Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5a/df5670-96ab-4eee-b0d2-85d332604aaf/1/uUiJEgxOC_9Ozpoqu4YtTAzYox8.mft
File: uUiJEgxOC_9Ozpoqu4YtTAzYox8.mft (raw, json)
Hash identifier: qTTAdLnlEcvi2hgRvbJtfdgSdsbSLg5lVEnyxpV5QAw=
Subject key identifier: CE:76:87:0D:2C:A5:A5:31:BE:04:54:95:D7:69:EB:AE:01:1C:9D:40
Authority key identifier: B9:48:89:12:0C:4E:0B:FF:4E:CE:9A:2A:BB:86:2D:4C:0C:D8:A3:1F
Certificate issuer: /CN=b94889120c4e0bff4ece9a2abb862d4c0cd8a31f
Certificate serial: 0196C0EF85DD2B5CA6310CC9445AD236D92B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/uUiJEgxOC_9Ozpoqu4YtTAzYox8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5a/df5670-96ab-4eee-b0d2-85d332604aaf/1/uUiJEgxOC_9Ozpoqu4YtTAzYox8.mft
Manifest number: 0EA3
Signing time: Sun 11 May 2025 20:00:44 +0000
Manifest this update: Sun 11 May 2025 20:00:44 +0000
Manifest next update: Mon 12 May 2025 20:00:44 +0000
Files and hashes: 1: Ez8s9qEUUht2JDDEnDzdcLhPgtI.roa (hash: JIMzy59RHLraK6rhor2VUFRVzGxoje0mc5nW26VOt9E=)
2: uUiJEgxOC_9Ozpoqu4YtTAzYox8.crl (hash: TD9aC9qcB5lcXLXIyaZ/CNRLWzZxfDhj4rZ/u6oOwFs=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5a/df5670-96ab-4eee-b0d2-85d332604aaf/1/uUiJEgxOC_9Ozpoqu4YtTAzYox8.crl
rsync://rpki.ripe.net/repository/DEFAULT/5a/df5670-96ab-4eee-b0d2-85d332604aaf/1/uUiJEgxOC_9Ozpoqu4YtTAzYox8.mft
rsync://rpki.ripe.net/repository/DEFAULT/uUiJEgxOC_9Ozpoqu4YtTAzYox8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 12 May 2025 20:00:44 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:c0:ef:85:dd:2b:5c:a6:31:0c:c9:44:5a:d2:36:d9:2b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b94889120c4e0bff4ece9a2abb862d4c0cd8a31f
Validity
Not Before: May 11 20:00:44 2025 GMT
Not After : May 12 20:00:44 2025 GMT
Subject: CN=ce76870d2ca5a531be045495d769ebae011c9d40
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:18:54:0b:6f:b0:44:8c:c9:b5:7b:b9:17:f7:
5e:22:33:c4:ae:66:16:1f:ce:85:f9:14:eb:82:95:
53:8c:22:a1:c5:b3:c3:d5:54:fa:76:77:c6:d9:a9:
8e:29:56:66:59:ee:90:d8:9c:f4:8c:79:b0:fa:dc:
b0:41:06:2c:36:f7:dd:4d:fa:2a:d1:0c:69:75:e0:
88:7f:fa:24:0b:39:80:eb:95:29:3a:42:d1:ea:c4:
9c:9d:fa:6a:9e:74:84:56:02:38:c2:55:b1:98:75:
33:6c:b1:c0:39:cb:eb:72:7d:34:a0:ea:10:09:a4:
82:63:37:cd:05:23:46:b0:d5:8b:f5:fe:e2:bd:ed:
5f:87:95:69:6e:06:9a:0f:04:79:93:f4:42:5d:13:
4d:35:72:f2:08:76:2f:f0:f9:68:0b:1b:3b:02:e9:
38:be:da:8c:e8:6c:83:23:0a:a8:63:98:31:61:b7:
e2:eb:85:52:46:81:c9:4c:44:73:47:56:e2:8f:8e:
c6:fe:8d:35:23:c5:7b:74:22:95:5a:84:18:e5:ec:
3b:61:7f:40:3c:d1:73:0d:6e:a0:42:75:f2:18:66:
c0:35:b6:ea:04:c5:36:90:cc:19:a5:47:02:b1:8b:
11:82:98:b0:fc:36:74:ca:7d:c1:b3:54:80:52:13:
23:47
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CE:76:87:0D:2C:A5:A5:31:BE:04:54:95:D7:69:EB:AE:01:1C:9D:40
X509v3 Authority Key Identifier:
keyid:B9:48:89:12:0C:4E:0B:FF:4E:CE:9A:2A:BB:86:2D:4C:0C:D8:A3:1F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/uUiJEgxOC_9Ozpoqu4YtTAzYox8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/df5670-96ab-4eee-b0d2-85d332604aaf/1/uUiJEgxOC_9Ozpoqu4YtTAzYox8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/df5670-96ab-4eee-b0d2-85d332604aaf/1/uUiJEgxOC_9Ozpoqu4YtTAzYox8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
ec:3c:22:df:e9:1b:f6:7e:2a:5f:98:bb:f8:ca:fb:f4:50:a6:
a2:12:d4:36:fc:cb:4e:58:bb:05:e1:80:fe:d2:b4:aa:09:20:
fa:61:67:5e:12:8d:f4:1a:ed:05:14:b6:12:ea:2e:3d:06:7d:
94:33:81:3d:94:54:f7:8d:c4:ea:5d:d0:11:0c:f1:06:d5:94:
c2:4c:92:95:c9:62:bb:08:2b:18:61:b1:5f:ca:68:86:7c:b6:
df:01:a4:02:ee:bc:70:6b:6f:7f:16:d1:0f:51:8e:d3:b1:eb:
05:21:88:80:e5:ca:31:bc:3d:24:10:d2:e3:14:ca:59:fa:bc:
55:e4:d9:16:a7:3a:69:f0:d4:f5:4d:2e:23:45:56:ab:0c:0f:
07:61:e4:4d:14:cf:62:bd:c8:61:41:48:7f:f8:20:d8:dc:ba:
a2:87:ab:32:10:97:c1:26:cf:42:eb:f7:fe:25:49:32:c0:7b:
d3:f9:ac:9a:bf:da:c3:3c:d1:6f:f4:d6:d1:e0:99:5c:9c:60:
46:c7:da:56:b9:60:58:54:bc:4b:be:91:a6:a7:81:d6:a7:fb:
79:48:8a:7d:cb:c8:18:00:48:09:92:d2:6e:13:61:4e:d0:e7:
9c:c9:4f:d6:e7:33:20:ca:ef:3f:6c:cd:bc:d2:49:60:f7:20:
f4:c5:f8:d1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon May 12 06:41:10 2025 by rpki-client