Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a7/fbd382-10d0-4684-8836-eed1d0967078/1/0uuxFmwGDbJd-U8CvS-PnabE3Us.mft
File: 0uuxFmwGDbJd-U8CvS-PnabE3Us.mft (raw, json)
Hash identifier: O4JZRnTd2poxC9gYsSqqbFaKN3crNygxIZ2hUezf6m8=
Subject key identifier: 39:EA:44:68:F5:BB:E0:A3:05:52:80:0D:43:63:7E:4F:C7:20:5A:B7
Authority key identifier: D2:EB:B1:16:6C:06:0D:B2:5D:F9:4F:02:BD:2F:8F:9D:A6:C4:DD:4B
Certificate issuer: /CN=d2ebb1166c060db25df94f02bd2f8f9da6c4dd4b
Certificate serial: 019651C8FC8F3EE336F981F2F293CC9BB17D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0uuxFmwGDbJd-U8CvS-PnabE3Us.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a7/fbd382-10d0-4684-8836-eed1d0967078/1/0uuxFmwGDbJd-U8CvS-PnabE3Us.mft
Manifest number: 10B7
Signing time: Sun 20 Apr 2025 06:00:48 +0000
Manifest this update: Sun 20 Apr 2025 06:00:48 +0000
Manifest next update: Mon 21 Apr 2025 06:00:48 +0000
Files and hashes: 1: 0uuxFmwGDbJd-U8CvS-PnabE3Us.crl (hash: 7AbZjC98R73px8toLlIE1tKW2aS1cRifejtvBU+eod0=)
2: LdFx4O_axkyLwKBn8hayXhVuuTY.roa (hash: +qJwhkRCeLKYqE6tG+1RNrXKKNfgmZMWphTwQtobs60=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a7/fbd382-10d0-4684-8836-eed1d0967078/1/0uuxFmwGDbJd-U8CvS-PnabE3Us.crl
rsync://rpki.ripe.net/repository/DEFAULT/a7/fbd382-10d0-4684-8836-eed1d0967078/1/0uuxFmwGDbJd-U8CvS-PnabE3Us.mft
rsync://rpki.ripe.net/repository/DEFAULT/0uuxFmwGDbJd-U8CvS-PnabE3Us.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 21 Apr 2025 06:00:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:51:c8:fc:8f:3e:e3:36:f9:81:f2:f2:93:cc:9b:b1:7d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d2ebb1166c060db25df94f02bd2f8f9da6c4dd4b
Validity
Not Before: Apr 20 06:00:48 2025 GMT
Not After : Apr 21 06:00:48 2025 GMT
Subject: CN=39ea4468f5bbe0a30552800d43637e4fc7205ab7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d6:52:d2:23:6b:b6:90:ff:db:d7:91:32:94:96:
68:b2:fa:4a:c6:5c:35:b7:a8:6c:70:d4:56:cc:9d:
24:38:ef:ff:ba:f7:d4:96:f1:78:eb:8b:3c:b3:ed:
b7:68:61:fe:aa:8f:06:20:17:2c:73:45:a8:e3:00:
50:ab:8f:c5:28:fb:39:06:8f:e7:17:a3:30:bd:b5:
a8:f0:65:27:6c:ff:9e:90:45:93:2e:65:61:7c:b5:
12:ce:a7:c7:ec:5f:f2:64:43:d3:33:4a:ec:03:35:
20:26:eb:56:ad:73:d6:fc:14:31:74:45:6e:21:55:
e4:c2:94:15:78:3a:46:d1:f7:40:ec:91:01:c0:ce:
45:ec:df:9f:6f:82:6f:d8:26:72:75:02:20:8b:08:
44:1f:15:94:56:07:85:fa:df:7d:4f:e3:8c:f2:48:
c0:a3:e3:97:c5:1c:16:c2:2c:30:44:8e:dd:b1:40:
4d:b7:1b:28:a0:e1:60:51:a5:3e:cc:a3:04:09:25:
6f:09:73:07:05:4a:2d:06:4f:bb:8f:c0:01:b3:5b:
ab:9c:18:a0:20:dc:83:43:b8:b8:80:11:21:75:89:
98:79:5a:e2:ad:14:a2:0f:cf:6e:58:72:67:26:96:
cc:4e:f6:3d:4e:51:e5:25:ba:03:d5:35:a2:8a:c6:
0f:11
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
39:EA:44:68:F5:BB:E0:A3:05:52:80:0D:43:63:7E:4F:C7:20:5A:B7
X509v3 Authority Key Identifier:
keyid:D2:EB:B1:16:6C:06:0D:B2:5D:F9:4F:02:BD:2F:8F:9D:A6:C4:DD:4B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0uuxFmwGDbJd-U8CvS-PnabE3Us.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a7/fbd382-10d0-4684-8836-eed1d0967078/1/0uuxFmwGDbJd-U8CvS-PnabE3Us.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a7/fbd382-10d0-4684-8836-eed1d0967078/1/0uuxFmwGDbJd-U8CvS-PnabE3Us.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
0a:a2:06:2e:c8:b1:91:92:5a:6f:83:d9:74:79:a0:c1:78:e8:
48:78:3a:8f:54:7c:b4:da:63:bd:51:e1:d6:c0:40:9b:cb:e5:
98:c8:b0:37:36:07:be:dd:8c:ce:90:1b:d1:a5:59:2c:f8:76:
1a:df:c2:31:19:41:be:d5:ea:56:d5:78:05:f8:65:2d:26:f4:
ab:1b:d8:21:70:3f:b3:7a:a9:c8:c7:38:4d:51:05:d2:50:41:
60:8f:4e:f3:87:ed:c7:56:2f:11:b5:a2:28:bd:f4:8f:f2:69:
8a:a3:13:ee:26:2d:19:7f:b1:00:3c:0a:2c:92:e6:6a:fb:6a:
c5:3a:61:18:03:26:98:a8:f8:9c:df:f2:ca:03:a5:a7:f8:2f:
f6:a0:f4:7d:a8:f0:13:77:86:36:8e:b5:91:b3:f1:7b:b1:25:
34:f9:02:64:cc:cb:a4:ab:ff:89:3d:d5:e0:31:74:22:ec:7b:
a6:2c:78:5f:18:1b:58:3d:a8:4c:ec:ce:aa:27:48:b3:b0:df:
74:ad:2b:af:40:03:24:3e:81:ca:ef:1f:67:b6:05:65:8a:75:
64:e0:c6:d7:e5:18:c5:98:3c:b8:29:f0:d8:32:e2:34:5f:66:
32:42:ff:e7:38:11:f8:9e:4d:ef:e2:b6:07:4f:36:80:63:d7:
7a:98:b8:af
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 20 14:41:51 2025 by rpki-client