Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/71/71f439-2b1b-4ef0-b6a5-8fcaa6936c6c/1/uqpkzSnJTM3hREj2GhcsdjseQFA.mft
File: uqpkzSnJTM3hREj2GhcsdjseQFA.mft (raw, json)
Hash identifier: VvKvGus5eZghp1n1DAENwgmbupKvuARXQU1/ZrKB8ao=
Subject key identifier: 68:BC:43:E5:66:F7:AB:96:34:C6:5A:C9:90:21:E9:46:BC:A1:57:4A
Authority key identifier: BA:AA:64:CD:29:C9:4C:CD:E1:44:48:F6:1A:17:2C:76:3B:1E:40:50
Certificate issuer: /CN=baaa64cd29c94ccde14448f61a172c763b1e4050
Certificate serial: 019652DB37585059140B2DA19355C6BBC2DC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/uqpkzSnJTM3hREj2GhcsdjseQFA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/71/71f439-2b1b-4ef0-b6a5-8fcaa6936c6c/1/uqpkzSnJTM3hREj2GhcsdjseQFA.mft
Manifest number: 0553
Signing time: Sun 20 Apr 2025 11:00:20 +0000
Manifest this update: Sun 20 Apr 2025 11:00:20 +0000
Manifest next update: Mon 21 Apr 2025 11:00:20 +0000
Files and hashes: 1: 78qzTXd1x9Fq51bVnqtwUpES8tE.roa (hash: cFYT5YQ4faJqGDT5XV6eOPdhzfgW7hK/0zl0h4kFiw8=)
2: uqpkzSnJTM3hREj2GhcsdjseQFA.crl (hash: h5nxw4LEkQOEa3vEkc65fdr87rZU7J8/QNceT1Ls49k=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/71/71f439-2b1b-4ef0-b6a5-8fcaa6936c6c/1/uqpkzSnJTM3hREj2GhcsdjseQFA.crl
rsync://rpki.ripe.net/repository/DEFAULT/71/71f439-2b1b-4ef0-b6a5-8fcaa6936c6c/1/uqpkzSnJTM3hREj2GhcsdjseQFA.mft
rsync://rpki.ripe.net/repository/DEFAULT/uqpkzSnJTM3hREj2GhcsdjseQFA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 21 Apr 2025 11:00:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:52:db:37:58:50:59:14:0b:2d:a1:93:55:c6:bb:c2:dc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=baaa64cd29c94ccde14448f61a172c763b1e4050
Validity
Not Before: Apr 20 11:00:20 2025 GMT
Not After : Apr 21 11:00:20 2025 GMT
Subject: CN=68bc43e566f7ab9634c65ac99021e946bca1574a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d8:77:18:b6:27:c6:9e:c2:08:19:6e:85:ab:dc:
e6:4b:bc:bf:e7:42:1a:98:80:0e:7c:83:f9:12:65:
bb:47:89:78:b2:bf:c7:88:ef:c8:b1:d0:66:cd:6b:
f1:82:c8:28:b1:1e:75:9a:8d:e9:62:64:19:2a:6d:
8d:76:d8:e2:7a:25:39:58:e3:ab:1d:62:fa:f4:02:
a9:15:a9:e9:2b:bd:ef:0e:2d:da:ce:20:cf:7e:91:
20:ff:93:e3:3c:8f:d2:0f:84:4c:ec:4d:a3:16:f6:
de:6e:18:d0:41:f0:7b:31:e6:b1:88:00:d5:cf:96:
37:08:03:b8:58:c0:ee:70:81:d7:e5:12:94:1a:c1:
25:b8:a7:ca:7a:a4:6b:e5:dc:26:4b:07:9e:b9:bd:
24:e1:67:b8:9b:13:48:e5:45:a3:ce:27:8a:49:41:
09:57:d3:d2:04:cc:9c:d3:6e:fd:23:94:33:e3:62:
9e:a7:12:4d:26:eb:8c:a6:1d:c7:1d:d8:8e:b9:35:
90:e7:ee:b4:0f:64:eb:46:d1:a6:b4:35:de:d8:b0:
ea:71:32:36:9b:dc:63:e8:cf:dd:11:9a:2c:d8:78:
ec:44:01:14:a3:c7:39:c3:64:e5:a3:e8:21:f5:b1:
88:d2:3d:18:95:9e:19:23:8c:e1:b9:81:94:dd:a8:
29:03
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
68:BC:43:E5:66:F7:AB:96:34:C6:5A:C9:90:21:E9:46:BC:A1:57:4A
X509v3 Authority Key Identifier:
keyid:BA:AA:64:CD:29:C9:4C:CD:E1:44:48:F6:1A:17:2C:76:3B:1E:40:50
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/uqpkzSnJTM3hREj2GhcsdjseQFA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/71/71f439-2b1b-4ef0-b6a5-8fcaa6936c6c/1/uqpkzSnJTM3hREj2GhcsdjseQFA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/71/71f439-2b1b-4ef0-b6a5-8fcaa6936c6c/1/uqpkzSnJTM3hREj2GhcsdjseQFA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
36:98:6a:73:51:68:26:13:7b:94:76:92:40:fd:25:ce:fc:18:
85:cd:37:91:7c:2b:21:fa:1a:3e:15:a2:ed:10:f5:eb:ac:a5:
93:ce:07:79:db:5d:7d:b8:42:4b:4c:14:a4:dc:f1:9c:98:f2:
b8:4c:a7:9c:24:db:3b:f0:bd:42:67:de:06:bd:20:0f:2c:2d:
96:32:af:38:93:e8:10:93:7c:a8:12:13:0d:a0:44:6b:8a:dd:
ab:e0:43:d7:85:54:97:53:78:4b:7a:8a:ae:fd:d9:46:8a:5c:
52:09:38:4f:a4:e8:00:b3:ed:1e:d7:2c:18:6e:63:ab:a4:c3:
6a:5e:5b:d3:66:e1:ec:4f:56:c5:9f:69:98:f2:5a:ac:ab:43:
ab:fd:d9:db:c8:fe:3a:22:35:e2:ef:c9:48:87:a0:36:0a:1a:
dd:a7:bd:8e:35:e1:c7:ac:49:64:de:66:d5:b2:24:34:36:b7:
ad:cb:56:76:65:f2:e0:85:c1:80:a0:eb:92:62:b6:02:37:86:
be:b9:c5:7f:f3:68:21:5a:63:09:6b:89:48:1e:71:1b:e5:16:
b7:64:a8:ff:9d:4e:81:36:bc:b1:af:83:79:3c:4c:17:28:87:
47:6a:c1:48:c1:12:87:55:b6:c4:1a:64:4b:e2:d1:9d:6f:ae:
be:ac:c5:9c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 20 19:21:39 2025 by rpki-client