Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2f/8c09b3-f6d8-4c9a-964c-8527c9b3e75f/1/uqI_dArVZMVpO3cJHHGzwDE2pYA.mft
File: uqI_dArVZMVpO3cJHHGzwDE2pYA.mft (raw, json)
Hash identifier: GBkrlZHLRFnqNNLjaP65pNi83yUjSRMAnkT4jKm5hYU=
Subject key identifier: 26:4C:C8:0D:0C:99:2E:20:13:EF:EC:FA:0F:6A:46:F4:27:4E:E7:D5
Authority key identifier: BA:A2:3F:74:0A:D5:64:C5:69:3B:77:09:1C:71:B3:C0:31:36:A5:80
Certificate issuer: /CN=baa23f740ad564c5693b77091c71b3c03136a580
Certificate serial: 0195903DEAE9507C20206E8C252EF4DF156B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/uqI_dArVZMVpO3cJHHGzwDE2pYA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2f/8c09b3-f6d8-4c9a-964c-8527c9b3e75f/1/uqI_dArVZMVpO3cJHHGzwDE2pYA.mft
Manifest number: 0910
Signing time: Thu 13 Mar 2025 16:02:11 +0000
Manifest this update: Thu 13 Mar 2025 16:02:11 +0000
Manifest next update: Fri 14 Mar 2025 16:02:11 +0000
Files and hashes: 1: gQl4YCr829YOGRu3QQEM_8QNnRo.roa (hash: 468s9eqjwKzKxWWYEkQfsVXrMKlrp7YiLVsT2AanKV4=)
2: uqI_dArVZMVpO3cJHHGzwDE2pYA.crl (hash: KQzapFlQZwu8P19BMhKo8jFUL8QlgKRH7wpe1LGHy5c=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2f/8c09b3-f6d8-4c9a-964c-8527c9b3e75f/1/uqI_dArVZMVpO3cJHHGzwDE2pYA.crl
rsync://rpki.ripe.net/repository/DEFAULT/2f/8c09b3-f6d8-4c9a-964c-8527c9b3e75f/1/uqI_dArVZMVpO3cJHHGzwDE2pYA.mft
rsync://rpki.ripe.net/repository/DEFAULT/uqI_dArVZMVpO3cJHHGzwDE2pYA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 14 Mar 2025 15:28:49 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:90:3d:ea:e9:50:7c:20:20:6e:8c:25:2e:f4:df:15:6b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=baa23f740ad564c5693b77091c71b3c03136a580
Validity
Not Before: Mar 13 16:02:11 2025 GMT
Not After : Mar 14 16:02:11 2025 GMT
Subject: CN=264cc80d0c992e2013efecfa0f6a46f4274ee7d5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:89:ec:07:ec:0f:ef:6f:b6:56:57:de:02:7d:03:
d3:ae:01:2f:26:4d:4a:f2:b5:03:0b:8b:50:75:c0:
5f:c1:ad:69:f2:bd:ae:4e:ff:e7:e1:1b:39:3b:b0:
bc:ae:77:9f:d1:bf:1c:83:dd:58:b3:ea:2c:a6:98:
3f:d0:20:1c:90:ef:e5:f0:ac:39:1b:c5:c7:c5:aa:
03:ab:1e:99:b4:56:29:50:c1:37:3d:ae:63:64:70:
fc:90:45:63:21:51:cc:6f:3c:3f:b3:0a:0e:bc:85:
b3:b2:58:64:4d:19:82:5a:1d:9f:49:12:d0:dc:6c:
ae:43:90:2a:50:75:92:c7:5d:79:71:dd:06:e1:72:
02:93:07:55:fc:95:5b:8e:f6:df:3d:de:74:9e:fc:
0b:35:40:4b:0c:52:40:f9:ad:a2:2c:d1:c4:b4:48:
5a:d6:60:77:98:f0:28:18:37:5e:c6:81:7b:75:b2:
bc:a4:53:80:25:9a:1b:95:e6:b2:7f:5e:45:9b:9e:
e5:95:48:7c:01:fd:f5:94:eb:ce:6a:cb:a7:9e:ee:
5b:62:72:50:2f:2d:c3:d9:39:ce:af:1e:0a:ec:44:
32:07:7a:58:85:22:7d:2f:d1:f5:43:76:36:b4:46:
3a:df:92:09:6c:05:b6:cc:7d:a3:71:02:66:6c:34:
5c:77
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
26:4C:C8:0D:0C:99:2E:20:13:EF:EC:FA:0F:6A:46:F4:27:4E:E7:D5
X509v3 Authority Key Identifier:
keyid:BA:A2:3F:74:0A:D5:64:C5:69:3B:77:09:1C:71:B3:C0:31:36:A5:80
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/uqI_dArVZMVpO3cJHHGzwDE2pYA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2f/8c09b3-f6d8-4c9a-964c-8527c9b3e75f/1/uqI_dArVZMVpO3cJHHGzwDE2pYA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2f/8c09b3-f6d8-4c9a-964c-8527c9b3e75f/1/uqI_dArVZMVpO3cJHHGzwDE2pYA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
6b:3b:aa:ac:15:07:5e:47:59:fb:59:82:a7:12:e8:1e:9b:2b:
58:37:48:12:d3:87:6b:6f:e6:aa:e5:06:d4:b4:dc:fc:94:e9:
68:09:1a:3d:61:fe:fb:6f:2c:78:50:61:be:9a:d8:4b:d2:5f:
39:c2:6a:54:fc:1b:03:2b:ec:82:7d:3c:79:51:7d:dc:ec:89:
fb:2e:1d:3a:30:8e:16:e1:87:d0:e0:08:f7:c7:c2:89:bd:f9:
38:63:48:4c:9e:0b:f1:3f:d5:b4:48:f5:c7:83:48:6c:35:5a:
2b:bc:57:55:a9:21:08:77:af:21:98:ab:70:1e:e9:76:7a:ef:
9f:1a:0b:2e:09:e7:de:1c:16:a1:7d:5a:04:a0:26:8d:a0:73:
53:d5:5b:1d:8c:45:2c:fc:ef:9e:ce:55:00:9b:f9:92:7d:79:
3d:2b:21:43:03:8b:d2:ac:90:5f:ba:c1:41:4f:9f:85:59:78:
7e:a0:fd:a1:ee:0c:24:d1:55:61:21:dc:23:b6:b8:1d:fd:2c:
01:76:57:b1:e8:8e:bb:96:88:93:d6:e3:6f:19:c5:58:c4:19:
a5:61:a1:97:cc:0e:5f:7b:7e:3b:ba:fb:c3:c5:49:58:75:3d:
27:d3:92:f8:8c:b0:2e:54:f5:ad:da:79:fc:cf:e6:a2:73:ab:
30:43:25:93
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 13 20:29:12 2025 by rpki-client