Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2f/10edef-253d-49b1-969e-5ca8ac18096d/1/UOpay0R7LOuTKgPykAgtx2-OQOM.mft
File: UOpay0R7LOuTKgPykAgtx2-OQOM.mft (raw, json)
Hash identifier: 3FokFz0dFg8O8RlIFp2Q483u2MOctz8KJBrw41RPMlg=
Subject key identifier: 2A:4D:9A:7B:32:47:2C:BB:58:FC:D6:15:79:2D:0B:4F:0D:4B:64:43
Authority key identifier: 50:EA:5A:CB:44:7B:2C:EB:93:2A:03:F2:90:08:2D:C7:6F:8E:40:E3
Certificate issuer: /CN=50ea5acb447b2ceb932a03f290082dc76f8e40e3
Certificate serial: 01958F2A75C9E91E965856478B640DC91C1B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UOpay0R7LOuTKgPykAgtx2-OQOM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2f/10edef-253d-49b1-969e-5ca8ac18096d/1/UOpay0R7LOuTKgPykAgtx2-OQOM.mft
Manifest number: 1497
Signing time: Thu 13 Mar 2025 11:01:19 +0000
Manifest this update: Thu 13 Mar 2025 11:01:19 +0000
Manifest next update: Fri 14 Mar 2025 11:01:19 +0000
Files and hashes: 1: UOpay0R7LOuTKgPykAgtx2-OQOM.crl (hash: fqB+DzfTPDQgzS9WKw6cK6zaPQOAmEO8Kqe8zLk7IvE=)
2: UPs4nn0eBay_fIEXwzFrziOGHlg.roa (hash: n1rQX2er8ehY5mv/Oe6cZ3YcfGOcUxMxZAxeUBrIysk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2f/10edef-253d-49b1-969e-5ca8ac18096d/1/UOpay0R7LOuTKgPykAgtx2-OQOM.crl
rsync://rpki.ripe.net/repository/DEFAULT/2f/10edef-253d-49b1-969e-5ca8ac18096d/1/UOpay0R7LOuTKgPykAgtx2-OQOM.mft
rsync://rpki.ripe.net/repository/DEFAULT/UOpay0R7LOuTKgPykAgtx2-OQOM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 14 Mar 2025 11:01:19 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:8f:2a:75:c9:e9:1e:96:58:56:47:8b:64:0d:c9:1c:1b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=50ea5acb447b2ceb932a03f290082dc76f8e40e3
Validity
Not Before: Mar 13 11:01:19 2025 GMT
Not After : Mar 14 11:01:19 2025 GMT
Subject: CN=2a4d9a7b32472cbb58fcd615792d0b4f0d4b6443
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8a:35:de:fe:de:fc:e6:5f:6c:81:23:b5:36:b7:
40:22:8d:8a:99:24:d3:72:2d:52:e1:db:71:60:eb:
9a:ac:bd:dc:8c:db:55:f1:2c:68:9f:c2:af:85:d3:
17:4f:2a:c5:84:64:5f:68:5b:6e:94:21:8d:0f:e7:
0b:12:1f:50:ea:f2:7f:b9:e8:a2:84:2d:0d:e1:15:
61:02:31:8e:82:2f:a4:e0:ba:f4:e1:f6:7f:e6:bb:
bf:d0:49:7e:44:f9:17:61:16:8a:d9:bd:b5:45:21:
ef:bc:99:27:85:09:c2:5b:86:51:36:9d:06:02:10:
ce:7b:40:54:d2:56:a5:04:70:f8:d7:b3:14:a1:87:
2b:20:bd:f5:64:42:ed:ee:6b:b2:c9:52:5f:33:73:
ff:cd:7d:19:f9:eb:e6:65:27:0d:a7:00:88:30:a1:
4e:cd:52:63:d4:7f:47:1d:19:46:bc:a3:30:60:cb:
44:e9:a4:cc:fe:19:a5:62:43:24:aa:36:87:c9:f9:
4b:a8:13:3f:f2:c2:e7:85:d1:e7:13:1d:f8:48:f6:
0e:f8:bc:cf:6f:dc:28:95:96:86:49:41:e0:5c:86:
e5:3b:2f:4d:bb:4b:4e:16:13:15:a0:cb:fd:92:71:
f9:3d:2f:cb:7a:0c:e9:aa:db:bd:fa:89:c8:fb:9d:
08:f1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2A:4D:9A:7B:32:47:2C:BB:58:FC:D6:15:79:2D:0B:4F:0D:4B:64:43
X509v3 Authority Key Identifier:
keyid:50:EA:5A:CB:44:7B:2C:EB:93:2A:03:F2:90:08:2D:C7:6F:8E:40:E3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UOpay0R7LOuTKgPykAgtx2-OQOM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2f/10edef-253d-49b1-969e-5ca8ac18096d/1/UOpay0R7LOuTKgPykAgtx2-OQOM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2f/10edef-253d-49b1-969e-5ca8ac18096d/1/UOpay0R7LOuTKgPykAgtx2-OQOM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
05:d4:5f:a7:99:64:09:52:02:e6:09:b7:bb:a7:dd:b5:44:13:
3a:fe:6a:b9:68:5f:e1:b4:a7:d6:49:db:a6:7e:cd:0e:be:26:
31:97:5b:ce:a5:ee:0e:c0:c4:39:65:6a:67:7a:34:d3:e4:41:
61:98:14:a9:cf:88:b5:70:0d:2b:e7:ae:26:db:54:64:6a:63:
38:f4:7e:78:b4:65:d1:ff:e1:cb:0c:e3:24:a9:45:ba:f3:22:
e7:80:fc:ba:e3:2f:5a:98:3b:27:52:1e:ac:ae:86:08:1c:88:
92:24:37:5b:c2:05:8f:c8:b7:c5:dc:2c:a4:70:5e:ff:7b:1a:
34:0d:9f:e9:85:5c:28:63:37:06:58:13:0c:4b:8b:c3:6f:c8:
b4:79:30:5d:c4:48:2c:b0:03:6b:53:0c:cc:52:eb:e5:1f:0f:
7f:1c:d2:52:4b:bc:0f:d1:56:61:df:f8:f7:68:eb:4a:d6:39:
cb:67:26:3d:bd:2d:06:e5:17:b0:2c:3f:4a:a2:8d:ad:91:a1:
6c:7c:70:9b:3c:37:f2:25:97:8f:7f:84:16:f5:bd:6a:fc:b5:
62:4d:5c:9c:30:bf:6c:26:c2:2e:99:ce:3e:6c:84:62:1c:66:
74:9e:7e:43:64:ea:e7:19:06:71:99:31:85:52:9f:be:15:ba:
80:33:71:18
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZWPKnXJ6R6WWFZHi2QNyRwbMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDUwZWE1YWNiNDQ3YjJjZWI5MzJhMDNmMjkwMDgyZGM3NmY4
ZTQwZTMwHhcNMjUwMzEzMTEwMTE5WhcNMjUwMzE0MTEwMTE5WjAzMTEwLwYDVQQD
EygyYTRkOWE3YjMyNDcyY2JiNThmY2Q2MTU3OTJkMGI0ZjBkNGI2NDQzMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAijXe/t785l9sgSO1NrdAIo2KmSTT
ci1S4dtxYOuarL3cjNtV8Sxon8KvhdMXTyrFhGRfaFtulCGND+cLEh9Q6vJ/ueii
hC0N4RVhAjGOgi+k4Lr04fZ/5ru/0El+RPkXYRaK2b21RSHvvJknhQnCW4ZRNp0G
AhDOe0BU0lalBHD417MUoYcrIL31ZELt7muyyVJfM3P/zX0Z+evmZScNpwCIMKFO
zVJj1H9HHRlGvKMwYMtE6aTM/hmlYkMkqjaHyflLqBM/8sLnhdHnEx34SPYO+LzP
b9wolZaGSUHgXIblOy9Nu0tOFhMVoMv9knH5PS/Legzpqtu9+onI+50I8QIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFCpNmnsyRyy7WPzWFXktC08NS2RDMB8GA1UdIwQY
MBaAFFDqWstEeyzrkyoD8pAILcdvjkDjMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvVU9wYXkwUjdMT3VUS2dQeWtBZ3R4Mi1PUU9NLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yZi8xMGVkZWYtMjUzZC00OWIxLTk2OWUt
NWNhOGFjMTgwOTZkLzEvVU9wYXkwUjdMT3VUS2dQeWtBZ3R4Mi1PUU9NLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8yZi8xMGVkZWYtMjUzZC00OWIxLTk2OWUtNWNhOGFjMTgwOTZk
LzEvVU9wYXkwUjdMT3VUS2dQeWtBZ3R4Mi1PUU9NLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEABdRfp5lk
CVIC5gm3u6fdtUQTOv5quWhf4bSn1knbpn7NDr4mMZdbzqXuDsDEOWVqZ3o00+RB
YZgUqc+ItXANK+euJttUZGpjOPR+eLRl0f/hywzjJKlFuvMi54D8uuMvWpg7J1Ie
rK6GCByIkiQ3W8IFj8i3xdwspHBe/3saNA2f6YVcKGM3BlgTDEuLw2/ItHkwXcRI
LLADa1MMzFLr5R8PfxzSUku8D9FWYd/492jrStY5y2cmPb0tBuUXsCw/SqKNrZGh
bHxwmzw38iWXj3+EFvW9avy1Yk1cnDC/bCbCLpnOPmyEYhxmdJ5+Q2Tq5xkGcZkx
hVKfvhW6gDNxGA==
-----END CERTIFICATE-----
Generated at Thu Mar 13 20:25:30 2025 by rpki-client