Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4c/77a9f1-f1fb-485f-923f-7c3789405bd6/1/U170D69INDOz4zaY5NHulfPJS-w.mft
File: U170D69INDOz4zaY5NHulfPJS-w.mft (raw, json)
Hash identifier: cQovENpBXh59DHcTQxenCz4EVwBEkSCugMktCzh6+TQ=
Subject key identifier: AF:A3:79:FF:4D:5E:B4:EF:40:CB:2F:A8:71:D9:93:52:3B:99:54:79
Authority key identifier: 53:5E:F4:0F:AF:48:34:33:B3:E3:36:98:E4:D1:EE:95:F3:C9:4B:EC
Certificate issuer: /CN=535ef40faf483433b3e33698e4d1ee95f3c94bec
Certificate serial: 01958C60AB6F23865945FD1A28F2A1C6A48A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/U170D69INDOz4zaY5NHulfPJS-w.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4c/77a9f1-f1fb-485f-923f-7c3789405bd6/1/U170D69INDOz4zaY5NHulfPJS-w.mft
Manifest number: 1495
Signing time: Wed 12 Mar 2025 22:01:40 +0000
Manifest this update: Wed 12 Mar 2025 22:01:40 +0000
Manifest next update: Thu 13 Mar 2025 22:01:40 +0000
Files and hashes: 1: U170D69INDOz4zaY5NHulfPJS-w.crl (hash: jN/QxTE7AOClg51C6ad1t/wZLvz/n2uppauCywZhUOs=)
2: a9R4a72Ce3HtrFyUZj2Jrpn9DLE.roa (hash: lEQCssDpqykyZtTNm3b2/t+M2Xlx2R2hbaDbanTEKE4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/4c/77a9f1-f1fb-485f-923f-7c3789405bd6/1/U170D69INDOz4zaY5NHulfPJS-w.crl
rsync://rpki.ripe.net/repository/DEFAULT/4c/77a9f1-f1fb-485f-923f-7c3789405bd6/1/U170D69INDOz4zaY5NHulfPJS-w.mft
rsync://rpki.ripe.net/repository/DEFAULT/U170D69INDOz4zaY5NHulfPJS-w.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 13 Mar 2025 19:14:49 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:8c:60:ab:6f:23:86:59:45:fd:1a:28:f2:a1:c6:a4:8a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=535ef40faf483433b3e33698e4d1ee95f3c94bec
Validity
Not Before: Mar 12 22:01:40 2025 GMT
Not After : Mar 13 22:01:40 2025 GMT
Subject: CN=afa379ff4d5eb4ef40cb2fa871d993523b995479
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:3f:79:70:13:2e:73:55:e5:81:8c:a6:cf:91:
a5:12:3f:14:fb:da:23:68:10:6d:8d:e3:02:c3:dc:
93:10:45:7d:25:77:a4:a4:5e:45:9d:a4:a2:ad:a2:
ca:77:b8:72:df:5a:9f:66:81:6c:ff:50:e0:eb:5a:
0c:af:73:69:c8:fe:44:13:be:b5:28:a7:23:2e:db:
c3:50:a6:48:37:25:cb:1d:bc:6a:cc:f6:5d:c5:38:
3e:24:be:75:6b:ee:8a:f1:06:03:e9:d0:de:25:b4:
28:34:46:22:d5:22:b8:d6:62:4b:e9:fe:72:6c:0e:
ad:e3:65:95:6c:d1:68:cc:33:69:bc:fb:8f:7e:dc:
ec:cc:5a:f3:68:2a:4f:05:8b:11:8e:5d:40:c4:36:
6c:6f:d9:80:ef:fd:8a:c5:5c:56:47:00:b7:eb:b1:
7b:15:b9:07:0f:d3:4d:22:53:9f:22:b4:36:07:2d:
12:33:0a:c7:ed:3f:4d:b5:fa:85:88:da:d5:ab:07:
c8:78:a9:4b:47:f2:1e:b2:4b:ed:77:93:ad:95:1b:
b7:6f:26:9e:94:58:66:42:5e:48:87:db:b1:1e:3d:
2b:db:2b:95:21:6a:b6:50:ed:4b:3e:a6:6e:c6:d8:
0c:ee:f3:e4:5f:a3:2c:d4:22:04:1a:bc:46:9f:8e:
ca:31
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AF:A3:79:FF:4D:5E:B4:EF:40:CB:2F:A8:71:D9:93:52:3B:99:54:79
X509v3 Authority Key Identifier:
keyid:53:5E:F4:0F:AF:48:34:33:B3:E3:36:98:E4:D1:EE:95:F3:C9:4B:EC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/U170D69INDOz4zaY5NHulfPJS-w.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4c/77a9f1-f1fb-485f-923f-7c3789405bd6/1/U170D69INDOz4zaY5NHulfPJS-w.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4c/77a9f1-f1fb-485f-923f-7c3789405bd6/1/U170D69INDOz4zaY5NHulfPJS-w.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
ca:98:7c:42:0f:68:79:32:ae:5f:0a:2e:6d:07:c9:b5:67:cc:
54:a1:a4:a8:b1:43:99:0c:1d:68:4a:f0:94:bc:f6:53:82:6e:
86:fa:e7:6b:e6:a5:ad:62:75:ea:95:1a:ae:11:60:c6:3f:5d:
8f:98:46:d4:59:1d:de:52:24:c1:9d:10:2e:72:e7:95:64:f7:
21:d8:1e:89:51:ad:49:29:ad:ce:e9:15:55:c1:eb:16:fb:52:
a2:13:98:cd:dc:21:fb:3d:50:fe:6d:e3:96:f4:f2:0f:2d:c4:
aa:2d:ef:c2:d1:04:14:68:c2:6a:9e:3b:de:55:d0:7f:33:1d:
35:73:7a:dc:cd:92:75:c0:05:ba:c5:e4:26:71:95:c5:48:89:
35:9a:18:6c:3d:0a:13:39:48:11:17:e7:c4:c7:74:2a:7a:10:
12:66:7d:f7:8f:fb:17:1c:f9:12:66:a1:b4:33:73:e6:ec:49:
11:08:08:ae:30:a3:94:bb:a6:a1:f3:cf:ab:e1:8a:28:07:d9:
f1:b6:c0:2c:d1:f5:54:4e:50:28:c0:ce:58:6b:48:d1:e5:51:
18:bf:65:f8:86:d1:74:67:68:27:70:b1:72:30:e0:f2:0e:b8:
6c:1e:ad:d6:cc:0e:ef:43:1a:10:35:fb:52:ef:a1:e2:88:14:
84:93:27:1e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 13 02:40:07 2025 by rpki-client