Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/72/8b400d-1e8e-40da-b1d6-a6541ceb1e43/1/UjLUTZ4IyHPbNcAhUcpErlS0uK8.mft
File: UjLUTZ4IyHPbNcAhUcpErlS0uK8.mft (raw, json)
Hash identifier: VBMb/8wSsb/pAA7wD/eZUAjBy8Za2/EwR4X+bzu4hh4=
Subject key identifier: 8F:08:C3:75:09:12:98:1A:C6:65:BA:B8:99:42:31:70:FD:1A:DB:39
Authority key identifier: 52:32:D4:4D:9E:08:C8:73:DB:35:C0:21:51:CA:44:AE:54:B4:B8:AF
Certificate issuer: /CN=5232d44d9e08c873db35c02151ca44ae54b4b8af
Certificate serial: 019653120593E88EAA193D0800ECE434D387
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UjLUTZ4IyHPbNcAhUcpErlS0uK8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/72/8b400d-1e8e-40da-b1d6-a6541ceb1e43/1/UjLUTZ4IyHPbNcAhUcpErlS0uK8.mft
Manifest number: 125E
Signing time: Sun 20 Apr 2025 12:00:11 +0000
Manifest this update: Sun 20 Apr 2025 12:00:11 +0000
Manifest next update: Mon 21 Apr 2025 12:00:11 +0000
Files and hashes: 1: MggUNL8VW9yE4LnaTyr5YJxrDwU.roa (hash: GpA5vo0L4EKCpZl/rQZR5bRixQFok1LnqW2Xg8KUiaQ=)
2: UjLUTZ4IyHPbNcAhUcpErlS0uK8.crl (hash: I3svngehfPxpsraLLnsBhlu3viaSC3E9SieBx2mH6ic=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/72/8b400d-1e8e-40da-b1d6-a6541ceb1e43/1/UjLUTZ4IyHPbNcAhUcpErlS0uK8.crl
rsync://rpki.ripe.net/repository/DEFAULT/72/8b400d-1e8e-40da-b1d6-a6541ceb1e43/1/UjLUTZ4IyHPbNcAhUcpErlS0uK8.mft
rsync://rpki.ripe.net/repository/DEFAULT/UjLUTZ4IyHPbNcAhUcpErlS0uK8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 21 Apr 2025 07:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:53:12:05:93:e8:8e:aa:19:3d:08:00:ec:e4:34:d3:87
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5232d44d9e08c873db35c02151ca44ae54b4b8af
Validity
Not Before: Apr 20 12:00:11 2025 GMT
Not After : Apr 21 12:00:11 2025 GMT
Subject: CN=8f08c3750912981ac665bab899423170fd1adb39
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:8e:17:0c:c5:b8:d8:af:cf:b3:e6:00:65:38:
76:35:4e:5f:ee:50:49:58:50:50:11:ec:9f:d1:9d:
b7:9e:8a:93:d7:08:67:f6:89:ee:bc:c9:e1:ec:d4:
99:15:d9:d2:9c:b5:fa:9c:d9:ab:77:e8:b5:75:24:
5e:f0:ec:e4:f4:24:59:fd:55:52:b7:ea:25:76:83:
8b:a2:3d:76:5b:89:0f:94:f6:35:92:f4:b7:ef:fb:
2a:d4:4b:7f:18:bd:cf:cd:b0:eb:ba:63:f8:4a:98:
14:40:91:8a:2d:88:6f:33:28:e9:e9:63:58:b8:5a:
00:69:46:47:86:13:fc:11:84:39:ef:e6:89:11:d4:
e9:c3:33:f6:f0:ad:51:0e:ec:f1:e5:9b:85:fb:62:
a4:76:73:39:7b:3c:d1:7b:8f:7c:9e:11:5f:4e:f7:
3a:cf:a3:87:b3:7e:05:9d:ce:63:79:f8:f8:d0:d5:
70:34:1d:c2:19:04:2c:48:5b:b7:64:bc:96:56:ea:
37:75:94:1e:8b:3d:87:e6:6b:a5:d6:6a:37:16:a8:
6f:bc:e9:7d:0a:d9:fe:2b:c1:73:eb:ea:21:aa:37:
80:8e:2e:67:52:f3:ff:9a:f4:5b:f0:e5:75:91:2b:
24:7f:76:90:31:a6:34:02:52:20:1c:e7:d4:0f:ee:
51:a5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8F:08:C3:75:09:12:98:1A:C6:65:BA:B8:99:42:31:70:FD:1A:DB:39
X509v3 Authority Key Identifier:
keyid:52:32:D4:4D:9E:08:C8:73:DB:35:C0:21:51:CA:44:AE:54:B4:B8:AF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UjLUTZ4IyHPbNcAhUcpErlS0uK8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/72/8b400d-1e8e-40da-b1d6-a6541ceb1e43/1/UjLUTZ4IyHPbNcAhUcpErlS0uK8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/72/8b400d-1e8e-40da-b1d6-a6541ceb1e43/1/UjLUTZ4IyHPbNcAhUcpErlS0uK8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
81:01:31:a7:12:8c:8a:34:25:58:0d:79:59:03:6e:f1:6e:04:
15:85:0e:80:41:c5:4f:fb:7d:94:ec:a6:f7:15:8c:71:ad:3b:
80:7d:1d:20:cc:c5:c4:6e:04:27:a7:9c:6c:3b:d8:c4:64:30:
62:a5:c3:a4:99:49:9d:dc:67:19:cf:4f:25:ce:44:95:6e:9b:
06:e4:15:a0:b2:d1:c9:f7:0a:af:00:cd:2c:3f:18:7d:2f:30:
c0:eb:21:99:90:ba:3a:c1:0a:e3:bb:91:c2:55:b0:f8:f0:a6:
87:9f:ab:30:08:e4:b4:6b:91:81:7f:34:8e:1d:c8:34:21:5b:
30:f2:cd:a7:8d:9f:5a:cc:58:02:87:33:4b:e4:08:50:d1:f8:
df:a9:fa:fe:0e:50:89:d7:f5:a2:81:af:a1:62:2c:73:f7:9a:
ff:93:2a:86:a2:6c:fb:fd:5a:30:e7:f4:a4:48:a8:fb:9e:dc:
77:48:9c:f0:e7:01:97:da:2c:cc:1a:c8:7c:c2:32:1b:8c:b3:
30:52:25:1c:8b:20:e6:49:cd:15:34:70:a9:18:1d:b9:2b:aa:
b0:19:7c:6a:a1:3e:78:fd:a0:c9:42:dd:6e:97:86:92:9f:d4:
e1:bf:12:74:1f:68:1c:1e:24:88:84:53:5e:d0:11:2d:e2:c7:
53:61:bc:64
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 20 13:48:19 2025 by rpki-client