Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/df/98ed86-fe7d-4011-afd3-0f2573eca2e4/1/UgX1htgmO7BtZAUPj0hMFOgDxLI.mft
File: UgX1htgmO7BtZAUPj0hMFOgDxLI.mft (raw, json)
Hash identifier: SWPrAh8BItL3aJpjtG6g6m2HpyyLBwfO+tJc9Qe5hR0=
Subject key identifier: 2F:6A:D2:A1:A9:B7:82:7D:72:6B:6F:08:E0:0A:AB:F0:52:DB:BE:10
Authority key identifier: 52:05:F5:86:D8:26:3B:B0:6D:64:05:0F:8F:48:4C:14:E8:03:C4:B2
Certificate issuer: /CN=5205f586d8263bb06d64050f8f484c14e803c4b2
Certificate serial: 019510C70C2CF678A443062C3A8325FE5F5C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UgX1htgmO7BtZAUPj0hMFOgDxLI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/df/98ed86-fe7d-4011-afd3-0f2573eca2e4/1/UgX1htgmO7BtZAUPj0hMFOgDxLI.mft
Manifest number: 0A94
Signing time: Sun 16 Feb 2025 22:00:35 +0000
Manifest this update: Sun 16 Feb 2025 22:00:35 +0000
Manifest next update: Mon 17 Feb 2025 22:00:35 +0000
Files and hashes: 1: UgX1htgmO7BtZAUPj0hMFOgDxLI.crl (hash: 5olfhZrMtZFPjBtbTGn7vIY4tRllHA/mpUgqzpJox6U=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/df/98ed86-fe7d-4011-afd3-0f2573eca2e4/1/UgX1htgmO7BtZAUPj0hMFOgDxLI.crl
rsync://rpki.ripe.net/repository/DEFAULT/df/98ed86-fe7d-4011-afd3-0f2573eca2e4/1/UgX1htgmO7BtZAUPj0hMFOgDxLI.mft
rsync://rpki.ripe.net/repository/DEFAULT/UgX1htgmO7BtZAUPj0hMFOgDxLI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 17 Feb 2025 22:00:35 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:10:c7:0c:2c:f6:78:a4:43:06:2c:3a:83:25:fe:5f:5c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5205f586d8263bb06d64050f8f484c14e803c4b2
Validity
Not Before: Feb 16 22:00:35 2025 GMT
Not After : Feb 17 22:00:35 2025 GMT
Subject: CN=2f6ad2a1a9b7827d726b6f08e00aabf052dbbe10
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ed:5f:b4:4d:ad:69:c1:ee:ab:e2:63:5a:c7:5a:
e2:67:27:8d:7d:19:1a:b2:82:c3:63:cb:31:c8:e9:
45:48:15:2a:8f:59:b4:49:00:3e:ce:a6:9c:a8:a0:
70:b5:94:c9:c6:eb:e5:e1:5e:02:f1:7d:d9:e7:0e:
c5:03:d9:2c:73:f4:82:19:7e:65:b1:5a:f4:1b:e2:
1f:df:b9:16:6a:3b:ca:5c:33:92:71:b2:54:ea:63:
9b:f9:b7:14:62:8f:dd:93:78:59:1f:9e:69:4b:f1:
79:37:b3:8e:d3:dc:ec:c3:1c:66:f3:f0:f0:73:5c:
84:c8:4b:0f:1d:21:f2:57:4c:49:b2:5b:14:22:a1:
0b:a3:06:25:5f:e6:59:8d:f2:d1:35:c1:2a:43:8c:
04:f0:34:36:2a:ef:da:1d:5e:0f:fa:1d:12:51:ad:
99:dd:c4:1e:e2:23:b4:cd:b1:c6:cf:81:fb:2a:ba:
3a:50:98:19:41:68:6e:55:3b:bd:ee:94:1a:74:e7:
aa:7f:cb:ab:09:69:2d:00:bc:02:28:12:f3:5c:40:
9a:8c:cd:d9:7f:76:a8:c0:62:04:ba:1c:52:1a:5a:
58:68:94:31:cf:30:f3:42:fd:e6:38:c8:b1:6a:56:
40:61:28:ed:82:68:03:fd:23:78:30:1b:09:02:be:
98:2b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2F:6A:D2:A1:A9:B7:82:7D:72:6B:6F:08:E0:0A:AB:F0:52:DB:BE:10
X509v3 Authority Key Identifier:
keyid:52:05:F5:86:D8:26:3B:B0:6D:64:05:0F:8F:48:4C:14:E8:03:C4:B2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UgX1htgmO7BtZAUPj0hMFOgDxLI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/df/98ed86-fe7d-4011-afd3-0f2573eca2e4/1/UgX1htgmO7BtZAUPj0hMFOgDxLI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/df/98ed86-fe7d-4011-afd3-0f2573eca2e4/1/UgX1htgmO7BtZAUPj0hMFOgDxLI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
5e:57:69:ae:1b:b3:8d:37:6d:b9:6e:d7:ae:34:4e:d4:9e:43:
63:6e:90:eb:b5:2e:e2:09:94:cd:5c:4f:b6:ed:cd:60:6d:b0:
35:f4:80:3e:12:bb:e3:81:a1:12:f7:d4:29:1c:19:30:5e:9c:
bf:69:95:0f:39:f4:ed:45:8d:f0:f0:24:b5:75:06:c9:ba:b3:
00:4a:99:8a:56:f3:b2:15:3f:d0:3e:75:eb:5b:94:5c:d4:ff:
f9:c5:ad:f6:92:af:c0:26:fd:dc:d7:b5:11:04:31:ce:b9:93:
e3:5f:c6:3f:cb:42:b4:46:ed:3c:ab:b8:c0:94:05:36:3c:f7:
c0:72:43:aa:1b:7b:82:fe:ce:76:d0:5c:56:5a:3e:68:23:ca:
5e:23:a0:9b:d3:31:50:e0:55:e0:9f:31:f0:24:00:c8:ea:dd:
cb:04:a6:45:4b:6d:3d:7f:8b:6b:19:bb:7f:ed:f2:7f:74:1d:
11:12:17:b7:29:b9:10:0d:c9:b6:8a:46:ab:e6:c4:ec:cb:91:
33:4c:97:b6:96:37:86:97:b4:f8:ad:7b:7e:f9:5a:ba:49:b8:
9b:81:e1:f5:cb:94:ee:ce:da:e6:a1:ce:f1:62:6b:67:db:9a:
78:2b:7e:2c:84:4c:4b:ed:18:00:ea:60:f6:fa:d0:4a:5a:ef:
c3:25:45:ee
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:55:48 2025 by rpki-client