Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/35/04e8b2-c76f-4629-95ad-a7d945af14e5/1/U-Ou3ZG-gkUTQtzRyYKDRdtmGl8.mft
File: U-Ou3ZG-gkUTQtzRyYKDRdtmGl8.mft (raw, json)
Hash identifier: fMhjPa5H74OMLyY6PJDNPFVGGF6hbKL/U/ZQEr2Q95g=
Subject key identifier: AA:90:8A:B2:F5:00:67:9F:C3:80:49:AA:B8:2B:C5:7A:62:26:E8:98
Authority key identifier: 53:E3:AE:DD:91:BE:82:45:13:42:DC:D1:C9:82:83:45:DB:66:1A:5F
Certificate issuer: /CN=53e3aedd91be82451342dcd1c9828345db661a5f
Certificate serial: 0196BD12B92C26110D1ABA8730520ED15D92
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/U-Ou3ZG-gkUTQtzRyYKDRdtmGl8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/35/04e8b2-c76f-4629-95ad-a7d945af14e5/1/U-Ou3ZG-gkUTQtzRyYKDRdtmGl8.mft
Manifest number: 07BF
Signing time: Sun 11 May 2025 02:00:42 +0000
Manifest this update: Sun 11 May 2025 02:00:42 +0000
Manifest next update: Mon 12 May 2025 02:00:42 +0000
Files and hashes: 1: If5j4KjsWFg3kwDUxrHpbFCCjpg.roa (hash: iGbVOgQjxfoZ4tZTHfIMlZvCv27war8Yd/ywUcGl39o=)
2: U-Ou3ZG-gkUTQtzRyYKDRdtmGl8.crl (hash: 7OE3cQWO5xhQ0weP43StECcj9so9nxO5ciGHST+UGHU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/35/04e8b2-c76f-4629-95ad-a7d945af14e5/1/U-Ou3ZG-gkUTQtzRyYKDRdtmGl8.crl
rsync://rpki.ripe.net/repository/DEFAULT/35/04e8b2-c76f-4629-95ad-a7d945af14e5/1/U-Ou3ZG-gkUTQtzRyYKDRdtmGl8.mft
rsync://rpki.ripe.net/repository/DEFAULT/U-Ou3ZG-gkUTQtzRyYKDRdtmGl8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 11 May 2025 22:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:bd:12:b9:2c:26:11:0d:1a:ba:87:30:52:0e:d1:5d:92
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=53e3aedd91be82451342dcd1c9828345db661a5f
Validity
Not Before: May 11 02:00:42 2025 GMT
Not After : May 12 02:00:42 2025 GMT
Subject: CN=aa908ab2f500679fc38049aab82bc57a6226e898
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ce:12:33:3f:dc:07:1a:5f:18:72:80:07:dc:58:
3f:10:f6:fd:78:55:42:a0:2f:af:db:94:fe:0d:4a:
54:34:f6:ab:27:15:7b:9b:58:18:b3:d4:f4:20:af:
c9:6e:b6:8b:65:c5:6d:b0:0b:5f:a6:b4:24:be:2e:
ac:eb:33:05:6d:c0:70:9e:6c:c7:e9:fe:be:35:58:
46:9d:e3:3b:50:e4:73:db:c1:87:a5:23:57:5b:ff:
36:6e:f7:64:64:dd:a4:3a:8b:3f:b5:2a:e5:11:ef:
37:27:6c:e0:37:c5:b6:c9:22:2d:ca:a6:72:e5:0c:
6a:05:e3:92:15:ec:67:29:4c:b2:87:e8:b4:33:fd:
4b:dc:f4:1a:4c:5d:f1:13:dc:44:bc:18:d0:fa:44:
ff:b2:fb:67:41:cf:55:e8:5d:79:26:71:33:d0:1d:
6b:e8:32:c1:3f:8c:c7:24:be:41:49:31:f1:5d:cc:
b4:8e:c0:71:84:39:59:2b:9e:48:61:b7:79:c0:5e:
b7:f2:c6:ec:17:cc:07:90:01:61:e8:92:03:c5:c9:
5e:99:a0:b1:e6:ba:8f:70:b5:1a:0c:61:35:68:61:
d9:37:32:7d:05:fc:e5:10:17:e0:0c:b6:50:2e:62:
22:bd:8b:5e:e9:6a:0a:7d:18:d1:e5:cd:78:7d:a8:
b4:f7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AA:90:8A:B2:F5:00:67:9F:C3:80:49:AA:B8:2B:C5:7A:62:26:E8:98
X509v3 Authority Key Identifier:
keyid:53:E3:AE:DD:91:BE:82:45:13:42:DC:D1:C9:82:83:45:DB:66:1A:5F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/U-Ou3ZG-gkUTQtzRyYKDRdtmGl8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/35/04e8b2-c76f-4629-95ad-a7d945af14e5/1/U-Ou3ZG-gkUTQtzRyYKDRdtmGl8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/35/04e8b2-c76f-4629-95ad-a7d945af14e5/1/U-Ou3ZG-gkUTQtzRyYKDRdtmGl8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
06:87:c6:9f:41:80:ef:03:7d:33:a9:bf:d2:8c:59:8a:24:ae:
5b:2a:ac:a1:8c:8d:ac:a3:2e:c9:d6:de:0f:55:72:fa:50:a9:
cc:ca:74:aa:e7:d0:f3:a0:c5:89:14:f6:ed:24:f4:0a:13:cf:
79:96:eb:a7:19:8f:1b:ed:0a:32:0b:ec:c3:dc:8d:4d:6a:5f:
2a:3a:c7:94:ad:1c:82:70:15:94:ca:d7:f6:35:83:ef:08:ea:
30:17:0f:ae:d6:0f:35:9a:dc:fd:58:fd:b4:f3:7f:29:02:6d:
7a:8b:e3:d7:29:bc:8f:56:b2:e5:bb:52:5d:80:cd:2e:a2:fa:
12:c3:93:65:c9:c9:5a:98:e0:e4:a7:c4:b4:f5:ff:da:c4:17:
ba:e1:43:27:f9:ff:28:dc:1f:45:d2:98:46:eb:b9:09:fd:78:
29:c0:66:a4:50:ed:6a:8d:31:86:c4:ab:e9:ea:28:ab:fa:85:
e6:f5:13:11:1b:14:a0:4e:fb:58:8c:61:51:9b:31:86:38:23:
23:6d:54:9d:8c:18:fa:dc:c0:e4:88:e2:36:0b:88:ef:dd:a6:
19:04:59:c9:62:48:41:da:fd:67:3a:49:9d:24:51:53:f0:97:
2a:31:ff:75:0c:23:0e:88:7f:77:96:b3:e0:20:4d:74:c8:a2:
8d:87:da:26
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun May 11 05:57:43 2025 by rpki-client