Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c7/0f8ce7-ca96-435b-8574-ac620da2f87e/1/UFPH2pyP_-pc7ZenmQIA1L7uQXc.mft
File: UFPH2pyP_-pc7ZenmQIA1L7uQXc.mft (raw, json)
Hash identifier: zMMKckTvolwYIwJzGClscwXxNRnmSJq/jFcrVgwcdHw=
Subject key identifier: 26:96:21:B9:0A:31:7D:3C:38:2E:DD:A8:72:10:2E:3E:68:A6:69:AB
Authority key identifier: 50:53:C7:DA:9C:8F:FF:EA:5C:ED:97:A7:99:02:00:D4:BE:EE:41:77
Certificate issuer: /CN=5053c7da9c8fffea5ced97a7990200d4beee4177
Certificate serial: 019612B33CBB52E5248686EB758D9CF3EDF5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UFPH2pyP_-pc7ZenmQIA1L7uQXc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c7/0f8ce7-ca96-435b-8574-ac620da2f87e/1/UFPH2pyP_-pc7ZenmQIA1L7uQXc.mft
Manifest number: 0427
Signing time: Tue 08 Apr 2025 00:00:58 +0000
Manifest this update: Tue 08 Apr 2025 00:00:58 +0000
Manifest next update: Wed 09 Apr 2025 00:00:58 +0000
Files and hashes: 1: CtRLEvt809yNddQQC3-YdVEz8S0.roa (hash: iOnEw767paDA6G2cUVNf8J3Qp7lK0IUOS20QbdMgtb4=)
2: UFPH2pyP_-pc7ZenmQIA1L7uQXc.crl (hash: ODiJEKkxI57F4UWOO8AlTV9nBrGNtrifu9TxpO4tnt0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c7/0f8ce7-ca96-435b-8574-ac620da2f87e/1/UFPH2pyP_-pc7ZenmQIA1L7uQXc.crl
rsync://rpki.ripe.net/repository/DEFAULT/c7/0f8ce7-ca96-435b-8574-ac620da2f87e/1/UFPH2pyP_-pc7ZenmQIA1L7uQXc.mft
rsync://rpki.ripe.net/repository/DEFAULT/UFPH2pyP_-pc7ZenmQIA1L7uQXc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 08 Apr 2025 23:00:49 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:12:b3:3c:bb:52:e5:24:86:86:eb:75:8d:9c:f3:ed:f5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5053c7da9c8fffea5ced97a7990200d4beee4177
Validity
Not Before: Apr 8 00:00:58 2025 GMT
Not After : Apr 9 00:00:58 2025 GMT
Subject: CN=269621b90a317d3c382edda872102e3e68a669ab
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:d2:34:07:3a:91:2f:9b:f0:79:b4:50:92:b6:
00:a7:53:cc:0a:19:30:8a:34:c7:68:84:89:86:9c:
f3:b7:fe:3c:8e:ba:8f:e6:4f:03:fd:ba:1d:e8:d9:
2c:36:18:98:67:61:04:20:d6:a7:b1:7c:b2:2d:63:
23:22:27:60:06:1e:3b:24:d0:d7:d6:65:36:23:06:
53:2e:45:12:64:e9:27:7d:41:34:18:52:09:66:23:
48:57:22:b8:b0:d1:92:b8:49:88:b9:e4:17:31:80:
bc:3e:57:21:02:4c:d0:e2:9d:63:6f:a6:f0:b6:ea:
5f:ad:55:94:6a:7b:82:f0:a7:78:c2:45:9e:d8:1b:
4c:4a:1b:14:76:34:37:da:1d:b5:fd:4b:41:c3:27:
c9:96:23:3c:3a:84:e9:19:b6:81:f4:cf:ef:da:7a:
d4:47:69:15:66:6f:e3:73:f7:be:97:40:c4:78:d8:
36:c8:df:49:c6:3b:d1:58:0a:01:56:ef:41:d1:7d:
58:57:54:6c:86:60:39:1e:55:d8:c1:60:15:12:84:
4f:cb:1d:05:36:82:c3:9b:02:66:7d:a1:33:e9:be:
c9:b4:39:5c:a1:5f:44:42:c4:6e:2c:38:51:30:b3:
c5:64:d8:7b:6a:b6:45:7c:0b:cd:c3:a3:89:68:0f:
be:81
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
26:96:21:B9:0A:31:7D:3C:38:2E:DD:A8:72:10:2E:3E:68:A6:69:AB
X509v3 Authority Key Identifier:
keyid:50:53:C7:DA:9C:8F:FF:EA:5C:ED:97:A7:99:02:00:D4:BE:EE:41:77
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UFPH2pyP_-pc7ZenmQIA1L7uQXc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c7/0f8ce7-ca96-435b-8574-ac620da2f87e/1/UFPH2pyP_-pc7ZenmQIA1L7uQXc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c7/0f8ce7-ca96-435b-8574-ac620da2f87e/1/UFPH2pyP_-pc7ZenmQIA1L7uQXc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
1b:22:d3:4f:c1:64:58:be:9a:b4:3d:6c:a3:78:11:c8:ae:62:
f7:0f:2e:c8:f2:12:53:a1:0b:9f:4f:80:f0:2a:f5:53:0e:ea:
be:fd:9e:55:43:6c:15:82:c0:f0:1f:55:98:f1:f0:04:88:1d:
15:9a:8c:43:7a:86:00:97:f5:61:70:9b:90:f1:ad:5a:17:0d:
8d:b5:05:06:a0:14:0a:f6:74:32:35:73:cb:58:92:73:c4:30:
c9:80:35:96:a1:d3:9d:23:7a:64:34:29:04:19:63:d1:c9:5b:
f7:6b:5f:4a:92:36:34:a4:17:7c:4f:f4:70:11:43:e9:07:08:
11:aa:aa:8e:81:31:06:a2:6f:8b:35:ac:66:61:62:91:27:e0:
22:8f:09:0b:d7:5a:10:37:ed:17:00:d8:14:66:c5:a2:7a:95:
92:4b:f5:97:48:df:e5:98:7f:52:bc:fc:cd:c3:1e:29:c8:79:
ec:68:62:d5:6b:0a:94:ca:b0:23:f4:16:10:8d:cb:15:35:ca:
4b:3a:c4:e9:ec:38:98:06:32:a5:58:1b:c7:20:95:e3:16:2e:
47:cf:6b:8f:37:f9:df:af:df:63:05:80:31:60:d8:a7:e2:79:
0b:d5:e5:22:c7:62:00:65:63:a8:8c:1f:71:40:a6:9e:a5:3e:
3c:7d:a6:c1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 8 05:38:45 2025 by rpki-client