Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/db/01a73a-8da0-48b9-aaed-a23c131c0d38/1/UzgC5ill1FhOWY1Zt2qSi-Wv2XE.mft
File: UzgC5ill1FhOWY1Zt2qSi-Wv2XE.mft (raw, json)
Hash identifier: L8h3HCk/9ahXjMf7p5pbTH8VORK2zQu0AdK9kANB0g4=
Subject key identifier: CB:64:87:B8:26:5B:D2:04:80:EB:A1:29:96:FF:BC:78:78:D7:C1:C8
Authority key identifier: 53:38:02:E6:29:65:D4:58:4E:59:8D:59:B7:6A:92:8B:E5:AF:D9:71
Certificate issuer: /CN=533802e62965d4584e598d59b76a928be5afd971
Certificate serial: 0196458DCEB0679C5A927F2FC0E930DA2AB0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UzgC5ill1FhOWY1Zt2qSi-Wv2XE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/db/01a73a-8da0-48b9-aaed-a23c131c0d38/1/UzgC5ill1FhOWY1Zt2qSi-Wv2XE.mft
Manifest number: 98
Signing time: Thu 17 Apr 2025 21:00:43 +0000
Manifest this update: Thu 17 Apr 2025 21:00:43 +0000
Manifest next update: Fri 18 Apr 2025 21:00:43 +0000
Files and hashes: 1: AmqiC38rtSv0iE1wKrjS0J46Q88.roa (hash: UHlyMJ5+FWbMAOr2Ngcc+hElY0msx9uI+m00I3guqOI=)
2: L7mO7KFz85O9TLGHw1rnhJTk7S8.roa (hash: UMdz5rJ/zgMVHrBC+qmC+WQlQSXRf1HcpO0Un+UUydo=)
3: N50ILjI6vNp7A6N9HygvstrwChc.roa (hash: Dirg6q8LPU3d4GS5cdQfmRbClfRmgGiHcbmkwEYmVik=)
4: UzgC5ill1FhOWY1Zt2qSi-Wv2XE.crl (hash: fBP8T0V5RxjJtAYwDNT51mObPVlo4qJHyzsrcH5gv7s=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/db/01a73a-8da0-48b9-aaed-a23c131c0d38/1/UzgC5ill1FhOWY1Zt2qSi-Wv2XE.crl
rsync://rpki.ripe.net/repository/DEFAULT/db/01a73a-8da0-48b9-aaed-a23c131c0d38/1/UzgC5ill1FhOWY1Zt2qSi-Wv2XE.mft
rsync://rpki.ripe.net/repository/DEFAULT/UzgC5ill1FhOWY1Zt2qSi-Wv2XE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 18 Apr 2025 21:00:43 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:45:8d:ce:b0:67:9c:5a:92:7f:2f:c0:e9:30:da:2a:b0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=533802e62965d4584e598d59b76a928be5afd971
Validity
Not Before: Apr 17 21:00:43 2025 GMT
Not After : Apr 18 21:00:43 2025 GMT
Subject: CN=cb6487b8265bd20480eba12996ffbc7878d7c1c8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:24:84:b8:4c:14:a3:ef:fc:ed:60:4d:e8:80:
34:b5:fc:f7:dc:78:ec:f5:fb:96:5b:39:96:1e:7b:
03:08:d8:6a:c7:b8:3d:57:65:b1:0b:ac:1d:b9:f0:
f0:f5:54:f0:2d:da:d8:22:75:90:d2:63:01:6d:37:
e3:c3:d6:8d:32:5a:a5:9f:0e:3d:76:97:53:a4:03:
40:11:e6:a6:38:c3:05:02:76:f5:60:62:b8:f4:7b:
4c:58:ff:85:99:fb:48:5e:9a:a9:02:ae:84:a3:26:
aa:19:27:a6:15:22:87:b1:72:81:ae:48:0c:df:82:
50:8b:32:8a:1a:fd:64:3b:a1:f6:c6:eb:9a:21:91:
c6:ef:88:52:5d:b4:6c:0f:58:51:9d:f8:c3:4a:2b:
52:62:b8:ea:5a:6f:14:fe:ed:d5:70:0b:e4:77:48:
6f:1e:4f:18:1f:e5:ab:09:d8:e4:a6:56:38:66:75:
c6:73:76:73:6f:be:27:75:85:93:68:c5:fe:88:b3:
35:34:8d:86:d3:1b:42:96:6a:3f:76:34:42:73:e1:
29:3d:66:80:6e:9f:9f:83:ca:ef:21:76:02:07:e8:
d8:22:fe:55:6f:df:11:4f:53:7e:d1:7f:ea:35:55:
36:4b:72:30:37:1a:fc:7d:0f:3f:1a:e2:dc:1c:19:
a8:6d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CB:64:87:B8:26:5B:D2:04:80:EB:A1:29:96:FF:BC:78:78:D7:C1:C8
X509v3 Authority Key Identifier:
keyid:53:38:02:E6:29:65:D4:58:4E:59:8D:59:B7:6A:92:8B:E5:AF:D9:71
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UzgC5ill1FhOWY1Zt2qSi-Wv2XE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/db/01a73a-8da0-48b9-aaed-a23c131c0d38/1/UzgC5ill1FhOWY1Zt2qSi-Wv2XE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/db/01a73a-8da0-48b9-aaed-a23c131c0d38/1/UzgC5ill1FhOWY1Zt2qSi-Wv2XE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
1a:3d:48:68:95:39:2a:1c:2e:e7:ad:c8:a0:d1:a0:40:eb:9c:
2e:79:e9:a6:5a:aa:92:b6:d8:6a:f7:a9:6b:41:ef:a3:4f:9e:
82:71:1c:5c:40:3a:5a:21:c4:aa:0e:55:52:04:52:2d:38:5c:
10:e4:61:be:d9:95:3c:df:c3:80:f7:94:a7:7a:7b:a7:b8:b4:
3a:a6:58:3e:ac:9f:68:90:a6:5a:98:52:ad:31:45:13:54:15:
b9:e3:e6:05:a6:cb:25:64:06:38:83:32:ea:b8:53:96:16:36:
77:5b:7b:c5:d6:49:94:15:36:4f:2b:58:6f:d5:81:a4:2d:a9:
01:e4:02:2a:e9:a8:35:2f:4d:19:1d:46:67:01:43:b3:24:61:
89:7f:4d:a0:61:54:87:f8:ee:97:ba:17:66:87:11:5f:87:d2:
b6:7c:b8:8d:24:71:55:b5:c9:d4:66:db:0b:10:3a:c3:10:ed:
95:9b:e1:5d:92:8c:ad:a3:c7:65:9e:ea:40:70:f3:49:d5:9c:
40:34:50:85:ef:aa:20:46:32:7f:98:88:4b:01:2c:03:c1:2f:
56:7a:37:52:ba:33:f4:db:6e:f3:7a:a3:b1:67:9b:7b:1f:f9:
ea:84:14:44:51:11:36:10:93:9b:87:39:83:92:bb:90:5a:a3:
96:ec:99:81
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 18 06:40:39 2025 by rpki-client