Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/df/c77825-68a3-4b3e-bc90-523fd86a07c7/1/U3h815RuENiGRqx53lfMbsWeQTI.mft
File: U3h815RuENiGRqx53lfMbsWeQTI.mft (raw, json)
Hash identifier: S2BqFSvcBjS50hR+rGUH/YS8BJxYXYLy7indvCsqhe4=
Subject key identifier: E5:42:D5:43:4C:71:42:59:4D:9E:86:81:34:5A:A8:E4:83:16:59:F8
Authority key identifier: 53:78:7C:D7:94:6E:10:D8:86:46:AC:79:DE:57:CC:6E:C5:9E:41:32
Certificate issuer: /CN=53787cd7946e10d88646ac79de57cc6ec59e4132
Certificate serial: 019652DB86AEFED3F8BC80057D9EC0FA3F91
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/U3h815RuENiGRqx53lfMbsWeQTI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/df/c77825-68a3-4b3e-bc90-523fd86a07c7/1/U3h815RuENiGRqx53lfMbsWeQTI.mft
Manifest number: 11AB
Signing time: Sun 20 Apr 2025 11:00:40 +0000
Manifest this update: Sun 20 Apr 2025 11:00:40 +0000
Manifest next update: Mon 21 Apr 2025 11:00:40 +0000
Files and hashes: 1: Gb_tS4tDYUhq7ZFBBu6bXOHKxSQ.roa (hash: j+ql1A+cPykDsn/U+bRsvn2rorjyFgGlp+mF0Qt3tRQ=)
2: U3h815RuENiGRqx53lfMbsWeQTI.crl (hash: xweaDDun0xsVzqJLCDsVefU+hRDGUPHZqI35QuVaHOs=)
3: aDocXw9aAWTC2tonweXjSXZoNMs.roa (hash: M6NywDoKFY4uKrDQ3WCmTb7f59Ph9hBt6rzgbYZvGvU=)
4: dqRRF9NrCy7kpjHElym2fRaWWpg.roa (hash: yVbcvUrGd5qHEf8kKaXL1t+AGyhms8ILF9sbmeot86I=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/df/c77825-68a3-4b3e-bc90-523fd86a07c7/1/U3h815RuENiGRqx53lfMbsWeQTI.crl
rsync://rpki.ripe.net/repository/DEFAULT/df/c77825-68a3-4b3e-bc90-523fd86a07c7/1/U3h815RuENiGRqx53lfMbsWeQTI.mft
rsync://rpki.ripe.net/repository/DEFAULT/U3h815RuENiGRqx53lfMbsWeQTI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 21 Apr 2025 11:00:40 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:52:db:86:ae:fe:d3:f8:bc:80:05:7d:9e:c0:fa:3f:91
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=53787cd7946e10d88646ac79de57cc6ec59e4132
Validity
Not Before: Apr 20 11:00:40 2025 GMT
Not After : Apr 21 11:00:40 2025 GMT
Subject: CN=e542d5434c7142594d9e8681345aa8e4831659f8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dc:01:ae:71:b2:4b:65:e8:a9:ea:76:a9:fb:31:
5f:fd:e4:fb:7c:d7:33:56:ec:a3:af:9f:7a:a3:4b:
41:d1:16:b9:da:af:32:90:de:f6:bf:e6:8c:f0:de:
2c:34:e0:e5:27:97:d4:6a:37:39:fd:fa:67:9e:49:
5c:87:fe:a5:69:98:24:9a:64:f9:9f:a3:85:8d:e6:
87:1a:3e:18:ea:dc:2c:a4:bd:64:0a:08:8d:fa:34:
5a:f0:b9:94:ef:9d:b6:3c:a8:9d:c1:86:e9:b2:89:
e9:35:35:67:0c:6c:a2:df:cb:d2:e6:da:3a:69:2b:
8d:0e:ba:ab:4b:8e:c1:b0:99:69:c0:f6:24:3f:d8:
b2:24:4a:2d:47:40:31:68:ab:bd:53:47:e8:38:4e:
05:12:d9:a0:4f:b4:44:08:02:68:8a:af:79:94:c4:
c6:25:24:90:6b:82:5e:10:9a:7e:48:ca:d8:d4:a9:
91:4a:de:5f:2b:a2:ba:a1:ac:de:ba:12:4e:52:9f:
99:cd:94:9c:fa:33:95:ef:8a:fc:d2:00:50:f9:b3:
02:e0:c0:8e:49:65:88:fe:b3:64:ca:b9:b7:72:5b:
83:26:60:38:68:5c:c8:86:71:d6:e8:ed:4a:5e:3a:
38:da:8b:cf:4f:04:d4:46:69:3f:af:75:9c:28:b9:
7a:87
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E5:42:D5:43:4C:71:42:59:4D:9E:86:81:34:5A:A8:E4:83:16:59:F8
X509v3 Authority Key Identifier:
keyid:53:78:7C:D7:94:6E:10:D8:86:46:AC:79:DE:57:CC:6E:C5:9E:41:32
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/U3h815RuENiGRqx53lfMbsWeQTI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/df/c77825-68a3-4b3e-bc90-523fd86a07c7/1/U3h815RuENiGRqx53lfMbsWeQTI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/df/c77825-68a3-4b3e-bc90-523fd86a07c7/1/U3h815RuENiGRqx53lfMbsWeQTI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
80:dc:b5:d0:71:74:56:b3:41:f7:9d:f9:e7:e1:aa:cd:f5:7d:
97:e2:14:48:e5:74:96:1e:e2:0f:b2:a2:86:8c:84:2a:cf:be:
8c:e6:c4:10:e0:1e:d7:d6:ac:f6:d8:d5:39:1e:b8:49:93:5c:
7b:e2:de:60:04:cc:7a:88:de:41:07:a1:e0:75:2c:ad:1c:32:
90:31:2f:c0:b9:13:34:01:d2:cc:2e:7a:be:33:ec:f3:a8:ca:
d4:2e:cd:2d:d7:0e:35:73:45:d7:e1:db:19:ce:f3:4b:41:83:
a3:74:2f:a3:84:11:45:6e:7b:0e:8d:56:ca:24:38:74:9d:bb:
9c:38:2a:45:31:73:05:8d:a2:0a:11:ba:81:c6:d2:d8:14:c6:
d5:0c:5f:da:bf:85:df:2f:63:8c:7d:25:7d:b2:de:9a:46:24:
4e:77:87:80:2d:58:80:cf:ea:af:e2:f9:f7:2d:d1:de:8a:62:
47:14:34:59:db:d2:e6:0c:a2:da:af:db:f0:fc:80:81:19:7c:
b0:76:f3:ec:cd:b1:1a:0f:a7:b5:a8:07:d1:8c:56:bb:a9:cf:
d6:df:23:fe:15:cb:61:65:38:94:0a:07:ff:3e:13:89:fd:d1:
d7:bc:84:4c:e2:f3:c6:21:15:11:5e:80:24:99:b5:e4:8f:9a:
7b:ea:d6:29
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 20 18:56:47 2025 by rpki-client