Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ce/a9f0bb-86f6-4ca3-a53f-2e9721d86c3d/1/UIJpb7xB2QYWimDOCUlJAiz2Keg.mft
File: UIJpb7xB2QYWimDOCUlJAiz2Keg.mft (raw, json)
Hash identifier: mIIOAqe/Fyu+MKM6C5lI04nYxzB+K33/OhFAf5tyTSk=
Subject key identifier: 76:26:CD:E6:D1:9B:1B:E8:A4:C2:21:E8:9A:02:6F:7E:EC:33:AD:2A
Authority key identifier: 50:82:69:6F:BC:41:D9:06:16:8A:60:CE:09:49:49:02:2C:F6:29:E8
Certificate issuer: /CN=5082696fbc41d906168a60ce094949022cf629e8
Certificate serial: 0194C507FD65AE91EE5E92EFBC790A75EC21
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UIJpb7xB2QYWimDOCUlJAiz2Keg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ce/a9f0bb-86f6-4ca3-a53f-2e9721d86c3d/1/UIJpb7xB2QYWimDOCUlJAiz2Keg.mft
Manifest number: 01B6
Signing time: Sun 02 Feb 2025 05:00:22 +0000
Manifest this update: Sun 02 Feb 2025 05:00:22 +0000
Manifest next update: Mon 03 Feb 2025 05:00:22 +0000
Files and hashes: 1: UIJpb7xB2QYWimDOCUlJAiz2Keg.crl (hash: kZVjRlNYlwD3cyfcIjJYqO82cDFQlYvhq/jxNrKadVQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ce/a9f0bb-86f6-4ca3-a53f-2e9721d86c3d/1/UIJpb7xB2QYWimDOCUlJAiz2Keg.crl
rsync://rpki.ripe.net/repository/DEFAULT/ce/a9f0bb-86f6-4ca3-a53f-2e9721d86c3d/1/UIJpb7xB2QYWimDOCUlJAiz2Keg.mft
rsync://rpki.ripe.net/repository/DEFAULT/UIJpb7xB2QYWimDOCUlJAiz2Keg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 03 Feb 2025 00:00:06 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:c5:07:fd:65:ae:91:ee:5e:92:ef:bc:79:0a:75:ec:21
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5082696fbc41d906168a60ce094949022cf629e8
Validity
Not Before: Feb 2 05:00:22 2025 GMT
Not After : Feb 3 05:00:22 2025 GMT
Subject: CN=7626cde6d19b1be8a4c221e89a026f7eec33ad2a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:65:ba:8e:f5:53:cd:86:ca:c2:a6:40:ef:4d:
34:a5:7d:59:6d:f4:58:7a:e2:b4:54:50:62:b2:27:
44:71:86:67:b8:47:28:52:32:48:d9:27:6c:f5:08:
6e:0c:3e:7c:de:5a:f9:fd:ad:c7:cd:7d:fe:8f:c9:
ee:af:88:a8:0c:10:73:76:55:28:19:48:d1:26:cc:
b6:be:65:bb:43:ba:68:50:ee:be:04:dd:74:17:58:
cd:0d:eb:82:bc:e2:fb:23:0f:20:c4:80:c7:e6:e5:
c3:76:15:62:e4:47:1e:a9:e1:7a:57:e5:71:e8:1f:
1a:c3:33:8e:e1:a1:00:a2:48:95:c0:29:24:31:cb:
85:9c:fb:9f:1a:da:ab:3a:69:42:c9:16:da:60:19:
c3:80:d0:88:0f:85:8e:ee:05:22:46:a6:cc:a3:78:
2c:9f:90:2f:ee:6b:d4:17:7f:8a:45:0c:c5:de:e5:
bf:1b:84:4d:3e:40:89:a9:7c:ca:1e:fa:1d:90:98:
5e:df:d5:42:29:04:0a:c2:22:42:4c:44:73:46:1c:
d5:44:44:24:d3:c0:fa:d6:aa:8a:9e:35:69:d9:25:
86:8f:ed:5d:87:a3:61:cf:e5:78:47:85:3c:05:8f:
bf:81:b3:08:6e:ab:5e:da:0a:c3:7d:dd:51:73:3c:
0e:bd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
76:26:CD:E6:D1:9B:1B:E8:A4:C2:21:E8:9A:02:6F:7E:EC:33:AD:2A
X509v3 Authority Key Identifier:
keyid:50:82:69:6F:BC:41:D9:06:16:8A:60:CE:09:49:49:02:2C:F6:29:E8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UIJpb7xB2QYWimDOCUlJAiz2Keg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ce/a9f0bb-86f6-4ca3-a53f-2e9721d86c3d/1/UIJpb7xB2QYWimDOCUlJAiz2Keg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ce/a9f0bb-86f6-4ca3-a53f-2e9721d86c3d/1/UIJpb7xB2QYWimDOCUlJAiz2Keg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
b1:38:83:ba:1f:5d:83:22:fa:f3:93:3c:81:28:20:82:55:31:
05:e4:1f:d7:d8:36:33:02:8a:44:28:e9:e6:ec:e9:b1:b2:53:
b7:0e:27:0a:e8:ad:fa:ac:b6:ff:30:ca:59:9d:43:81:73:ed:
3b:fc:76:47:f4:3a:79:7c:a8:fd:8d:be:fe:65:3e:59:8b:9b:
f5:21:21:dc:11:a2:ce:5b:08:69:99:34:07:c5:8b:60:89:fa:
58:d6:f5:e6:04:1a:d5:d3:c6:cd:66:96:9e:89:47:24:7f:7d:
f1:74:e6:e3:35:aa:7b:8c:64:d3:49:30:bd:74:51:fe:77:a5:
33:4e:ff:e1:7b:06:3d:72:82:65:a3:7c:82:f0:34:3b:a0:74:
36:f2:51:4b:70:f0:8a:0f:d6:8a:3f:8c:d9:c5:f1:78:b1:78:
25:e9:e1:94:42:a7:89:6c:c6:68:a0:45:ce:2b:9c:aa:33:63:
fb:8d:6b:4a:af:df:a2:76:07:e7:0d:b9:1e:28:1f:5e:91:83:
d3:54:b8:33:44:74:4e:6b:8e:3b:19:db:58:af:a3:cd:37:5c:
25:13:07:d8:e9:01:66:27:0f:a5:e5:18:04:27:ed:d3:3b:5c:
1c:6c:c9:22:90:6a:ff:35:60:f3:88:96:0f:da:ca:95:79:af:
e1:33:12:49
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 2 06:57:59 2025 by rpki-client