Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/25/587a79-1b6c-4c2a-b139-24aab44f2539/1/U0bE0gD-UDXGGwyJS5RU5y0nyR8.mft
File: U0bE0gD-UDXGGwyJS5RU5y0nyR8.mft (raw, json)
Hash identifier: lmeNiwZxcrZztXq8mONVAXZQIwhxVhscoysgiNa0rus=
Subject key identifier: 02:F8:4B:0D:2C:1F:D4:9D:DD:A4:63:AD:D3:09:FB:C2:61:DE:E6:19
Authority key identifier: 53:46:C4:D2:00:FE:50:35:C6:1B:0C:89:4B:94:54:E7:2D:27:C9:1F
Certificate issuer: /CN=5346c4d200fe5035c61b0c894b9454e72d27c91f
Certificate serial: 0196D1755CA4BD69B0CE6B91479CA4673D62
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/U0bE0gD-UDXGGwyJS5RU5y0nyR8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/25/587a79-1b6c-4c2a-b139-24aab44f2539/1/U0bE0gD-UDXGGwyJS5RU5y0nyR8.mft
Manifest number: 1540
Signing time: Thu 15 May 2025 01:00:51 +0000
Manifest this update: Thu 15 May 2025 01:00:51 +0000
Manifest next update: Fri 16 May 2025 01:00:51 +0000
Files and hashes: 1: ECD7apX3eHOOfrh7KlF7PFjYZG4.roa (hash: 71V9g38SO7JBAaQym2ThymDLgJtxxyPJi6oj0bVn0zY=)
2: U0bE0gD-UDXGGwyJS5RU5y0nyR8.crl (hash: d3C0qvySY/DlT88NcDqmkShipCZhVieAP5q1zUjiKZM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/25/587a79-1b6c-4c2a-b139-24aab44f2539/1/U0bE0gD-UDXGGwyJS5RU5y0nyR8.crl
rsync://rpki.ripe.net/repository/DEFAULT/25/587a79-1b6c-4c2a-b139-24aab44f2539/1/U0bE0gD-UDXGGwyJS5RU5y0nyR8.mft
rsync://rpki.ripe.net/repository/DEFAULT/U0bE0gD-UDXGGwyJS5RU5y0nyR8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 16 May 2025 01:00:51 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:d1:75:5c:a4:bd:69:b0:ce:6b:91:47:9c:a4:67:3d:62
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5346c4d200fe5035c61b0c894b9454e72d27c91f
Validity
Not Before: May 15 01:00:51 2025 GMT
Not After : May 16 01:00:51 2025 GMT
Subject: CN=02f84b0d2c1fd49ddda463add309fbc261dee619
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:06:29:04:ea:75:3c:4d:03:68:74:ad:25:b5:
28:9e:ad:71:14:c1:a3:b9:c0:cd:b9:a3:08:e9:05:
b9:b7:8a:d8:9f:0b:b8:af:87:96:ce:04:1b:29:87:
0f:ce:de:ae:69:2d:d6:5b:aa:9d:3e:fc:57:1e:32:
55:91:c0:57:04:5c:88:f4:c4:e6:d1:e0:35:2e:5f:
7f:6b:61:d2:f6:f7:39:37:f6:f8:26:7a:de:c8:4c:
24:60:f5:a6:1c:35:d9:dd:4c:f2:e6:f6:9c:af:bd:
01:a9:9c:3b:ff:af:29:17:cc:6f:50:23:ab:34:be:
7b:e7:5e:99:e4:3f:f9:ac:d3:5c:c2:8a:4b:82:af:
ec:4a:1a:22:66:d9:c9:04:d1:a9:fc:9d:09:7b:7a:
d7:35:c2:33:4f:5f:d3:97:30:0e:99:8f:e8:b4:cd:
7b:d3:b5:23:43:22:f3:eb:05:dc:38:36:ca:2e:29:
a6:af:6a:df:9c:03:d6:99:5f:7c:ab:04:54:56:56:
db:ac:6c:e8:c4:6a:08:b5:2a:47:a0:a6:02:26:ed:
c5:64:a1:46:2e:ef:f5:6e:1e:48:82:90:76:2e:be:
87:7d:4f:55:35:b1:7a:75:24:27:11:03:01:ac:21:
73:c9:ee:6f:01:38:8b:66:b6:a6:b9:3d:5e:b5:bf:
14:c3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
02:F8:4B:0D:2C:1F:D4:9D:DD:A4:63:AD:D3:09:FB:C2:61:DE:E6:19
X509v3 Authority Key Identifier:
keyid:53:46:C4:D2:00:FE:50:35:C6:1B:0C:89:4B:94:54:E7:2D:27:C9:1F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/U0bE0gD-UDXGGwyJS5RU5y0nyR8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/25/587a79-1b6c-4c2a-b139-24aab44f2539/1/U0bE0gD-UDXGGwyJS5RU5y0nyR8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/25/587a79-1b6c-4c2a-b139-24aab44f2539/1/U0bE0gD-UDXGGwyJS5RU5y0nyR8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
2e:17:64:8c:de:d8:d8:1c:d7:c8:1e:0b:5c:d4:1c:b2:56:84:
25:8b:2f:28:ab:01:c3:6e:a7:46:f3:0a:de:66:f2:2d:39:ed:
d8:6d:36:a5:fb:e6:33:fc:32:c2:a0:82:b4:1e:ea:10:ad:6b:
2f:dd:b7:6f:34:44:83:e4:74:1a:2a:1a:22:6a:41:ea:4d:f9:
52:30:db:2a:47:0d:aa:be:99:76:00:f8:13:8f:b5:48:5f:ea:
6c:8c:5c:19:52:d7:89:c0:74:b2:03:10:c1:b0:6a:57:4e:cd:
ec:74:d1:42:b3:a3:51:55:3e:cb:58:88:7e:5a:25:e9:10:b0:
b0:52:89:08:eb:49:c5:21:2b:83:bf:da:3c:5c:45:52:69:dc:
8e:6a:b6:55:b2:b1:b8:43:18:e2:f9:b0:a3:94:f6:2a:05:6c:
cc:78:2a:3a:fc:11:a4:95:10:dc:55:3e:ec:58:24:a4:b9:30:
46:00:f6:a8:4e:32:0e:d7:54:52:13:ff:5e:61:58:fa:8c:ea:
62:71:ca:f6:e5:aa:5e:32:40:b2:11:08:14:9c:12:d2:8d:3c:
60:b9:b1:63:4c:a5:c7:98:fc:0e:25:82:ba:3b:2f:4b:28:f5:
28:dd:83:95:f2:da:76:a5:30:9c:48:89:7e:17:ea:37:3e:d6:
89:2f:33:79
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu May 15 11:20:31 2025 by rpki-client