Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5b/27c6a1-1c94-4a49-8e3d-9fd503970ff0/1/rUZjafOSfaDIn7X0s-qeMk-SioQ.mft
File: rUZjafOSfaDIn7X0s-qeMk-SioQ.mft (raw, json)
Hash identifier: KPlCNPBHyQ4w2p7mMcS8o4aVkl5c2f2zxwIe04EMCT0=
Subject key identifier: 4A:C2:D7:A7:0C:D3:9D:D3:3B:5A:65:9A:2A:B8:EE:91:AC:43:F6:93
Authority key identifier: AD:46:63:69:F3:92:7D:A0:C8:9F:B5:F4:B3:EA:9E:32:4F:92:8A:84
Certificate issuer: /CN=ad466369f3927da0c89fb5f4b3ea9e324f928a84
Certificate serial: 01974BFB888ADC9730F918EE512EACA87A8C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/rUZjafOSfaDIn7X0s-qeMk-SioQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5b/27c6a1-1c94-4a49-8e3d-9fd503970ff0/1/rUZjafOSfaDIn7X0s-qeMk-SioQ.mft
Manifest number: 0594
Signing time: Sat 07 Jun 2025 20:01:04 +0000
Manifest this update: Sat 07 Jun 2025 20:01:04 +0000
Manifest next update: Sun 08 Jun 2025 20:01:04 +0000
Files and hashes: 1: e2krXZzkR-AkHScvd476IUHzrz0.roa (hash: KJC7yZeLdAZIJXLO5En/1DBnqhI+LO45sglWIneobpg=)
2: rUZjafOSfaDIn7X0s-qeMk-SioQ.crl (hash: rOxX0XhiCfsAI43oeAziyBZpguXnhlkJwIjPqoVZzxM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5b/27c6a1-1c94-4a49-8e3d-9fd503970ff0/1/rUZjafOSfaDIn7X0s-qeMk-SioQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/5b/27c6a1-1c94-4a49-8e3d-9fd503970ff0/1/rUZjafOSfaDIn7X0s-qeMk-SioQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/rUZjafOSfaDIn7X0s-qeMk-SioQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 08 Jun 2025 18:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:4b:fb:88:8a:dc:97:30:f9:18:ee:51:2e:ac:a8:7a:8c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ad466369f3927da0c89fb5f4b3ea9e324f928a84
Validity
Not Before: Jun 7 20:01:04 2025 GMT
Not After : Jun 8 20:01:04 2025 GMT
Subject: CN=4ac2d7a70cd39dd33b5a659a2ab8ee91ac43f693
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:c9:a4:3d:5a:c3:53:f7:d1:0e:cf:28:65:93:
a4:dc:76:00:78:a8:09:ad:ab:94:e7:4a:ed:ba:86:
82:ef:95:e2:22:1f:67:87:2f:c3:0b:41:66:0a:bb:
81:89:46:5c:21:24:39:27:fb:92:81:24:21:f8:0b:
e2:92:2c:d7:3a:ed:ce:12:f1:71:ec:e0:d3:39:b0:
c1:d4:1e:12:ae:ff:94:10:41:ae:06:28:eb:84:31:
db:2b:b4:c0:33:4e:30:cb:72:7a:ad:a4:0d:f0:e9:
10:73:dd:6b:82:5d:51:60:bd:74:d6:47:d0:52:d0:
73:d0:79:cb:b0:70:94:3a:66:57:85:85:87:bc:cb:
6c:30:8d:39:a6:d7:cb:ae:6d:b0:55:f4:83:91:ee:
94:fc:b2:90:bc:12:ce:af:15:f2:b3:c4:ba:05:5c:
9d:8a:c5:c5:a9:4d:5a:47:11:9f:31:33:ca:0e:c3:
27:15:55:66:fa:54:ed:87:3f:48:b7:48:b9:5b:47:
05:92:65:a7:d0:b9:ee:c0:d6:9c:5c:7b:b3:48:c9:
09:24:39:25:2b:39:c5:f1:da:da:81:05:3c:fe:0a:
f5:9d:cd:7b:0d:68:14:1e:b7:d7:0d:de:81:cd:f5:
cc:db:14:f4:9c:85:09:53:2c:f6:4e:2b:89:0b:71:
b9:f7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4A:C2:D7:A7:0C:D3:9D:D3:3B:5A:65:9A:2A:B8:EE:91:AC:43:F6:93
X509v3 Authority Key Identifier:
keyid:AD:46:63:69:F3:92:7D:A0:C8:9F:B5:F4:B3:EA:9E:32:4F:92:8A:84
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rUZjafOSfaDIn7X0s-qeMk-SioQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5b/27c6a1-1c94-4a49-8e3d-9fd503970ff0/1/rUZjafOSfaDIn7X0s-qeMk-SioQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5b/27c6a1-1c94-4a49-8e3d-9fd503970ff0/1/rUZjafOSfaDIn7X0s-qeMk-SioQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
05:07:66:bc:a2:3a:9f:55:5b:85:9b:00:12:03:4a:04:8f:14:
db:40:2c:5c:15:25:2e:66:fb:c8:6f:56:66:d4:06:2f:12:c3:
15:85:c5:f2:da:9b:cd:70:2f:00:39:b5:5e:42:90:9d:f7:4a:
dd:b8:1b:30:8e:e5:37:c5:e7:27:0f:19:e9:2f:21:44:ed:68:
79:31:83:0a:62:45:93:c7:9e:21:01:01:07:86:6a:14:49:82:
4f:2f:74:2c:ca:69:39:ce:fe:14:48:37:bc:6e:97:06:4e:11:
c6:61:fe:87:d2:a2:2b:40:a6:39:44:40:6a:d4:cf:d8:37:78:
3b:fc:4d:24:0a:d5:10:49:fb:ad:56:b6:ab:68:53:28:4a:de:
d5:e3:7d:15:6f:6e:72:f2:20:af:84:84:46:bc:a9:3e:7c:e9:
f5:6b:12:99:48:3b:94:c2:c3:e3:8b:ac:53:84:68:87:45:f6:
e5:b4:70:b7:e6:98:c8:ab:81:b3:aa:07:5f:6a:12:eb:0e:4d:
b9:c3:a6:c1:43:c1:8f:6e:ef:d4:08:60:ae:b2:38:4c:45:2d:
eb:36:18:2d:f0:2d:b8:54:c0:48:89:24:30:34:a3:e2:d8:5b:
df:9d:0c:28:f4:ca:bc:40:52:84:f9:55:ae:fc:8b:0d:b1:84:
9f:be:84:42
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 7 22:55:26 2025 by rpki-client