Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/64/af72e8-f0d2-4d66-b520-3aba595b58a8/1/upcN4SazoLVI2tdvXvqIhVxvH_I.mft
File: upcN4SazoLVI2tdvXvqIhVxvH_I.mft (raw, json)
Hash identifier: DGOdSHl5OAmYSxsqCfdX5dn+T4J2fMWTfP1tPMYBIUc=
Subject key identifier: 35:98:BF:BA:37:A3:14:C4:FB:41:B9:14:AB:A6:07:40:34:25:3A:5F
Authority key identifier: BA:97:0D:E1:26:B3:A0:B5:48:DA:D7:6F:5E:FA:88:85:5C:6F:1F:F2
Certificate issuer: /CN=ba970de126b3a0b548dad76f5efa88855c6f1ff2
Certificate serial: 0196B77E912CE0F1CF0AC518EB0C97DE6129
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/upcN4SazoLVI2tdvXvqIhVxvH_I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/64/af72e8-f0d2-4d66-b520-3aba595b58a8/1/upcN4SazoLVI2tdvXvqIhVxvH_I.mft
Manifest number: 08B7
Signing time: Sat 10 May 2025 00:00:47 +0000
Manifest this update: Sat 10 May 2025 00:00:47 +0000
Manifest next update: Sun 11 May 2025 00:00:47 +0000
Files and hashes: 1: iB0nh2pqz5-ySXR-fF2YCAS68X8.roa (hash: Y94jSzgT6noKQkiYTVT17vXi3fN7I6D0Bkm1xKFYYKk=)
2: upcN4SazoLVI2tdvXvqIhVxvH_I.crl (hash: ksuIGFhBN590qqGez8pl6UKfdzvoerqmJ0fu1cVG874=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/64/af72e8-f0d2-4d66-b520-3aba595b58a8/1/upcN4SazoLVI2tdvXvqIhVxvH_I.crl
rsync://rpki.ripe.net/repository/DEFAULT/64/af72e8-f0d2-4d66-b520-3aba595b58a8/1/upcN4SazoLVI2tdvXvqIhVxvH_I.mft
rsync://rpki.ripe.net/repository/DEFAULT/upcN4SazoLVI2tdvXvqIhVxvH_I.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 11 May 2025 00:00:47 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:b7:7e:91:2c:e0:f1:cf:0a:c5:18:eb:0c:97:de:61:29
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ba970de126b3a0b548dad76f5efa88855c6f1ff2
Validity
Not Before: May 10 00:00:47 2025 GMT
Not After : May 11 00:00:47 2025 GMT
Subject: CN=3598bfba37a314c4fb41b914aba6074034253a5f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:39:26:51:9b:53:bc:51:8d:49:8c:b6:1d:5b:
04:33:f9:22:9e:a6:39:45:36:c9:0d:f3:d2:19:ba:
eb:3d:87:1c:ac:1b:2f:2e:fd:fe:fa:5c:73:2e:1d:
3b:bf:80:8f:e6:42:71:14:42:5f:ae:d5:ff:73:e7:
65:2a:f3:1a:cc:01:c0:b3:bf:67:81:9d:6d:5a:09:
3c:ff:24:4b:0a:ed:67:52:9a:0b:06:2c:59:df:c1:
71:bd:05:ea:4c:bc:f4:b1:83:90:7e:11:e4:6c:16:
1f:cf:17:c7:30:37:1c:00:11:1a:f9:85:3f:4b:89:
98:9c:ae:39:bd:cc:1d:79:f1:90:85:cc:18:b6:af:
5c:8f:47:25:2c:5e:11:46:a3:34:33:29:74:0e:00:
ba:62:4c:92:2b:8b:f6:21:0e:77:c8:ab:46:06:4d:
9f:a2:41:b9:b7:c8:2e:2c:11:c6:dd:4c:ce:16:98:
0b:50:e5:84:64:4d:92:68:ca:45:b6:4f:c5:66:ec:
f5:62:d0:af:d2:32:23:70:c0:3b:91:49:83:1a:82:
88:6c:f3:4f:2c:25:07:9d:f7:a0:a1:60:5c:aa:8f:
7a:8b:91:f8:63:9c:57:e4:ce:b1:e2:4d:0e:70:a8:
48:e8:44:3a:81:56:c0:de:1e:6e:9c:f8:b3:d0:56:
75:25
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
35:98:BF:BA:37:A3:14:C4:FB:41:B9:14:AB:A6:07:40:34:25:3A:5F
X509v3 Authority Key Identifier:
keyid:BA:97:0D:E1:26:B3:A0:B5:48:DA:D7:6F:5E:FA:88:85:5C:6F:1F:F2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/upcN4SazoLVI2tdvXvqIhVxvH_I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/64/af72e8-f0d2-4d66-b520-3aba595b58a8/1/upcN4SazoLVI2tdvXvqIhVxvH_I.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/64/af72e8-f0d2-4d66-b520-3aba595b58a8/1/upcN4SazoLVI2tdvXvqIhVxvH_I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
68:71:a4:04:3e:59:bd:07:ac:72:4a:7f:ab:2d:d3:c2:23:3d:
0c:66:c9:75:7a:19:bd:43:46:3c:e1:3c:70:d1:97:a8:ec:27:
d8:ff:7b:6e:67:13:d5:a9:88:38:66:aa:3e:71:71:79:b4:32:
ed:36:36:02:0d:2d:2c:ef:9b:a1:58:1c:7c:13:e4:ff:4f:7c:
17:f1:0a:22:8b:ce:f2:c0:d3:6d:11:31:fe:a4:50:2b:6c:f5:
4c:c2:e2:ed:ae:1c:4f:4b:f4:4f:0b:2d:33:06:f2:5d:e0:0b:
74:3f:e0:a3:ca:b5:c0:bc:ec:ec:45:0b:db:4c:80:91:10:24:
bb:2b:8e:b1:55:55:71:2f:5d:18:a7:32:ac:f4:db:a2:8b:13:
5e:55:8d:0d:78:50:19:49:91:80:25:45:e9:68:52:3e:14:21:
f1:8b:90:30:71:32:b9:b0:55:e3:f1:98:3c:06:26:82:0c:ae:
19:13:c9:0a:14:45:ac:ae:d3:f6:d5:4d:05:0a:b6:44:54:52:
bb:ff:9e:b8:3c:99:6c:b4:d1:59:68:10:45:4a:ff:64:80:32:
e5:2f:ac:e3:95:61:bf:35:f3:58:89:d0:12:c1:bc:3b:2e:f2:
40:bf:29:6d:0a:8a:95:99:f0:65:b1:54:e0:fd:3e:1d:f0:da:
0a:08:68:53
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat May 10 08:32:35 2025 by rpki-client