Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2f/10edef-253d-49b1-969e-5ca8ac18096d/1/UOpay0R7LOuTKgPykAgtx2-OQOM.mft
File: UOpay0R7LOuTKgPykAgtx2-OQOM.mft (raw, json)
Hash identifier: 3KRx0gaLsGgvl1DNg1FJbfsIbfUNfETAG7B7oaGCg/Q=
Subject key identifier: E4:43:34:87:E7:B7:00:BE:D2:9D:EA:C0:89:A7:E2:A9:56:8B:BC:02
Authority key identifier: 50:EA:5A:CB:44:7B:2C:EB:93:2A:03:F2:90:08:2D:C7:6F:8E:40:E3
Certificate issuer: /CN=50ea5acb447b2ceb932a03f290082dc76f8e40e3
Certificate serial: 0196504842DF1FC070F3925E8807AA2CD9A3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UOpay0R7LOuTKgPykAgtx2-OQOM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2f/10edef-253d-49b1-969e-5ca8ac18096d/1/UOpay0R7LOuTKgPykAgtx2-OQOM.mft
Manifest number: 14FB
Signing time: Sat 19 Apr 2025 23:00:34 +0000
Manifest this update: Sat 19 Apr 2025 23:00:34 +0000
Manifest next update: Sun 20 Apr 2025 23:00:34 +0000
Files and hashes: 1: UOpay0R7LOuTKgPykAgtx2-OQOM.crl (hash: J8NAxeWMNE1WP/ag3uoepvQrvySI7Yj7c7qRGZi+1ZY=)
2: UPs4nn0eBay_fIEXwzFrziOGHlg.roa (hash: n1rQX2er8ehY5mv/Oe6cZ3YcfGOcUxMxZAxeUBrIysk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2f/10edef-253d-49b1-969e-5ca8ac18096d/1/UOpay0R7LOuTKgPykAgtx2-OQOM.crl
rsync://rpki.ripe.net/repository/DEFAULT/2f/10edef-253d-49b1-969e-5ca8ac18096d/1/UOpay0R7LOuTKgPykAgtx2-OQOM.mft
rsync://rpki.ripe.net/repository/DEFAULT/UOpay0R7LOuTKgPykAgtx2-OQOM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 20 Apr 2025 16:41:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:50:48:42:df:1f:c0:70:f3:92:5e:88:07:aa:2c:d9:a3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=50ea5acb447b2ceb932a03f290082dc76f8e40e3
Validity
Not Before: Apr 19 23:00:34 2025 GMT
Not After : Apr 20 23:00:34 2025 GMT
Subject: CN=e4433487e7b700bed29deac089a7e2a9568bbc02
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e5:5e:1a:b5:e6:f3:fe:db:2d:a9:26:75:7f:b5:
fc:40:a7:2b:ea:4e:24:9f:67:4e:1c:80:a0:9b:93:
9a:bb:6f:b5:89:41:44:13:66:0d:f1:e5:95:f3:04:
37:fd:7f:47:67:83:fd:c1:c2:62:40:71:a3:e0:5e:
3e:9a:d7:01:e6:a6:dc:14:69:94:c3:f9:d7:3d:4c:
e6:50:72:d8:22:93:40:fb:c4:1f:72:3f:a1:14:e7:
43:8e:dc:35:e9:f3:93:f5:4a:f2:55:5f:54:7b:0d:
e4:35:9d:84:4f:31:5c:ab:dd:3f:ac:83:ce:b1:da:
32:f0:50:36:09:72:fd:44:2b:ba:dc:a5:bd:50:68:
24:e8:ba:17:4a:c0:31:c7:52:99:06:8f:5a:3c:01:
63:4a:c4:d7:58:a0:30:99:f4:57:06:56:0b:de:74:
0d:59:83:35:d1:66:4c:12:28:68:26:80:1f:f7:07:
3c:8d:9c:2d:27:71:d6:77:7a:ba:3a:bd:6e:60:ec:
b0:a0:6d:10:16:13:e2:c0:03:39:15:41:8e:84:b2:
e1:b3:7b:d7:3f:b9:5a:ca:d1:01:16:23:d9:72:dd:
e2:d2:b7:a5:80:63:74:8e:19:0b:89:a2:76:2b:a6:
da:07:bb:69:20:ed:f1:99:48:2a:01:78:99:5f:42:
f7:1f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E4:43:34:87:E7:B7:00:BE:D2:9D:EA:C0:89:A7:E2:A9:56:8B:BC:02
X509v3 Authority Key Identifier:
keyid:50:EA:5A:CB:44:7B:2C:EB:93:2A:03:F2:90:08:2D:C7:6F:8E:40:E3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UOpay0R7LOuTKgPykAgtx2-OQOM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2f/10edef-253d-49b1-969e-5ca8ac18096d/1/UOpay0R7LOuTKgPykAgtx2-OQOM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2f/10edef-253d-49b1-969e-5ca8ac18096d/1/UOpay0R7LOuTKgPykAgtx2-OQOM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
91:b0:38:9d:65:85:11:2f:fc:8a:c7:a1:e9:81:2a:8e:f2:4c:
89:e2:fb:82:1e:5e:07:e5:2f:cb:ad:bb:5d:94:b7:ef:88:a0:
27:c8:48:27:8f:db:e9:f3:be:08:58:e6:37:73:ea:d1:6e:e7:
eb:9d:24:b5:5e:5f:0d:d5:5f:34:1e:14:80:98:73:64:c2:77:
22:4f:75:1c:85:0f:f1:73:1b:10:3f:38:3c:c3:e0:79:6e:08:
9f:2c:17:12:eb:ce:a9:21:e5:64:0a:0f:d2:81:1d:ef:af:91:
64:2e:b7:88:37:29:a3:7f:71:2c:12:aa:5c:ac:46:ed:3a:1a:
e2:40:f6:fd:66:a9:2b:f3:56:72:7f:00:fb:43:af:ab:4d:73:
dc:32:17:1b:42:f6:5e:2f:ee:7f:af:a2:9e:6e:16:cb:45:6c:
6e:d5:7e:3a:cc:0f:23:eb:0d:dc:4c:96:22:68:01:82:28:54:
e2:ba:b6:7f:8d:13:0c:3a:fd:db:2f:6d:2d:7a:4f:ce:e1:87:
f7:da:94:05:d7:36:13:b1:1e:34:94:7f:d3:09:27:bc:14:2f:
79:2e:9c:13:01:e2:55:ff:6f:80:39:60:dc:81:61:e9:18:44:
0a:dc:cb:17:9d:c4:b2:9d:db:85:b4:18:ed:25:bb:ef:13:a3:
2b:d0:66:43
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 20 02:01:41 2025 by rpki-client