Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9b/380c3c-f308-4dfe-a3a3-e21c6d0f8f04/1/UYnbLl9XTdoOPBfjldXwW2YlTsU.mft
File: UYnbLl9XTdoOPBfjldXwW2YlTsU.mft (raw, json)
Hash identifier: r9mRsGCUTG5JDDvo1NoYIffa8+umhxC4Il0WDCPAgDY=
Subject key identifier: 06:85:AB:14:7D:06:1D:B0:3E:95:67:84:0F:3E:46:BF:B6:B3:4C:2A
Authority key identifier: 51:89:DB:2E:5F:57:4D:DA:0E:3C:17:E3:95:D5:F0:5B:66:25:4E:C5
Certificate issuer: /CN=5189db2e5f574dda0e3c17e395d5f05b66254ec5
Certificate serial: 01958BF27C426A9749E9D9CD2C7CB0775DA3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UYnbLl9XTdoOPBfjldXwW2YlTsU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9b/380c3c-f308-4dfe-a3a3-e21c6d0f8f04/1/UYnbLl9XTdoOPBfjldXwW2YlTsU.mft
Manifest number: 0B7D
Signing time: Wed 12 Mar 2025 20:01:19 +0000
Manifest this update: Wed 12 Mar 2025 20:01:19 +0000
Manifest next update: Thu 13 Mar 2025 20:01:19 +0000
Files and hashes: 1: BfyClB3XmviPfJ6xZ2InO7FtLcs.roa (hash: 3EeV7dZbc++zjvyl5M1yeUuYRy/Llocvb96yJLQ1iig=)
2: UYnbLl9XTdoOPBfjldXwW2YlTsU.crl (hash: iu4a380sjiozE3VxL5i4IX2h178mNTNkbe0/UqM0wMs=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/9b/380c3c-f308-4dfe-a3a3-e21c6d0f8f04/1/UYnbLl9XTdoOPBfjldXwW2YlTsU.crl
rsync://rpki.ripe.net/repository/DEFAULT/9b/380c3c-f308-4dfe-a3a3-e21c6d0f8f04/1/UYnbLl9XTdoOPBfjldXwW2YlTsU.mft
rsync://rpki.ripe.net/repository/DEFAULT/UYnbLl9XTdoOPBfjldXwW2YlTsU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 13 Mar 2025 19:14:49 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:8b:f2:7c:42:6a:97:49:e9:d9:cd:2c:7c:b0:77:5d:a3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5189db2e5f574dda0e3c17e395d5f05b66254ec5
Validity
Not Before: Mar 12 20:01:19 2025 GMT
Not After : Mar 13 20:01:19 2025 GMT
Subject: CN=0685ab147d061db03e9567840f3e46bfb6b34c2a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ce:7e:7c:9d:63:cd:99:81:ce:5b:41:1b:61:21:
40:fe:7d:84:66:84:1c:87:9d:46:f9:12:48:fb:4e:
43:0d:ce:25:53:fd:3a:88:c2:1c:49:30:15:d9:64:
29:98:02:71:bb:db:a2:28:7f:41:30:ec:24:cc:d3:
c4:9b:e3:fa:b5:b8:a5:2b:e8:f0:00:93:a0:d9:05:
87:c4:e1:b4:51:2a:7e:ab:71:c5:3f:bc:c6:e4:f2:
ec:57:51:0c:8e:ed:8a:c9:f4:b6:1f:bc:94:e8:6c:
fe:5c:16:2a:bc:bc:d2:c6:e9:a1:1c:ef:75:11:aa:
f6:4d:40:70:f2:47:35:e4:c0:bf:0b:25:0e:cb:1a:
c7:73:0d:ec:61:71:fb:42:80:be:a0:77:62:df:d8:
5e:c0:86:a7:7b:e9:1c:ba:08:8d:4d:59:26:3a:97:
29:0c:97:97:77:38:d5:17:51:77:dd:96:5b:a7:49:
ae:e1:04:81:15:15:4d:37:5c:c8:a3:ec:e0:5b:df:
2f:ab:4a:0b:15:44:d6:3d:6a:80:a0:b8:eb:66:14:
25:0d:66:9a:52:03:63:74:93:c1:73:cc:76:e9:1d:
69:38:07:29:16:51:ad:ec:7e:06:cb:c3:91:2b:68:
d1:0c:65:90:c7:8f:02:88:5d:7f:d5:e7:fc:2d:36:
7d:9b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
06:85:AB:14:7D:06:1D:B0:3E:95:67:84:0F:3E:46:BF:B6:B3:4C:2A
X509v3 Authority Key Identifier:
keyid:51:89:DB:2E:5F:57:4D:DA:0E:3C:17:E3:95:D5:F0:5B:66:25:4E:C5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UYnbLl9XTdoOPBfjldXwW2YlTsU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9b/380c3c-f308-4dfe-a3a3-e21c6d0f8f04/1/UYnbLl9XTdoOPBfjldXwW2YlTsU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9b/380c3c-f308-4dfe-a3a3-e21c6d0f8f04/1/UYnbLl9XTdoOPBfjldXwW2YlTsU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
44:df:9a:1f:fa:b7:2b:7e:55:f6:89:d9:53:a8:65:33:b2:24:
0d:83:74:72:26:19:1f:d8:37:2f:cf:08:df:08:6b:5a:68:e2:
8f:7a:ad:ea:1f:20:67:8d:5d:06:34:cc:74:48:ff:41:4e:d5:
4b:0e:2c:2c:98:06:9f:8e:c1:c9:2e:2e:74:23:5b:17:88:72:
55:85:c9:c2:bf:1c:ec:0d:bf:09:b5:0a:04:60:24:f1:c0:ed:
53:cf:4d:9e:fb:a8:65:29:c1:ce:8d:a7:41:76:3a:83:8b:a9:
e7:f5:2a:b7:34:aa:92:e3:dd:d7:83:ba:23:61:6e:d2:80:60:
df:dc:d5:c7:6d:28:96:eb:2c:69:77:94:39:bd:2f:f7:ae:68:
49:2d:49:50:0f:30:d3:47:8b:cb:87:ed:bd:4b:96:38:7f:51:
56:bd:c3:63:8f:06:60:cf:a7:e6:de:7a:8d:88:ac:33:81:d4:
2c:c3:e8:da:a5:0d:a7:a2:38:cc:8f:9a:73:44:85:2c:a2:83:
11:af:58:5d:bb:e7:38:ab:33:fb:3d:54:52:01:73:b2:fa:a4:
16:24:cb:f9:38:9a:81:3b:82:d0:a3:54:e5:ef:0a:19:ae:93:
3c:11:24:61:3d:9a:b0:28:89:f3:fc:dc:f7:83:f9:7a:cb:f3:
6c:8c:c2:1d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 13 02:37:48 2025 by rpki-client