Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/35/04e8b2-c76f-4629-95ad-a7d945af14e5/1/U-Ou3ZG-gkUTQtzRyYKDRdtmGl8.mft
File: U-Ou3ZG-gkUTQtzRyYKDRdtmGl8.mft (raw, json)
Hash identifier: XPACNme5yAWvM6nttLxMywS4HuSar+UTaeGr00tT7PE=
Subject key identifier: 32:63:F6:40:69:83:7C:F8:EE:78:B0:9D:5F:B0:4E:10:6B:5C:AB:56
Authority key identifier: 53:E3:AE:DD:91:BE:82:45:13:42:DC:D1:C9:82:83:45:DB:66:1A:5F
Certificate issuer: /CN=53e3aedd91be82451342dcd1c9828345db661a5f
Certificate serial: 019654C97537A09E4C74282CFB0761D9189F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/U-Ou3ZG-gkUTQtzRyYKDRdtmGl8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/35/04e8b2-c76f-4629-95ad-a7d945af14e5/1/U-Ou3ZG-gkUTQtzRyYKDRdtmGl8.mft
Manifest number: 0789
Signing time: Sun 20 Apr 2025 20:00:10 +0000
Manifest this update: Sun 20 Apr 2025 20:00:10 +0000
Manifest next update: Mon 21 Apr 2025 20:00:10 +0000
Files and hashes: 1: If5j4KjsWFg3kwDUxrHpbFCCjpg.roa (hash: iGbVOgQjxfoZ4tZTHfIMlZvCv27war8Yd/ywUcGl39o=)
2: U-Ou3ZG-gkUTQtzRyYKDRdtmGl8.crl (hash: dYIJtN+2UXoxRHHD2XE4ESbZCe4J1VyiEpzRCMuGT0o=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/35/04e8b2-c76f-4629-95ad-a7d945af14e5/1/U-Ou3ZG-gkUTQtzRyYKDRdtmGl8.crl
rsync://rpki.ripe.net/repository/DEFAULT/35/04e8b2-c76f-4629-95ad-a7d945af14e5/1/U-Ou3ZG-gkUTQtzRyYKDRdtmGl8.mft
rsync://rpki.ripe.net/repository/DEFAULT/U-Ou3ZG-gkUTQtzRyYKDRdtmGl8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 21 Apr 2025 20:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:54:c9:75:37:a0:9e:4c:74:28:2c:fb:07:61:d9:18:9f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=53e3aedd91be82451342dcd1c9828345db661a5f
Validity
Not Before: Apr 20 20:00:10 2025 GMT
Not After : Apr 21 20:00:10 2025 GMT
Subject: CN=3263f64069837cf8ee78b09d5fb04e106b5cab56
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:f0:d0:2a:3e:0f:cd:29:e4:bd:9a:f3:7b:f1:
e7:b3:8c:c9:6e:b5:a6:db:04:0b:6a:49:cb:19:79:
71:ca:b6:79:20:90:4f:d7:ac:d2:c8:64:04:75:6f:
61:f2:56:e3:e1:00:af:ee:4e:99:ab:7d:7a:de:a4:
1e:ef:e8:c8:51:e8:4a:17:4e:ea:a3:08:48:2e:96:
fa:06:41:5f:61:36:d8:3d:61:a8:66:a2:4f:82:d5:
b9:eb:b8:a0:09:a3:ab:af:ba:ff:36:39:f7:15:58:
53:54:dc:c7:a3:b8:2d:66:2b:72:79:d4:5d:6e:07:
31:5d:3a:78:b7:08:32:86:ad:20:4d:a7:7b:a0:15:
8d:cb:d8:04:ed:97:ea:2c:79:59:a5:f5:db:97:a9:
f6:f6:76:49:06:19:47:c3:5b:76:ce:84:69:fe:1b:
1a:1e:81:1a:2e:9f:5e:9c:bc:15:ac:a8:0b:f4:6d:
d2:ff:7c:cd:7f:f7:02:07:e1:84:be:74:de:b3:88:
ed:0b:ec:4e:61:69:38:e9:94:4d:f2:7f:e6:bc:c1:
9c:59:7a:e8:1f:32:83:41:7c:f8:65:23:f3:a1:85:
ef:91:48:3c:e7:c9:db:a2:1c:87:23:1d:39:b6:5c:
08:f3:a7:15:e7:e1:95:57:87:b1:52:ca:b7:b3:a8:
74:f9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
32:63:F6:40:69:83:7C:F8:EE:78:B0:9D:5F:B0:4E:10:6B:5C:AB:56
X509v3 Authority Key Identifier:
keyid:53:E3:AE:DD:91:BE:82:45:13:42:DC:D1:C9:82:83:45:DB:66:1A:5F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/U-Ou3ZG-gkUTQtzRyYKDRdtmGl8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/35/04e8b2-c76f-4629-95ad-a7d945af14e5/1/U-Ou3ZG-gkUTQtzRyYKDRdtmGl8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/35/04e8b2-c76f-4629-95ad-a7d945af14e5/1/U-Ou3ZG-gkUTQtzRyYKDRdtmGl8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
8b:49:f7:8d:eb:d2:19:f3:51:c8:2a:8e:3e:fb:32:d0:c5:b9:
1a:c2:79:d8:21:da:2b:01:92:5f:aa:bb:43:ab:2f:9f:fa:af:
89:00:f2:52:d2:75:e6:3c:5a:02:1a:78:d9:ad:8f:d2:1a:b1:
6f:dc:4a:71:26:89:8a:b2:6e:6c:e4:20:87:b5:f9:b8:54:2e:
fd:29:8b:14:d7:6e:30:5b:9e:b0:99:d3:87:5d:76:fd:ee:21:
d0:7d:02:8e:fd:43:fd:dd:ce:e7:7a:10:98:14:f3:6c:23:8c:
5e:75:41:35:65:20:55:17:89:00:ce:7c:83:f3:88:70:17:84:
9b:32:76:b3:ed:a2:08:ff:bc:a2:d0:f0:6c:0d:20:e8:d0:e1:
e3:d3:3a:94:51:45:55:08:e1:c1:41:fa:0c:b3:42:2c:c1:26:
06:28:82:85:79:86:fe:9e:48:1d:59:a6:9a:0e:3a:68:0a:07:
7c:98:14:05:30:9e:1a:82:a2:63:fb:4f:df:28:a0:01:a5:d3:
5e:c4:d3:c7:a7:d7:e5:93:ef:91:b4:ca:e6:b2:6c:e8:47:d5:
59:5b:34:a0:ac:4e:26:ed:9b:0e:2a:17:52:43:59:b4:d5:c4:
4a:ce:cd:f7:76:4c:6c:53:da:56:e6:c4:37:08:4a:b7:12:78:
9a:3e:71:8b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 21 02:43:45 2025 by rpki-client