Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/34/9d43cb-841c-40f2-9d9f-75f47f07c4e3/1/UnB4bxfEG9AWJvctsjnyCLUYm7A.mft
File: UnB4bxfEG9AWJvctsjnyCLUYm7A.mft (raw, json)
Hash identifier: XRvQdkvMqCdHP9HS28RnHvW3Xy2PPsA7mXz5q4uYExA=
Subject key identifier: DD:63:EE:57:60:F8:82:AD:44:AE:8F:23:4C:72:1D:98:C3:B5:8F:79
Authority key identifier: 52:70:78:6F:17:C4:1B:D0:16:26:F7:2D:B2:39:F2:08:B5:18:9B:B0
Certificate issuer: /CN=5270786f17c41bd01626f72db239f208b5189bb0
Certificate serial: 0196526D8681A3323B245621F4946C5C150C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UnB4bxfEG9AWJvctsjnyCLUYm7A.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/34/9d43cb-841c-40f2-9d9f-75f47f07c4e3/1/UnB4bxfEG9AWJvctsjnyCLUYm7A.mft
Manifest number: 1500
Signing time: Sun 20 Apr 2025 09:00:31 +0000
Manifest this update: Sun 20 Apr 2025 09:00:31 +0000
Manifest next update: Mon 21 Apr 2025 09:00:31 +0000
Files and hashes: 1: DmHJvnXYNCZG6CwLW6LsQtmujI4.roa (hash: x67qTlyXrzA3beyYfkqEGco6s6alggLnNjlSZnKsSr0=)
2: UnB4bxfEG9AWJvctsjnyCLUYm7A.crl (hash: KecP+fnFpR3jkJd/FOsHzlFGin5zqOk0PpYbFWeVGKY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/34/9d43cb-841c-40f2-9d9f-75f47f07c4e3/1/UnB4bxfEG9AWJvctsjnyCLUYm7A.crl
rsync://rpki.ripe.net/repository/DEFAULT/34/9d43cb-841c-40f2-9d9f-75f47f07c4e3/1/UnB4bxfEG9AWJvctsjnyCLUYm7A.mft
rsync://rpki.ripe.net/repository/DEFAULT/UnB4bxfEG9AWJvctsjnyCLUYm7A.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 21 Apr 2025 07:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:52:6d:86:81:a3:32:3b:24:56:21:f4:94:6c:5c:15:0c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5270786f17c41bd01626f72db239f208b5189bb0
Validity
Not Before: Apr 20 09:00:31 2025 GMT
Not After : Apr 21 09:00:31 2025 GMT
Subject: CN=dd63ee5760f882ad44ae8f234c721d98c3b58f79
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:04:18:a4:8e:83:04:5d:31:2a:6f:76:f9:76:
5b:09:e2:a8:f0:c9:d3:6a:24:e8:c2:50:14:f2:c2:
24:7c:70:a7:4a:5f:e4:59:58:72:4a:c5:0b:6a:a2:
52:87:d4:eb:6b:a4:8e:2f:c5:65:c7:4c:ee:8e:c1:
aa:f5:7a:11:e0:73:a8:ed:09:dc:53:d3:d2:af:b9:
d2:cd:d3:2c:b3:09:05:d1:a8:18:4c:83:60:db:1a:
33:e5:31:ed:b9:b3:cc:67:05:4f:70:01:d0:3c:ca:
09:99:ac:f2:e9:06:67:36:0b:c5:94:52:7d:71:94:
82:a7:5f:66:e5:0c:1b:a1:28:97:85:4d:42:12:09:
05:4b:98:8f:40:ad:36:07:7e:17:c5:fd:a7:4a:fb:
89:13:ed:8c:e6:c9:af:2d:e0:85:58:ed:41:d5:22:
69:36:f3:f5:42:9c:b8:bb:58:e5:06:03:79:6f:d4:
7b:aa:e0:df:31:02:35:68:22:17:79:66:b5:e6:61:
9b:90:87:5b:84:9f:c6:14:89:e5:d4:45:30:b0:82:
82:2c:05:c3:f1:16:52:50:fd:24:a8:19:8d:66:97:
d0:7b:fe:34:2f:05:9a:69:4f:e0:03:0d:81:a0:02:
63:7a:e8:f7:0c:0e:5e:2c:27:91:ab:7d:4b:97:3b:
5e:1f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DD:63:EE:57:60:F8:82:AD:44:AE:8F:23:4C:72:1D:98:C3:B5:8F:79
X509v3 Authority Key Identifier:
keyid:52:70:78:6F:17:C4:1B:D0:16:26:F7:2D:B2:39:F2:08:B5:18:9B:B0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UnB4bxfEG9AWJvctsjnyCLUYm7A.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/34/9d43cb-841c-40f2-9d9f-75f47f07c4e3/1/UnB4bxfEG9AWJvctsjnyCLUYm7A.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/34/9d43cb-841c-40f2-9d9f-75f47f07c4e3/1/UnB4bxfEG9AWJvctsjnyCLUYm7A.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
4e:87:d0:66:c4:a6:b3:bf:e6:1f:3d:27:ae:6c:e7:e7:45:01:
57:c6:e6:05:d0:41:1f:45:f8:17:29:13:3f:e0:15:42:7f:ad:
04:f3:09:45:dc:0c:1d:b9:e6:58:74:7a:30:9c:a6:7a:33:48:
2f:c6:e8:54:21:72:f2:39:16:5a:f4:d8:bb:4f:b6:af:84:76:
78:03:cf:27:46:11:7b:be:bf:de:8a:4c:72:83:fd:b2:07:a3:
ea:46:ef:0e:4e:13:33:fa:cc:51:35:43:3e:be:72:2f:36:5a:
5d:a6:4c:83:ec:90:fc:3d:aa:90:f4:64:e0:00:16:39:96:03:
c2:ec:82:5a:0f:2d:68:9c:3c:79:a9:57:dc:fb:3b:01:9d:4b:
f6:39:c4:05:21:02:73:9a:be:10:b2:ac:c7:73:88:84:ee:78:
13:c6:0a:80:45:ab:0a:2f:24:be:6d:0d:b1:e0:3d:11:1d:49:
27:73:d8:5b:b6:27:73:3b:50:1b:8d:66:b0:17:2c:21:65:af:
1f:d8:7e:66:68:5c:9e:62:d5:83:6b:17:c9:66:ae:b8:d5:70:
93:fb:dd:b8:04:ca:49:8a:1b:03:54:6d:86:bf:a8:2d:d6:16:
8e:94:34:79:38:33:e7:fb:6b:7f:11:46:93:94:2c:66:e8:bb:
3a:53:ef:b0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 20 12:19:43 2025 by rpki-client