Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3f/03d0e2-a49e-4371-b21c-5015e1208119/1/UqZcYoSDp1Zoi7FYwoq3wNR94nw.mft
File: UqZcYoSDp1Zoi7FYwoq3wNR94nw.mft (raw, json)
Hash identifier: 2p0ej6iosgUkVyi82x5Bn06ab5Imr21JFBKKWFxaul8=
Subject key identifier: 93:65:5C:B5:FD:2F:7B:9E:8F:CF:CB:61:1B:FD:BC:A2:BF:A4:3B:7E
Authority key identifier: 52:A6:5C:62:84:83:A7:56:68:8B:B1:58:C2:8A:B7:C0:D4:7D:E2:7C
Certificate issuer: /CN=52a65c628483a756688bb158c28ab7c0d47de27c
Certificate serial: 0196B2580943BA329BF447B09B5D4FE13CA3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UqZcYoSDp1Zoi7FYwoq3wNR94nw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3f/03d0e2-a49e-4371-b21c-5015e1208119/1/UqZcYoSDp1Zoi7FYwoq3wNR94nw.mft
Manifest number: 0300
Signing time: Fri 09 May 2025 00:00:36 +0000
Manifest this update: Fri 09 May 2025 00:00:36 +0000
Manifest next update: Sat 10 May 2025 00:00:36 +0000
Files and hashes: 1: UqZcYoSDp1Zoi7FYwoq3wNR94nw.crl (hash: e/wsWBTBvlwXATgv1Pj/0Els0VP2dvwn6r29fukJtvI=)
2: tqDHXiS7i5dxh3CeCoDJkGQqezg.roa (hash: l6w/oRDzimMT8gSmQ7FtqRNlVcpqgstHkEfCIU2SJhE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3f/03d0e2-a49e-4371-b21c-5015e1208119/1/UqZcYoSDp1Zoi7FYwoq3wNR94nw.crl
rsync://rpki.ripe.net/repository/DEFAULT/3f/03d0e2-a49e-4371-b21c-5015e1208119/1/UqZcYoSDp1Zoi7FYwoq3wNR94nw.mft
rsync://rpki.ripe.net/repository/DEFAULT/UqZcYoSDp1Zoi7FYwoq3wNR94nw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 10 May 2025 00:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:b2:58:09:43:ba:32:9b:f4:47:b0:9b:5d:4f:e1:3c:a3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=52a65c628483a756688bb158c28ab7c0d47de27c
Validity
Not Before: May 9 00:00:36 2025 GMT
Not After : May 10 00:00:36 2025 GMT
Subject: CN=93655cb5fd2f7b9e8fcfcb611bfdbca2bfa43b7e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:79:93:78:a4:be:6b:b8:9c:e7:fc:f0:fa:49:
33:40:8a:78:6e:fe:d6:f7:93:47:9d:6d:ed:0c:91:
42:a9:39:5e:76:37:99:a5:3c:34:61:80:eb:56:d9:
1d:d2:c5:e8:d8:64:18:09:e7:a5:6a:5e:ba:27:c6:
f1:e1:d4:e8:5a:ea:39:f9:56:5c:20:09:b3:e7:df:
7f:4f:3d:d1:47:29:30:b2:8d:d8:59:ed:d9:3e:b5:
f4:be:ea:c4:79:73:68:39:3f:58:fe:d6:52:92:b8:
76:2e:06:92:51:e4:5f:7d:eb:f8:63:d5:1a:db:16:
81:0e:76:2f:bb:1a:f5:11:d7:dd:f8:66:7b:ca:d7:
41:34:26:12:f3:7b:39:8f:19:32:95:0a:c9:2b:5e:
f7:da:20:42:d3:b8:1f:20:36:47:f5:de:3f:24:e7:
83:db:18:f9:57:0f:d8:db:1f:83:76:18:85:92:d7:
a2:b9:dc:1f:b5:6f:82:37:72:2b:32:2e:d9:ff:c1:
0a:88:fe:ac:fe:52:8b:0c:37:fd:5a:0d:41:2e:8c:
7a:99:ba:d3:9e:cb:29:c4:cd:c4:ca:58:08:6f:a6:
35:37:58:e3:8d:89:44:fe:34:6c:4c:32:7a:a6:bd:
a7:3c:9e:0b:b6:ab:98:a3:1c:38:e7:a0:16:5c:0b:
af:63
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
93:65:5C:B5:FD:2F:7B:9E:8F:CF:CB:61:1B:FD:BC:A2:BF:A4:3B:7E
X509v3 Authority Key Identifier:
keyid:52:A6:5C:62:84:83:A7:56:68:8B:B1:58:C2:8A:B7:C0:D4:7D:E2:7C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UqZcYoSDp1Zoi7FYwoq3wNR94nw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3f/03d0e2-a49e-4371-b21c-5015e1208119/1/UqZcYoSDp1Zoi7FYwoq3wNR94nw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3f/03d0e2-a49e-4371-b21c-5015e1208119/1/UqZcYoSDp1Zoi7FYwoq3wNR94nw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
0d:28:6f:17:fe:31:2d:1d:a6:e8:f1:55:0c:b3:ba:6d:43:5b:
b2:22:a8:16:05:c0:f1:30:fb:dd:73:90:44:6d:15:ff:77:7d:
c3:40:52:ce:3f:5a:2d:58:42:68:f3:6f:e1:13:b4:c2:ef:a8:
62:c5:c1:6b:1f:e0:68:b4:3d:c3:71:19:55:51:8f:ec:b7:68:
85:c5:30:80:28:c4:47:e4:14:45:2d:89:96:84:a3:51:05:90:
0c:f1:ee:a7:63:5a:1d:e6:32:17:a7:94:5d:71:e7:e4:cb:f3:
96:17:b0:f0:9b:4f:b3:0c:6d:78:57:e5:0d:9f:92:01:1d:f3:
38:40:19:44:37:ae:cb:8e:74:16:e0:2e:d5:dc:c2:2e:0b:9d:
59:9e:95:c4:6b:d6:c9:94:b1:a3:44:b1:7d:18:17:23:96:83:
0c:82:43:ac:b4:71:57:16:12:4d:5d:09:4c:9a:9c:56:25:5f:
97:72:e8:50:da:2a:63:d1:ee:12:9e:44:9a:28:1e:7e:6f:cb:
0e:df:3a:fc:61:49:01:e7:2c:5e:ee:3c:8d:c2:a0:81:b9:fc:
7b:a1:9f:9d:4c:0a:a3:5c:d2:e9:8f:29:28:c6:97:ce:b9:8f:
ea:05:42:5b:a9:cb:3f:6d:71:f1:a2:62:0b:12:4e:4f:bb:48:
31:5b:0c:b1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 9 08:38:29 2025 by rpki-client