0e:
0d:b1:6b:0f:ab:42:2e:96:0b:aa:8c:8e:7e:ee:b6:
31:01:f1:cd:d9:88:3d:2a:55:b2:a2:f6:c7:e8:7c:
27:81:7b:f3:2b:8d:15:9c:a8:ba:3b:83:10:f2:ef:
26:b4:5e:9f:3b:7b:1e:48:d3:90:95:ae:87:52:c5:
e3:68:e6:1c:d1:6b:8b:d1:b6:63:e4:83:74:5c:45:
61:18:f4:01:e0:89:db:6b:4a:46:f1:d0:72:7a:3c:
27:f2:72:cd:b3:31:40:4f:bb:e6:03:be:fc:1d:dc:
70:39:78:bc:61:1f:d8:cf:c1:b0:5e:61:dd:a5:0c:
17:35:db:a1:c0:28:a7:96:b7:23:21:7c:5c:57:d9:
9c:68:9e:db:3c:15:bb:d1:56:49:59:21:e1:21:f3:
40:8c:bc:60:fb:7f:cf:af:e5:32:00:1f:12:d3:0a:
69:77:36:70:d2:b8:f4:5b:17:82:8e:93:08:92:fd:
5a:43
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A5:F3:6C:22:CF:BD:AA:CB:5A:EB:0B:36:2D:12:D0:98:A4:B0:6C:8D
X509v3 Authority Key Identifier:
keyid:53:46:C4:D2:00:FE:50:35:C6:1B:0C:89:4B:94:54:E7:2D:27:C9:1F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/U0bE0gD-UDXGGwyJS5RU5y0nyR8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/25/587a79-1b6c-4c2a-b139-24aab44f2539/1/U0bE0gD-UDXGGwyJS5RU5y0nyR8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/25/587a79-1b6c-4c2a-b139-24aab44f2539/1/U0bE0gD-UDXGGwyJS5RU5y0nyR8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
ae:a6:ed:5d:98:b8:28:5e:8a:a4:ae:12:da:36:cb:0c:92:24:
cf:95:da:74:86:b4:f8:da:e5:6c:7b:96:0e:45:14:03:05:f3:
67:9e:72:4e:26:96:a5:1e:73:e1:f4:82:54:de:40:79:5c:f7:
78:f4:6c:42:7d:b3:b7:79:28:ba:f7:40:22:29:fd:43:45:da:
d6:a9:1c:28:59:74:4d:64:01:9e:1b:29:5c:51:47:87:16:6f:
87:3e:e1:7c:4a:42:0c:ce:d4:97:2c:7b:61:71:fe:95:17:0c:
bc:ae:91:54:d9:ce:a9:74:1e:83:c0:53:a7:7f:a4:ef:b0:e6:
31:0a:da:e2:76:1f:38:a5:b2:bd:d2:29:e2:bc:b6:f6:03:07:
5b:9f:99:0d:3c:42:dd:d7:54:6b:52:0c:9f:72:93:28:5d:94:
76:57:76:77:e9:a4:67:94:5e:0f:be:51:51:ea:ee:78:fc:24:
a3:c0:09:e2:94:22:46:88:69:6b:25:2c:59:9e:71:db:b1:2e:
39:65:b6:d4:a0:23:54:6a:6b:45:81:6b:e7:e7:86:87:ad:51:
a1:15:69:1b:ac:b7:ec:76:2e:d2:9a:30:8a:c1:fa:92:19:58:
ce:ac:63:cd:ef:06:21:5a:57:29:87:d8:5c:1e:c1:f2:a0:18:
30:16:4e:cd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 18 00:10:56 2025 by rpki-client