Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fb/a7ae11-121a-4f22-be3f-e907af07ff11/1/UiezboKeTYVl7WV0jhsck8zQDO4.mft
File: UiezboKeTYVl7WV0jhsck8zQDO4.mft (raw, json)
Hash identifier: hJwMqDB5P2chY5ql/K5+hDF76iQ+Nu36hdgxhIHnrTA=
Subject key identifier: A5:19:B0:38:D5:BC:63:10:CF:75:BF:DF:3B:1F:F2:2C:8F:66:DF:42
Authority key identifier: 52:27:B3:6E:82:9E:4D:85:65:ED:65:74:8E:1B:1C:93:CC:D0:0C:EE
Certificate issuer: /CN=5227b36e829e4d8565ed65748e1b1c93ccd00cee
Certificate serial: 01965F848359C13F7E4558D4DA2F8E81215E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UiezboKeTYVl7WV0jhsck8zQDO4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fb/a7ae11-121a-4f22-be3f-e907af07ff11/1/UiezboKeTYVl7WV0jhsck8zQDO4.mft
Manifest number: 0F16
Signing time: Tue 22 Apr 2025 22:00:42 +0000
Manifest this update: Tue 22 Apr 2025 22:00:42 +0000
Manifest next update: Wed 23 Apr 2025 22:00:42 +0000
Files and hashes: 1: RL9-61LJ-xL7UGImuGRdOdgZP1M.roa (hash: W3jLVStcHUC/Po0Yzh+5aEEvdCfFtCnTP/kBctED3eg=)
2: UiezboKeTYVl7WV0jhsck8zQDO4.crl (hash: m/nXmm0lUhPPqr6E2yaushcuViwsOI0KCe+EjWjHtvk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/fb/a7ae11-121a-4f22-be3f-e907af07ff11/1/UiezboKeTYVl7WV0jhsck8zQDO4.crl
rsync://rpki.ripe.net/repository/DEFAULT/fb/a7ae11-121a-4f22-be3f-e907af07ff11/1/UiezboKeTYVl7WV0jhsck8zQDO4.mft
rsync://rpki.ripe.net/repository/DEFAULT/UiezboKeTYVl7WV0jhsck8zQDO4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 23 Apr 2025 22:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:5f:84:83:59:c1:3f:7e:45:58:d4:da:2f:8e:81:21:5e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5227b36e829e4d8565ed65748e1b1c93ccd00cee
Validity
Not Before: Apr 22 22:00:42 2025 GMT
Not After : Apr 23 22:00:42 2025 GMT
Subject: CN=a519b038d5bc6310cf75bfdf3b1ff22c8f66df42
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9a:b8:07:81:dd:1f:4a:a1:ae:83:99:5e:14:f3:
f6:0a:dc:d6:75:68:3a:b6:f3:ea:ea:cd:28:7f:e9:
ea:25:1f:65:09:99:15:bb:81:38:ff:ba:f0:0d:d7:
53:c8:9c:eb:6e:50:22:35:d2:6b:7a:dd:8b:26:a4:
39:6c:40:c7:4c:ff:a4:79:7f:2e:99:ad:52:f3:d1:
0d:08:e6:1c:9b:c6:6c:51:60:f8:21:12:8f:c7:85:
b9:65:8f:24:c0:b2:92:ce:6d:05:e2:ee:e0:79:8a:
cb:70:89:68:87:cd:e0:70:8f:ae:d6:ac:98:8a:80:
82:cf:ca:83:93:24:b0:61:69:12:3e:87:d8:a9:03:
5c:78:ab:c5:49:7b:64:f7:26:74:31:85:09:e0:19:
7c:aa:20:02:28:ca:61:01:00:07:46:b5:3e:73:e6:
6f:ed:a6:3f:34:f6:81:52:0d:5f:bc:f8:b3:0c:8d:
b8:31:9e:73:12:f8:2c:b6:22:92:b8:14:4d:46:6c:
ef:26:13:e5:a7:77:ee:c9:85:0a:fb:e1:7b:5e:e0:
75:c1:b6:2f:27:ee:4b:4b:a9:bb:04:9a:55:fa:e0:
6f:95:ab:af:7b:3a:7b:3b:e2:2b:7e:47:6a:2f:88:
58:ee:ad:95:c1:c8:6b:87:45:a1:09:dc:61:55:bc:
76:bb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A5:19:B0:38:D5:BC:63:10:CF:75:BF:DF:3B:1F:F2:2C:8F:66:DF:42
X509v3 Authority Key Identifier:
keyid:52:27:B3:6E:82:9E:4D:85:65:ED:65:74:8E:1B:1C:93:CC:D0:0C:EE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UiezboKeTYVl7WV0jhsck8zQDO4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fb/a7ae11-121a-4f22-be3f-e907af07ff11/1/UiezboKeTYVl7WV0jhsck8zQDO4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fb/a7ae11-121a-4f22-be3f-e907af07ff11/1/UiezboKeTYVl7WV0jhsck8zQDO4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
28:9f:4e:ac:7f:03:82:7c:da:03:29:9e:c4:c6:67:2c:48:03:
62:fc:c3:f3:ff:6e:26:eb:4c:02:66:b2:9b:07:7b:cc:b3:54:
d2:5a:3d:4d:40:70:a7:dc:41:35:c7:b2:72:96:34:d2:0d:77:
87:d0:b8:45:50:9c:a8:fe:8c:3d:23:f9:05:b8:08:00:7f:76:
3a:2b:04:f7:2d:ed:a1:e9:df:54:67:8f:24:da:32:f3:5a:45:
dd:e6:d6:d2:65:46:ae:91:b0:61:1a:64:b9:ab:f8:d5:ab:63:
e3:b4:ae:33:11:2b:5e:d3:4f:08:0d:92:2d:ed:9e:ec:a1:49:
df:c9:54:73:4f:cf:dd:1e:49:0d:d3:2d:09:12:2a:50:23:60:
31:cb:2f:51:8f:15:4a:ae:ef:8c:74:b9:bb:ce:b4:07:8a:00:
69:eb:2e:d4:fe:57:ab:16:eb:38:b6:23:51:3a:e9:26:f2:c4:
c6:95:be:a2:d1:a7:36:1f:a9:e5:cd:b2:8d:0d:a0:ec:75:84:
a6:66:13:94:34:75:b8:2b:05:73:52:5e:29:a9:e5:b9:ef:ec:
a9:b3:91:ba:b0:36:08:5a:d7:2f:cc:2d:4f:be:4c:68:3c:b4:
94:89:9e:1d:fb:f7:92:8f:c2:a0:5d:03:68:fd:7b:cd:c2:fb:
18:bf:ab:82
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 23 05:05:56 2025 by rpki-client