Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fe/4a79a1-3d19-4de4-be89-8a200691f724/1/u_pCfUICOv2oiOhBX07c97ffGwU.mft
File: u_pCfUICOv2oiOhBX07c97ffGwU.mft (raw, json)
Hash identifier: fBz3Ek/zR6Cw8PQCYMr5Yr39IO3IFREQa7vL4OgQRR4=
Subject key identifier: 75:8E:6C:70:FE:35:EF:CD:5D:78:EA:26:C5:45:89:D7:DD:CA:21:47
Authority key identifier: BB:FA:42:7D:42:02:3A:FD:A8:88:E8:41:5F:4E:DC:F7:B7:DF:1B:05
Certificate issuer: /CN=bbfa427d42023afda888e8415f4edcf7b7df1b05
Certificate serial: 01964D1059AEA6CA53272B10217B785DF3BF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/u_pCfUICOv2oiOhBX07c97ffGwU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fe/4a79a1-3d19-4de4-be89-8a200691f724/1/u_pCfUICOv2oiOhBX07c97ffGwU.mft
Manifest number: 074C
Signing time: Sat 19 Apr 2025 08:00:39 +0000
Manifest this update: Sat 19 Apr 2025 08:00:39 +0000
Manifest next update: Sun 20 Apr 2025 08:00:39 +0000
Files and hashes: 1: K2GMWCCFEI_TRfahmMRjDe9YKEI.roa (hash: vdZSYQjeBwZE35DhIdNU+zQ/gO9XDbHhs5nRKTUQzYc=)
2: u_pCfUICOv2oiOhBX07c97ffGwU.crl (hash: oOgqqwk/ypcnnwU62EkBM3lDXKAoIxLm89piYyUiR3Y=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/fe/4a79a1-3d19-4de4-be89-8a200691f724/1/u_pCfUICOv2oiOhBX07c97ffGwU.crl
rsync://rpki.ripe.net/repository/DEFAULT/fe/4a79a1-3d19-4de4-be89-8a200691f724/1/u_pCfUICOv2oiOhBX07c97ffGwU.mft
rsync://rpki.ripe.net/repository/DEFAULT/u_pCfUICOv2oiOhBX07c97ffGwU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 20 Apr 2025 07:26:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:4d:10:59:ae:a6:ca:53:27:2b:10:21:7b:78:5d:f3:bf
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=bbfa427d42023afda888e8415f4edcf7b7df1b05
Validity
Not Before: Apr 19 08:00:39 2025 GMT
Not After : Apr 20 08:00:39 2025 GMT
Subject: CN=758e6c70fe35efcd5d78ea26c54589d7ddca2147
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:de:f2:cc:9e:9f:99:96:5e:1a:cd:65:f9:2a:f2:
5e:cd:64:19:96:78:dc:7d:18:72:78:8b:ca:fc:0f:
88:12:16:c1:6e:37:54:68:13:44:30:91:a2:6a:72:
9f:18:33:53:8b:11:62:ed:8e:33:fd:d8:92:76:9b:
bc:88:9a:8a:69:59:ea:02:8a:73:e1:da:1c:8c:f2:
fe:09:ca:c5:49:58:60:14:78:75:25:f6:67:6c:39:
87:61:e0:e3:02:aa:8d:66:0e:a0:a1:0d:c8:21:f1:
5b:63:1e:70:c7:09:98:46:c8:8a:78:35:0d:83:d6:
15:6b:5c:7a:2d:02:d6:67:9e:89:90:22:f9:37:31:
09:88:95:18:6e:c0:4a:1b:2e:56:03:3b:86:62:01:
f1:33:a1:eb:63:1d:f6:43:00:6e:ab:95:23:af:eb:
69:d1:27:74:ab:49:a6:64:c0:62:4b:6f:fd:d8:84:
bf:20:a4:54:7f:df:2f:48:ad:3d:46:4b:77:34:5c:
6c:ee:ee:eb:87:d2:00:e3:f4:3b:ff:fe:ab:83:72:
22:f5:f9:ca:17:dc:b9:89:80:18:ad:57:0d:d7:39:
8e:66:60:a5:43:8a:72:cf:87:95:37:32:6b:0d:df:
ea:7d:e3:36:83:b2:ec:70:5f:b1:45:d3:c0:dd:21:
98:55
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
75:8E:6C:70:FE:35:EF:CD:5D:78:EA:26:C5:45:89:D7:DD:CA:21:47
X509v3 Authority Key Identifier:
keyid:BB:FA:42:7D:42:02:3A:FD:A8:88:E8:41:5F:4E:DC:F7:B7:DF:1B:05
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/u_pCfUICOv2oiOhBX07c97ffGwU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fe/4a79a1-3d19-4de4-be89-8a200691f724/1/u_pCfUICOv2oiOhBX07c97ffGwU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fe/4a79a1-3d19-4de4-be89-8a200691f724/1/u_pCfUICOv2oiOhBX07c97ffGwU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
4b:57:a8:f9:5c:58:c7:e4:d7:9b:a1:4b:0b:90:38:54:66:eb:
86:f6:14:1e:f2:42:4c:5c:8c:20:bf:d1:08:bb:a5:08:53:d7:
27:32:01:db:34:88:fe:0a:f1:d3:52:ff:43:54:74:1b:f1:0e:
e4:ef:59:d5:bb:22:9d:7a:8d:74:2d:e7:26:82:fd:f9:c1:ec:
a6:e6:b6:b7:1e:28:0e:42:8c:2a:7e:df:20:5c:ea:67:0a:91:
7b:cb:52:36:89:1c:7c:5a:df:94:76:cd:80:b5:f9:ca:5b:36:
43:1d:84:3c:e7:4d:12:fb:ad:46:ba:db:7b:1d:ec:e7:60:a3:
fc:03:e8:28:33:fa:3a:c6:c0:7d:2a:13:06:a2:58:e0:70:ef:
3e:6c:cb:1f:8a:20:b2:e9:fa:36:5d:db:81:49:4a:1f:32:0c:
c2:a9:83:f4:b7:9a:a4:a3:fe:f0:18:1a:5e:8a:e7:f6:d5:32:
53:c6:12:a1:58:c8:e4:97:cf:49:03:fa:c9:3b:18:52:37:11:
36:33:d8:d6:0c:04:08:12:a0:81:f7:82:a2:f5:63:5f:07:40:
ce:86:72:1d:b8:46:23:0e:c6:5f:71:b7:a2:39:6b:42:de:8b:
e3:d4:9a:b2:20:df:7e:5c:3a:27:f8:91:58:3a:1b:ce:71:d6:
1e:0d:38:4c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 19 15:47:36 2025 by rpki-client