Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c4/21d663-6874-489c-ab9e-d9ca03e66ffb/1/uhzvb56e3EXjzSjvQCUZeVLUYOk.mft
File: uhzvb56e3EXjzSjvQCUZeVLUYOk.mft (raw, json)
Hash identifier: 6qQghLNTcUcBFUCDZ4xPXTMpUet1IKwh2YqUAmYwsDI=
Subject key identifier: 65:E1:E8:FE:F2:F4:2F:7B:2A:24:EC:AF:68:69:4B:66:F5:4F:ED:70
Authority key identifier: BA:1C:EF:6F:9E:9E:DC:45:E3:CD:28:EF:40:25:19:79:52:D4:60:E9
Certificate issuer: /CN=ba1cef6f9e9edc45e3cd28ef4025197952d460e9
Certificate serial: 01964D7E707C0804C949088D917A9EE6E688
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/uhzvb56e3EXjzSjvQCUZeVLUYOk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c4/21d663-6874-489c-ab9e-d9ca03e66ffb/1/uhzvb56e3EXjzSjvQCUZeVLUYOk.mft
Manifest number: 0B2B
Signing time: Sat 19 Apr 2025 10:00:53 +0000
Manifest this update: Sat 19 Apr 2025 10:00:53 +0000
Manifest next update: Sun 20 Apr 2025 10:00:53 +0000
Files and hashes: 1: uhzvb56e3EXjzSjvQCUZeVLUYOk.crl (hash: 7i2D5+QaQ08eUY5q5/sVNBLFmlhJG/NwuQhCkb3ThX4=)
2: yBgRtAUy9SDMB2oNfVg6DWBcxdo.roa (hash: th+et5jSmKPB56Gge2PfFSgmFKaHL/juuWVdT7KzSfo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c4/21d663-6874-489c-ab9e-d9ca03e66ffb/1/uhzvb56e3EXjzSjvQCUZeVLUYOk.crl
rsync://rpki.ripe.net/repository/DEFAULT/c4/21d663-6874-489c-ab9e-d9ca03e66ffb/1/uhzvb56e3EXjzSjvQCUZeVLUYOk.mft
rsync://rpki.ripe.net/repository/DEFAULT/uhzvb56e3EXjzSjvQCUZeVLUYOk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 20 Apr 2025 04:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:4d:7e:70:7c:08:04:c9:49:08:8d:91:7a:9e:e6:e6:88
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ba1cef6f9e9edc45e3cd28ef4025197952d460e9
Validity
Not Before: Apr 19 10:00:53 2025 GMT
Not After : Apr 20 10:00:53 2025 GMT
Subject: CN=65e1e8fef2f42f7b2a24ecaf68694b66f54fed70
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d3:43:87:d6:fe:02:d3:76:4e:cd:e2:f2:09:cb:
d5:5f:58:8b:24:25:16:c9:89:6b:fb:cc:b7:ba:f7:
f4:dc:42:5b:02:0f:4b:b2:b0:64:6e:67:2f:0b:24:
4f:ec:f5:b7:82:7f:5f:ba:55:85:03:70:65:a1:00:
52:46:62:0e:e5:91:81:c8:a6:b1:4e:e3:6a:92:22:
4c:70:16:f0:52:1d:0c:9c:4c:63:10:ca:c2:0b:bd:
29:c9:79:35:78:56:fc:b6:0b:fb:0a:97:54:4b:fe:
e9:44:d5:8e:c5:44:ce:8c:3a:36:d6:83:40:65:b3:
96:61:91:3e:0c:70:3e:ac:2e:21:b5:96:5e:a6:88:
53:ee:f4:75:45:7c:7e:63:43:2f:d6:25:d6:67:20:
95:0c:1e:53:03:ab:63:b8:ca:0f:a1:5c:33:8b:79:
7c:4e:ed:69:c0:f3:fc:1b:d1:c5:92:c1:47:61:0c:
5d:ae:60:b6:46:11:92:c2:92:58:5d:03:39:8f:a6:
27:71:ed:d5:b1:73:44:a4:4e:4b:8e:58:c8:a6:6b:
c9:ac:29:7f:7c:d7:88:82:5f:c1:b7:3f:c1:29:68:
1b:ad:7e:39:f8:e2:3e:70:ff:c6:8d:5e:ae:14:05:
37:4e:67:01:60:45:95:1f:fc:55:28:45:00:56:ff:
17:45
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
65:E1:E8:FE:F2:F4:2F:7B:2A:24:EC:AF:68:69:4B:66:F5:4F:ED:70
X509v3 Authority Key Identifier:
keyid:BA:1C:EF:6F:9E:9E:DC:45:E3:CD:28:EF:40:25:19:79:52:D4:60:E9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/uhzvb56e3EXjzSjvQCUZeVLUYOk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c4/21d663-6874-489c-ab9e-d9ca03e66ffb/1/uhzvb56e3EXjzSjvQCUZeVLUYOk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c4/21d663-6874-489c-ab9e-d9ca03e66ffb/1/uhzvb56e3EXjzSjvQCUZeVLUYOk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
3c:7b:ba:fe:93:be:34:63:22:d8:0f:2e:49:0f:0b:31:12:79:
fa:bc:00:b4:b8:10:b5:1d:51:55:12:c1:4f:37:1d:51:2b:30:
74:93:ee:c1:82:cd:be:69:18:f5:8e:b2:6a:2d:32:aa:d7:f2:
df:c7:ff:d1:36:72:a7:84:ba:79:f1:ad:93:ae:48:07:7d:fe:
38:61:8f:87:5d:83:4d:cb:95:60:c7:da:66:6e:a8:12:02:90:
5d:6e:70:77:85:89:c4:d3:b6:44:e0:ea:2f:26:e3:be:12:13:
36:10:c0:54:ad:65:43:cb:ab:fd:9c:8d:9c:e0:41:40:cc:d7:
1f:b6:54:ce:e6:b8:51:a9:3f:72:f7:85:ca:38:63:18:2e:2c:
05:de:fb:56:00:ab:2a:0b:2b:3b:ec:34:d5:75:80:ab:3b:c6:
ee:75:26:b8:60:2c:ce:75:41:17:1a:9e:ac:47:c8:49:e5:c5:
44:c7:81:f8:b5:33:c8:4b:bb:97:0a:73:d6:ab:46:b8:75:52:
b5:ad:64:f7:4b:e2:44:3d:71:fc:35:97:1a:7a:36:d7:56:62:
1e:e1:01:b3:6d:76:df:46:cd:a0:19:17:9a:f0:d3:57:b6:9f:
44:ad:00:2c:bb:96:c5:2b:aa:7d:f7:c7:5c:f5:21:67:c4:0e:
f1:25:8b:1b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 19 13:57:15 2025 by rpki-client