Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2f/8c09b3-f6d8-4c9a-964c-8527c9b3e75f/1/uqI_dArVZMVpO3cJHHGzwDE2pYA.mft
File: uqI_dArVZMVpO3cJHHGzwDE2pYA.mft (raw, json)
Hash identifier: segG3nNlTgCvx/0bqzUls4qp65V9BGH3AO0yBLwiMFE=
Subject key identifier: F0:7B:F6:94:BE:0D:9A:85:AC:63:FC:23:B2:CB:2F:39:D0:33:95:5D
Authority key identifier: BA:A2:3F:74:0A:D5:64:C5:69:3B:77:09:1C:71:B3:C0:31:36:A5:80
Certificate issuer: /CN=baa23f740ad564c5693b77091c71b3c03136a580
Certificate serial: 01964D7ECFDA852C68E65AC1592CF85E0595
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/uqI_dArVZMVpO3cJHHGzwDE2pYA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2f/8c09b3-f6d8-4c9a-964c-8527c9b3e75f/1/uqI_dArVZMVpO3cJHHGzwDE2pYA.mft
Manifest number: 0972
Signing time: Sat 19 Apr 2025 10:01:18 +0000
Manifest this update: Sat 19 Apr 2025 10:01:18 +0000
Manifest next update: Sun 20 Apr 2025 10:01:18 +0000
Files and hashes: 1: gQl4YCr829YOGRu3QQEM_8QNnRo.roa (hash: 468s9eqjwKzKxWWYEkQfsVXrMKlrp7YiLVsT2AanKV4=)
2: uqI_dArVZMVpO3cJHHGzwDE2pYA.crl (hash: N81mOslrFC1K5KoH+mykD9EVpmZQ7LXBYrNOAq5BA/g=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2f/8c09b3-f6d8-4c9a-964c-8527c9b3e75f/1/uqI_dArVZMVpO3cJHHGzwDE2pYA.crl
rsync://rpki.ripe.net/repository/DEFAULT/2f/8c09b3-f6d8-4c9a-964c-8527c9b3e75f/1/uqI_dArVZMVpO3cJHHGzwDE2pYA.mft
rsync://rpki.ripe.net/repository/DEFAULT/uqI_dArVZMVpO3cJHHGzwDE2pYA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 20 Apr 2025 04:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:4d:7e:cf:da:85:2c:68:e6:5a:c1:59:2c:f8:5e:05:95
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=baa23f740ad564c5693b77091c71b3c03136a580
Validity
Not Before: Apr 19 10:01:18 2025 GMT
Not After : Apr 20 10:01:18 2025 GMT
Subject: CN=f07bf694be0d9a85ac63fc23b2cb2f39d033955d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:26:7f:02:ee:64:42:b6:58:ec:90:1d:8d:09:
53:85:e2:51:74:2e:a5:65:02:88:29:1d:6b:19:5d:
f0:66:b6:38:a2:63:c7:bf:49:24:6a:ae:e0:c4:00:
c9:59:06:18:74:5e:1a:55:0e:78:be:f8:60:c0:19:
8f:1e:42:a8:70:15:c1:0a:41:09:5b:4f:88:dd:fa:
61:e5:00:45:7b:04:43:2d:be:e7:25:8d:5f:19:39:
d3:15:75:7c:e8:ea:fd:1c:e1:98:bd:ef:3b:2b:0e:
76:ef:c0:86:7f:2a:64:c4:90:c4:ed:ac:ed:6c:ac:
6d:ff:4f:2d:5b:31:9d:a2:fd:f4:9d:0c:1d:a4:c3:
19:de:b0:9a:39:24:f1:2d:e5:ce:93:27:f8:4d:ad:
7a:ce:28:bb:b9:84:9d:32:47:96:87:59:0e:bb:cd:
63:de:df:0a:8d:6d:72:ef:57:47:b3:ba:c2:f9:ea:
f1:83:3d:00:57:85:c2:29:12:c4:ed:a3:82:30:2f:
9a:85:9b:4c:fe:68:87:b1:7b:13:4c:82:e1:da:0b:
ee:c0:eb:00:fe:13:78:5e:87:bf:e3:a8:f0:5a:46:
aa:5d:68:46:68:78:3f:82:e0:e1:81:49:d7:29:96:
c1:5e:bc:8d:d0:5f:16:3c:e7:a7:37:9b:20:a4:1c:
a1:97
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F0:7B:F6:94:BE:0D:9A:85:AC:63:FC:23:B2:CB:2F:39:D0:33:95:5D
X509v3 Authority Key Identifier:
keyid:BA:A2:3F:74:0A:D5:64:C5:69:3B:77:09:1C:71:B3:C0:31:36:A5:80
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/uqI_dArVZMVpO3cJHHGzwDE2pYA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2f/8c09b3-f6d8-4c9a-964c-8527c9b3e75f/1/uqI_dArVZMVpO3cJHHGzwDE2pYA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2f/8c09b3-f6d8-4c9a-964c-8527c9b3e75f/1/uqI_dArVZMVpO3cJHHGzwDE2pYA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
8c:45:18:e2:52:53:12:a0:2e:fc:7a:08:b6:5f:b4:26:21:65:
5a:e5:88:25:f5:57:99:61:05:5e:79:6b:a4:37:95:6d:94:56:
27:ea:d6:00:0e:ad:54:31:9b:9b:45:61:24:b6:6e:44:b5:cd:
b2:fd:ca:aa:7a:ea:f1:03:89:7b:9a:ea:ff:72:12:5b:14:4b:
43:05:37:02:74:a2:ff:54:33:87:b9:ef:fc:1c:b1:21:42:c0:
dd:e4:90:15:f9:e4:ae:fe:79:c6:44:f4:28:56:27:62:0f:5c:
e0:cd:53:c5:b9:a0:9a:b4:07:93:17:1b:59:2a:8f:b4:16:6c:
90:b7:9a:0b:f8:6c:44:3a:1f:49:77:03:a3:9e:01:d3:8f:95:
cd:f6:8b:1b:aa:b5:ad:d0:8b:92:46:4a:a3:b8:e5:85:66:05:
37:bf:f7:be:af:26:29:89:88:24:03:45:61:f9:ea:4d:95:c8:
53:5b:af:f7:57:a2:d3:47:42:b7:7b:95:1c:5c:1e:e2:bc:e4:
51:02:e9:34:50:da:c0:70:a7:4e:db:e5:8e:77:b0:5d:f4:cf:
7e:a7:a8:41:8b:64:49:43:0d:30:57:50:79:8c:df:f3:b8:3c:
d2:f2:44:00:3c:fd:ab:1a:40:8d:6a:2d:bd:a1:8c:14:df:27:
77:0b:3a:b4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 19 12:23:13 2025 by rpki-client