Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2f/10edef-253d-49b1-969e-5ca8ac18096d/1/UOpay0R7LOuTKgPykAgtx2-OQOM.mft
File: UOpay0R7LOuTKgPykAgtx2-OQOM.mft (raw, json)
Hash identifier: ehVH4Prk3T89MsB65HB7Bb4qLVNDpZyYmTCnwYSWJPE=
Subject key identifier: 52:73:E9:92:7D:8B:4E:61:9A:6E:16:CF:39:3C:B3:F8:A6:D2:89:90
Authority key identifier: 50:EA:5A:CB:44:7B:2C:EB:93:2A:03:F2:90:08:2D:C7:6F:8E:40:E3
Certificate issuer: /CN=50ea5acb447b2ceb932a03f290082dc76f8e40e3
Certificate serial: 019511A2AB50910DB2B846893E5A4F2DFD9C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UOpay0R7LOuTKgPykAgtx2-OQOM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2f/10edef-253d-49b1-969e-5ca8ac18096d/1/UOpay0R7LOuTKgPykAgtx2-OQOM.mft
Manifest number: 1456
Signing time: Mon 17 Feb 2025 02:00:28 +0000
Manifest this update: Mon 17 Feb 2025 02:00:28 +0000
Manifest next update: Tue 18 Feb 2025 02:00:28 +0000
Files and hashes: 1: UOpay0R7LOuTKgPykAgtx2-OQOM.crl (hash: 67AcCoFySZrhgb87Zs7OjOsgb4WXp80JNGfOSkaCQHY=)
2: UPs4nn0eBay_fIEXwzFrziOGHlg.roa (hash: n1rQX2er8ehY5mv/Oe6cZ3YcfGOcUxMxZAxeUBrIysk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2f/10edef-253d-49b1-969e-5ca8ac18096d/1/UOpay0R7LOuTKgPykAgtx2-OQOM.crl
rsync://rpki.ripe.net/repository/DEFAULT/2f/10edef-253d-49b1-969e-5ca8ac18096d/1/UOpay0R7LOuTKgPykAgtx2-OQOM.mft
rsync://rpki.ripe.net/repository/DEFAULT/UOpay0R7LOuTKgPykAgtx2-OQOM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 17 Feb 2025 23:00:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:11:a2:ab:50:91:0d:b2:b8:46:89:3e:5a:4f:2d:fd:9c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=50ea5acb447b2ceb932a03f290082dc76f8e40e3
Validity
Not Before: Feb 17 02:00:28 2025 GMT
Not After : Feb 18 02:00:28 2025 GMT
Subject: CN=5273e9927d8b4e619a6e16cf393cb3f8a6d28990
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d4:3e:8b:f1:8c:15:29:0f:e5:00:75:bb:7e:d2:
5a:62:05:2d:33:b7:13:64:77:65:e1:85:07:78:ed:
1b:b9:8a:6c:b8:0a:2a:c2:e9:be:58:ee:fe:8d:2d:
29:5f:4a:9b:c1:b8:5d:e8:75:76:95:62:37:48:13:
df:3f:d4:36:66:a2:04:32:51:09:10:c5:1e:3b:e5:
b7:4e:74:7f:ea:0c:5b:7e:a5:39:6a:e4:ce:d3:dd:
52:1c:48:00:1a:80:f9:5f:f5:fa:d4:10:4a:e6:63:
1f:99:d3:79:18:e3:b5:bb:75:53:55:b9:4a:9d:f7:
f2:93:0c:1b:fd:12:39:87:3f:48:d7:03:6f:8a:ac:
22:20:b3:96:d9:59:db:48:93:8c:ee:45:c1:24:d9:
da:af:f9:26:87:81:d0:6f:47:c8:5f:af:54:a2:39:
87:1e:2f:26:42:37:bb:fe:da:89:e0:e8:cf:92:10:
70:73:0a:d4:91:d6:76:f8:63:43:9a:48:5f:28:11:
aa:65:64:16:86:91:8a:e8:aa:31:d9:af:13:2e:78:
46:58:24:7c:60:90:a7:60:9a:48:d3:d5:fb:42:13:
0e:01:e2:8f:c3:73:e7:50:9b:72:32:9b:c7:23:23:
9e:99:d2:3f:a1:00:f2:f1:90:21:0b:5d:86:55:22:
a8:0f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
52:73:E9:92:7D:8B:4E:61:9A:6E:16:CF:39:3C:B3:F8:A6:D2:89:90
X509v3 Authority Key Identifier:
keyid:50:EA:5A:CB:44:7B:2C:EB:93:2A:03:F2:90:08:2D:C7:6F:8E:40:E3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UOpay0R7LOuTKgPykAgtx2-OQOM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2f/10edef-253d-49b1-969e-5ca8ac18096d/1/UOpay0R7LOuTKgPykAgtx2-OQOM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2f/10edef-253d-49b1-969e-5ca8ac18096d/1/UOpay0R7LOuTKgPykAgtx2-OQOM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
31:3a:13:63:f5:2f:c7:06:48:f1:ed:9d:c9:d5:fb:0a:12:f6:
50:91:7b:52:4b:b3:2d:62:14:b3:e6:49:34:9a:98:33:fb:ad:
6f:18:a4:db:09:c3:2e:14:fb:40:74:f6:08:79:e6:30:ec:7a:
b8:58:b6:17:1b:65:f2:cc:33:a5:3b:a7:5e:a5:b5:b0:a4:d8:
86:20:98:44:ca:bc:69:e3:11:7d:2c:7e:fe:c8:83:a9:d9:03:
ba:5d:72:03:a7:93:df:97:36:4c:d0:61:32:00:86:a5:3d:11:
39:66:79:3c:48:c8:e5:06:2c:98:e3:4e:e7:0e:4a:04:c3:24:
be:5a:74:29:7e:ca:82:3b:6c:66:a5:48:a4:cd:98:b1:04:b9:
e2:95:82:f8:bf:e4:79:c5:41:a1:3d:b5:83:4a:75:9a:81:b9:
b3:d4:7f:f8:ea:de:56:16:51:ca:04:3e:dc:58:28:c5:0f:35:
65:d1:9f:27:0c:56:e1:6b:6e:69:1e:05:b8:66:11:ca:73:c9:
28:9c:10:81:f1:18:fe:2e:1d:15:51:fe:c3:51:03:b2:19:45:
de:3e:ec:b9:04:5d:85:35:8a:66:3b:cf:93:e3:6f:96:ba:71:
3b:ac:7a:44:5d:92:fe:ea:2d:ae:2e:0e:5f:d9:ff:ad:22:36:
cf:9e:9e:dd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:46:03 2025 by rpki-client