Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/57/3f8cca-6b1d-4ae6-bc2a-f42e7c45935a/1/uwoTocnh3YTt5DKDSQvng4d1SpQ.mft
File: uwoTocnh3YTt5DKDSQvng4d1SpQ.mft (raw, json)
Hash identifier: zUwB7Mq7j/UmkTwBJtMtIte0fu2pTHfD+vMRAdiDO5M=
Subject key identifier: 38:9A:98:ED:81:9F:88:99:86:16:84:BA:A1:E0:06:F6:04:16:12:24
Authority key identifier: BB:0A:13:A1:C9:E1:DD:84:ED:E4:32:83:49:0B:E7:83:87:75:4A:94
Certificate issuer: /CN=bb0a13a1c9e1dd84ede43283490be78387754a94
Certificate serial: 019636F604AD67C4BCE0C26F65C49D53ED46
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/uwoTocnh3YTt5DKDSQvng4d1SpQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/57/3f8cca-6b1d-4ae6-bc2a-f42e7c45935a/1/uwoTocnh3YTt5DKDSQvng4d1SpQ.mft
Manifest number: 14EC
Signing time: Tue 15 Apr 2025 01:00:14 +0000
Manifest this update: Tue 15 Apr 2025 01:00:14 +0000
Manifest next update: Wed 16 Apr 2025 01:00:14 +0000
Files and hashes: 1: e4ClDxZZC-HgzfD6jjAt7w6H7rI.roa (hash: s/lm7kNCD/Mf0FKczgw09MeHHAa4AoL+4qjfAKGabq0=)
2: uwoTocnh3YTt5DKDSQvng4d1SpQ.crl (hash: aQb744z/Srl0iMsIIJSLeyopxTbYZBporPUTQPr8WQ0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/57/3f8cca-6b1d-4ae6-bc2a-f42e7c45935a/1/uwoTocnh3YTt5DKDSQvng4d1SpQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/57/3f8cca-6b1d-4ae6-bc2a-f42e7c45935a/1/uwoTocnh3YTt5DKDSQvng4d1SpQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/uwoTocnh3YTt5DKDSQvng4d1SpQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 15 Apr 2025 23:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:36:f6:04:ad:67:c4:bc:e0:c2:6f:65:c4:9d:53:ed:46
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=bb0a13a1c9e1dd84ede43283490be78387754a94
Validity
Not Before: Apr 15 01:00:14 2025 GMT
Not After : Apr 16 01:00:14 2025 GMT
Subject: CN=389a98ed819f8899861684baa1e006f604161224
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:88:9f:83:01:aa:d9:e2:d7:a1:21:94:3e:c5:9c:
0d:7b:2c:01:80:95:60:47:eb:a7:e7:de:a4:ca:8f:
ae:29:77:ad:04:02:1a:f5:58:4c:19:63:86:b2:cb:
f8:8e:bf:a5:eb:7b:70:4a:eb:26:5c:b7:c1:cd:b1:
5d:5d:2b:fe:02:5c:3a:ac:27:eb:9c:42:35:38:6d:
a3:5c:44:2d:2c:fa:fd:12:8f:dc:ca:e6:10:b0:2d:
25:08:38:ee:ba:41:e7:17:ba:5e:68:4d:e2:2e:20:
a9:da:96:48:20:a3:0b:b0:d1:4f:af:91:e8:81:25:
db:08:d6:a2:f7:47:31:c4:cd:c9:bb:af:53:e8:8d:
e3:86:8b:a3:d2:36:bf:ea:55:97:70:db:48:8a:3f:
a9:a3:60:6b:cd:91:f8:3f:66:34:a9:fb:be:dc:d2:
4d:98:a4:d9:6d:59:06:a5:fb:8c:1d:4d:89:fc:63:
ff:1b:2b:be:c9:7f:ae:80:9d:e9:0d:77:78:d0:bf:
86:ba:d9:b0:ea:a8:8e:86:f0:c8:01:6e:c6:71:63:
bd:10:36:1b:a6:8f:23:7d:91:94:2a:e5:c2:ec:6c:
c0:07:e3:b0:65:41:6e:09:b2:9e:b7:65:73:e4:cb:
f3:cd:98:59:6d:6c:6e:2e:8a:6a:bf:d3:0a:4d:19:
ab:0d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
38:9A:98:ED:81:9F:88:99:86:16:84:BA:A1:E0:06:F6:04:16:12:24
X509v3 Authority Key Identifier:
keyid:BB:0A:13:A1:C9:E1:DD:84:ED:E4:32:83:49:0B:E7:83:87:75:4A:94
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/uwoTocnh3YTt5DKDSQvng4d1SpQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/57/3f8cca-6b1d-4ae6-bc2a-f42e7c45935a/1/uwoTocnh3YTt5DKDSQvng4d1SpQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/57/3f8cca-6b1d-4ae6-bc2a-f42e7c45935a/1/uwoTocnh3YTt5DKDSQvng4d1SpQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
17:51:24:a4:a7:84:3e:6a:16:dc:f0:ef:6f:9f:ce:b1:24:c5:
b0:70:15:71:2c:c4:14:44:9c:79:7d:8b:14:2f:5a:7d:d6:77:
35:44:b0:27:d8:79:fe:e3:d0:c4:b1:a5:63:3f:3a:6d:35:9e:
62:1f:fe:5f:05:97:33:b4:4b:90:11:7c:6b:06:11:05:dd:9d:
77:f6:75:a9:8b:27:72:50:59:3c:1a:93:34:bd:cd:1f:9e:a6:
64:de:27:55:2e:dd:5c:99:ea:e0:3f:9c:c3:c9:69:d0:eb:d6:
eb:5b:b0:be:fa:a9:45:0a:e0:cf:2b:f2:90:5d:19:d6:23:87:
df:09:ab:a2:3c:a0:d0:24:f6:7f:fb:42:4c:c1:dd:be:0f:22:
59:ed:40:f2:4c:5b:a1:ba:dc:2e:7e:ef:b6:eb:61:c2:5d:c5:
68:0b:ad:c8:53:ed:c2:fa:78:d6:8b:c7:dc:4e:08:54:03:5c:
80:08:80:86:50:b5:22:31:a0:53:97:d4:59:07:0c:65:95:4f:
02:7a:94:d3:a0:34:25:53:68:a8:c9:d7:9e:dd:22:e4:c4:b6:
a0:5a:67:bd:55:31:ce:8c:01:80:be:9a:67:0f:dc:41:3f:8e:
58:f2:9d:37:14:94:25:59:9b:4d:e1:c1:cf:1b:4d:f1:4a:11:
02:58:9c:a8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 15 06:50:51 2025 by rpki-client