Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/49/f58cf3-6909-458a-a51a-5914f9d3378b/1/UTIqxJAgylfHTzsUi8BBAsq63IM.mft
File: UTIqxJAgylfHTzsUi8BBAsq63IM.mft (raw, json)
Hash identifier: EtFq50ldQWM1ReEq+c1M4AGFsnD1OyUJvzch2vlhrec=
Subject key identifier: 6F:7E:2F:68:7A:7D:55:4C:43:B7:D3:A4:31:03:57:CB:96:00:94:7F
Authority key identifier: 51:32:2A:C4:90:20:CA:57:C7:4F:3B:14:8B:C0:41:02:CA:BA:DC:83
Certificate issuer: /CN=51322ac49020ca57c74f3b148bc04102cabadc83
Certificate serial: 01965680FAD06B446A1685580EC13C06462B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UTIqxJAgylfHTzsUi8BBAsq63IM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/49/f58cf3-6909-458a-a51a-5914f9d3378b/1/UTIqxJAgylfHTzsUi8BBAsq63IM.mft
Manifest number: 0FDA
Signing time: Mon 21 Apr 2025 04:00:15 +0000
Manifest this update: Mon 21 Apr 2025 04:00:15 +0000
Manifest next update: Tue 22 Apr 2025 04:00:15 +0000
Files and hashes: 1: UTIqxJAgylfHTzsUi8BBAsq63IM.crl (hash: QlYGA3Qqqsc4gxAu/Xk8pUvvTIrOO7V9/0FxG6JZOeY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/49/f58cf3-6909-458a-a51a-5914f9d3378b/1/UTIqxJAgylfHTzsUi8BBAsq63IM.crl
rsync://rpki.ripe.net/repository/DEFAULT/49/f58cf3-6909-458a-a51a-5914f9d3378b/1/UTIqxJAgylfHTzsUi8BBAsq63IM.mft
rsync://rpki.ripe.net/repository/DEFAULT/UTIqxJAgylfHTzsUi8BBAsq63IM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 22 Apr 2025 01:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:56:80:fa:d0:6b:44:6a:16:85:58:0e:c1:3c:06:46:2b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=51322ac49020ca57c74f3b148bc04102cabadc83
Validity
Not Before: Apr 21 04:00:15 2025 GMT
Not After : Apr 22 04:00:15 2025 GMT
Subject: CN=6f7e2f687a7d554c43b7d3a4310357cb9600947f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9c:83:ea:ed:d2:c9:30:e4:40:6c:9c:5c:04:8d:
85:5d:6b:07:03:36:4f:3a:6c:33:87:c6:62:4b:55:
15:5e:27:00:0d:33:85:97:13:d1:0d:87:e7:93:40:
b8:00:c8:c5:54:5f:24:f5:24:f3:4d:e7:2f:75:ea:
0f:cc:ca:b6:20:35:aa:75:13:61:19:0b:a4:49:66:
ee:0f:25:0e:c9:68:0f:5c:52:a1:b7:78:b6:e7:9c:
db:94:33:a9:41:4f:43:6f:95:c7:48:4d:b3:a3:9c:
85:35:7a:cb:cb:46:0a:21:27:7e:f9:cf:a7:29:a4:
f2:15:a6:bc:fb:2a:18:6d:af:08:d9:26:3d:12:af:
5f:24:2a:b9:5a:48:95:d6:a3:79:5a:5b:1e:a7:b3:
75:8b:c6:69:3a:b2:f4:33:9e:b4:20:a0:5a:59:83:
dd:81:56:e9:ae:b3:5f:0d:a2:30:6a:4e:a3:c0:b7:
2f:ea:76:37:3c:b0:c6:3a:93:49:43:73:5b:a8:c5:
e8:40:fa:6c:ed:77:45:5c:a6:82:35:3b:dc:cd:a6:
a1:68:68:57:39:3f:c8:9e:3f:96:7b:1c:57:80:0d:
6c:83:61:5e:20:bc:6e:46:11:75:a1:85:13:3b:bc:
af:05:ca:50:af:5f:be:20:86:72:8d:6a:42:fa:73:
c7:59
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6F:7E:2F:68:7A:7D:55:4C:43:B7:D3:A4:31:03:57:CB:96:00:94:7F
X509v3 Authority Key Identifier:
keyid:51:32:2A:C4:90:20:CA:57:C7:4F:3B:14:8B:C0:41:02:CA:BA:DC:83
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UTIqxJAgylfHTzsUi8BBAsq63IM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/49/f58cf3-6909-458a-a51a-5914f9d3378b/1/UTIqxJAgylfHTzsUi8BBAsq63IM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/49/f58cf3-6909-458a-a51a-5914f9d3378b/1/UTIqxJAgylfHTzsUi8BBAsq63IM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
33:2e:e6:b1:6a:72:f4:b0:90:27:df:1a:3c:06:03:05:9a:e8:
2d:66:70:5c:55:10:9c:24:fb:81:d5:aa:a9:93:26:f4:34:1c:
ee:72:59:66:5a:bd:cc:07:37:b1:a7:14:55:6b:30:31:89:ff:
a4:9e:f5:71:34:91:e2:df:a1:a1:94:bd:67:2c:81:69:e8:6c:
69:9b:d9:10:78:15:93:ed:95:06:8f:b7:9f:c6:37:a3:a7:3b:
0a:50:4a:8a:e2:2e:7f:cb:95:ea:e5:b2:6c:27:56:81:a4:5f:
1d:e9:27:ec:d4:55:c2:63:b8:76:0a:0c:be:0d:9e:14:10:89:
43:72:81:23:3a:28:1a:82:88:0b:66:e1:1c:57:7b:c1:44:99:
21:65:03:bb:7f:47:56:17:7d:24:28:c1:39:a5:d4:47:fe:bf:
7f:f0:91:a9:4a:56:65:d0:34:11:f5:90:56:66:5a:6b:73:5f:
19:64:35:28:ae:54:93:28:86:58:12:29:2b:8b:b1:26:a3:b6:
0d:bc:19:26:d9:ed:4a:d3:50:41:d3:f7:60:6c:6d:f6:ca:a3:
1e:87:45:5b:86:c4:7b:eb:0c:aa:d3:12:5b:44:27:fb:47:4c:
04:40:68:52:82:c4:e4:7c:fd:04:f7:46:73:92:a3:e2:c3:e1:
a0:57:8a:25
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 21 10:46:56 2025 by rpki-client