Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/50/b929ce-ec17-4d50-a6ae-79d934e4a99a/1/U1OpqF-hH8S_FW-rTY2EoI5dZvk.mft
File: U1OpqF-hH8S_FW-rTY2EoI5dZvk.mft (raw, json)
Hash identifier: XoOXy7W+ft3SYXq88jG8flKclkyQLZ4wSMMTxra4qlk=
Subject key identifier: 0A:EE:9C:AC:75:B4:6B:2E:30:D7:97:86:0F:22:32:DC:3C:5B:8D:16
Authority key identifier: 53:53:A9:A8:5F:A1:1F:C4:BF:15:6F:AB:4D:8D:84:A0:8E:5D:66:F9
Certificate issuer: /CN=5353a9a85fa11fc4bf156fab4d8d84a08e5d66f9
Certificate serial: 01974AE88CB7F51EB7C9C71DE8812012CD8F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/U1OpqF-hH8S_FW-rTY2EoI5dZvk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/50/b929ce-ec17-4d50-a6ae-79d934e4a99a/1/U1OpqF-hH8S_FW-rTY2EoI5dZvk.mft
Manifest number: 1580
Signing time: Sat 07 Jun 2025 15:00:43 +0000
Manifest this update: Sat 07 Jun 2025 15:00:43 +0000
Manifest next update: Sun 08 Jun 2025 15:00:43 +0000
Files and hashes: 1: U1OpqF-hH8S_FW-rTY2EoI5dZvk.crl (hash: DeMRq8pjWpBT9FxLdqLt4EbqNGSswJSpfuxm1eFWYeU=)
2: fhzBsi8rU0jUB3-KHFWy_MPxr3s.roa (hash: +sQEtymDtkukDBlTZusUXGi5sWkBAEA4spvgFTkKSlo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/50/b929ce-ec17-4d50-a6ae-79d934e4a99a/1/U1OpqF-hH8S_FW-rTY2EoI5dZvk.crl
rsync://rpki.ripe.net/repository/DEFAULT/50/b929ce-ec17-4d50-a6ae-79d934e4a99a/1/U1OpqF-hH8S_FW-rTY2EoI5dZvk.mft
rsync://rpki.ripe.net/repository/DEFAULT/U1OpqF-hH8S_FW-rTY2EoI5dZvk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 08 Jun 2025 11:24:49 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:4a:e8:8c:b7:f5:1e:b7:c9:c7:1d:e8:81:20:12:cd:8f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5353a9a85fa11fc4bf156fab4d8d84a08e5d66f9
Validity
Not Before: Jun 7 15:00:43 2025 GMT
Not After : Jun 8 15:00:43 2025 GMT
Subject: CN=0aee9cac75b46b2e30d797860f2232dc3c5b8d16
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:38:b1:2d:c1:b2:a3:ba:d4:da:eb:ce:79:a8:
aa:e2:09:fd:75:39:fe:fa:21:83:d9:92:e8:9e:08:
98:58:2f:71:6f:54:a9:d2:8e:fa:e1:44:b2:c4:75:
b1:36:e5:0b:21:10:12:32:ca:c4:9c:62:6d:bb:24:
05:9f:d7:6c:44:c7:72:4d:09:20:d3:b6:e2:09:89:
1c:c3:d2:9f:3c:e3:fb:f2:95:68:cd:2d:19:60:fd:
9c:01:53:a8:6a:0a:39:c4:c5:45:b7:52:81:81:ce:
69:c0:fb:48:14:50:04:34:a5:9b:a7:18:89:c7:ce:
93:20:11:36:24:34:1c:7e:47:c1:45:8f:9c:17:d0:
43:ef:93:7a:77:ed:7b:04:b4:05:de:e4:6c:a2:1c:
74:d5:6f:b7:4a:6c:40:60:33:76:55:02:b6:6f:06:
cf:d7:33:1d:82:0b:16:d3:57:0a:ad:d4:6e:12:d2:
51:b8:31:07:bb:3c:5f:4f:6c:2a:7a:80:43:8c:7c:
e9:6e:bf:15:06:51:ec:fe:78:1b:29:9b:54:25:80:
34:b7:7e:82:13:1e:91:f0:23:c4:1d:d5:ef:fb:70:
b9:3f:a4:08:34:47:d7:3e:8a:89:c0:0e:7f:a9:af:
cb:db:f8:a9:09:67:39:4f:69:aa:73:6f:7a:23:d2:
b2:7f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0A:EE:9C:AC:75:B4:6B:2E:30:D7:97:86:0F:22:32:DC:3C:5B:8D:16
X509v3 Authority Key Identifier:
keyid:53:53:A9:A8:5F:A1:1F:C4:BF:15:6F:AB:4D:8D:84:A0:8E:5D:66:F9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/U1OpqF-hH8S_FW-rTY2EoI5dZvk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/50/b929ce-ec17-4d50-a6ae-79d934e4a99a/1/U1OpqF-hH8S_FW-rTY2EoI5dZvk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/50/b929ce-ec17-4d50-a6ae-79d934e4a99a/1/U1OpqF-hH8S_FW-rTY2EoI5dZvk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
83:5e:db:b9:d0:b5:10:0b:92:5d:9e:2b:0d:4d:7a:89:f4:30:
96:ea:29:ba:70:3e:ca:6a:fe:74:2b:98:1c:c2:75:f6:5f:db:
76:7d:69:d3:ca:5b:6e:fe:b2:07:ad:3d:db:e3:fc:1b:71:02:
21:8d:fa:94:0d:d4:e0:04:fe:e0:88:64:02:15:9a:4d:dc:e2:
85:b9:b8:d8:2c:0e:a8:b0:9a:05:a9:2b:72:1d:b4:ad:c5:28:
a4:54:61:2a:a0:ed:be:d7:2f:b6:3c:1c:ac:ea:3e:f6:86:e3:
6b:64:7e:ab:9a:85:65:bd:ae:21:e5:13:4d:be:21:58:63:c7:
23:04:71:23:a4:7c:87:9c:cb:c6:ce:d1:c5:02:24:7b:90:b1:
80:62:bd:1d:1c:03:c7:de:66:72:ea:d0:ca:4c:37:8d:79:13:
71:81:b6:0d:b5:51:6d:45:74:4d:41:76:eb:7c:e4:ba:5f:01:
87:1f:58:41:9e:dd:0a:75:ca:9d:4f:74:ae:ba:17:1a:ad:75:
3d:20:7a:4f:69:df:b9:98:d4:a1:76:c4:41:26:dd:ce:be:da:
21:0b:57:ae:c3:a3:a1:33:69:bb:a3:76:1f:fe:7a:bc:1c:c8:
8f:fa:c4:90:6f:a6:8e:9b:b7:4e:44:76:2a:cf:7d:ff:b3:5b:
11:a1:37:b0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 7 21:06:20 2025 by rpki-client