Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/97/03f9ee-53e3-4f69-b8b0-c138e5c27c2b/1/UhqgJHWNjRBOEXnFUDmBZjav4pg.mft
File: UhqgJHWNjRBOEXnFUDmBZjav4pg.mft (raw, json)
Hash identifier: bsoriKVi0dCKr+ak6Trj0ZihEYWB0DF6Br3leUJU1M4=
Subject key identifier: D9:5A:5F:E7:28:82:74:A9:F1:FB:7F:2F:42:31:87:7C:A9:28:E3:E5
Authority key identifier: 52:1A:A0:24:75:8D:8D:10:4E:11:79:C5:50:39:81:66:36:AF:E2:98
Certificate issuer: /CN=521aa024758d8d104e1179c55039816636afe298
Certificate serial: 0196C314843F0DDD737702D2435945633866
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UhqgJHWNjRBOEXnFUDmBZjav4pg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/97/03f9ee-53e3-4f69-b8b0-c138e5c27c2b/1/UhqgJHWNjRBOEXnFUDmBZjav4pg.mft
Manifest number: 1535
Signing time: Mon 12 May 2025 06:00:23 +0000
Manifest this update: Mon 12 May 2025 06:00:23 +0000
Manifest next update: Tue 13 May 2025 06:00:23 +0000
Files and hashes: 1: UhqgJHWNjRBOEXnFUDmBZjav4pg.crl (hash: tXHN4oom6++S5mrX7Nf1qs440bgdtNDJiZvSUWMHOFY=)
2: wzHTUEDPSJ9fu6Go3MzUkAR9gVE.roa (hash: HH9rFvWwfqcHjpbJnsKsdwBfEEqoBLNu0bOt5Pi9+gU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/97/03f9ee-53e3-4f69-b8b0-c138e5c27c2b/1/UhqgJHWNjRBOEXnFUDmBZjav4pg.crl
rsync://rpki.ripe.net/repository/DEFAULT/97/03f9ee-53e3-4f69-b8b0-c138e5c27c2b/1/UhqgJHWNjRBOEXnFUDmBZjav4pg.mft
rsync://rpki.ripe.net/repository/DEFAULT/UhqgJHWNjRBOEXnFUDmBZjav4pg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 13 May 2025 01:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:c3:14:84:3f:0d:dd:73:77:02:d2:43:59:45:63:38:66
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=521aa024758d8d104e1179c55039816636afe298
Validity
Not Before: May 12 06:00:23 2025 GMT
Not After : May 13 06:00:23 2025 GMT
Subject: CN=d95a5fe7288274a9f1fb7f2f4231877ca928e3e5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:ae:e5:4b:cf:39:b8:5d:0d:bc:89:35:00:4e:
ae:ef:6b:fb:7a:30:18:85:54:15:69:a9:79:fe:91:
bb:d1:e4:fc:5d:3b:13:b3:26:e3:07:ff:cd:cf:c1:
b5:61:6c:37:43:ad:6b:44:74:ee:51:ad:b6:de:c5:
04:5a:2d:2d:46:95:ba:c7:75:5f:37:6c:81:73:4d:
f8:62:f5:d3:fb:c9:91:e2:96:82:92:f1:b9:96:eb:
49:17:00:83:99:91:94:e2:9f:3c:d5:21:39:ed:19:
e3:8e:0f:63:7b:77:45:1f:da:7e:86:f5:49:64:b2:
6f:e4:43:69:d2:b1:93:6e:b1:e7:77:1a:55:2c:5a:
fb:32:ab:0b:10:36:58:f4:c1:7e:eb:ff:27:53:cc:
c9:3d:18:76:ea:d9:fd:c2:0a:a0:e1:1a:3d:cc:34:
3c:69:83:ee:3a:9e:59:77:e1:bc:28:3e:1a:6b:d8:
ee:38:41:83:10:17:47:c5:84:60:b1:ad:a7:56:45:
13:5d:14:8c:0c:d8:af:b3:f9:bc:93:12:27:87:8c:
cc:f8:20:ea:6e:c9:9a:03:29:60:3b:ea:58:6b:4e:
44:e8:b8:23:b0:ca:91:a3:ef:66:e7:d4:3b:f6:00:
3a:b8:97:e3:43:da:ed:e9:60:30:09:d4:6f:8e:25:
a3:bd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D9:5A:5F:E7:28:82:74:A9:F1:FB:7F:2F:42:31:87:7C:A9:28:E3:E5
X509v3 Authority Key Identifier:
keyid:52:1A:A0:24:75:8D:8D:10:4E:11:79:C5:50:39:81:66:36:AF:E2:98
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UhqgJHWNjRBOEXnFUDmBZjav4pg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/97/03f9ee-53e3-4f69-b8b0-c138e5c27c2b/1/UhqgJHWNjRBOEXnFUDmBZjav4pg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/97/03f9ee-53e3-4f69-b8b0-c138e5c27c2b/1/UhqgJHWNjRBOEXnFUDmBZjav4pg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
53:1b:87:34:99:19:46:fd:94:0b:37:85:34:96:0e:32:9e:78:
c6:3b:34:aa:24:c0:3c:a8:eb:d2:7d:7b:96:97:a8:ee:f9:0c:
de:1f:0f:fc:f4:b1:9f:12:bc:37:02:e5:04:17:52:9d:e7:2b:
02:09:a2:48:19:45:b3:99:0a:14:01:ad:64:e6:bc:f3:86:b6:
b4:92:bc:16:b1:08:a1:1d:7d:1e:ef:37:0c:6e:e5:5b:01:7a:
ca:47:6c:8b:46:0c:99:42:92:5f:70:92:bc:c5:66:13:8b:bf:
89:1b:d8:f0:09:47:ea:6a:58:41:36:e8:98:60:47:09:f0:8d:
1f:14:c6:7b:ae:8c:de:17:1e:34:86:05:6b:df:1c:4d:da:6e:
b8:59:95:df:0b:04:4e:1a:58:cc:86:d2:4d:d4:92:60:5a:61:
d7:8e:3a:be:86:99:b2:9a:86:cb:88:75:9d:67:40:64:ff:9b:
7b:4d:08:b3:50:4e:76:04:f0:cc:82:28:fb:3c:dc:b2:48:e8:
21:b6:5f:2b:68:bc:41:c0:e7:33:c9:26:94:1b:7b:45:9e:5f:
27:47:67:42:06:4f:58:e5:6f:e8:d7:d0:1e:26:ac:77:f0:f2:
3c:7f:da:5f:e6:0e:c3:7d:2b:b1:c7:dc:a5:bb:d7:d6:9f:50:
e4:96:fd:f3
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZbDFIQ/Dd1zdwLSQ1lFYzhmMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDUyMWFhMDI0NzU4ZDhkMTA0ZTExNzljNTUwMzk4MTY2MzZh
ZmUyOTgwHhcNMjUwNTEyMDYwMDIzWhcNMjUwNTEzMDYwMDIzWjAzMTEwLwYDVQQD
EyhkOTVhNWZlNzI4ODI3NGE5ZjFmYjdmMmY0MjMxODc3Y2E5MjhlM2U1MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApK7lS885uF0NvIk1AE6u72v7ejAY
hVQVaal5/pG70eT8XTsTsybjB//Nz8G1YWw3Q61rRHTuUa223sUEWi0tRpW6x3Vf
N2yBc034YvXT+8mR4paCkvG5lutJFwCDmZGU4p881SE57Rnjjg9je3dFH9p+hvVJ
ZLJv5ENp0rGTbrHndxpVLFr7MqsLEDZY9MF+6/8nU8zJPRh26tn9wgqg4Ro9zDQ8
aYPuOp5Zd+G8KD4aa9juOEGDEBdHxYRgsa2nVkUTXRSMDNivs/m8kxInh4zM+CDq
bsmaAylgO+pYa05E6LgjsMqRo+9m59Q79gA6uJfjQ9rt6WAwCdRvjiWjvQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFNlaX+cognSp8ft/L0Ixh3ypKOPlMB8GA1UdIwQY
MBaAFFIaoCR1jY0QThF5xVA5gWY2r+KYMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvVWhxZ0pIV05qUkJPRVhuRlVEbUJaamF2NHBnLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC85Ny8wM2Y5ZWUtNTNlMy00ZjY5LWI4YjAt
YzEzOGU1YzI3YzJiLzEvVWhxZ0pIV05qUkJPRVhuRlVEbUJaamF2NHBnLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC85Ny8wM2Y5ZWUtNTNlMy00ZjY5LWI4YjAtYzEzOGU1YzI3YzJi
LzEvVWhxZ0pIV05qUkJPRVhuRlVEbUJaamF2NHBnLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAUxuHNJkZ
Rv2UCzeFNJYOMp54xjs0qiTAPKjr0n17lpeo7vkM3h8P/PSxnxK8NwLlBBdSnecr
AgmiSBlFs5kKFAGtZOa884a2tJK8FrEIoR19Hu83DG7lWwF6ykdsi0YMmUKSX3CS
vMVmE4u/iRvY8AlH6mpYQTbomGBHCfCNHxTGe66M3hceNIYFa98cTdpuuFmV3wsE
ThpYzIbSTdSSYFph1446voaZspqGy4h1nWdAZP+be00Is1BOdgTwzIIo+zzcskjo
IbZfK2i8QcDnM8kmlBt7RZ5fJ0dnQgZPWOVv6NfQHiasd/DyPH/aX+YOw30rscfc
pbvX1p9Q5Jb98w==
-----END CERTIFICATE-----
Generated at Mon May 12 07:44:55 2025 by rpki-client