Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5a/df5670-96ab-4eee-b0d2-85d332604aaf/1/uUiJEgxOC_9Ozpoqu4YtTAzYox8.mft
File: uUiJEgxOC_9Ozpoqu4YtTAzYox8.mft (raw, json)
Hash identifier: LQn5X6CB8tWg9q2XFbWqYILt6G4VoMHv2HFNv+UHHls=
Subject key identifier: 4E:2D:FE:9E:87:2F:C5:CA:BB:41:03:C7:E9:C6:4D:5F:1F:B8:63:CB
Authority key identifier: B9:48:89:12:0C:4E:0B:FF:4E:CE:9A:2A:BB:86:2D:4C:0C:D8:A3:1F
Certificate issuer: /CN=b94889120c4e0bff4ece9a2abb862d4c0cd8a31f
Certificate serial: 019656B8261EACA04CCE040734901F8E0FCD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/uUiJEgxOC_9Ozpoqu4YtTAzYox8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5a/df5670-96ab-4eee-b0d2-85d332604aaf/1/uUiJEgxOC_9Ozpoqu4YtTAzYox8.mft
Manifest number: 0E6C
Signing time: Mon 21 Apr 2025 05:00:31 +0000
Manifest this update: Mon 21 Apr 2025 05:00:31 +0000
Manifest next update: Tue 22 Apr 2025 05:00:31 +0000
Files and hashes: 1: Ez8s9qEUUht2JDDEnDzdcLhPgtI.roa (hash: JIMzy59RHLraK6rhor2VUFRVzGxoje0mc5nW26VOt9E=)
2: uUiJEgxOC_9Ozpoqu4YtTAzYox8.crl (hash: by7L7yKFoQg8iqG9xRnTBnWlKSVVPLLQHwHQARaosNg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5a/df5670-96ab-4eee-b0d2-85d332604aaf/1/uUiJEgxOC_9Ozpoqu4YtTAzYox8.crl
rsync://rpki.ripe.net/repository/DEFAULT/5a/df5670-96ab-4eee-b0d2-85d332604aaf/1/uUiJEgxOC_9Ozpoqu4YtTAzYox8.mft
rsync://rpki.ripe.net/repository/DEFAULT/uUiJEgxOC_9Ozpoqu4YtTAzYox8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 22 Apr 2025 01:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:56:b8:26:1e:ac:a0:4c:ce:04:07:34:90:1f:8e:0f:cd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b94889120c4e0bff4ece9a2abb862d4c0cd8a31f
Validity
Not Before: Apr 21 05:00:31 2025 GMT
Not After : Apr 22 05:00:31 2025 GMT
Subject: CN=4e2dfe9e872fc5cabb4103c7e9c64d5f1fb863cb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d5:79:0a:28:8f:8c:ac:1d:35:11:50:17:ee:22:
e4:46:b1:af:c8:6b:b9:88:28:39:67:12:79:59:c1:
ff:10:e5:41:59:5f:a8:a2:a8:3b:f3:2b:56:0d:00:
e3:3c:94:c7:49:00:1e:54:6b:e9:13:2d:b9:3d:fc:
80:01:32:46:9c:33:69:8f:bc:4f:04:b6:f6:00:50:
a2:13:42:b9:af:24:21:a7:f6:1e:66:d4:d0:cb:0b:
ef:40:a1:ae:8d:75:df:08:32:22:29:ac:02:aa:56:
9f:f9:3b:50:3a:40:7e:ae:d0:fc:1e:62:99:a6:39:
d7:2a:da:98:aa:8b:06:95:11:f5:9f:5e:9e:7c:d9:
54:35:b7:3e:75:60:2f:3e:4b:02:96:e8:a7:56:b1:
6e:7b:e9:61:55:3e:f3:37:a9:6b:0c:6a:c1:37:e1:
ec:ab:1c:15:2f:f5:82:7e:61:5d:8f:19:76:b3:b1:
c2:a7:a6:68:a0:e3:23:a9:d2:94:23:17:f9:c2:52:
e6:6c:03:bf:6f:b1:ee:e4:15:e2:81:d5:20:1c:f3:
9c:4f:cc:7f:e7:46:a0:7a:39:cd:86:af:fc:91:61:
4a:f6:06:de:17:79:54:99:bd:54:d9:9d:ed:11:00:
54:6d:f0:db:70:40:77:a2:9c:64:e0:e1:ff:6f:70:
1d:05
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4E:2D:FE:9E:87:2F:C5:CA:BB:41:03:C7:E9:C6:4D:5F:1F:B8:63:CB
X509v3 Authority Key Identifier:
keyid:B9:48:89:12:0C:4E:0B:FF:4E:CE:9A:2A:BB:86:2D:4C:0C:D8:A3:1F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/uUiJEgxOC_9Ozpoqu4YtTAzYox8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/df5670-96ab-4eee-b0d2-85d332604aaf/1/uUiJEgxOC_9Ozpoqu4YtTAzYox8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/df5670-96ab-4eee-b0d2-85d332604aaf/1/uUiJEgxOC_9Ozpoqu4YtTAzYox8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
29:7d:bb:d9:a4:fa:2d:f1:1e:a6:90:cc:65:96:0e:81:17:af:
f1:7c:28:3d:c9:a2:f8:e8:da:1f:5e:7a:6d:18:85:a1:e4:e3:
66:61:30:1f:b6:bc:98:23:5f:c9:5c:c6:35:d3:be:b3:e6:da:
69:20:61:24:ff:cc:fe:0a:8c:26:a3:2a:93:e0:3d:c5:96:05:
53:a7:31:7d:81:ff:9a:a4:ce:bb:3b:06:6f:17:3f:9b:73:5f:
b8:d7:f7:d1:2f:2b:6a:0f:46:32:c8:d8:de:47:85:7c:7d:97:
f3:74:13:ff:7c:75:36:3a:3a:30:43:39:d6:d3:19:e8:97:4b:
ec:16:46:f8:11:c2:de:9f:ad:d2:6c:1b:ea:48:cb:b4:3c:25:
13:c5:d2:23:d0:9b:18:20:e6:4a:99:8e:0e:93:0f:39:3d:b0:
fa:43:dc:21:2b:b3:7f:cf:bd:4e:97:df:0c:bd:c5:34:93:2c:
00:5b:38:93:17:54:8b:0a:5e:47:4b:7a:7f:ed:d3:fe:6a:16:
dd:2f:7b:75:41:5a:93:e5:ef:20:a7:f3:98:fc:2c:fc:38:a9:
4e:65:dc:59:ee:f9:02:6b:48:69:b3:16:60:eb:cb:6c:cc:1f:
02:32:e2:73:ee:fc:38:2f:36:b8:66:3c:71:0a:5a:4e:47:b2:
a9:5b:ea:1b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 21 10:56:04 2025 by rpki-client