Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/64/af72e8-f0d2-4d66-b520-3aba595b58a8/1/upcN4SazoLVI2tdvXvqIhVxvH_I.mft
File: upcN4SazoLVI2tdvXvqIhVxvH_I.mft (raw, json)
Hash identifier: L66xGLF1PA1QWd7LA1cQnReejrYYl7B8fh3PZ3g8aXQ=
Subject key identifier: C5:A8:E8:2C:58:BF:2B:62:2E:4B:51:AE:D5:1B:9D:20:C9:C3:1A:63
Authority key identifier: BA:97:0D:E1:26:B3:A0:B5:48:DA:D7:6F:5E:FA:88:85:5C:6F:1F:F2
Certificate issuer: /CN=ba970de126b3a0b548dad76f5efa88855c6f1ff2
Certificate serial: 0196135828844BBFBB86497905E27D473746
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/upcN4SazoLVI2tdvXvqIhVxvH_I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/64/af72e8-f0d2-4d66-b520-3aba595b58a8/1/upcN4SazoLVI2tdvXvqIhVxvH_I.mft
Manifest number: 0862
Signing time: Tue 08 Apr 2025 03:01:06 +0000
Manifest this update: Tue 08 Apr 2025 03:01:06 +0000
Manifest next update: Wed 09 Apr 2025 03:01:06 +0000
Files and hashes: 1: iB0nh2pqz5-ySXR-fF2YCAS68X8.roa (hash: Y94jSzgT6noKQkiYTVT17vXi3fN7I6D0Bkm1xKFYYKk=)
2: upcN4SazoLVI2tdvXvqIhVxvH_I.crl (hash: 1vX+HrCdzOHDHyWTQNJNSooMZdrGcDZ02X+Tp+LSCXE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/64/af72e8-f0d2-4d66-b520-3aba595b58a8/1/upcN4SazoLVI2tdvXvqIhVxvH_I.crl
rsync://rpki.ripe.net/repository/DEFAULT/64/af72e8-f0d2-4d66-b520-3aba595b58a8/1/upcN4SazoLVI2tdvXvqIhVxvH_I.mft
rsync://rpki.ripe.net/repository/DEFAULT/upcN4SazoLVI2tdvXvqIhVxvH_I.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 09 Apr 2025 03:01:06 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:13:58:28:84:4b:bf:bb:86:49:79:05:e2:7d:47:37:46
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ba970de126b3a0b548dad76f5efa88855c6f1ff2
Validity
Not Before: Apr 8 03:01:06 2025 GMT
Not After : Apr 9 03:01:06 2025 GMT
Subject: CN=c5a8e82c58bf2b622e4b51aed51b9d20c9c31a63
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:0e:dd:f3:49:24:1b:f1:6a:d3:e6:a6:6a:96:
60:a8:55:2f:93:02:6c:b4:bb:48:24:76:25:8a:72:
6b:79:bf:45:46:92:94:53:f0:89:c0:f4:d3:6b:a6:
c5:4e:7e:f3:d4:b1:ab:ba:10:8b:d8:83:ce:29:68:
9b:cf:78:6c:a7:92:59:6e:57:ff:cd:c1:5e:ac:37:
9c:e1:f6:f2:01:9c:e9:c8:46:5e:37:c1:34:c0:74:
73:f1:8b:e8:0b:31:0f:f3:f7:33:98:78:8d:69:05:
c5:91:33:dc:65:12:6d:23:1c:f7:11:bb:58:40:9e:
16:5d:ff:4a:52:7d:aa:16:e2:86:c2:af:dc:14:51:
93:fb:4d:cd:a1:4e:98:38:0b:d1:bc:5d:26:4a:9f:
d1:e2:cc:ac:9f:31:f1:ec:9f:e9:6d:16:7c:86:18:
bd:d9:8a:e9:d9:9d:ca:de:2f:7b:61:12:8a:76:6e:
01:ee:05:01:c1:78:d0:6b:1c:d8:01:f2:ae:ee:cd:
79:ce:e9:09:5e:07:1c:3f:e4:36:fa:9b:d9:c9:94:
9f:03:6f:08:58:b7:17:ba:94:95:8c:d5:f7:31:0e:
cf:3d:bd:4b:db:94:3c:57:0a:54:f8:96:53:5f:ad:
9b:10:59:36:60:f5:02:2a:a0:36:8f:2d:c3:c5:df:
1d:7f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C5:A8:E8:2C:58:BF:2B:62:2E:4B:51:AE:D5:1B:9D:20:C9:C3:1A:63
X509v3 Authority Key Identifier:
keyid:BA:97:0D:E1:26:B3:A0:B5:48:DA:D7:6F:5E:FA:88:85:5C:6F:1F:F2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/upcN4SazoLVI2tdvXvqIhVxvH_I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/64/af72e8-f0d2-4d66-b520-3aba595b58a8/1/upcN4SazoLVI2tdvXvqIhVxvH_I.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/64/af72e8-f0d2-4d66-b520-3aba595b58a8/1/upcN4SazoLVI2tdvXvqIhVxvH_I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
6c:a4:86:c0:ae:8d:f5:a6:e1:ca:0e:b4:6c:3f:f0:ca:6a:96:
b4:2b:7b:10:3e:c9:e3:27:65:c0:7d:41:e6:ea:08:61:7b:d6:
5d:f6:1a:a4:5f:db:2e:29:2a:90:d0:18:64:ae:4b:f7:b3:9a:
20:84:37:2a:85:43:d7:96:56:cc:df:86:07:68:24:8d:fe:d0:
a0:bc:3d:9f:63:d4:05:a1:b0:fb:b3:c5:22:9c:c6:47:cf:39:
51:77:4f:9d:89:a7:67:fd:5c:8d:87:12:0e:57:b0:29:89:04:
94:e6:0d:b3:fc:11:6d:c0:bd:d1:bc:31:7a:f7:c2:01:3d:5b:
28:0f:ba:c2:26:43:ca:b6:8a:db:91:8a:18:a1:a7:06:9f:9c:
f5:a2:3c:fc:d2:35:75:11:15:06:b7:e0:2a:13:45:01:c1:a4:
c7:c6:63:63:2c:f8:66:9e:d4:0c:44:75:b7:93:e1:c4:ba:e3:
11:78:65:01:4c:42:79:91:59:13:ae:83:75:db:e2:77:f7:0f:
ad:98:58:17:bd:ab:42:5a:94:03:e4:ed:5e:15:fd:fd:6e:23:
50:71:8c:1a:ae:aa:60:b8:df:b9:52:4d:27:2c:9a:03:ef:93:
fd:25:80:ea:5c:42:cf:7c:58:d0:81:e3:a7:04:20:26:e1:db:
d1:b9:e7:97
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZYTWCiES7+7hkl5BeJ9RzdGMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGJhOTcwZGUxMjZiM2EwYjU0OGRhZDc2ZjVlZmE4ODg1NWM2
ZjFmZjIwHhcNMjUwNDA4MDMwMTA2WhcNMjUwNDA5MDMwMTA2WjAzMTEwLwYDVQQD
EyhjNWE4ZTgyYzU4YmYyYjYyMmU0YjUxYWVkNTFiOWQyMGM5YzMxYTYzMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqA7d80kkG/Fq0+amapZgqFUvkwJs
tLtIJHYlinJreb9FRpKUU/CJwPTTa6bFTn7z1LGruhCL2IPOKWibz3hsp5JZblf/
zcFerDec4fbyAZzpyEZeN8E0wHRz8YvoCzEP8/czmHiNaQXFkTPcZRJtIxz3EbtY
QJ4WXf9KUn2qFuKGwq/cFFGT+03NoU6YOAvRvF0mSp/R4sysnzHx7J/pbRZ8hhi9
2Yrp2Z3K3i97YRKKdm4B7gUBwXjQaxzYAfKu7s15zukJXgccP+Q2+pvZyZSfA28I
WLcXupSVjNX3MQ7PPb1L25Q8VwpU+JZTX62bEFk2YPUCKqA2jy3Dxd8dfwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFMWo6CxYvytiLktRrtUbnSDJwxpjMB8GA1UdIwQY
MBaAFLqXDeEms6C1SNrXb176iIVcbx/yMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvdXBjTjRTYXpvTFZJMnRkdlh2cUloVnh2SF9JLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82NC9hZjcyZTgtZjBkMi00ZDY2LWI1MjAt
M2FiYTU5NWI1OGE4LzEvdXBjTjRTYXpvTFZJMnRkdlh2cUloVnh2SF9JLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC82NC9hZjcyZTgtZjBkMi00ZDY2LWI1MjAtM2FiYTU5NWI1OGE4
LzEvdXBjTjRTYXpvTFZJMnRkdlh2cUloVnh2SF9JLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAbKSGwK6N
9abhyg60bD/wymqWtCt7ED7J4ydlwH1B5uoIYXvWXfYapF/bLikqkNAYZK5L97Oa
IIQ3KoVD15ZWzN+GB2gkjf7QoLw9n2PUBaGw+7PFIpzGR885UXdPnYmnZ/1cjYcS
DlewKYkElOYNs/wRbcC90bwxevfCAT1bKA+6wiZDyraK25GKGKGnBp+c9aI8/NI1
dREVBrfgKhNFAcGkx8ZjYyz4Zp7UDER1t5PhxLrjEXhlAUxCeZFZE66Dddvid/cP
rZhYF72rQlqUA+TtXhX9/W4jUHGMGq6qYLjfuVJNJyyaA++T/SWA6lxCz3xY0IHj
pwQgJuHb0bnnlw==
-----END CERTIFICATE-----
Generated at Tue Apr 8 10:56:06 2025 by rpki-client