Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/db/3b59d5-602d-4351-96bc-a108649d51e2/1/UGF1T3aJFp9qFQZQlUcmcrorRYk.mft
File: UGF1T3aJFp9qFQZQlUcmcrorRYk.mft (raw, json)
Hash identifier: L05pkRvKQ06NA6Ne9NpfwRVvc5ZaR8zI5kuJ36lPwpQ=
Subject key identifier: 24:6C:9A:8A:7F:8B:4A:F4:A0:99:79:9D:56:89:AF:F3:9A:79:97:CB
Authority key identifier: 50:61:75:4F:76:89:16:9F:6A:15:06:50:95:47:26:72:BA:2B:45:89
Certificate issuer: /CN=5061754f7689169f6a15065095472672ba2b4589
Certificate serial: 01964FDA3C801207658BEC488509E6B8097E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UGF1T3aJFp9qFQZQlUcmcrorRYk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/db/3b59d5-602d-4351-96bc-a108649d51e2/1/UGF1T3aJFp9qFQZQlUcmcrorRYk.mft
Manifest number: 0C6F
Signing time: Sat 19 Apr 2025 21:00:24 +0000
Manifest this update: Sat 19 Apr 2025 21:00:24 +0000
Manifest next update: Sun 20 Apr 2025 21:00:24 +0000
Files and hashes: 1: UGF1T3aJFp9qFQZQlUcmcrorRYk.crl (hash: C1zGGqkkHKta22uN8dVtw4xZy+0YdWSM85buN4VzTh8=)
2: yiSfs72_nEyzYSAodCILSS2FNUg.roa (hash: S9gHpNvUCJD2H4bcxuT5WWB4Uck7rHXNRIxCLUlb2hE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/db/3b59d5-602d-4351-96bc-a108649d51e2/1/UGF1T3aJFp9qFQZQlUcmcrorRYk.crl
rsync://rpki.ripe.net/repository/DEFAULT/db/3b59d5-602d-4351-96bc-a108649d51e2/1/UGF1T3aJFp9qFQZQlUcmcrorRYk.mft
rsync://rpki.ripe.net/repository/DEFAULT/UGF1T3aJFp9qFQZQlUcmcrorRYk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 20 Apr 2025 21:00:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:4f:da:3c:80:12:07:65:8b:ec:48:85:09:e6:b8:09:7e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5061754f7689169f6a15065095472672ba2b4589
Validity
Not Before: Apr 19 21:00:24 2025 GMT
Not After : Apr 20 21:00:24 2025 GMT
Subject: CN=246c9a8a7f8b4af4a099799d5689aff39a7997cb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:98:b0:aa:76:0d:09:0d:b5:ca:f3:2c:3e:c2:24:
56:8e:e4:d3:51:a5:63:a8:2d:d9:88:cf:f1:1c:d6:
1d:9c:9d:30:5c:f1:72:08:da:96:88:5d:88:7f:ce:
c8:c4:f6:e2:51:ac:4f:e5:fd:39:6c:04:ab:19:a6:
9f:e2:ee:9e:e6:e0:82:02:52:8f:20:80:df:cb:7c:
12:26:31:0d:a5:d8:05:6b:87:5b:75:76:7c:e1:9a:
2d:f7:90:29:b7:17:70:a6:61:22:9a:f3:fd:e8:d9:
a0:0f:ac:7f:e7:5e:4b:02:1e:93:43:c9:12:ba:cd:
47:24:95:67:86:e4:02:81:66:dd:da:db:8f:04:1c:
e5:cf:15:1a:c8:a4:e3:3a:65:9e:b4:3a:aa:98:00:
46:d9:e3:6c:dc:76:55:b5:b8:ab:af:18:f2:a9:37:
86:7f:a6:0b:72:48:3f:5b:13:4c:76:eb:67:75:7a:
4b:ce:2e:84:8c:ed:14:25:01:4d:2f:8e:aa:9e:44:
e0:72:97:1e:59:7f:49:6d:2d:7d:41:42:f4:ae:36:
f4:57:64:d7:af:58:53:da:13:e4:72:2e:2a:f7:4b:
12:fa:05:12:a2:8f:e6:88:9e:7a:a3:db:04:d8:86:
00:b8:28:f7:5a:00:f7:6b:fd:d8:68:fa:b8:6f:72:
c2:2f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
24:6C:9A:8A:7F:8B:4A:F4:A0:99:79:9D:56:89:AF:F3:9A:79:97:CB
X509v3 Authority Key Identifier:
keyid:50:61:75:4F:76:89:16:9F:6A:15:06:50:95:47:26:72:BA:2B:45:89
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UGF1T3aJFp9qFQZQlUcmcrorRYk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/db/3b59d5-602d-4351-96bc-a108649d51e2/1/UGF1T3aJFp9qFQZQlUcmcrorRYk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/db/3b59d5-602d-4351-96bc-a108649d51e2/1/UGF1T3aJFp9qFQZQlUcmcrorRYk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
10:99:25:48:4a:96:46:1d:cc:ac:a2:78:6f:93:9e:6c:d5:4a:
f6:22:2a:2f:e3:90:0e:5c:0a:a9:f5:4d:ba:d7:85:5e:f7:a2:
26:08:ed:1e:5a:a6:c9:66:e0:a0:26:34:8e:87:5d:c6:88:4c:
f2:9f:b0:42:e2:02:dd:90:59:9c:1a:01:a7:13:a9:d8:0a:31:
45:2c:35:a3:e1:90:e1:7f:ac:65:00:f7:c4:bb:60:a2:08:e4:
e9:8a:e4:75:d9:cf:f4:fe:3f:46:64:40:e1:b6:07:5b:bc:f2:
d6:cd:ab:85:49:14:67:de:91:ec:c9:54:47:a4:2c:a0:fb:6b:
19:fa:95:b0:48:c2:19:d6:94:d4:eb:1e:32:a7:54:5a:a6:a0:
2f:d2:67:51:6a:ca:a7:5b:b0:a4:af:a9:0a:f5:e6:b2:f2:d0:
e8:92:bc:83:1f:aa:7b:de:b9:00:7b:31:6b:34:05:e3:b2:e5:
49:3b:d2:85:5f:da:1d:e7:38:88:50:a3:66:e3:c5:38:39:7d:
1f:44:a8:80:71:1e:b5:56:d4:d6:58:e4:10:1c:55:cc:ac:c2:
4c:69:4c:9a:72:b2:1c:50:21:f7:9e:6e:f6:78:c0:d2:81:8e:
ea:20:7c:42:be:d2:73:43:9f:2c:59:4f:1d:e2:e0:4e:b3:6b:
57:91:8f:21
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 20 04:10:00 2025 by rpki-client