Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c0/f3d326-154e-412e-b344-7d22b7684479/1/uah5UDfdQPAYNz9HxZ4EohL1oFU.mft
File: uah5UDfdQPAYNz9HxZ4EohL1oFU.mft (raw, json)
Hash identifier: thq+PjkYa+EqxGnEnXuylMmXYl4IHz5tEiAgeYL5qY0=
Subject key identifier: AC:8F:AF:64:42:28:78:CF:F7:D9:6D:AA:A2:E0:D4:57:8C:3F:F8:23
Authority key identifier: B9:A8:79:50:37:DD:40:F0:18:37:3F:47:C5:9E:04:A2:12:F5:A0:55
Certificate issuer: /CN=b9a8795037dd40f018373f47c59e04a212f5a055
Certificate serial: 019654930A26C3B50DE04A4D76B8A7DA2EC0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/uah5UDfdQPAYNz9HxZ4EohL1oFU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c0/f3d326-154e-412e-b344-7d22b7684479/1/uah5UDfdQPAYNz9HxZ4EohL1oFU.mft
Manifest number: 0FF1
Signing time: Sun 20 Apr 2025 19:00:44 +0000
Manifest this update: Sun 20 Apr 2025 19:00:44 +0000
Manifest next update: Mon 21 Apr 2025 19:00:44 +0000
Files and hashes: 1: M1itbXmnZylV5aQUWr69aXiCwXg.roa (hash: oXiWWV28pZSLXwASeR4LLqDCm3LTnJMuWV3NYCvwU8Q=)
2: uah5UDfdQPAYNz9HxZ4EohL1oFU.crl (hash: pmlzf2Afr1aTuAWsuw98/OVmWtwnSQ/feLgARC/EJas=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c0/f3d326-154e-412e-b344-7d22b7684479/1/uah5UDfdQPAYNz9HxZ4EohL1oFU.crl
rsync://rpki.ripe.net/repository/DEFAULT/c0/f3d326-154e-412e-b344-7d22b7684479/1/uah5UDfdQPAYNz9HxZ4EohL1oFU.mft
rsync://rpki.ripe.net/repository/DEFAULT/uah5UDfdQPAYNz9HxZ4EohL1oFU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 21 Apr 2025 19:00:44 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:54:93:0a:26:c3:b5:0d:e0:4a:4d:76:b8:a7:da:2e:c0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b9a8795037dd40f018373f47c59e04a212f5a055
Validity
Not Before: Apr 20 19:00:44 2025 GMT
Not After : Apr 21 19:00:44 2025 GMT
Subject: CN=ac8faf64422878cff7d96daaa2e0d4578c3ff823
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:6c:32:97:92:5d:7e:41:5d:af:4e:8d:fc:55:
d9:41:3c:07:cf:52:26:72:5a:74:2c:01:94:3e:fd:
c3:65:d2:98:02:d7:21:71:80:97:d2:b0:2c:df:53:
8c:49:72:ae:a2:59:a1:66:69:1a:c0:53:81:59:19:
b8:18:e7:34:e6:fe:da:95:23:ec:81:51:51:71:33:
41:e0:0a:f9:7b:4c:0d:c9:16:58:81:5f:6d:57:c2:
94:c3:63:60:75:ee:cf:52:0c:a9:ae:2d:c9:b6:4b:
f4:d3:cb:ea:fc:a8:38:a0:ad:2a:52:ce:aa:22:59:
2d:80:03:df:64:7b:0f:b8:c9:07:c8:a7:7f:17:ed:
34:c4:dd:a1:94:0d:e6:ad:a9:a0:1d:d8:75:51:65:
68:61:ba:43:3c:9f:ff:03:d7:a1:4c:67:a0:79:f3:
4b:72:35:af:69:92:54:63:10:1a:52:15:a3:41:db:
db:ef:c4:cf:66:8e:59:90:a0:cc:a7:f5:f4:4b:cd:
1c:8c:2d:22:c1:c0:2c:04:f3:75:21:1c:1e:ac:fb:
a2:76:07:84:20:8b:8f:41:39:de:56:54:67:66:38:
a4:ab:38:06:b2:87:bb:f3:e1:6e:87:87:9b:76:f8:
32:a3:15:4d:40:a3:aa:9a:03:2e:64:ce:d3:71:dd:
65:31
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AC:8F:AF:64:42:28:78:CF:F7:D9:6D:AA:A2:E0:D4:57:8C:3F:F8:23
X509v3 Authority Key Identifier:
keyid:B9:A8:79:50:37:DD:40:F0:18:37:3F:47:C5:9E:04:A2:12:F5:A0:55
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/uah5UDfdQPAYNz9HxZ4EohL1oFU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/f3d326-154e-412e-b344-7d22b7684479/1/uah5UDfdQPAYNz9HxZ4EohL1oFU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/f3d326-154e-412e-b344-7d22b7684479/1/uah5UDfdQPAYNz9HxZ4EohL1oFU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
46:4e:d0:dd:bc:cc:c5:6c:f3:9c:56:f7:eb:73:aa:64:28:86:
41:34:c2:7d:ff:9c:3a:52:e1:44:68:5b:59:47:e1:c8:7e:3f:
79:61:99:99:5e:7b:eb:94:89:31:73:60:ee:67:1b:9b:1d:10:
b5:5c:6b:76:97:d1:91:a8:75:b8:ce:e6:d3:6b:05:3e:f8:88:
11:d8:16:83:46:1e:1d:4c:0d:ee:cd:6e:da:f1:74:f6:e2:d9:
14:9f:02:ec:f4:74:1d:be:63:04:d3:27:a2:d8:95:4d:4e:11:
1a:e6:56:91:66:16:1f:b2:08:c9:d3:e4:e4:62:ac:58:36:45:
cf:fc:dd:5c:91:3d:1b:88:72:17:27:56:0b:81:3e:a8:f1:cd:
cd:43:fe:c1:b8:2f:72:c7:78:68:c5:18:a4:9d:e5:08:bd:e0:
d2:7d:0d:eb:80:97:e4:25:2e:0a:8d:72:91:92:de:d0:49:83:
5d:1a:db:a2:31:be:f5:f2:48:88:bb:5c:a9:93:d3:de:c9:1c:
55:0a:9d:cc:40:90:a6:8a:2f:33:50:6a:ce:7c:3e:4b:e5:7c:
b7:69:c2:d4:b9:77:f3:1d:2d:8a:8e:af:42:32:68:04:2e:db:
79:15:2a:7e:66:d0:49:53:f1:b7:09:14:b9:20:17:fb:23:d0:
43:21:ce:c6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 21 02:48:53 2025 by rpki-client