Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/02/23d5c1-ac66-461f-900f-380885740d4a/1/UeFdozln1BRwqW1hQcg0DyJAWBw.mft
File: UeFdozln1BRwqW1hQcg0DyJAWBw.mft (raw, json)
Hash identifier: ENh86t8tvGckly11jZtGPtMPemCMGi5w0b61TI1wNOc=
Subject key identifier: A1:D4:6B:08:6C:64:29:7B:E5:4F:42:6C:9C:83:48:72:48:55:E2:8E
Authority key identifier: 51:E1:5D:A3:39:67:D4:14:70:A9:6D:61:41:C8:34:0F:22:40:58:1C
Certificate issuer: /CN=51e15da33967d41470a96d6141c8340f2240581c
Certificate serial: 0196C6159122D46B6171BC42A3923E1B0EDE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UeFdozln1BRwqW1hQcg0DyJAWBw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/02/23d5c1-ac66-461f-900f-380885740d4a/1/UeFdozln1BRwqW1hQcg0DyJAWBw.mft
Manifest number: 1539
Signing time: Mon 12 May 2025 20:00:24 +0000
Manifest this update: Mon 12 May 2025 20:00:24 +0000
Manifest next update: Tue 13 May 2025 20:00:24 +0000
Files and hashes: 1: UeFdozln1BRwqW1hQcg0DyJAWBw.crl (hash: A9YuP+Ch4mKrByhMJXiDQlfXWo17EU/mPzlU4JvWtTY=)
2: gBYCWzo5jT_O6BTkSg1kyvPsFw4.roa (hash: +/mKf9OZ57+DTvZmgtnYONd6u+f9yDN0GFvCHTpFrgo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/02/23d5c1-ac66-461f-900f-380885740d4a/1/UeFdozln1BRwqW1hQcg0DyJAWBw.crl
rsync://rpki.ripe.net/repository/DEFAULT/02/23d5c1-ac66-461f-900f-380885740d4a/1/UeFdozln1BRwqW1hQcg0DyJAWBw.mft
rsync://rpki.ripe.net/repository/DEFAULT/UeFdozln1BRwqW1hQcg0DyJAWBw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 13 May 2025 14:31:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:c6:15:91:22:d4:6b:61:71:bc:42:a3:92:3e:1b:0e:de
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=51e15da33967d41470a96d6141c8340f2240581c
Validity
Not Before: May 12 20:00:24 2025 GMT
Not After : May 13 20:00:24 2025 GMT
Subject: CN=a1d46b086c64297be54f426c9c8348724855e28e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:67:1f:64:4f:53:6a:0a:b8:f6:04:a4:ef:26:
f6:dc:8b:15:db:b2:ec:2f:9c:43:6e:bb:ee:7a:5f:
40:1c:ee:df:f0:2c:45:bb:3a:ea:57:41:5c:2f:9c:
09:00:fe:9e:60:76:17:2c:78:5a:0e:5a:d1:bf:24:
e9:27:0a:9a:12:01:f2:35:ad:da:d2:da:22:17:39:
19:d1:2e:8b:bf:9e:89:b5:6c:d1:a0:81:b4:69:58:
1d:2f:6e:44:70:49:ee:e5:c4:ae:a1:8f:af:37:65:
a5:0b:77:9b:1d:e4:fd:df:f6:03:18:92:ef:c1:dc:
68:42:00:b0:6c:11:26:bc:4d:7b:50:92:0c:f6:14:
73:a4:39:69:57:b6:cd:12:b1:c6:46:15:1b:a7:7e:
97:2e:00:15:5c:5e:41:8e:52:52:e7:8c:6f:44:60:
00:6e:54:02:24:48:dc:7e:92:96:26:11:05:62:de:
56:17:08:61:e0:c4:6a:43:1c:bd:37:77:c1:7b:f7:
46:72:4a:35:d4:c2:50:e4:21:dc:c0:f4:05:39:50:
75:2b:53:a9:1f:b5:76:9b:61:7e:7e:7f:21:eb:fd:
ee:d9:aa:7a:8f:ea:3b:a0:c5:51:f7:5b:66:69:dc:
08:f7:a0:34:a3:1d:60:dd:fa:6e:3f:c2:f9:b7:18:
28:8f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A1:D4:6B:08:6C:64:29:7B:E5:4F:42:6C:9C:83:48:72:48:55:E2:8E
X509v3 Authority Key Identifier:
keyid:51:E1:5D:A3:39:67:D4:14:70:A9:6D:61:41:C8:34:0F:22:40:58:1C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UeFdozln1BRwqW1hQcg0DyJAWBw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/02/23d5c1-ac66-461f-900f-380885740d4a/1/UeFdozln1BRwqW1hQcg0DyJAWBw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/02/23d5c1-ac66-461f-900f-380885740d4a/1/UeFdozln1BRwqW1hQcg0DyJAWBw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
3e:e7:b9:d2:0c:7c:be:fc:67:6a:f5:08:24:6a:6b:28:75:6d:
df:e0:36:b5:cf:21:29:ad:a0:47:04:f3:e4:13:5d:73:dc:4f:
96:33:5a:2c:e4:60:f0:e1:7d:f7:35:c2:c6:49:8c:de:2f:f7:
01:97:5c:a7:62:39:e1:b8:f6:09:fb:59:39:06:33:a2:3c:ec:
0d:72:14:c6:6d:b8:0d:a6:f7:21:b4:80:3f:9b:0f:16:c7:b1:
e7:96:0d:b4:b0:73:62:9c:a9:ab:1e:8e:49:16:d3:31:17:10:
29:31:ba:e3:0c:d5:19:ba:ea:2a:dc:df:9c:f9:a2:a9:e5:4e:
c3:1a:cd:38:4d:de:2f:1c:d2:06:0e:10:f5:db:15:19:82:db:
9a:cb:04:fe:2d:36:c3:2d:b1:95:74:e6:81:bc:d0:ab:e4:c0:
f9:f3:fa:b2:08:c5:c6:62:1e:0f:a8:ca:8d:0c:55:2a:7e:f5:
84:4b:fe:41:33:45:89:b9:52:bb:db:d5:27:61:77:d9:4f:6a:
46:11:f4:98:6f:15:7a:6d:2f:c8:f5:a1:f0:50:77:f2:e8:3f:
92:f6:f6:81:c8:28:e7:05:fc:5b:33:46:06:4d:97:ca:2e:a6:
f1:96:be:ee:55:72:c0:3e:59:2e:f6:d8:f4:ab:c6:e3:c7:d4:
d4:90:92:02
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon May 12 23:58:12 2025 by rpki-client