Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/34/9d43cb-841c-40f2-9d9f-75f47f07c4e3/1/UnB4bxfEG9AWJvctsjnyCLUYm7A.mft
File: UnB4bxfEG9AWJvctsjnyCLUYm7A.mft (raw, json)
Hash identifier: VQi+U0biWUZaYOAI9HwIcnzu4/nbQWdNzxOBD/8LbkQ=
Subject key identifier: C8:01:29:5E:EF:A2:42:90:D3:65:B3:63:80:F3:8D:84:8A:4A:3C:0F
Authority key identifier: 52:70:78:6F:17:C4:1B:D0:16:26:F7:2D:B2:39:F2:08:B5:18:9B:B0
Certificate issuer: /CN=5270786f17c41bd01626f72db239f208b5189bb0
Certificate serial: 01958B84B46315034FEED04F610BAFE45BA2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UnB4bxfEG9AWJvctsjnyCLUYm7A.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/34/9d43cb-841c-40f2-9d9f-75f47f07c4e3/1/UnB4bxfEG9AWJvctsjnyCLUYm7A.mft
Manifest number: 1499
Signing time: Wed 12 Mar 2025 18:01:24 +0000
Manifest this update: Wed 12 Mar 2025 18:01:24 +0000
Manifest next update: Thu 13 Mar 2025 18:01:24 +0000
Files and hashes: 1: DmHJvnXYNCZG6CwLW6LsQtmujI4.roa (hash: x67qTlyXrzA3beyYfkqEGco6s6alggLnNjlSZnKsSr0=)
2: UnB4bxfEG9AWJvctsjnyCLUYm7A.crl (hash: E+bgjiK3r2DjY9CruIwMShK9Kj84K57WqSxOaT0cIxE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/34/9d43cb-841c-40f2-9d9f-75f47f07c4e3/1/UnB4bxfEG9AWJvctsjnyCLUYm7A.crl
rsync://rpki.ripe.net/repository/DEFAULT/34/9d43cb-841c-40f2-9d9f-75f47f07c4e3/1/UnB4bxfEG9AWJvctsjnyCLUYm7A.mft
rsync://rpki.ripe.net/repository/DEFAULT/UnB4bxfEG9AWJvctsjnyCLUYm7A.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 13 Mar 2025 18:01:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:8b:84:b4:63:15:03:4f:ee:d0:4f:61:0b:af:e4:5b:a2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5270786f17c41bd01626f72db239f208b5189bb0
Validity
Not Before: Mar 12 18:01:24 2025 GMT
Not After : Mar 13 18:01:24 2025 GMT
Subject: CN=c801295eefa24290d365b36380f38d848a4a3c0f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:fb:c4:68:80:c1:f5:be:0e:18:a8:37:14:3b:
13:a5:b3:21:3e:3c:ab:98:54:1f:0f:e2:19:d6:63:
dc:21:8a:66:57:4a:78:ac:e5:62:5b:d6:e3:d8:c4:
56:37:b0:2a:34:0b:bb:a8:6f:b1:77:df:60:d8:93:
4c:ca:fd:c6:d2:4c:50:08:55:e6:99:49:34:0c:5a:
a2:4d:62:22:c9:38:7e:5d:2c:4e:8f:2f:30:1f:6b:
f7:16:8f:a6:ad:dc:26:c8:bb:5c:73:83:1b:b6:94:
59:19:82:d5:fb:9b:aa:87:70:df:6d:21:be:76:e5:
2a:42:b5:6c:99:44:a3:bf:8a:d1:a9:42:a7:c9:b1:
11:b5:cb:0f:fc:a5:15:b9:61:a9:e4:b8:da:59:3a:
72:72:66:95:af:25:4b:85:0b:e4:86:b5:6e:8f:b4:
a0:8e:0b:c8:89:04:8d:7b:20:e9:fa:8c:64:90:ac:
be:20:d6:7d:88:5b:b7:92:98:86:ba:70:62:b3:ad:
6e:0c:28:bc:8a:57:7c:44:ac:04:09:4a:d0:7b:12:
7d:04:6a:59:5a:f3:14:ef:3c:40:92:ea:5f:df:17:
d5:f4:40:01:8e:4c:b3:b8:de:a2:d2:80:0c:25:dc:
9c:6c:6b:6e:47:cd:ad:aa:8c:e3:af:dc:c5:83:b6:
0d:67
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C8:01:29:5E:EF:A2:42:90:D3:65:B3:63:80:F3:8D:84:8A:4A:3C:0F
X509v3 Authority Key Identifier:
keyid:52:70:78:6F:17:C4:1B:D0:16:26:F7:2D:B2:39:F2:08:B5:18:9B:B0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UnB4bxfEG9AWJvctsjnyCLUYm7A.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/34/9d43cb-841c-40f2-9d9f-75f47f07c4e3/1/UnB4bxfEG9AWJvctsjnyCLUYm7A.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/34/9d43cb-841c-40f2-9d9f-75f47f07c4e3/1/UnB4bxfEG9AWJvctsjnyCLUYm7A.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
1e:c7:6c:8b:75:de:44:ab:f6:d6:7b:2d:2f:66:b5:a5:31:11:
e2:2e:de:7f:5b:cf:89:5d:80:1b:7e:90:fc:ce:4f:29:2b:41:
b0:ab:f0:e1:36:b9:2a:51:e6:c6:3d:74:fb:8e:26:c6:c3:f3:
5d:8c:ef:c7:24:94:a0:7c:4c:fc:f9:b7:fd:fa:a1:d4:6c:9e:
13:34:df:bb:1a:dd:76:20:ab:1a:d3:21:fd:5a:d0:f1:34:79:
1e:cb:96:58:ee:c8:29:32:31:41:43:be:52:b9:80:43:71:a8:
a4:a2:a0:57:e0:fc:7f:25:81:6a:88:3a:40:21:78:fe:a5:75:
89:f1:dd:02:a0:8a:f7:2d:fe:f5:0d:97:eb:26:99:30:4a:9a:
36:be:72:46:c0:36:1a:95:7f:e0:83:60:8f:bb:b6:12:45:27:
a3:82:48:5c:ab:a5:4f:9e:91:58:57:de:4a:9e:af:d9:d8:f7:
80:96:d8:bb:4c:e4:f2:47:d6:2a:16:18:1c:b9:5e:1b:45:af:
48:92:04:7f:4c:73:2e:40:0e:0a:18:b0:5a:8a:9b:a8:99:0e:
7e:f0:72:0d:ec:f8:b7:6b:24:58:bd:08:fa:b8:5f:30:ef:e7:
63:44:ad:3a:c7:19:2c:23:a8:2e:93:86:f3:4f:bf:33:a1:2f:
8d:0c:cd:dd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 13 02:53:38 2025 by rpki-client