Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b4/a2fc18-534b-4454-9bd1-fe6bb049337d/1/UFrRf0xiDVjUU9X218kjP84SZJk.mft
File: UFrRf0xiDVjUU9X218kjP84SZJk.mft (raw, json)
Hash identifier: 3j8RopXc+fdYJZ04Y05IEQYgOOufs5O9ZZzC6647SbI=
Subject key identifier: AF:9E:BC:13:AA:4A:C0:E7:D1:F1:74:D4:DA:9B:BD:75:84:40:A4:F1
Authority key identifier: 50:5A:D1:7F:4C:62:0D:58:D4:53:D5:F6:D7:C9:23:3F:CE:12:64:99
Certificate issuer: /CN=505ad17f4c620d58d453d5f6d7c9233fce126499
Certificate serial: 019653804C90D1E5DD8AF991AE08C82A0387
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UFrRf0xiDVjUU9X218kjP84SZJk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b4/a2fc18-534b-4454-9bd1-fe6bb049337d/1/UFrRf0xiDVjUU9X218kjP84SZJk.mft
Manifest number: 0586
Signing time: Sun 20 Apr 2025 14:00:39 +0000
Manifest this update: Sun 20 Apr 2025 14:00:39 +0000
Manifest next update: Mon 21 Apr 2025 14:00:39 +0000
Files and hashes: 1: UFrRf0xiDVjUU9X218kjP84SZJk.crl (hash: MGcdnHmK0siLBkbspy0n9e4kxUBVXz7EZqMM9cXZh5g=)
2: iF93w_kO_x0TrENOc4gmI6-EtJ0.roa (hash: 5zJM9jO9AIiHF5QxYe/wtht+xZaOBv518vzoLVEf1p4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b4/a2fc18-534b-4454-9bd1-fe6bb049337d/1/UFrRf0xiDVjUU9X218kjP84SZJk.crl
rsync://rpki.ripe.net/repository/DEFAULT/b4/a2fc18-534b-4454-9bd1-fe6bb049337d/1/UFrRf0xiDVjUU9X218kjP84SZJk.mft
rsync://rpki.ripe.net/repository/DEFAULT/UFrRf0xiDVjUU9X218kjP84SZJk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 21 Apr 2025 14:00:39 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:53:80:4c:90:d1:e5:dd:8a:f9:91:ae:08:c8:2a:03:87
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=505ad17f4c620d58d453d5f6d7c9233fce126499
Validity
Not Before: Apr 20 14:00:39 2025 GMT
Not After : Apr 21 14:00:39 2025 GMT
Subject: CN=af9ebc13aa4ac0e7d1f174d4da9bbd758440a4f1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:84:ef:5a:a6:93:c6:75:fc:f5:61:ef:f7:fd:96:
bf:2b:f9:db:8f:3e:2c:52:59:b5:99:17:cb:1f:23:
f4:e2:e6:66:20:c9:da:d0:82:cd:ad:69:72:f0:5d:
96:08:54:55:a4:bb:36:7b:ff:4a:b5:68:fe:72:3a:
0e:d4:e0:d2:37:03:06:41:b9:1e:7f:9e:54:e9:20:
d1:57:bd:19:2f:be:47:ce:08:8c:80:bd:5b:ab:f2:
e0:51:ec:3b:fe:82:e6:e9:d0:3f:9c:36:ea:0d:a4:
3f:9e:f2:c6:28:12:f2:f3:de:8d:3a:ef:65:d0:24:
90:7d:11:f6:12:da:93:a9:7d:5f:ee:04:96:73:1b:
d7:1d:24:28:5e:8b:41:5f:6e:03:ae:40:75:12:48:
51:46:d2:07:d8:7d:78:c5:23:6f:7d:d8:42:af:55:
00:8e:50:a1:16:f6:c1:cb:c0:e6:30:9d:f1:e1:32:
35:b5:da:ab:75:6a:be:3b:5c:20:8b:35:c0:ec:ad:
06:19:46:b4:0d:f8:6f:e6:32:01:db:36:52:e9:3c:
b9:95:1f:e0:a6:ba:fd:36:19:5f:a0:52:52:78:3b:
73:28:fb:45:03:64:0d:02:9d:6a:0e:c4:20:26:90:
05:79:4b:62:24:d1:cc:d8:20:73:12:d9:bb:5e:6f:
88:db
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AF:9E:BC:13:AA:4A:C0:E7:D1:F1:74:D4:DA:9B:BD:75:84:40:A4:F1
X509v3 Authority Key Identifier:
keyid:50:5A:D1:7F:4C:62:0D:58:D4:53:D5:F6:D7:C9:23:3F:CE:12:64:99
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UFrRf0xiDVjUU9X218kjP84SZJk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b4/a2fc18-534b-4454-9bd1-fe6bb049337d/1/UFrRf0xiDVjUU9X218kjP84SZJk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b4/a2fc18-534b-4454-9bd1-fe6bb049337d/1/UFrRf0xiDVjUU9X218kjP84SZJk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
61:2d:3c:f2:8b:12:43:ea:a6:60:f8:9a:18:f4:48:76:52:0f:
48:98:c3:8d:a0:73:cc:3d:c4:9f:70:29:71:70:fc:86:d7:62:
c8:99:a4:70:7d:79:f0:94:0c:7f:0e:57:1d:12:d1:bc:e4:20:
55:64:45:d9:b3:5b:ef:b6:aa:1b:1e:09:60:6a:69:6c:81:a3:
53:90:10:4c:bb:76:43:ab:0d:11:34:29:54:6b:47:01:30:fd:
cc:10:25:a1:fc:69:c4:18:4c:fd:37:d6:28:a1:af:82:3e:65:
82:d6:3c:61:2c:f4:19:1d:3f:39:09:8f:0b:f4:a5:0c:02:57:
48:f8:d1:47:eb:eb:40:b6:f9:6d:85:f2:0d:02:ca:46:64:6b:
5d:83:9c:05:1f:0a:ac:84:cb:1f:5b:fc:39:8d:e0:b4:77:28:
2e:1b:77:84:3f:4f:f8:b6:00:fd:f0:92:1e:25:4d:90:b7:6f:
53:2a:1a:bc:76:5c:cd:70:37:06:40:a9:75:9e:35:7d:9b:f3:
e7:84:3c:61:94:85:bc:80:9a:15:dd:aa:08:0e:b7:b1:9f:1f:
72:40:87:63:de:81:ab:48:39:21:b5:be:1d:40:43:ce:1a:21:
ac:e2:0f:66:1e:0b:07:3a:16:51:34:b2:70:6d:99:0c:8d:99:
dc:53:b9:a2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 20 21:39:26 2025 by rpki-client