Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5b/27c6a1-1c94-4a49-8e3d-9fd503970ff0/1/rUZjafOSfaDIn7X0s-qeMk-SioQ.mft
File: rUZjafOSfaDIn7X0s-qeMk-SioQ.mft (raw, json)
Hash identifier: pEYrGaWr0GWtd4LRPVhLcuk6PdtwYcfCHiAX2E6wfJc=
Subject key identifier: FD:1C:25:9B:5A:71:EC:05:3A:7E:B3:EE:0D:2E:74:19:19:DA:0B:8C
Authority key identifier: AD:46:63:69:F3:92:7D:A0:C8:9F:B5:F4:B3:EA:9E:32:4F:92:8A:84
Certificate issuer: /CN=ad466369f3927da0c89fb5f4b3ea9e324f928a84
Certificate serial: 01969E2C4E63CE2B59FF7C0869E96F42837A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/rUZjafOSfaDIn7X0s-qeMk-SioQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5b/27c6a1-1c94-4a49-8e3d-9fd503970ff0/1/rUZjafOSfaDIn7X0s-qeMk-SioQ.mft
Manifest number: 053A
Signing time: Mon 05 May 2025 02:00:25 +0000
Manifest this update: Mon 05 May 2025 02:00:25 +0000
Manifest next update: Tue 06 May 2025 02:00:25 +0000
Files and hashes: 1: e2krXZzkR-AkHScvd476IUHzrz0.roa (hash: KJC7yZeLdAZIJXLO5En/1DBnqhI+LO45sglWIneobpg=)
2: rUZjafOSfaDIn7X0s-qeMk-SioQ.crl (hash: iBJdOK4lmM8TmWSpwNK5/9iUlJxrNzGv0l5ZXYfa7Lw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5b/27c6a1-1c94-4a49-8e3d-9fd503970ff0/1/rUZjafOSfaDIn7X0s-qeMk-SioQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/5b/27c6a1-1c94-4a49-8e3d-9fd503970ff0/1/rUZjafOSfaDIn7X0s-qeMk-SioQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/rUZjafOSfaDIn7X0s-qeMk-SioQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 06 May 2025 01:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:9e:2c:4e:63:ce:2b:59:ff:7c:08:69:e9:6f:42:83:7a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ad466369f3927da0c89fb5f4b3ea9e324f928a84
Validity
Not Before: May 5 02:00:25 2025 GMT
Not After : May 6 02:00:25 2025 GMT
Subject: CN=fd1c259b5a71ec053a7eb3ee0d2e741919da0b8c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:88:08:00:92:2c:eb:ea:0f:35:23:f4:e4:69:66:
9f:d0:51:be:ae:88:b5:da:ac:f5:cc:a8:3f:b2:68:
78:9f:59:f2:d9:4f:5c:e9:d1:4d:c3:b1:a4:da:e6:
97:8c:9f:cc:3b:f6:ca:17:a9:65:e8:f5:8b:d4:99:
60:84:cd:f4:44:64:fb:bb:b4:94:cf:29:18:1b:f0:
4b:62:4d:54:0f:c6:33:f4:fa:1e:00:c0:a4:0f:8a:
1d:94:4e:9d:15:83:31:ca:21:0e:ce:9e:6b:46:47:
54:a4:76:c5:89:a4:01:f5:af:19:ee:1e:9c:cf:e1:
46:82:86:60:fd:80:09:00:1e:fb:16:ef:e9:6d:b8:
b6:e0:8e:88:01:5a:dc:79:fc:a3:84:4d:e5:a6:43:
a5:b3:0b:45:82:3c:83:83:f8:93:15:93:e6:5d:1f:
b4:80:b7:94:12:ac:a1:ee:e5:56:4a:5c:f9:ec:bc:
d4:c3:d4:f6:e6:ea:f9:5f:cb:62:e1:28:d9:d4:59:
d8:8d:db:6b:d4:c7:6b:b2:4a:ba:60:0d:a5:67:b1:
f5:d9:27:19:5e:1e:41:4b:b4:df:38:3a:cb:19:bd:
64:ce:ff:c4:23:ef:97:dc:06:28:20:f7:fb:32:54:
c8:cc:49:74:bd:af:23:a7:d8:af:77:92:fa:f6:e3:
f9:6b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FD:1C:25:9B:5A:71:EC:05:3A:7E:B3:EE:0D:2E:74:19:19:DA:0B:8C
X509v3 Authority Key Identifier:
keyid:AD:46:63:69:F3:92:7D:A0:C8:9F:B5:F4:B3:EA:9E:32:4F:92:8A:84
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rUZjafOSfaDIn7X0s-qeMk-SioQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5b/27c6a1-1c94-4a49-8e3d-9fd503970ff0/1/rUZjafOSfaDIn7X0s-qeMk-SioQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5b/27c6a1-1c94-4a49-8e3d-9fd503970ff0/1/rUZjafOSfaDIn7X0s-qeMk-SioQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
a5:8c:e0:f5:d5:cb:c2:07:d9:92:52:58:44:91:f2:47:00:b0:
bb:74:73:be:65:5d:79:99:2e:63:19:e1:91:76:33:60:37:a2:
e6:ab:ea:81:ee:77:a3:0f:96:dd:fc:91:5e:f6:d6:a5:12:66:
8b:82:38:81:fb:f7:1c:37:be:3d:91:e4:d8:f0:b8:8f:0a:85:
f8:f0:36:9d:b6:97:4a:11:f4:95:74:23:a1:6e:7e:96:24:c0:
46:87:39:98:fd:c8:66:f9:30:71:8b:fa:83:c9:d2:4b:6b:9b:
6d:d0:c8:73:b3:da:05:4c:8f:54:21:f8:56:13:d5:87:dc:c1:
d4:b2:c8:61:6f:80:27:a6:06:3b:b9:2a:39:fb:26:09:9c:3e:
34:56:b8:d2:0b:80:5b:de:e0:14:4f:fc:8b:92:20:18:4d:5d:
f8:6b:81:a6:c9:a5:26:92:26:59:59:65:38:0c:df:9c:32:c7:
27:2c:7b:40:e2:92:c3:83:87:51:a3:53:8f:b1:41:5b:bd:c2:
90:14:81:7d:aa:52:05:4c:0d:6c:07:34:03:74:1d:2b:8b:b5:
49:57:cd:e5:b0:15:39:d3:b7:b3:6b:bf:72:59:7e:50:23:1a:
47:e7:d6:8d:60:cb:98:ba:92:c9:2f:88:7c:a6:07:e8:20:47:
21:f4:e7:4b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon May 5 09:31:23 2025 by rpki-client