Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/72/8b400d-1e8e-40da-b1d6-a6541ceb1e43/1/UjLUTZ4IyHPbNcAhUcpErlS0uK8.mft
File: UjLUTZ4IyHPbNcAhUcpErlS0uK8.mft (raw, json)
Hash identifier: WHUZ1cBOP52QmYpTwvjIIPo1M4RFYatZfml340JmIq0=
Subject key identifier: 6D:09:5C:61:B8:A5:13:7F:E5:05:2C:9B:D6:76:00:69:00:8B:AD:A3
Authority key identifier: 52:32:D4:4D:9E:08:C8:73:DB:35:C0:21:51:CA:44:AE:54:B4:B8:AF
Certificate issuer: /CN=5232d44d9e08c873db35c02151ca44ae54b4b8af
Certificate serial: 0194BB974BD3F417EE5AC239FED002961710
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UjLUTZ4IyHPbNcAhUcpErlS0uK8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/72/8b400d-1e8e-40da-b1d6-a6541ceb1e43/1/UjLUTZ4IyHPbNcAhUcpErlS0uK8.mft
Manifest number: 118B
Signing time: Fri 31 Jan 2025 09:00:42 +0000
Manifest this update: Fri 31 Jan 2025 09:00:42 +0000
Manifest next update: Sat 01 Feb 2025 09:00:42 +0000
Files and hashes: 1: MggUNL8VW9yE4LnaTyr5YJxrDwU.roa (hash: GpA5vo0L4EKCpZl/rQZR5bRixQFok1LnqW2Xg8KUiaQ=)
2: UjLUTZ4IyHPbNcAhUcpErlS0uK8.crl (hash: wQBShu4XrPr/PIUEkb31HCqxTDbgSax9EBwsxnvOS7w=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/72/8b400d-1e8e-40da-b1d6-a6541ceb1e43/1/UjLUTZ4IyHPbNcAhUcpErlS0uK8.crl
rsync://rpki.ripe.net/repository/DEFAULT/72/8b400d-1e8e-40da-b1d6-a6541ceb1e43/1/UjLUTZ4IyHPbNcAhUcpErlS0uK8.mft
rsync://rpki.ripe.net/repository/DEFAULT/UjLUTZ4IyHPbNcAhUcpErlS0uK8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 01 Feb 2025 09:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:bb:97:4b:d3:f4:17:ee:5a:c2:39:fe:d0:02:96:17:10
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5232d44d9e08c873db35c02151ca44ae54b4b8af
Validity
Not Before: Jan 31 09:00:42 2025 GMT
Not After : Feb 1 09:00:42 2025 GMT
Subject: CN=6d095c61b8a5137fe5052c9bd6760069008bada3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:cb:b6:ef:69:61:2b:c6:f8:4e:ac:a0:a1:04:
41:66:3c:30:e7:4e:c0:b4:18:0a:5f:9a:30:0d:f5:
8a:15:f9:5d:e9:7e:e2:e8:dc:6b:e0:89:01:1e:75:
a1:35:0c:05:16:27:77:4b:ad:71:9c:ad:32:d0:5d:
a4:17:b7:9c:52:d4:b9:eb:03:e8:c7:fa:43:f8:0e:
99:c6:d1:07:e8:af:e6:93:c0:47:9e:51:6a:42:e6:
eb:f3:9c:27:74:26:1f:24:27:36:6a:58:d4:50:dc:
18:f2:f7:b2:e9:c2:5f:a5:df:df:4c:15:d1:d8:b3:
43:08:da:52:4a:bc:69:d8:06:b2:38:b0:da:ff:12:
d4:67:b8:6f:d3:91:12:55:d1:0b:9c:8b:42:66:7d:
3b:e3:86:3b:99:17:89:95:7f:45:1e:51:4a:e0:a0:
d8:96:4d:93:9a:0a:26:c4:7a:dd:08:8b:6e:11:46:
62:80:d2:a1:37:a6:b9:af:83:85:24:8f:f4:00:83:
d2:eb:e4:a1:bc:a3:d9:30:c1:d9:c3:cd:17:91:a7:
95:c3:c6:ce:33:f5:49:d0:40:38:3b:5d:38:51:ed:
e7:cf:31:9c:8c:ac:52:71:f7:45:02:29:29:e6:93:
2c:cf:d2:1f:7c:8b:01:d1:6e:1e:96:60:2c:dd:1b:
93:7d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6D:09:5C:61:B8:A5:13:7F:E5:05:2C:9B:D6:76:00:69:00:8B:AD:A3
X509v3 Authority Key Identifier:
keyid:52:32:D4:4D:9E:08:C8:73:DB:35:C0:21:51:CA:44:AE:54:B4:B8:AF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UjLUTZ4IyHPbNcAhUcpErlS0uK8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/72/8b400d-1e8e-40da-b1d6-a6541ceb1e43/1/UjLUTZ4IyHPbNcAhUcpErlS0uK8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/72/8b400d-1e8e-40da-b1d6-a6541ceb1e43/1/UjLUTZ4IyHPbNcAhUcpErlS0uK8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
2d:22:b8:23:23:f4:b8:95:d7:e5:5a:7e:bc:30:89:a9:c0:9f:
4f:98:55:0c:bc:92:81:0a:08:0a:0a:d6:29:29:c0:a1:9f:8a:
3b:c7:59:75:32:36:c6:2b:31:bb:dd:3c:c9:cc:9e:24:68:6c:
99:bc:cb:96:e2:83:18:8c:26:5f:a8:c7:97:9b:0c:4c:54:b4:
b7:1d:21:12:b2:56:a5:83:ff:ea:bb:3e:b6:20:81:6e:b5:eb:
30:dd:a8:54:86:e0:e8:2a:63:03:8c:8c:f6:d4:ea:db:83:34:
9e:ea:64:2b:71:74:ed:9a:78:67:1a:52:fa:87:61:1d:66:6c:
f9:23:2d:a1:cd:2a:68:a4:3b:36:f6:20:81:19:d8:f9:3e:5f:
74:2f:88:74:bb:74:f2:6b:1f:db:e7:89:0b:f6:86:8a:3e:26:
d3:e1:83:81:f9:bb:ed:84:1e:23:e3:9b:bf:11:62:fd:f5:d9:
1f:fc:dd:89:f6:bd:f2:f9:e2:28:90:17:cc:8d:cb:dc:44:1a:
c3:85:84:46:33:f9:ee:f8:f1:01:eb:17:b8:c6:19:c0:a5:f9:
d3:8d:fd:c4:d0:ec:6d:42:37:4a:19:d0:a9:74:dd:41:7c:b9:
3e:dd:32:1b:f1:97:bd:f5:24:92:80:c4:13:95:00:cc:f0:2c:
89:47:80:bd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jan 31 15:28:34 2025 by rpki-client on console-fra.rpki-client.org