Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0b/a3735a-eccc-41d7-b723-e01237b5fc10/1/UFzWGp9t6drMDTySFwbffVCvvW8.mft
File: UFzWGp9t6drMDTySFwbffVCvvW8.mft (raw, json)
Hash identifier: tlVf0bbTzRjpokPqeqdJYmL7WpPZbijRGW6XB054bBY=
Subject key identifier: DA:7D:61:9E:22:C3:64:A1:D1:81:A2:6C:EB:10:65:23:AA:CB:16:F4
Authority key identifier: 50:5C:D6:1A:9F:6D:E9:DA:CC:0D:3C:92:17:06:DF:7D:50:AF:BD:6F
Certificate issuer: /CN=505cd61a9f6de9dacc0d3c921706df7d50afbd6f
Certificate serial: 0196B85A7953A3F51D07F0C3E3810F5190CC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UFzWGp9t6drMDTySFwbffVCvvW8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0b/a3735a-eccc-41d7-b723-e01237b5fc10/1/UFzWGp9t6drMDTySFwbffVCvvW8.mft
Manifest number: 0B85
Signing time: Sat 10 May 2025 04:00:59 +0000
Manifest this update: Sat 10 May 2025 04:00:59 +0000
Manifest next update: Sun 11 May 2025 04:00:59 +0000
Files and hashes: 1: 02fZd277xqKcuTMYmhFfbwx9HwA.roa (hash: bemKy7xu5/Ii5zazW11+IHavu8JMVH9QIzpKn7l6Pf4=)
2: UFzWGp9t6drMDTySFwbffVCvvW8.crl (hash: y1yWzLkkTsvn3rDEPKHSthSklJeRnq5MA0nqp/8Yz2Y=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0b/a3735a-eccc-41d7-b723-e01237b5fc10/1/UFzWGp9t6drMDTySFwbffVCvvW8.crl
rsync://rpki.ripe.net/repository/DEFAULT/0b/a3735a-eccc-41d7-b723-e01237b5fc10/1/UFzWGp9t6drMDTySFwbffVCvvW8.mft
rsync://rpki.ripe.net/repository/DEFAULT/UFzWGp9t6drMDTySFwbffVCvvW8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 11 May 2025 04:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:b8:5a:79:53:a3:f5:1d:07:f0:c3:e3:81:0f:51:90:cc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=505cd61a9f6de9dacc0d3c921706df7d50afbd6f
Validity
Not Before: May 10 04:00:59 2025 GMT
Not After : May 11 04:00:59 2025 GMT
Subject: CN=da7d619e22c364a1d181a26ceb106523aacb16f4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:98:6c:00:46:5b:10:16:7f:05:73:19:56:0c:
2b:55:21:8a:ef:b1:f8:c7:32:93:5c:36:5b:83:df:
a2:64:02:d5:e7:c0:6d:1c:fb:7c:e7:05:6e:59:0b:
d2:14:93:4d:63:b0:34:11:7c:b5:63:10:fb:8c:ca:
54:56:d1:18:b4:0d:63:cd:ef:fc:06:eb:1e:0a:95:
f2:23:fa:8a:f2:8b:86:62:ae:98:13:c4:4a:69:a3:
9e:c0:e1:e5:0f:68:67:a0:e5:ba:6e:c9:14:6e:50:
49:a7:f7:d1:37:7a:3b:80:7a:2a:2c:5a:80:86:e8:
dd:a4:15:b1:de:e1:d4:70:55:14:55:56:45:94:92:
db:ac:b7:82:5e:77:64:2d:03:31:33:fb:78:3e:39:
de:3f:95:d3:99:32:49:15:3a:be:95:d2:18:97:cc:
74:53:03:e6:9c:b2:f3:24:78:e9:35:7f:23:3e:47:
aa:54:99:9c:31:82:c5:17:7c:1c:38:00:a1:25:99:
d2:87:4a:d5:c8:25:e5:c6:c9:d2:78:25:27:19:dc:
49:0a:d9:74:5a:ee:95:af:69:1f:a0:0f:29:e5:f2:
d4:c0:b0:47:32:96:f8:e7:95:77:df:78:1e:98:72:
53:91:ed:95:5f:f5:5e:25:7f:9a:5b:35:db:e4:97:
75:7d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DA:7D:61:9E:22:C3:64:A1:D1:81:A2:6C:EB:10:65:23:AA:CB:16:F4
X509v3 Authority Key Identifier:
keyid:50:5C:D6:1A:9F:6D:E9:DA:CC:0D:3C:92:17:06:DF:7D:50:AF:BD:6F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UFzWGp9t6drMDTySFwbffVCvvW8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0b/a3735a-eccc-41d7-b723-e01237b5fc10/1/UFzWGp9t6drMDTySFwbffVCvvW8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0b/a3735a-eccc-41d7-b723-e01237b5fc10/1/UFzWGp9t6drMDTySFwbffVCvvW8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
a5:cd:e2:af:3c:2e:48:a4:26:d1:4b:28:ed:0a:3f:85:8d:de:
ef:d3:f7:ba:71:5f:94:8a:ad:b5:7b:5a:41:04:ac:b2:12:ef:
3f:ce:e5:d4:29:5b:53:a7:0d:5c:50:f2:a6:c9:19:75:96:30:
d9:d6:3c:eb:ae:de:81:3a:30:7d:93:82:af:81:16:28:b1:5d:
e4:90:f0:b7:81:3d:51:91:52:3f:18:d2:97:79:2d:f7:6e:a0:
0d:c4:f2:a3:71:0a:24:fe:58:a8:ed:ca:3b:54:57:92:cb:42:
51:89:17:c9:8b:e8:8f:8f:6a:54:f4:21:ee:f2:d9:60:34:3a:
36:e0:af:6f:b2:7f:aa:bf:dd:8a:45:fb:71:10:73:9a:84:ea:
12:89:7c:3a:68:7e:99:44:56:25:58:3f:11:14:58:35:ef:94:
22:4b:9c:66:2d:09:2e:6d:41:f6:e9:4f:b6:35:d0:f1:fe:8c:
36:ee:a6:a9:f1:6b:40:c2:0d:09:1e:cf:ad:d3:f2:0b:48:1c:
57:4b:c6:38:fe:e9:71:68:f6:69:c8:e4:de:b3:ac:5d:cb:eb:
97:c8:15:32:12:6a:59:80:4e:a8:aa:3e:84:ed:18:ff:c6:44:
3e:16:1d:ea:55:81:ba:eb:b4:63:13:8e:b4:05:5e:be:64:d1:
ae:10:ac:43
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat May 10 14:09:23 2025 by rpki-client