Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/65/9fce78-4f9d-4847-b759-b451e477b9c2/1/UJSiarpxAHYh_VmdU3u3rqreizM.mft
File: UJSiarpxAHYh_VmdU3u3rqreizM.mft (raw, json)
Hash identifier: /ZJ20HRKJf0MDiU82YN1rOmmM/DgJGhG3ipxL84XNjA=
Subject key identifier: 5F:64:2D:9A:37:11:0D:30:F7:2C:07:C0:4A:F6:4A:97:38:34:F1:93
Authority key identifier: 50:94:A2:6A:BA:71:00:76:21:FD:59:9D:53:7B:B7:AE:AA:DE:8B:33
Certificate issuer: /CN=5094a26aba71007621fd599d537bb7aeaade8b33
Certificate serial: 0194C463766E53C11F3055EBCA708D722EA2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UJSiarpxAHYh_VmdU3u3rqreizM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/65/9fce78-4f9d-4847-b759-b451e477b9c2/1/UJSiarpxAHYh_VmdU3u3rqreizM.mft
Manifest number: 1432
Signing time: Sun 02 Feb 2025 02:00:40 +0000
Manifest this update: Sun 02 Feb 2025 02:00:40 +0000
Manifest next update: Mon 03 Feb 2025 02:00:40 +0000
Files and hashes: 1: PYLR3kfr_0El_Ga2E9JeZcCyCVc.roa (hash: A0449RCi6B29H8zKA0rMM/NDvKNi2c+elOaTXG6BpHk=)
2: UJSiarpxAHYh_VmdU3u3rqreizM.crl (hash: QJfQxcx6cEEV156vX4ixVCM+IQgTz/JA1dWou23wT0w=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/65/9fce78-4f9d-4847-b759-b451e477b9c2/1/UJSiarpxAHYh_VmdU3u3rqreizM.crl
rsync://rpki.ripe.net/repository/DEFAULT/65/9fce78-4f9d-4847-b759-b451e477b9c2/1/UJSiarpxAHYh_VmdU3u3rqreizM.mft
rsync://rpki.ripe.net/repository/DEFAULT/UJSiarpxAHYh_VmdU3u3rqreizM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 03 Feb 2025 00:00:06 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:c4:63:76:6e:53:c1:1f:30:55:eb:ca:70:8d:72:2e:a2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5094a26aba71007621fd599d537bb7aeaade8b33
Validity
Not Before: Feb 2 02:00:40 2025 GMT
Not After : Feb 3 02:00:40 2025 GMT
Subject: CN=5f642d9a37110d30f72c07c04af64a973834f193
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:ac:ce:8a:67:5a:39:e2:ad:f4:99:0a:92:db:
b7:55:de:77:c7:17:e2:77:4e:31:72:1d:f5:88:ae:
87:14:dc:8a:f1:ec:d9:bb:65:22:08:19:47:f9:2d:
a9:7a:c0:28:6b:64:85:fd:c4:40:2a:05:71:3e:43:
d3:29:4b:b5:0d:ad:fc:88:18:c6:12:f7:0e:75:52:
31:e8:06:99:ab:ce:14:8e:8b:09:4e:72:7a:81:08:
2a:73:60:cf:98:af:bd:21:11:a9:6f:63:9b:0e:3f:
98:ce:01:72:40:58:fa:c8:3f:e9:4c:7e:d3:95:1b:
cc:7d:39:e6:d4:42:2e:99:8b:d1:25:8f:d8:1b:fd:
bf:72:4c:5d:75:00:4c:79:80:21:93:3b:52:ca:eb:
e3:64:49:b1:76:f8:8b:a5:45:3c:0e:d1:9b:95:24:
83:66:3e:db:7d:18:86:ed:9a:87:67:4c:78:55:69:
3d:1b:67:30:38:b8:2e:19:f5:11:cf:6a:2f:da:65:
35:68:56:08:95:ff:1b:8c:8c:5d:ef:a0:ed:c3:74:
bf:6b:62:d5:17:aa:b6:8d:fa:09:b7:df:60:d1:f5:
4e:8e:88:c1:bd:94:ba:3d:06:ff:ed:28:67:e4:d8:
5e:7c:37:89:92:c7:ff:89:f4:bf:af:11:db:a5:f0:
6d:6b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5F:64:2D:9A:37:11:0D:30:F7:2C:07:C0:4A:F6:4A:97:38:34:F1:93
X509v3 Authority Key Identifier:
keyid:50:94:A2:6A:BA:71:00:76:21:FD:59:9D:53:7B:B7:AE:AA:DE:8B:33
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UJSiarpxAHYh_VmdU3u3rqreizM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/65/9fce78-4f9d-4847-b759-b451e477b9c2/1/UJSiarpxAHYh_VmdU3u3rqreizM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/65/9fce78-4f9d-4847-b759-b451e477b9c2/1/UJSiarpxAHYh_VmdU3u3rqreizM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
8b:a1:e7:88:a8:99:9e:b4:d2:d9:59:10:06:31:9a:80:78:0a:
f0:40:0b:01:cb:fe:39:7d:99:f4:38:ab:4c:70:c5:24:f6:42:
88:10:e2:39:54:9c:c7:28:69:ec:6d:31:4f:7c:85:fc:c3:71:
9f:17:94:fa:e4:d0:19:25:38:6e:8e:d6:1d:20:dd:0e:9e:78:
ee:65:22:28:f2:d0:56:73:af:be:ed:9a:87:f9:bd:95:93:d1:
26:15:ba:8e:06:02:b6:ba:6a:d6:86:0a:4e:52:20:5a:01:4e:
04:52:fe:e2:8f:0d:83:79:0b:3a:7e:6b:58:83:85:0b:d9:09:
d3:46:e5:99:aa:e2:24:e5:36:ba:82:f3:b3:71:aa:ea:13:48:
15:23:6d:e5:35:76:92:98:47:58:6f:14:d9:86:67:43:a4:97:
5b:1a:91:7c:6d:05:e3:1d:94:d8:69:f0:ec:95:cd:02:30:d7:
5f:7a:ff:0d:c7:42:13:7d:05:42:00:0d:20:2d:45:30:4a:70:
10:0a:27:a7:bc:2b:09:88:d4:c8:85:6d:06:11:bf:44:ea:31:
20:7a:6b:6a:15:47:aa:e7:5a:4b:7f:eb:53:7d:dd:88:b8:28:
1c:23:65:5c:8f:61:08:cb:be:85:da:a4:fa:56:a6:55:23:6f:
24:3c:1f:e1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 2 05:47:53 2025 by rpki-client