Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6d/303a43-a185-4973-86ab-7a3720d3cffc/1/Uo017K6KUozuxk3jvWO3P6QtX0o.mft
File: Uo017K6KUozuxk3jvWO3P6QtX0o.mft (raw, json)
Hash identifier: mfCufU2DDpN2vtnC9aCu68e7XVrB/K65qezLANgJnVM=
Subject key identifier: ED:3D:A8:21:0B:33:1F:E0:73:E0:CE:76:02:92:E8:31:E8:11:55:BE
Authority key identifier: 52:8D:35:EC:AE:8A:52:8C:EE:C6:4D:E3:BD:63:B7:3F:A4:2D:5F:4A
Certificate issuer: /CN=528d35ecae8a528ceec64de3bd63b73fa42d5f4a
Certificate serial: 0196BA117FE230C868132F53C27F66B53B5A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Uo017K6KUozuxk3jvWO3P6QtX0o.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6d/303a43-a185-4973-86ab-7a3720d3cffc/1/Uo017K6KUozuxk3jvWO3P6QtX0o.mft
Manifest number: 095E
Signing time: Sat 10 May 2025 12:00:31 +0000
Manifest this update: Sat 10 May 2025 12:00:31 +0000
Manifest next update: Sun 11 May 2025 12:00:31 +0000
Files and hashes: 1: R2wMoqdkLDHB1BCsXc7koujD71w.roa (hash: FmALC+nsf+pUttlOP2g4qVc5yZKYgI7dAbntzXZ0Nqk=)
2: Uo017K6KUozuxk3jvWO3P6QtX0o.crl (hash: bcAemNiB3Nii8GWcWsZMQGpw7ipkbNqfjTkcpMfctI4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/6d/303a43-a185-4973-86ab-7a3720d3cffc/1/Uo017K6KUozuxk3jvWO3P6QtX0o.crl
rsync://rpki.ripe.net/repository/DEFAULT/6d/303a43-a185-4973-86ab-7a3720d3cffc/1/Uo017K6KUozuxk3jvWO3P6QtX0o.mft
rsync://rpki.ripe.net/repository/DEFAULT/Uo017K6KUozuxk3jvWO3P6QtX0o.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 11 May 2025 12:00:31 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:ba:11:7f:e2:30:c8:68:13:2f:53:c2:7f:66:b5:3b:5a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=528d35ecae8a528ceec64de3bd63b73fa42d5f4a
Validity
Not Before: May 10 12:00:31 2025 GMT
Not After : May 11 12:00:31 2025 GMT
Subject: CN=ed3da8210b331fe073e0ce760292e831e81155be
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:48:0f:f6:e0:e4:29:c0:51:76:9b:6a:6c:3d:
07:20:3b:97:8e:85:f5:38:91:dd:25:bd:68:c5:1d:
79:53:3d:85:09:45:aa:c1:3d:45:90:6b:ab:95:ef:
8d:a2:88:53:25:d8:cf:d1:79:00:bd:35:ac:82:5f:
4c:1a:f4:65:7b:cc:fd:f6:b2:41:36:4e:36:1f:39:
d6:d9:1f:11:85:df:64:01:13:6d:45:f5:67:1b:cd:
6c:47:52:a7:84:ca:68:c8:bc:27:80:cd:b9:14:35:
b1:12:d6:7f:65:cb:7f:7f:2b:85:2c:0c:46:2d:75:
18:05:20:82:76:f9:30:87:44:ee:0b:f5:c0:dc:95:
0d:e2:fd:55:f5:87:ea:80:20:cd:7d:67:1e:c7:d7:
77:11:f2:8d:30:ac:74:e9:c6:b9:0c:73:f0:fd:c0:
1d:b9:a6:1c:66:27:85:68:11:60:9f:3b:a1:9c:af:
c8:61:f8:53:5d:7a:6c:e0:0f:ab:a3:f2:9b:cd:f0:
f1:ff:5f:70:be:a3:58:72:8f:f1:43:83:f1:66:d0:
16:c9:98:89:12:51:a2:90:31:7f:fe:88:58:71:96:
ad:6a:86:17:8f:04:41:1d:34:91:ee:f4:e8:c9:49:
0c:8f:b5:6e:91:b3:a8:13:f0:14:bf:24:70:02:24:
10:35
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
ED:3D:A8:21:0B:33:1F:E0:73:E0:CE:76:02:92:E8:31:E8:11:55:BE
X509v3 Authority Key Identifier:
keyid:52:8D:35:EC:AE:8A:52:8C:EE:C6:4D:E3:BD:63:B7:3F:A4:2D:5F:4A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Uo017K6KUozuxk3jvWO3P6QtX0o.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6d/303a43-a185-4973-86ab-7a3720d3cffc/1/Uo017K6KUozuxk3jvWO3P6QtX0o.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6d/303a43-a185-4973-86ab-7a3720d3cffc/1/Uo017K6KUozuxk3jvWO3P6QtX0o.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
32:94:75:2c:ae:1b:59:9c:a9:2b:e4:36:25:47:39:ef:7c:6c:
43:fd:46:50:2f:ec:b8:90:97:45:4f:37:96:c1:93:0e:3a:60:
78:ac:b5:3d:49:0a:7a:e3:22:22:3f:05:be:79:f3:10:04:8d:
34:7f:0e:73:4a:bf:d7:fb:ed:20:9d:9d:26:cb:f2:30:53:97:
e2:55:99:9c:f2:81:0f:66:71:51:cc:76:61:e9:a0:01:c0:16:
d5:37:8e:de:70:34:53:69:74:2e:48:20:23:7e:3b:b4:ba:1a:
26:ba:bd:a2:0e:b9:7a:97:f8:aa:eb:bd:f8:d1:40:a5:df:3f:
a3:13:77:d5:de:da:7f:a9:92:97:69:60:44:20:eb:0f:2b:40:
49:7e:3b:10:14:01:f4:ab:dc:be:79:70:38:e9:84:38:3f:b1:
ac:eb:42:45:a7:f3:ed:ec:52:18:fe:30:a1:7a:10:ce:41:95:
fd:1e:50:ec:b0:d1:2e:26:3b:74:a2:e2:a5:f0:1c:f9:5a:fb:
25:f8:04:ba:0e:a4:da:84:0a:a1:ad:8f:6e:06:63:51:ec:33:
85:74:42:1f:c7:30:da:be:9a:26:bb:ce:77:87:5d:2b:4e:49:
6a:cf:a7:2f:43:04:7f:4a:23:20:68:9d:03:b6:0f:9a:53:90:
79:1c:43:0e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat May 10 19:47:45 2025 by rpki-client