Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/90/81c091-0a4e-4005-be22-a7e86453abcd/1/U7EFBlwNkTm1_-3DLJAM9ktDEus.mft
File: U7EFBlwNkTm1_-3DLJAM9ktDEus.mft (raw, json)
Hash identifier: s7cr2RHv7iDwgiyTjSTPBtCHkfqF5NJIL5voyO+Nw/U=
Subject key identifier: 33:CA:42:72:AC:26:3A:F2:79:16:B2:50:03:99:B5:2D:68:D0:19:18
Authority key identifier: 53:B1:05:06:5C:0D:91:39:B5:FF:ED:C3:2C:90:0C:F6:4B:43:12:EB
Certificate issuer: /CN=53b105065c0d9139b5ffedc32c900cf64b4312eb
Certificate serial: 01963FF955A0F3A58D53A2AD6106A8382A53
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/U7EFBlwNkTm1_-3DLJAM9ktDEus.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/90/81c091-0a4e-4005-be22-a7e86453abcd/1/U7EFBlwNkTm1_-3DLJAM9ktDEus.mft
Manifest number: 14F2
Signing time: Wed 16 Apr 2025 19:00:26 +0000
Manifest this update: Wed 16 Apr 2025 19:00:26 +0000
Manifest next update: Thu 17 Apr 2025 19:00:26 +0000
Files and hashes: 1: U7EFBlwNkTm1_-3DLJAM9ktDEus.crl (hash: mGy/LjeDkLUxfG+v7VVRcRqYHUfUoZ+0pbugYANIojY=)
2: dXA2sXCeF-zEI-_J4kU7kczSGDo.roa (hash: yLUH5uzp/Ib7vlJR5HEnjKQN0s3hZM+CwSBPhsePj6Y=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/90/81c091-0a4e-4005-be22-a7e86453abcd/1/U7EFBlwNkTm1_-3DLJAM9ktDEus.crl
rsync://rpki.ripe.net/repository/DEFAULT/90/81c091-0a4e-4005-be22-a7e86453abcd/1/U7EFBlwNkTm1_-3DLJAM9ktDEus.mft
rsync://rpki.ripe.net/repository/DEFAULT/U7EFBlwNkTm1_-3DLJAM9ktDEus.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 17 Apr 2025 19:00:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:3f:f9:55:a0:f3:a5:8d:53:a2:ad:61:06:a8:38:2a:53
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=53b105065c0d9139b5ffedc32c900cf64b4312eb
Validity
Not Before: Apr 16 19:00:26 2025 GMT
Not After : Apr 17 19:00:26 2025 GMT
Subject: CN=33ca4272ac263af27916b2500399b52d68d01918
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:0a:81:cf:0d:2a:d0:ac:39:57:ce:a0:0b:94:
57:20:4f:83:d2:4c:29:44:30:ed:97:cd:81:24:71:
81:b1:9b:a9:49:32:87:22:56:ec:1f:5a:a4:69:ac:
c6:e5:bc:03:da:51:01:24:e0:bb:ba:11:c4:96:6f:
28:f4:0b:d5:e1:0a:4b:1b:9d:32:c3:00:68:7d:fc:
ed:97:e6:c6:17:99:c5:bf:b3:9c:69:13:ee:cd:d1:
5f:97:07:5c:3b:1f:fe:da:49:f0:e6:0c:95:d3:7d:
35:71:92:7c:03:21:02:79:f7:b2:9f:c4:0a:ac:8e:
89:ca:4a:99:24:a5:12:08:b2:fa:25:31:a9:cc:c2:
40:35:78:c2:6f:cb:fa:63:22:3f:24:12:be:e0:36:
ff:4f:c0:67:10:a7:75:b4:ea:6c:30:f8:86:3e:1d:
d6:64:1e:b7:a5:81:7f:d2:af:b9:70:b3:26:06:8d:
36:25:d8:3d:ca:f0:5f:6c:fb:2a:3b:3d:d0:41:a6:
8c:d2:c3:2e:0d:f9:4f:80:bf:f5:ce:6c:e6:66:33:
39:b5:21:ae:29:f0:09:d3:fc:1c:54:4c:9d:de:fd:
ef:6e:f9:12:19:f0:c5:f9:72:0f:bc:0a:31:5b:2b:
d4:73:d3:b2:d3:dd:c2:bb:6f:84:7d:0b:5c:d6:c7:
ad:b1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
33:CA:42:72:AC:26:3A:F2:79:16:B2:50:03:99:B5:2D:68:D0:19:18
X509v3 Authority Key Identifier:
keyid:53:B1:05:06:5C:0D:91:39:B5:FF:ED:C3:2C:90:0C:F6:4B:43:12:EB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/U7EFBlwNkTm1_-3DLJAM9ktDEus.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/90/81c091-0a4e-4005-be22-a7e86453abcd/1/U7EFBlwNkTm1_-3DLJAM9ktDEus.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/90/81c091-0a4e-4005-be22-a7e86453abcd/1/U7EFBlwNkTm1_-3DLJAM9ktDEus.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
2a:09:eb:70:24:90:2c:d0:1e:ed:3a:bd:e1:66:b1:ed:29:e6:
c6:8e:bc:99:3a:7d:85:ba:d2:da:7e:ba:e4:3d:c6:1d:e9:fd:
80:99:5e:99:81:a5:bf:cb:5a:14:46:d1:38:0e:46:9b:07:56:
de:2b:79:3d:7a:e5:37:73:0e:e3:34:25:09:9f:25:67:03:a4:
23:fd:24:d4:0f:4e:fb:47:bb:1f:58:85:b3:bc:9a:8f:10:3f:
8b:05:5e:24:db:59:31:47:65:1a:34:31:fd:f5:3f:eb:e9:31:
6a:9e:59:a7:9b:79:af:c0:26:b8:0c:b7:87:2b:70:7e:8e:6a:
5b:05:f3:9c:77:0d:ab:ed:68:1f:a1:7a:92:41:1d:cd:fb:a4:
e2:0d:0d:09:5f:1f:f4:88:ad:6c:00:e2:ab:9e:a7:09:3f:d5:
57:bb:8f:d5:31:76:66:4c:81:af:70:a4:59:77:9e:42:98:40:
03:9f:4a:b7:cf:76:eb:19:89:ac:28:7b:a6:ae:cc:3d:b3:e8:
7f:c0:c7:02:94:c5:e5:83:17:d3:96:78:33:21:2e:9b:43:95:
03:4c:05:2f:03:b4:66:85:59:8c:1a:4b:95:90:f7:8d:bb:b9:
b3:65:6d:39:f9:70:69:44:69:5f:b7:48:b0:69:da:05:da:d8:
b8:fa:cf:b6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Apr 17 04:34:40 2025 by rpki-client