Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/35/e2a2b2-ab3c-4afb-8987-dd63f215c434/1/UtZhqUjyvzSQ6J2CUvLMyHR85cc.mft
File: UtZhqUjyvzSQ6J2CUvLMyHR85cc.mft (raw, json)
Hash identifier: ax90SmZz769b7NZI9EdQmNePUovo6ypZOYiVEEe5Rnw=
Subject key identifier: 3F:EE:9E:D6:DA:43:9C:4B:DD:A2:D3:CA:95:B1:54:1E:08:F6:5E:60
Authority key identifier: 52:D6:61:A9:48:F2:BF:34:90:E8:9D:82:52:F2:CC:C8:74:7C:E5:C7
Certificate issuer: /CN=52d661a948f2bf3490e89d8252f2ccc8747ce5c7
Certificate serial: 01969DBE86F1CF5835A1F1FB83A87FA7BBCF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UtZhqUjyvzSQ6J2CUvLMyHR85cc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/35/e2a2b2-ab3c-4afb-8987-dd63f215c434/1/UtZhqUjyvzSQ6J2CUvLMyHR85cc.mft
Manifest number: 1300
Signing time: Mon 05 May 2025 00:00:31 +0000
Manifest this update: Mon 05 May 2025 00:00:31 +0000
Manifest next update: Tue 06 May 2025 00:00:31 +0000
Files and hashes: 1: En0AxaNswsA9xI4lqkSKkt-F7C0.roa (hash: q8FwSEiSjvslMUXDVxvqWzOjw6rMu6h87zO4Dcum1yM=)
2: UtZhqUjyvzSQ6J2CUvLMyHR85cc.crl (hash: KP1/W1oT95Ezd8OlOoF1MYANv/FGsV2mNClCcn6TyXo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/35/e2a2b2-ab3c-4afb-8987-dd63f215c434/1/UtZhqUjyvzSQ6J2CUvLMyHR85cc.crl
rsync://rpki.ripe.net/repository/DEFAULT/35/e2a2b2-ab3c-4afb-8987-dd63f215c434/1/UtZhqUjyvzSQ6J2CUvLMyHR85cc.mft
rsync://rpki.ripe.net/repository/DEFAULT/UtZhqUjyvzSQ6J2CUvLMyHR85cc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 05 May 2025 22:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:9d:be:86:f1:cf:58:35:a1:f1:fb:83:a8:7f:a7:bb:cf
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=52d661a948f2bf3490e89d8252f2ccc8747ce5c7
Validity
Not Before: May 5 00:00:31 2025 GMT
Not After : May 6 00:00:31 2025 GMT
Subject: CN=3fee9ed6da439c4bdda2d3ca95b1541e08f65e60
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:fb:0d:94:05:f7:f5:f7:fe:48:3c:5a:55:b9:
c1:b7:a5:7f:46:d5:f0:b3:e2:73:65:f3:ad:56:52:
21:22:2d:ba:e1:96:d8:f1:25:55:66:0f:ed:5b:8d:
4e:be:18:50:eb:5e:d4:aa:e4:dc:0d:09:57:ff:51:
95:4d:9a:c8:ee:c5:2a:10:d6:e5:d7:6d:f0:d7:f7:
aa:c8:d6:54:8e:fd:e0:e0:d6:d1:e7:60:89:7a:03:
ba:9c:8f:17:82:b0:74:6b:d6:6c:ff:5f:e7:4d:9a:
3f:5a:fc:ca:75:a5:01:82:2a:cf:d5:35:e8:2e:df:
c2:8e:de:66:12:bd:1b:ee:83:16:7b:1a:f2:db:a5:
cf:ef:96:f0:86:b8:69:50:68:39:b9:12:46:e8:64:
98:58:b3:5c:73:c6:92:b9:b8:ff:92:4f:1e:ed:97:
14:43:3d:a6:b1:71:3e:69:3f:30:09:c8:29:62:e8:
18:35:cd:c2:a1:8c:20:e9:56:d1:3f:37:71:d4:4b:
74:b0:12:8b:61:1e:23:ec:2c:da:63:b5:42:31:24:
fc:37:fb:c2:d6:7f:17:c9:42:69:f6:ca:ec:25:20:
c8:38:64:0b:a6:3e:05:0c:70:84:37:5c:2c:85:a2:
b4:9f:84:7d:4a:fa:14:37:6a:70:c1:80:a1:5f:54:
2d:1d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3F:EE:9E:D6:DA:43:9C:4B:DD:A2:D3:CA:95:B1:54:1E:08:F6:5E:60
X509v3 Authority Key Identifier:
keyid:52:D6:61:A9:48:F2:BF:34:90:E8:9D:82:52:F2:CC:C8:74:7C:E5:C7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UtZhqUjyvzSQ6J2CUvLMyHR85cc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/35/e2a2b2-ab3c-4afb-8987-dd63f215c434/1/UtZhqUjyvzSQ6J2CUvLMyHR85cc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/35/e2a2b2-ab3c-4afb-8987-dd63f215c434/1/UtZhqUjyvzSQ6J2CUvLMyHR85cc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
54:44:d3:cb:e8:00:9f:25:0d:f2:3c:97:8e:45:cb:bb:6e:a9:
8e:0a:a6:27:1e:34:b1:58:eb:9d:85:e4:a8:59:3e:53:ce:55:
67:14:10:22:17:8b:fb:a0:ba:23:e2:a4:b9:56:4d:15:2c:b2:
b9:94:f8:02:6b:ad:6c:4f:02:13:0b:8c:82:da:c9:68:9b:31:
3d:2f:8d:17:1a:8d:d3:e2:e8:3b:ea:5d:c1:fe:a6:98:ae:36:
b4:f0:ca:97:ab:33:0a:ce:66:a5:77:6c:de:f8:68:e8:db:2a:
65:76:e8:6e:41:11:ec:9b:0e:d9:5e:45:49:29:76:63:70:6d:
7a:d6:fc:5d:a3:21:db:50:d5:e1:71:b8:79:b0:46:c9:ef:45:
d0:92:af:a1:2f:87:47:4b:fb:23:7e:da:a9:c1:12:5b:1b:e3:
27:78:e1:45:5d:31:21:31:f0:1e:5b:c3:d0:69:91:21:22:9d:
00:9f:11:2d:1b:0e:09:03:64:a4:76:c6:34:29:12:40:7a:e6:
0c:01:07:c7:cc:8b:1f:ce:ea:04:59:f4:41:83:f4:70:ad:b0:
4b:7c:57:cf:84:d8:cf:4f:e0:bf:bb:8c:79:94:ed:f5:84:31:
9b:9f:6f:72:5d:ab:69:4b:38:83:75:6e:56:42:5b:f7:12:eb:
d3:03:ce:36
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon May 5 06:38:27 2025 by rpki-client