Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7c/d8771a-e753-406c-a1d8-39ab77b833ea/1/U3mVYEU9z0rzH5sqQM0ji4RXxd4.mft
File: U3mVYEU9z0rzH5sqQM0ji4RXxd4.mft (raw, json)
Hash identifier: HstAyOJ+1X2iHnuZFk56oDnXb0yRkxdbKxOU5MOjJRQ=
Subject key identifier: 6E:7E:A1:D3:FD:B0:61:89:9D:2F:59:49:C5:FA:5B:C1:EE:BE:2B:A1
Authority key identifier: 53:79:95:60:45:3D:CF:4A:F3:1F:9B:2A:40:CD:23:8B:84:57:C5:DE
Certificate issuer: /CN=53799560453dcf4af31f9b2a40cd238b8457c5de
Certificate serial: 0196C12623FFFF09C0B455F2C8955086D87A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/U3mVYEU9z0rzH5sqQM0ji4RXxd4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7c/d8771a-e753-406c-a1d8-39ab77b833ea/1/U3mVYEU9z0rzH5sqQM0ji4RXxd4.mft
Manifest number: 096A
Signing time: Sun 11 May 2025 21:00:24 +0000
Manifest this update: Sun 11 May 2025 21:00:24 +0000
Manifest next update: Mon 12 May 2025 21:00:24 +0000
Files and hashes: 1: GPBna_IoKKdQyaNksGJT2yWTCj4.roa (hash: TAihNlvs0SdUgl2vxovWMBnyUqa0RWqHLKo09+4ZR88=)
2: U3mVYEU9z0rzH5sqQM0ji4RXxd4.crl (hash: uHWEb2NWZm0pkkh9zKOy9I0GqGjVGuFPmqxlbom/zDo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/7c/d8771a-e753-406c-a1d8-39ab77b833ea/1/U3mVYEU9z0rzH5sqQM0ji4RXxd4.crl
rsync://rpki.ripe.net/repository/DEFAULT/7c/d8771a-e753-406c-a1d8-39ab77b833ea/1/U3mVYEU9z0rzH5sqQM0ji4RXxd4.mft
rsync://rpki.ripe.net/repository/DEFAULT/U3mVYEU9z0rzH5sqQM0ji4RXxd4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 12 May 2025 16:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:c1:26:23:ff:ff:09:c0:b4:55:f2:c8:95:50:86:d8:7a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=53799560453dcf4af31f9b2a40cd238b8457c5de
Validity
Not Before: May 11 21:00:24 2025 GMT
Not After : May 12 21:00:24 2025 GMT
Subject: CN=6e7ea1d3fdb061899d2f5949c5fa5bc1eebe2ba1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:99:56:59:0b:ab:e8:41:54:b5:65:8b:30:c6:a6:
a9:38:5d:28:9f:71:a0:9a:b8:86:9a:fc:e9:b6:bd:
31:30:d4:51:0f:84:00:6a:a5:13:66:a0:73:8b:81:
69:80:f0:a6:96:bf:47:39:f4:1b:ba:e1:60:52:6b:
2c:6c:50:0a:ed:a4:34:15:93:1f:7b:1e:d7:d7:8c:
73:05:77:e2:97:f3:a9:dc:50:8c:41:4d:73:be:f3:
b1:26:2f:06:44:a8:78:02:04:20:16:0f:a2:21:2a:
50:c4:d0:60:be:1c:d7:1c:a6:bc:28:fd:2c:19:88:
77:e7:d2:e1:91:84:54:62:5d:7a:ab:7c:da:66:c1:
11:46:f3:06:44:6c:4d:82:6d:d1:ee:9f:6a:76:47:
90:09:7b:bc:0f:06:0b:6c:ee:b0:29:16:d8:c1:23:
6a:c7:4d:46:26:53:36:3f:3d:bc:ab:c7:ab:ac:ab:
a3:11:76:00:d1:25:6b:ce:fc:08:a1:c7:3b:87:ad:
87:1e:7f:81:e4:83:5a:83:5d:b1:6c:21:75:43:f1:
94:d5:35:e7:3b:8a:b2:6d:f2:fc:b4:8c:3c:75:5a:
7b:36:93:01:73:21:f0:59:06:0c:d6:b9:ec:74:bb:
05:cd:01:80:f3:b5:48:ac:13:ff:72:60:cc:42:d5:
04:5d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6E:7E:A1:D3:FD:B0:61:89:9D:2F:59:49:C5:FA:5B:C1:EE:BE:2B:A1
X509v3 Authority Key Identifier:
keyid:53:79:95:60:45:3D:CF:4A:F3:1F:9B:2A:40:CD:23:8B:84:57:C5:DE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/U3mVYEU9z0rzH5sqQM0ji4RXxd4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7c/d8771a-e753-406c-a1d8-39ab77b833ea/1/U3mVYEU9z0rzH5sqQM0ji4RXxd4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7c/d8771a-e753-406c-a1d8-39ab77b833ea/1/U3mVYEU9z0rzH5sqQM0ji4RXxd4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
67:d2:af:0e:a1:cc:c2:32:c5:89:d7:b0:b5:0c:35:36:ed:a6:
a6:01:98:2c:ed:d7:f3:68:8c:5c:a9:bc:65:0e:56:3d:75:48:
ac:81:c8:29:94:b7:7a:1d:a8:c8:af:fb:e6:50:4a:d1:bc:12:
cc:37:80:ba:33:12:23:98:e0:23:62:6b:f0:70:0e:99:8e:c0:
22:b7:1a:88:bf:fa:2c:e7:e5:c5:9d:83:06:9a:5a:30:35:43:
3a:79:36:fe:92:26:29:61:4e:38:24:b1:38:d6:ce:19:92:28:
19:42:0c:00:63:21:cc:bb:03:3f:be:d3:b8:3e:96:9b:90:a1:
f4:a9:b5:8c:6a:ee:3d:19:1f:ff:25:24:92:ea:8f:66:2c:22:
17:84:03:c7:8a:e8:9e:17:80:da:cb:57:17:af:bb:86:2b:cd:
7c:f5:34:4c:4d:b3:ed:ec:8e:af:91:f8:c0:ad:cd:76:c9:b2:
14:5d:52:72:28:80:78:df:d7:60:94:47:75:3e:86:04:79:a4:
e3:1e:59:5c:e8:8b:f9:93:7f:ff:21:bd:48:00:1b:50:c5:f2:
fa:9b:b2:3f:8d:24:f9:55:18:30:2c:5a:72:ff:6c:50:f1:07:
35:c4:69:85:5e:d4:5f:0a:f1:90:9b:54:91:d6:2f:cd:d4:16:
52:41:2d:18
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon May 12 00:06:02 2025 by rpki-client