Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/29/4dfbd4-8ed7-45f2-950d-3aeb7cde036c/1/ufdp1EM7dwTfcD0WRbf-qO-_km4.mft
File: ufdp1EM7dwTfcD0WRbf-qO-_km4.mft (raw, json)
Hash identifier: Yqbbtg1v0AGkdbUpLM4dWBaQpVkHmZ0DQsw180i1be4=
Subject key identifier: A9:E9:DB:1E:6B:DC:A4:00:5A:3B:27:05:DE:41:30:1A:99:47:16:27
Authority key identifier: B9:F7:69:D4:43:3B:77:04:DF:70:3D:16:45:B7:FE:A8:EF:BF:92:6E
Certificate issuer: /CN=b9f769d4433b7704df703d1645b7fea8efbf926e
Certificate serial: 019658023EA44CE3D7D1D79211F827959C74
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ufdp1EM7dwTfcD0WRbf-qO-_km4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/29/4dfbd4-8ed7-45f2-950d-3aeb7cde036c/1/ufdp1EM7dwTfcD0WRbf-qO-_km4.mft
Manifest number: 1502
Signing time: Mon 21 Apr 2025 11:01:04 +0000
Manifest this update: Mon 21 Apr 2025 11:01:04 +0000
Manifest next update: Tue 22 Apr 2025 11:01:04 +0000
Files and hashes: 1: 0JNfBNzU72OAoNIfj1jhygVeYQU.roa (hash: oGcfqT/JJ8LL0qB7k2QsQSpg+/RTt2AO65zLWXlHWAA=)
2: ufdp1EM7dwTfcD0WRbf-qO-_km4.crl (hash: XiCYWb23S8BePuzjYMMBaUT/I0uTSftZcXzkZ5CzHCA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/29/4dfbd4-8ed7-45f2-950d-3aeb7cde036c/1/ufdp1EM7dwTfcD0WRbf-qO-_km4.crl
rsync://rpki.ripe.net/repository/DEFAULT/29/4dfbd4-8ed7-45f2-950d-3aeb7cde036c/1/ufdp1EM7dwTfcD0WRbf-qO-_km4.mft
rsync://rpki.ripe.net/repository/DEFAULT/ufdp1EM7dwTfcD0WRbf-qO-_km4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 22 Apr 2025 10:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:58:02:3e:a4:4c:e3:d7:d1:d7:92:11:f8:27:95:9c:74
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b9f769d4433b7704df703d1645b7fea8efbf926e
Validity
Not Before: Apr 21 11:01:04 2025 GMT
Not After : Apr 22 11:01:04 2025 GMT
Subject: CN=a9e9db1e6bdca4005a3b2705de41301a99471627
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:cd:81:ae:fa:e8:49:35:02:36:bd:92:56:76:
aa:9e:c2:bc:c5:25:58:ef:f2:de:a6:6f:ab:e0:24:
69:bc:02:87:41:bb:6e:ca:5e:21:83:c6:bb:d2:6f:
d5:c6:ad:36:4c:fc:52:d2:39:40:60:5c:d0:32:c5:
c4:cb:3c:60:30:af:ad:30:ff:97:03:f6:db:3b:f7:
ef:8a:d7:ac:2a:68:d9:7c:4a:b4:e7:29:52:1d:ea:
58:03:3f:10:a7:8f:92:ea:8e:de:48:a7:11:7c:67:
f4:14:d0:88:bf:ad:50:35:32:34:b4:03:c3:5a:6e:
49:b1:8b:3b:fb:32:7a:39:ef:c4:b6:be:b6:55:56:
d8:13:c6:2d:29:9a:2b:5a:ef:24:ae:4e:17:88:77:
37:c5:40:d5:a9:72:df:ff:70:d8:1c:35:99:8d:26:
23:8a:86:a5:03:1b:94:20:05:33:ac:74:e0:ad:17:
ab:91:51:5d:94:23:bb:8a:fd:3c:60:99:59:73:32:
6f:67:2f:ad:f1:4a:0f:03:86:ab:3c:0d:af:95:f4:
34:10:d9:ab:f9:45:50:63:c1:a2:b2:b1:6f:3c:b7:
68:c4:56:41:59:24:3d:db:3b:9b:fd:61:0f:db:64:
51:a3:16:00:34:30:98:5d:9f:8f:c1:d6:39:0c:9e:
3c:b9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A9:E9:DB:1E:6B:DC:A4:00:5A:3B:27:05:DE:41:30:1A:99:47:16:27
X509v3 Authority Key Identifier:
keyid:B9:F7:69:D4:43:3B:77:04:DF:70:3D:16:45:B7:FE:A8:EF:BF:92:6E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ufdp1EM7dwTfcD0WRbf-qO-_km4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/29/4dfbd4-8ed7-45f2-950d-3aeb7cde036c/1/ufdp1EM7dwTfcD0WRbf-qO-_km4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/29/4dfbd4-8ed7-45f2-950d-3aeb7cde036c/1/ufdp1EM7dwTfcD0WRbf-qO-_km4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
ab:47:83:61:9f:b9:6e:52:a6:3e:50:db:98:96:2a:2d:a9:48:
c6:c2:0a:03:98:a5:72:e0:24:44:f0:ce:93:9f:39:92:45:51:
25:6f:51:91:ef:73:c5:3f:fa:17:41:86:93:0d:67:c4:d1:b0:
d3:4b:8e:13:da:eb:d4:41:2c:f3:f0:0e:8e:47:38:63:f4:19:
67:89:57:8a:7a:81:87:33:65:7c:2b:62:72:91:22:08:53:38:
26:db:1e:ee:e4:6d:72:77:cd:ec:14:6f:8c:c8:e5:4f:ba:57:
3c:2b:6f:1d:ce:49:81:4b:c7:d6:25:e7:0b:53:f5:a6:32:f6:
74:5e:be:f4:d5:f2:5a:1c:7c:0a:96:68:b7:d2:96:87:6e:09:
5e:b7:7c:08:11:5a:bc:1b:a5:04:2f:32:dc:79:eb:3f:78:2a:
75:65:69:41:3b:0b:cb:bd:c4:c7:91:7e:05:64:f9:6a:c9:17:
7a:69:b1:57:e4:79:f1:44:be:82:ea:e3:93:06:3b:7c:a4:76:
0b:84:3c:53:d8:97:4c:c8:8b:06:4e:4f:df:17:ca:16:a6:76:
2c:56:10:ab:78:1d:1f:7f:37:29:cf:80:2c:cb:83:d9:61:59:
90:b9:15:3d:17:93:7a:c5:76:a4:73:19:35:d5:85:b1:20:08:
c2:1f:4b:39
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 21 15:01:42 2025 by rpki-client