Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fe/8f7148-236d-4088-89e6-665995c62838/1/UxUwA3N9ePci25oo4iBD412Nhx4.mft
File: UxUwA3N9ePci25oo4iBD412Nhx4.mft (raw, json)
Hash identifier: fHjBY5U5nqCATQEk+rbTWrwiUgQ1/Ca4DsFD/cvX+Xo=
Subject key identifier: 4D:C4:C3:E9:AE:4A:2D:6C:42:CE:95:6E:E1:41:37:FD:BB:53:D1:91
Authority key identifier: 53:15:30:03:73:7D:78:F7:22:DB:9A:28:E2:20:43:E3:5D:8D:87:1E
Certificate issuer: /CN=53153003737d78f722db9a28e22043e35d8d871e
Certificate serial: 019647E9AFB065704707C356496D03A47DC7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UxUwA3N9ePci25oo4iBD412Nhx4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fe/8f7148-236d-4088-89e6-665995c62838/1/UxUwA3N9ePci25oo4iBD412Nhx4.mft
Manifest number: 14F8
Signing time: Fri 18 Apr 2025 08:00:19 +0000
Manifest this update: Fri 18 Apr 2025 08:00:19 +0000
Manifest next update: Sat 19 Apr 2025 08:00:19 +0000
Files and hashes: 1: UxUwA3N9ePci25oo4iBD412Nhx4.crl (hash: vOz4s/EIsqRp17PSGXbxKE0ed2WJLdhxjwkwNOQIMpo=)
2: vffye4B_maKGCuAE9ICWvmcHW6I.roa (hash: VaColu6D/X0DZ0KpxU1etnd04XXSodxmzmHPWI2Hjvo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/fe/8f7148-236d-4088-89e6-665995c62838/1/UxUwA3N9ePci25oo4iBD412Nhx4.crl
rsync://rpki.ripe.net/repository/DEFAULT/fe/8f7148-236d-4088-89e6-665995c62838/1/UxUwA3N9ePci25oo4iBD412Nhx4.mft
rsync://rpki.ripe.net/repository/DEFAULT/UxUwA3N9ePci25oo4iBD412Nhx4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 19 Apr 2025 08:00:19 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:47:e9:af:b0:65:70:47:07:c3:56:49:6d:03:a4:7d:c7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=53153003737d78f722db9a28e22043e35d8d871e
Validity
Not Before: Apr 18 08:00:19 2025 GMT
Not After : Apr 19 08:00:19 2025 GMT
Subject: CN=4dc4c3e9ae4a2d6c42ce956ee14137fdbb53d191
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:ba:db:58:b6:58:46:95:65:46:6a:b7:fe:56:
7c:83:a0:2c:e1:86:49:93:ff:f2:8a:0f:3c:36:6b:
65:06:ef:7e:fc:51:64:4b:88:b3:26:6b:3f:2a:7c:
97:ba:92:12:6d:5c:d3:b3:4a:ee:a0:b5:2c:65:dc:
8b:3a:2b:73:8e:25:7a:3c:62:72:31:36:cf:98:b0:
e9:ee:f1:b3:a0:09:b1:58:c9:f1:e4:62:44:3e:ab:
d8:2c:e2:8e:93:79:41:df:06:d4:32:eb:68:1b:8a:
eb:95:8f:ff:d0:e3:81:5a:da:0d:cd:0f:af:c1:77:
9c:d9:91:c3:f0:b0:f0:15:8b:5c:0c:b5:1d:0f:74:
e7:fb:52:02:fd:30:fb:42:4c:4c:82:49:34:20:35:
a7:fb:ae:17:0a:3b:1f:47:2b:fc:e7:ff:00:4b:70:
17:cb:c9:bf:b5:5f:6f:bd:69:ac:cb:32:f8:15:27:
5f:f9:b1:9b:ad:63:2e:d9:8e:d8:fa:3e:bd:31:16:
3e:e2:ab:86:17:c5:ad:80:97:bf:1c:e2:2f:44:43:
c7:84:fd:02:71:6e:cd:cf:e6:02:bb:70:32:2e:0a:
40:0a:47:1d:88:38:d1:fc:14:5e:2b:53:04:a1:c9:
74:7d:a8:f9:97:b7:4e:1b:d4:a1:93:98:80:fe:a0:
8d:01
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4D:C4:C3:E9:AE:4A:2D:6C:42:CE:95:6E:E1:41:37:FD:BB:53:D1:91
X509v3 Authority Key Identifier:
keyid:53:15:30:03:73:7D:78:F7:22:DB:9A:28:E2:20:43:E3:5D:8D:87:1E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UxUwA3N9ePci25oo4iBD412Nhx4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fe/8f7148-236d-4088-89e6-665995c62838/1/UxUwA3N9ePci25oo4iBD412Nhx4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fe/8f7148-236d-4088-89e6-665995c62838/1/UxUwA3N9ePci25oo4iBD412Nhx4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
bc:15:8f:2a:ef:d0:f5:df:d1:7c:00:e0:92:16:f5:59:07:10:
06:fe:b7:b1:00:f6:fa:95:e6:56:86:f0:d9:41:4b:13:47:3a:
1c:25:fc:31:86:66:98:c0:97:08:94:a5:16:a6:e6:df:d0:ab:
b9:99:1b:f5:14:cb:35:bb:4f:25:ba:4e:b4:cb:1a:86:94:e7:
58:7f:45:67:e1:65:58:da:48:7c:2a:27:b5:fc:27:05:fb:52:
a1:67:61:71:42:4e:7a:c2:29:57:ac:85:58:64:44:2d:e2:3f:
6d:8a:3a:3c:45:2c:6b:3e:bd:45:99:c9:79:1e:5a:cc:50:bc:
40:b3:1e:4d:79:bd:22:f0:d3:c3:df:7c:8f:49:36:4d:cf:dd:
0b:8d:57:c4:29:45:3d:99:86:b9:de:40:6a:44:47:8d:79:f4:
62:6e:15:cc:fb:42:bc:4f:b6:88:74:1e:86:6b:7a:73:fc:6f:
97:1d:38:0d:db:75:6a:b1:ca:9f:b9:74:97:a4:88:1f:79:04:
b8:bf:49:db:99:54:20:f9:ae:7a:b7:ad:9f:a9:66:b4:23:2e:
0b:e5:d3:14:30:db:29:bf:75:50:1c:3f:17:70:cd:38:e4:25:
8e:09:12:56:7d:ed:78:79:ce:f5:9b:57:48:cb:a3:e6:09:08:
d4:89:f4:6d
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZZH6a+wZXBHB8NWSW0DpH3HMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDUzMTUzMDAzNzM3ZDc4ZjcyMmRiOWEyOGUyMjA0M2UzNWQ4
ZDg3MWUwHhcNMjUwNDE4MDgwMDE5WhcNMjUwNDE5MDgwMDE5WjAzMTEwLwYDVQQD
Eyg0ZGM0YzNlOWFlNGEyZDZjNDJjZTk1NmVlMTQxMzdmZGJiNTNkMTkxMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApLrbWLZYRpVlRmq3/lZ8g6As4YZJ
k//yig88NmtlBu9+/FFkS4izJms/KnyXupISbVzTs0ruoLUsZdyLOitzjiV6PGJy
MTbPmLDp7vGzoAmxWMnx5GJEPqvYLOKOk3lB3wbUMutoG4rrlY//0OOBWtoNzQ+v
wXec2ZHD8LDwFYtcDLUdD3Tn+1IC/TD7QkxMgkk0IDWn+64XCjsfRyv85/8AS3AX
y8m/tV9vvWmsyzL4FSdf+bGbrWMu2Y7Y+j69MRY+4quGF8WtgJe/HOIvREPHhP0C
cW7Nz+YCu3AyLgpACkcdiDjR/BReK1MEocl0faj5l7dOG9Shk5iA/qCNAQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFE3Ew+muSi1sQs6VbuFBN/27U9GRMB8GA1UdIwQY
MBaAFFMVMANzfXj3ItuaKOIgQ+NdjYceMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvVXhVd0EzTjllUGNpMjVvbzRpQkQ0MTJOaHg0LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mZS84ZjcxNDgtMjM2ZC00MDg4LTg5ZTYt
NjY1OTk1YzYyODM4LzEvVXhVd0EzTjllUGNpMjVvbzRpQkQ0MTJOaHg0Lm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9mZS84ZjcxNDgtMjM2ZC00MDg4LTg5ZTYtNjY1OTk1YzYyODM4
LzEvVXhVd0EzTjllUGNpMjVvbzRpQkQ0MTJOaHg0LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAvBWPKu/Q
9d/RfADgkhb1WQcQBv63sQD2+pXmVobw2UFLE0c6HCX8MYZmmMCXCJSlFqbm39Cr
uZkb9RTLNbtPJbpOtMsahpTnWH9FZ+FlWNpIfContfwnBftSoWdhcUJOesIpV6yF
WGRELeI/bYo6PEUsaz69RZnJeR5azFC8QLMeTXm9IvDTw998j0k2Tc/dC41XxClF
PZmGud5AakRHjXn0Ym4VzPtCvE+2iHQehmt6c/xvlx04Ddt1arHKn7l0l6SIH3kE
uL9J25lUIPmueretn6lmtCMuC+XTFDDbKb91UBw/F3DNOOQljgkSVn3teHnO9ZtX
SMuj5gkI1In0bQ==
-----END CERTIFICATE-----
Generated at Fri Apr 18 14:45:39 2025 by rpki-client