Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/72/8b400d-1e8e-40da-b1d6-a6541ceb1e43/1/UjLUTZ4IyHPbNcAhUcpErlS0uK8.mft
File: UjLUTZ4IyHPbNcAhUcpErlS0uK8.mft (raw, json)
Hash identifier: T0TG6+vtB1Ew8XD8Jq1fLV5pFctveT4sN3GX8yeeFvA=
Subject key identifier: 95:42:9C:D2:04:2F:D4:B4:5C:34:BC:60:2E:62:DE:D6:82:95:53:D0
Authority key identifier: 52:32:D4:4D:9E:08:C8:73:DB:35:C0:21:51:CA:44:AE:54:B4:B8:AF
Certificate issuer: /CN=5232d44d9e08c873db35c02151ca44ae54b4b8af
Certificate serial: 0194C350CDD2772471ADDB807FE86C9B0FE2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UjLUTZ4IyHPbNcAhUcpErlS0uK8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/72/8b400d-1e8e-40da-b1d6-a6541ceb1e43/1/UjLUTZ4IyHPbNcAhUcpErlS0uK8.mft
Manifest number: 118F
Signing time: Sat 01 Feb 2025 21:00:40 +0000
Manifest this update: Sat 01 Feb 2025 21:00:40 +0000
Manifest next update: Sun 02 Feb 2025 21:00:40 +0000
Files and hashes: 1: MggUNL8VW9yE4LnaTyr5YJxrDwU.roa (hash: GpA5vo0L4EKCpZl/rQZR5bRixQFok1LnqW2Xg8KUiaQ=)
2: UjLUTZ4IyHPbNcAhUcpErlS0uK8.crl (hash: nuP1HU+wwhw+rU6o9TUR4wlzBS3pWL5cvx0qQY9/I2w=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/72/8b400d-1e8e-40da-b1d6-a6541ceb1e43/1/UjLUTZ4IyHPbNcAhUcpErlS0uK8.crl
rsync://rpki.ripe.net/repository/DEFAULT/72/8b400d-1e8e-40da-b1d6-a6541ceb1e43/1/UjLUTZ4IyHPbNcAhUcpErlS0uK8.mft
rsync://rpki.ripe.net/repository/DEFAULT/UjLUTZ4IyHPbNcAhUcpErlS0uK8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 02 Feb 2025 21:00:40 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:c3:50:cd:d2:77:24:71:ad:db:80:7f:e8:6c:9b:0f:e2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5232d44d9e08c873db35c02151ca44ae54b4b8af
Validity
Not Before: Feb 1 21:00:40 2025 GMT
Not After : Feb 2 21:00:40 2025 GMT
Subject: CN=95429cd2042fd4b45c34bc602e62ded6829553d0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:6e:01:9e:48:9b:99:e7:a8:80:d7:a8:91:bf:
6f:38:bf:3a:a3:5b:ad:41:a8:6b:4b:91:20:d0:a7:
58:2c:28:6d:b9:14:48:70:57:32:ac:01:83:ed:54:
20:02:fa:d6:2e:09:de:c8:7b:d9:8c:cc:e2:4e:6d:
be:27:4f:fa:e5:4c:4e:df:94:a3:aa:02:2b:e2:9a:
92:c9:a3:f2:db:5f:13:c3:ce:aa:b8:47:7e:ec:a6:
7c:8a:ad:f4:b9:7c:59:a3:bf:cc:f7:49:66:09:82:
17:81:b2:23:6c:37:df:a7:2d:ac:a9:d7:dc:61:55:
c6:34:cf:1c:97:f3:bf:85:a3:c4:43:f1:b4:76:ed:
e5:e6:57:13:79:e2:ee:6e:7e:9b:2d:26:75:d1:47:
a9:64:d4:23:16:50:50:d7:04:17:4d:1c:6b:d0:2a:
e0:8c:7c:a8:1e:ad:32:c5:55:a1:a5:7c:e1:3b:b6:
ec:46:d1:8d:13:fa:76:0d:1a:93:23:84:ea:53:7a:
95:0c:cd:4a:87:a5:72:32:80:1f:fd:6d:bd:48:fe:
11:d0:03:4b:81:1c:9c:bf:0c:a2:6a:94:ed:61:59:
23:bd:c0:e4:94:d8:98:5d:8d:ba:a4:13:25:d3:23:
9c:bf:3c:d1:dc:f7:18:d6:9b:25:1e:a6:1b:ce:b1:
99:99
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
95:42:9C:D2:04:2F:D4:B4:5C:34:BC:60:2E:62:DE:D6:82:95:53:D0
X509v3 Authority Key Identifier:
keyid:52:32:D4:4D:9E:08:C8:73:DB:35:C0:21:51:CA:44:AE:54:B4:B8:AF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UjLUTZ4IyHPbNcAhUcpErlS0uK8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/72/8b400d-1e8e-40da-b1d6-a6541ceb1e43/1/UjLUTZ4IyHPbNcAhUcpErlS0uK8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/72/8b400d-1e8e-40da-b1d6-a6541ceb1e43/1/UjLUTZ4IyHPbNcAhUcpErlS0uK8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
bb:16:7d:09:d3:34:ef:4c:14:e3:27:f4:59:c0:07:80:3e:9d:
35:a0:c9:43:9a:08:a0:83:b2:8e:95:a2:a4:5a:b6:9b:b5:22:
eb:e2:c6:77:91:e1:8d:f1:d6:da:e7:30:2b:c5:a4:10:e0:ca:
84:2e:3c:cc:eb:9c:cb:15:00:56:89:1b:73:43:43:0e:ee:4e:
1a:c8:da:d9:7d:1a:2b:99:77:d2:fb:45:c1:9f:bf:88:1e:67:
9e:da:db:b8:f8:9d:58:3e:89:29:c3:12:79:50:8f:3f:b2:48:
0e:79:4c:23:7c:4e:55:1d:72:db:2c:2c:e0:1d:3e:a6:84:ec:
04:a4:b3:af:b6:be:fb:1b:26:7b:ad:cc:d8:8e:64:1a:bc:2f:
75:ae:c9:1b:92:d5:5d:fb:2b:c8:ee:66:1c:f7:53:86:da:26:
02:fe:88:62:8e:3f:21:ac:a5:51:8a:8f:8e:a7:83:24:f5:c7:
32:92:12:76:82:78:0c:ec:a6:41:a9:55:bf:43:53:8a:2a:e7:
88:d6:ba:3a:5d:18:86:87:2f:7a:f3:0b:02:34:e5:d1:70:a0:
0a:47:f2:3d:09:5c:6e:7c:27:74:a9:3b:52:3f:2b:12:ba:e6:
22:32:45:37:17:71:bb:08:1b:c2:11:24:b6:58:ac:aa:e6:59:
7d:44:3a:a4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 2 06:53:21 2025 by rpki-client