Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d9/ffc00d-3316-4286-8932-cc60a5fdeeb2/1/uH9ej-619ec7CXtmZX7tjbl0pA4.mft
File: uH9ej-619ec7CXtmZX7tjbl0pA4.mft (raw, json)
Hash identifier: +kU7DZpY1v2B2fVvaaHZrbTLNamWrrSuWQdkkTARSF0=
Subject key identifier: E5:8E:A0:9A:A7:9E:D8:EE:7C:84:AD:34:CE:CF:BD:0E:07:10:A4:5F
Authority key identifier: B8:7F:5E:8F:EE:B5:F5:E7:3B:09:7B:66:65:7E:ED:8D:B9:74:A4:0E
Certificate issuer: /CN=b87f5e8feeb5f5e73b097b66657eed8db974a40e
Certificate serial: 01965CF1800ADB6048F5CEF3C88AB424ECC3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/uH9ej-619ec7CXtmZX7tjbl0pA4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d9/ffc00d-3316-4286-8932-cc60a5fdeeb2/1/uH9ej-619ec7CXtmZX7tjbl0pA4.mft
Manifest number: 0CDF
Signing time: Tue 22 Apr 2025 10:00:52 +0000
Manifest this update: Tue 22 Apr 2025 10:00:52 +0000
Manifest next update: Wed 23 Apr 2025 10:00:52 +0000
Files and hashes: 1: uH9ej-619ec7CXtmZX7tjbl0pA4.crl (hash: Yizn1XeYeTookXQoF8H9Ks0W86/o6wxaj+TlWvAXjU8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d9/ffc00d-3316-4286-8932-cc60a5fdeeb2/1/uH9ej-619ec7CXtmZX7tjbl0pA4.crl
rsync://rpki.ripe.net/repository/DEFAULT/d9/ffc00d-3316-4286-8932-cc60a5fdeeb2/1/uH9ej-619ec7CXtmZX7tjbl0pA4.mft
rsync://rpki.ripe.net/repository/DEFAULT/uH9ej-619ec7CXtmZX7tjbl0pA4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 23 Apr 2025 04:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:5c:f1:80:0a:db:60:48:f5:ce:f3:c8:8a:b4:24:ec:c3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b87f5e8feeb5f5e73b097b66657eed8db974a40e
Validity
Not Before: Apr 22 10:00:52 2025 GMT
Not After : Apr 23 10:00:52 2025 GMT
Subject: CN=e58ea09aa79ed8ee7c84ad34cecfbd0e0710a45f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:69:95:07:eb:ab:0c:45:03:25:41:27:b2:4b:
70:5a:46:de:d0:84:f5:7e:7e:34:55:81:3a:7a:dd:
53:d8:b5:56:2a:11:d0:61:bb:78:79:1b:74:b6:18:
b7:09:12:1a:a7:44:fe:83:3f:2f:aa:6d:b1:ee:9f:
21:1b:d5:3c:e3:6d:62:fb:df:bd:50:ad:74:af:53:
22:95:1b:fa:fb:58:b3:5c:7b:6c:90:6d:85:48:c5:
a1:f5:7f:08:9d:80:23:9f:72:51:92:1f:20:52:c6:
44:b9:62:fa:28:9f:48:42:32:be:23:f6:d2:c4:f2:
01:a4:89:38:44:bc:79:3e:4c:f4:51:6f:aa:17:09:
b0:61:e3:b4:8d:72:81:e2:ed:db:e9:ca:c2:c4:20:
da:1e:97:e1:4c:3c:26:d4:da:0d:79:2b:f5:f4:0d:
7b:17:6e:af:fa:9b:dd:2f:8a:cf:d2:90:52:9c:23:
5e:b6:13:43:85:67:9d:11:9c:f3:72:55:94:b4:3c:
0b:3d:50:d1:99:e0:87:5e:41:38:4f:05:bb:ac:6c:
01:7c:2e:72:ca:38:f0:a9:b5:06:37:ab:ae:8e:45:
6e:36:fc:d8:e7:c6:09:1f:05:17:03:38:fd:55:be:
cf:16:3b:af:bb:97:81:9d:80:2f:b1:05:75:b1:25:
cd:fd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E5:8E:A0:9A:A7:9E:D8:EE:7C:84:AD:34:CE:CF:BD:0E:07:10:A4:5F
X509v3 Authority Key Identifier:
keyid:B8:7F:5E:8F:EE:B5:F5:E7:3B:09:7B:66:65:7E:ED:8D:B9:74:A4:0E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/uH9ej-619ec7CXtmZX7tjbl0pA4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d9/ffc00d-3316-4286-8932-cc60a5fdeeb2/1/uH9ej-619ec7CXtmZX7tjbl0pA4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d9/ffc00d-3316-4286-8932-cc60a5fdeeb2/1/uH9ej-619ec7CXtmZX7tjbl0pA4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
5d:b1:21:39:26:02:16:d8:50:d3:3b:0c:9b:84:71:84:e3:90:
08:40:4d:37:7b:9a:b6:00:41:f8:89:22:22:36:de:d5:f2:56:
f9:56:25:cd:1a:c8:3a:29:e9:90:52:8b:e9:81:45:0f:9d:e9:
97:97:44:f2:00:74:7e:85:61:6d:16:c0:0f:fb:b2:03:c8:93:
0c:ca:23:07:e9:d9:ac:af:91:ec:d5:a9:8b:35:7b:6c:4b:1d:
e8:73:c1:99:00:0a:cb:b6:9e:e2:f2:00:ca:25:b1:5a:8c:ef:
f6:30:44:ab:e2:c8:db:12:39:75:a9:b4:8d:8c:fd:2b:72:33:
0e:c6:59:c3:f9:e3:87:0a:a1:66:e3:fb:66:0a:4d:06:2f:cc:
3d:b1:32:f6:6a:42:e6:39:10:40:a0:9e:e0:de:b7:e9:8b:14:
9c:cf:ae:8e:e7:ae:12:86:c4:a6:ee:9b:4e:23:47:6c:9d:d8:
e1:e2:9e:ad:19:e7:b7:12:90:58:0e:2b:9b:f6:97:20:cc:ee:
cd:c8:30:5b:61:00:c2:0f:d5:9c:9d:cc:9c:ba:1b:1a:e1:be:
a6:5f:90:f7:69:56:f9:56:b6:a9:3e:de:cb:a2:bc:0c:a0:9f:
24:d3:6c:ec:51:6e:41:3f:13:86:40:46:ed:25:c7:88:42:14:
13:c1:1b:dd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 22 12:07:11 2025 by rpki-client