Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fc/a56b2d-f795-495d-9c48-6f67b647722d/1/uPrah6dvKfguJaMXnno4zwxrAwA.mft
File: uPrah6dvKfguJaMXnno4zwxrAwA.mft (raw, json)
Hash identifier: fnxY/+BkQLaaLI9UyVtT8Pt/+urWtPH46qG16vymP5Y=
Subject key identifier: 91:84:37:BD:8E:AA:D8:AC:6B:C2:4B:DC:E5:A7:D8:EE:96:74:31:70
Authority key identifier: B8:FA:DA:87:A7:6F:29:F8:2E:25:A3:17:9E:7A:38:CF:0C:6B:03:00
Certificate issuer: /CN=b8fada87a76f29f82e25a3179e7a38cf0c6b0300
Certificate serial: 0196504815E60B2C652C5CBCBE07E8E61C61
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/uPrah6dvKfguJaMXnno4zwxrAwA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fc/a56b2d-f795-495d-9c48-6f67b647722d/1/uPrah6dvKfguJaMXnno4zwxrAwA.mft
Manifest number: 14CA
Signing time: Sat 19 Apr 2025 23:00:23 +0000
Manifest this update: Sat 19 Apr 2025 23:00:23 +0000
Manifest next update: Sun 20 Apr 2025 23:00:23 +0000
Files and hashes: 1: qMZm8Udrq7vD5T2yYBAeB18Ev8A.roa (hash: z2089CzZPnbakpAVa3XOh5ZgRIHqWKGPuJw64Jno6FU=)
2: uPrah6dvKfguJaMXnno4zwxrAwA.crl (hash: UjW/b2YghGn93vJKlVOVpmXdFXyMFJbxVD4yg/ntYlc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/fc/a56b2d-f795-495d-9c48-6f67b647722d/1/uPrah6dvKfguJaMXnno4zwxrAwA.crl
rsync://rpki.ripe.net/repository/DEFAULT/fc/a56b2d-f795-495d-9c48-6f67b647722d/1/uPrah6dvKfguJaMXnno4zwxrAwA.mft
rsync://rpki.ripe.net/repository/DEFAULT/uPrah6dvKfguJaMXnno4zwxrAwA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 20 Apr 2025 16:41:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:50:48:15:e6:0b:2c:65:2c:5c:bc:be:07:e8:e6:1c:61
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b8fada87a76f29f82e25a3179e7a38cf0c6b0300
Validity
Not Before: Apr 19 23:00:23 2025 GMT
Not After : Apr 20 23:00:23 2025 GMT
Subject: CN=918437bd8eaad8ac6bc24bdce5a7d8ee96743170
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:80:f1:18:2b:34:39:bd:70:63:8d:e5:c3:a1:
54:79:2c:94:4e:73:ce:e9:09:7f:66:7c:00:f6:e7:
9d:fd:ce:64:b3:42:df:ed:c1:41:f5:ef:8a:c5:86:
95:cb:f0:75:f0:16:34:b1:8f:58:92:08:fd:0e:e4:
31:c9:db:03:8b:74:c4:19:5c:b4:4a:a8:7f:77:c2:
c8:b5:d1:43:c7:92:2b:9b:60:3a:39:0a:21:6a:78:
70:ed:14:d3:0a:e7:d6:87:61:f8:2f:1b:12:05:37:
2c:a1:0c:db:7d:d6:95:47:b9:3b:a8:3c:ca:23:15:
ae:29:6b:d7:d0:5e:da:43:27:93:a5:66:41:4a:df:
60:42:55:00:f7:a2:fe:ce:4a:c4:72:d1:aa:78:de:
fd:ba:49:e1:29:04:42:dd:60:b5:db:e9:10:7a:da:
e3:fa:75:e9:59:76:a6:17:74:0d:b3:45:15:41:85:
78:d1:cb:84:1e:33:5e:f4:3a:d7:6f:e5:6d:a9:83:
d2:94:68:1e:46:70:68:f2:1d:58:cb:6e:72:c1:24:
8f:58:a2:7a:e0:0c:ed:a4:a0:1c:79:a7:d4:80:1f:
2c:01:51:9c:3c:4a:26:5a:a2:ab:d1:71:e0:d4:7b:
0c:dd:28:82:e7:03:04:8c:18:a1:78:16:8e:d3:45:
70:cf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
91:84:37:BD:8E:AA:D8:AC:6B:C2:4B:DC:E5:A7:D8:EE:96:74:31:70
X509v3 Authority Key Identifier:
keyid:B8:FA:DA:87:A7:6F:29:F8:2E:25:A3:17:9E:7A:38:CF:0C:6B:03:00
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/uPrah6dvKfguJaMXnno4zwxrAwA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fc/a56b2d-f795-495d-9c48-6f67b647722d/1/uPrah6dvKfguJaMXnno4zwxrAwA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fc/a56b2d-f795-495d-9c48-6f67b647722d/1/uPrah6dvKfguJaMXnno4zwxrAwA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
7a:a7:0c:b4:f4:cf:df:b8:c2:7d:40:18:05:5a:44:de:b4:d3:
45:79:80:5e:f5:21:ee:40:e9:aa:ed:86:4d:ab:55:08:11:83:
97:1b:13:bd:c0:d2:b9:ac:c9:c3:52:4d:b3:f7:fc:f0:a0:0e:
d1:29:96:e8:73:f1:62:40:13:76:c4:e1:38:cb:2f:6c:d0:8b:
8c:95:36:08:cb:a5:8f:1d:ca:9c:14:7e:2d:58:0b:50:79:70:
75:5d:a1:1e:4e:46:88:12:41:1f:38:9e:ee:6c:2e:0f:35:51:
45:ff:9d:ca:fb:8d:e3:a1:83:57:50:47:b1:6a:79:54:b5:54:
4d:67:6d:64:f8:28:3e:4d:19:e4:c9:01:89:cf:ea:3d:ab:da:
e3:ed:09:70:0d:2a:e9:9c:11:83:61:dd:37:22:db:cd:5a:22:
75:9c:9e:9a:28:5d:79:d1:a7:a0:73:46:cc:e4:e2:53:1e:7c:
08:7b:62:d5:86:e6:53:a5:6d:b3:89:ca:f2:64:82:43:b3:72:
49:fb:11:95:fd:2b:e5:bd:52:40:7d:e9:5a:9d:f5:84:05:5e:
98:c3:cf:f4:72:a0:81:c7:db:59:d2:6b:f2:53:98:61:a9:4c:
07:83:ad:e3:a6:b8:b9:ed:7a:59:74:87:04:cd:57:8d:85:41:
77:03:ca:c1
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZZQSBXmCyxlLFy8vgfo5hxhMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGI4ZmFkYTg3YTc2ZjI5ZjgyZTI1YTMxNzllN2EzOGNmMGM2
YjAzMDAwHhcNMjUwNDE5MjMwMDIzWhcNMjUwNDIwMjMwMDIzWjAzMTEwLwYDVQQD
Eyg5MTg0MzdiZDhlYWFkOGFjNmJjMjRiZGNlNWE3ZDhlZTk2NzQzMTcwMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxYDxGCs0Ob1wY43lw6FUeSyUTnPO
6Ql/ZnwA9ued/c5ks0Lf7cFB9e+KxYaVy/B18BY0sY9Ykgj9DuQxydsDi3TEGVy0
Sqh/d8LItdFDx5Irm2A6OQohanhw7RTTCufWh2H4LxsSBTcsoQzbfdaVR7k7qDzK
IxWuKWvX0F7aQyeTpWZBSt9gQlUA96L+zkrEctGqeN79uknhKQRC3WC12+kQetrj
+nXpWXamF3QNs0UVQYV40cuEHjNe9DrXb+VtqYPSlGgeRnBo8h1Yy25ywSSPWKJ6
4AztpKAceafUgB8sAVGcPEomWqKr0XHg1HsM3SiC5wMEjBiheBaO00VwzwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFJGEN72Oqtisa8JL3OWn2O6WdDFwMB8GA1UdIwQY
MBaAFLj62oenbyn4LiWjF556OM8MawMAMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvdVByYWg2ZHZLZmd1SmFNWG5ubzR6d3hyQXdBLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mYy9hNTZiMmQtZjc5NS00OTVkLTljNDgt
NmY2N2I2NDc3MjJkLzEvdVByYWg2ZHZLZmd1SmFNWG5ubzR6d3hyQXdBLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9mYy9hNTZiMmQtZjc5NS00OTVkLTljNDgtNmY2N2I2NDc3MjJk
LzEvdVByYWg2ZHZLZmd1SmFNWG5ubzR6d3hyQXdBLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAeqcMtPTP
37jCfUAYBVpE3rTTRXmAXvUh7kDpqu2GTatVCBGDlxsTvcDSuazJw1JNs/f88KAO
0SmW6HPxYkATdsThOMsvbNCLjJU2CMuljx3KnBR+LVgLUHlwdV2hHk5GiBJBHzie
7mwuDzVRRf+dyvuN46GDV1BHsWp5VLVUTWdtZPgoPk0Z5MkBic/qPava4+0JcA0q
6ZwRg2HdNyLbzVoidZyemihdedGnoHNGzOTiUx58CHti1YbmU6Vts4nK8mSCQ7Ny
SfsRlf0r5b1SQH3pWp31hAVemMPP9HKggcfbWdJr8lOYYalMB4Ot46a4ue16WXSH
BM1XjYVBdwPKwQ==
-----END CERTIFICATE-----
Generated at Sun Apr 20 02:05:07 2025 by rpki-client