Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3d/6b168f-2d51-4882-a866-29b4f92ac8fd/1/dUI-b2St_Fh6CPgawqySYOsu1hU.mft
File: dUI-b2St_Fh6CPgawqySYOsu1hU.mft (raw, json)
Hash identifier: hJ/sRekWWVd6ooQQ6ilmM4b3pi9qRY81uCHntVbOA5Q=
Subject key identifier: 98:F4:EB:21:47:49:D7:97:4A:31:0D:C6:8C:75:CE:0A:43:4F:07:2C
Authority key identifier: 75:42:3E:6F:64:AD:FC:58:7A:08:F8:1A:C2:AC:92:60:EB:2E:D6:15
Certificate issuer: /CN=75423e6f64adfc587a08f81ac2ac9260eb2ed615
Certificate serial: 019655377048DA2E30EC94985F4FC7CBE6C3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dUI-b2St_Fh6CPgawqySYOsu1hU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3d/6b168f-2d51-4882-a866-29b4f92ac8fd/1/dUI-b2St_Fh6CPgawqySYOsu1hU.mft
Manifest number: 0B6F
Signing time: Sun 20 Apr 2025 22:00:18 +0000
Manifest this update: Sun 20 Apr 2025 22:00:18 +0000
Manifest next update: Mon 21 Apr 2025 22:00:18 +0000
Files and hashes: 1: dUI-b2St_Fh6CPgawqySYOsu1hU.crl (hash: j/lu+6w+bfc+Y4p4BvEaWL+RblPJ3VXE3D8sVcFaApI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3d/6b168f-2d51-4882-a866-29b4f92ac8fd/1/dUI-b2St_Fh6CPgawqySYOsu1hU.crl
rsync://rpki.ripe.net/repository/DEFAULT/3d/6b168f-2d51-4882-a866-29b4f92ac8fd/1/dUI-b2St_Fh6CPgawqySYOsu1hU.mft
rsync://rpki.ripe.net/repository/DEFAULT/dUI-b2St_Fh6CPgawqySYOsu1hU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 21 Apr 2025 22:00:18 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:55:37:70:48:da:2e:30:ec:94:98:5f:4f:c7:cb:e6:c3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=75423e6f64adfc587a08f81ac2ac9260eb2ed615
Validity
Not Before: Apr 20 22:00:18 2025 GMT
Not After : Apr 21 22:00:18 2025 GMT
Subject: CN=98f4eb214749d7974a310dc68c75ce0a434f072c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9b:a5:46:ff:ff:c9:24:d9:f4:9e:cd:aa:ae:49:
6f:4d:26:f0:ae:ef:fb:7d:ce:19:7a:f9:f8:fc:c0:
35:cb:a1:f7:98:e0:88:0b:b7:55:ce:65:97:a6:cc:
d2:89:9e:c8:c5:d8:db:a9:a1:46:5d:72:63:1b:a5:
d5:3d:73:7a:16:d5:52:02:4b:b8:b1:8a:d2:ef:5b:
93:01:82:3c:bb:d8:b7:b9:6d:c2:f0:54:b7:53:99:
11:07:05:53:bb:ce:13:56:9b:52:19:db:29:be:f7:
41:8d:37:65:c9:30:77:d7:d6:12:f0:54:d0:5f:51:
11:61:e2:3a:77:2d:72:69:b8:9e:07:5c:84:86:d4:
42:16:be:46:19:59:ec:6f:2e:25:2e:3a:7a:89:72:
eb:fd:6e:b7:4e:2f:49:18:0e:bd:b8:4f:32:51:da:
fd:dc:44:34:2e:ca:31:62:aa:1a:24:c0:2d:3d:06:
16:03:a9:a6:c6:c7:6a:70:c0:09:7f:8c:77:8a:28:
0b:9d:ad:74:2c:76:63:70:a2:5e:80:cb:05:70:ee:
64:d7:45:0e:c4:bf:1f:c3:7c:ed:f0:25:a0:5d:be:
5f:ef:1f:c3:d8:bd:eb:cc:07:9a:ea:88:97:58:ee:
dc:07:8e:25:8b:a4:96:10:33:46:1a:e5:ee:ef:14:
bc:07
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
98:F4:EB:21:47:49:D7:97:4A:31:0D:C6:8C:75:CE:0A:43:4F:07:2C
X509v3 Authority Key Identifier:
keyid:75:42:3E:6F:64:AD:FC:58:7A:08:F8:1A:C2:AC:92:60:EB:2E:D6:15
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dUI-b2St_Fh6CPgawqySYOsu1hU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3d/6b168f-2d51-4882-a866-29b4f92ac8fd/1/dUI-b2St_Fh6CPgawqySYOsu1hU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3d/6b168f-2d51-4882-a866-29b4f92ac8fd/1/dUI-b2St_Fh6CPgawqySYOsu1hU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
8b:f0:9d:5e:06:12:eb:66:ea:06:cd:a1:48:30:20:d7:ed:34:
5b:56:e5:c0:49:d2:b8:20:38:3a:3d:a2:6a:1d:30:5d:f3:a0:
6c:7b:af:50:f6:79:9f:ad:43:24:50:9c:77:03:da:b1:73:59:
97:1f:0a:89:ad:8e:ab:71:32:da:a2:68:a6:8e:35:bc:76:34:
8e:7b:18:9a:48:0a:f6:7a:ab:84:e7:03:5b:50:99:2f:0c:0c:
2a:c9:f8:98:b9:3a:ff:ac:e7:d7:14:72:60:08:cf:f9:dc:4e:
e9:7f:09:8a:26:00:8e:8e:e0:b6:dc:50:df:f1:7e:3e:c3:7b:
bd:d8:39:33:b1:48:6f:de:b1:de:85:d5:57:e6:db:68:67:61:
7f:fc:d8:74:2b:4c:e7:34:2f:46:03:31:ab:f0:58:3b:34:69:
48:27:8c:98:7c:8b:6e:5f:be:7e:65:f7:da:79:bf:60:d4:6a:
f8:26:a4:50:fb:7f:e5:97:44:58:be:69:9f:e1:73:5a:56:35:
72:43:b4:b3:ed:6b:53:db:e5:fe:33:ed:be:df:0d:9a:74:46:
23:ef:7e:37:35:a9:63:72:4b:0c:18:3d:4b:17:61:a2:c4:6b:
4c:88:9c:04:14:c1:05:a2:3b:c0:a0:32:f2:00:86:94:6f:c8:
b6:fb:24:6a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 21 02:55:34 2025 by rpki-client