Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/69/ab3219-c64b-470e-8341-3a12027400e6/1/ukQzhlmFp7teJpw3lK5vFkz8Lds.mft
File: ukQzhlmFp7teJpw3lK5vFkz8Lds.mft (raw, json)
Hash identifier: Yg0En1cn28Uw0YHYLmr91BEBHBJIQbhHf5AHgL7RK1Y=
Subject key identifier: F1:C9:AD:AF:03:6C:4F:3A:DD:37:C9:0F:BF:AE:A1:02:CA:F7:0F:A3
Authority key identifier: BA:44:33:86:59:85:A7:BB:5E:26:9C:37:94:AE:6F:16:4C:FC:2D:DB
Certificate issuer: /CN=ba4433865985a7bb5e269c3794ae6f164cfc2ddb
Certificate serial: 0196BAB601894F8E0FDE14BA310478D7FEAD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ukQzhlmFp7teJpw3lK5vFkz8Lds.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/69/ab3219-c64b-470e-8341-3a12027400e6/1/ukQzhlmFp7teJpw3lK5vFkz8Lds.mft
Manifest number: 0512
Signing time: Sat 10 May 2025 15:00:12 +0000
Manifest this update: Sat 10 May 2025 15:00:12 +0000
Manifest next update: Sun 11 May 2025 15:00:12 +0000
Files and hashes: 1: AlkZJ5y5SgK5NicIMpQu5G4y-kk.roa (hash: 6pDsa6TgLwnLkjOOWWhXhHFWrv8bvlopmayBUNqycZY=)
2: ukQzhlmFp7teJpw3lK5vFkz8Lds.crl (hash: MsvzEVXYZj0dy4t560/D7FbgcIW16yCvwaaGgA9HTYw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/69/ab3219-c64b-470e-8341-3a12027400e6/1/ukQzhlmFp7teJpw3lK5vFkz8Lds.crl
rsync://rpki.ripe.net/repository/DEFAULT/69/ab3219-c64b-470e-8341-3a12027400e6/1/ukQzhlmFp7teJpw3lK5vFkz8Lds.mft
rsync://rpki.ripe.net/repository/DEFAULT/ukQzhlmFp7teJpw3lK5vFkz8Lds.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 11 May 2025 15:00:12 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:ba:b6:01:89:4f:8e:0f:de:14:ba:31:04:78:d7:fe:ad
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ba4433865985a7bb5e269c3794ae6f164cfc2ddb
Validity
Not Before: May 10 15:00:12 2025 GMT
Not After : May 11 15:00:12 2025 GMT
Subject: CN=f1c9adaf036c4f3add37c90fbfaea102caf70fa3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d3:f5:2f:42:95:30:44:92:36:9a:59:11:1c:f3:
05:40:e0:58:8c:d8:13:45:01:58:9b:6b:9a:e5:29:
7d:82:cc:98:09:4a:a0:3c:f4:ea:9f:d2:a5:11:aa:
b4:71:41:28:f9:2a:6f:f5:dd:15:4a:82:4d:2e:a4:
75:26:20:87:5c:e7:f1:c4:03:ae:90:38:0e:3e:06:
c1:43:5c:34:ac:c3:84:64:0d:46:1a:8e:fa:78:0e:
d9:f1:a7:68:91:e9:70:77:6b:47:d0:67:f0:52:ad:
a1:d7:51:d5:cb:81:45:1c:8a:59:1e:92:bb:fb:f5:
0f:4a:8a:dc:21:fd:b4:ce:ec:c4:57:09:12:1c:9a:
c0:07:da:a5:24:8c:d0:9a:95:16:47:21:c4:37:ff:
e8:55:ad:39:52:32:6d:44:ea:76:fd:b5:fd:02:2b:
bc:b1:69:c3:65:0f:aa:d4:46:d5:ba:bf:79:8f:2c:
0a:5a:ff:74:dd:f0:af:43:5b:94:5d:fa:f5:20:35:
54:9b:41:4a:71:93:1d:88:d3:b7:2f:bd:73:95:ea:
82:62:88:ab:9a:2d:e5:17:ed:3a:0d:36:e3:32:4d:
a3:18:f4:6f:d2:e2:d4:70:c2:2c:8b:6f:61:47:16:
9e:db:c6:01:26:68:e9:a9:fa:95:3d:58:7b:b0:98:
e7:17
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F1:C9:AD:AF:03:6C:4F:3A:DD:37:C9:0F:BF:AE:A1:02:CA:F7:0F:A3
X509v3 Authority Key Identifier:
keyid:BA:44:33:86:59:85:A7:BB:5E:26:9C:37:94:AE:6F:16:4C:FC:2D:DB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ukQzhlmFp7teJpw3lK5vFkz8Lds.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/69/ab3219-c64b-470e-8341-3a12027400e6/1/ukQzhlmFp7teJpw3lK5vFkz8Lds.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/69/ab3219-c64b-470e-8341-3a12027400e6/1/ukQzhlmFp7teJpw3lK5vFkz8Lds.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
60:08:6f:6b:e3:94:26:7a:cc:94:d8:7a:15:8a:9f:27:92:5a:
9b:29:89:5b:3b:fc:0c:7e:db:35:fc:b2:03:b0:83:f0:44:02:
46:ba:65:99:8d:00:51:61:38:fa:5d:44:74:ed:fe:d3:6c:6d:
5f:91:49:69:fa:c5:2c:a4:f1:45:02:ae:04:76:ec:9f:c9:cc:
99:9f:ba:f7:85:27:15:cc:8b:fa:70:d1:bd:93:86:ca:e9:77:
6c:50:7b:52:ee:00:4c:5f:7c:18:fc:45:93:d9:3a:ca:05:e2:
5f:cb:0e:1d:fe:68:d7:1b:62:39:f7:b6:51:5a:10:53:48:23:
a6:48:f7:32:ce:17:30:9d:f3:ac:b6:5c:12:58:fa:10:41:5e:
06:1a:53:bf:b7:24:0c:7b:d9:1b:7c:0e:d5:09:a4:a1:e2:30:
a3:55:16:c5:81:e8:b6:e1:7c:72:bb:5a:ee:1e:bf:c2:b3:0a:
9b:51:41:e7:e6:ec:c2:0d:cb:75:5d:12:fb:4a:bd:54:67:c8:
4f:4d:41:b0:dd:06:ce:9f:fc:4a:40:f7:d5:92:1c:9f:6e:99:
1a:5f:dd:66:c2:ae:f0:4b:64:88:a4:47:93:60:b9:d6:72:df:
6f:07:25:62:31:8e:f6:9f:6a:fd:bd:da:e6:9a:d3:15:f4:14:
97:f7:30:fd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun May 11 01:00:56 2025 by rpki-client