Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9d/8b07cd-0ced-4afc-8d02-972a4c3dc3f3/1/U7YqzmFbkGtCqyf0-x0gPfNtVDY.mft
File: U7YqzmFbkGtCqyf0-x0gPfNtVDY.mft (raw, json)
Hash identifier: EY5j6JD3NyGYfL7LS8y+NtSmbu7hIZ/9Zq/jI8qVjvs=
Subject key identifier: 23:B6:B7:C7:00:26:36:86:29:8A:63:BB:E5:AA:F3:3A:1D:F1:50:C4
Authority key identifier: 53:B6:2A:CE:61:5B:90:6B:42:AB:27:F4:FB:1D:20:3D:F3:6D:54:36
Certificate issuer: /CN=53b62ace615b906b42ab27f4fb1d203df36d5436
Certificate serial: 0196AD68D642DDA0B0E936471076A8A00E21
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/U7YqzmFbkGtCqyf0-x0gPfNtVDY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9d/8b07cd-0ced-4afc-8d02-972a4c3dc3f3/1/U7YqzmFbkGtCqyf0-x0gPfNtVDY.mft
Manifest number: 153B
Signing time: Thu 08 May 2025 01:00:51 +0000
Manifest this update: Thu 08 May 2025 01:00:51 +0000
Manifest next update: Fri 09 May 2025 01:00:51 +0000
Files and hashes: 1: 1CCvzsEpR2HzWfAtCPfz-prL4Xw.roa (hash: xMXmg6U7dk2I47UFlru0YwTYb2PTB2hNFflS+Hs5NZA=)
2: 47T-_h4yrwTkNISxK8J3mV88Fh0.roa (hash: BQum24aWy9VPt+BVB7kWULFG+ntEIPlMGrK1sM76ojQ=)
3: U7YqzmFbkGtCqyf0-x0gPfNtVDY.crl (hash: cSlObWgNMzHZRh2aRnGdlPTyeyLuO927TGR62LDD7SA=)
4: _Swn7rfHkqyddWiH6mJBPzEvtPw.roa (hash: DdKMWCZ6/KHD8pm9QRG9mImRVRpGoqtnHO9unsKXibs=)
5: tNvAcIt1AfnmrpYr9vYkkFneZ2Y.roa (hash: gVnI/4eE/aC58PSWg9zuIzqcxtqe9LJ1Nbo9TV7QxCQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/9d/8b07cd-0ced-4afc-8d02-972a4c3dc3f3/1/U7YqzmFbkGtCqyf0-x0gPfNtVDY.crl
rsync://rpki.ripe.net/repository/DEFAULT/9d/8b07cd-0ced-4afc-8d02-972a4c3dc3f3/1/U7YqzmFbkGtCqyf0-x0gPfNtVDY.mft
rsync://rpki.ripe.net/repository/DEFAULT/U7YqzmFbkGtCqyf0-x0gPfNtVDY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 09 May 2025 01:00:51 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:ad:68:d6:42:dd:a0:b0:e9:36:47:10:76:a8:a0:0e:21
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=53b62ace615b906b42ab27f4fb1d203df36d5436
Validity
Not Before: May 8 01:00:51 2025 GMT
Not After : May 9 01:00:51 2025 GMT
Subject: CN=23b6b7c700263686298a63bbe5aaf33a1df150c4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:89:e9:49:62:73:2b:0e:b2:9d:81:19:69:83:9d:
f7:96:79:1c:8f:71:e9:f1:c8:9f:79:6d:99:6f:57:
12:a5:84:87:7a:ff:14:c3:8f:04:00:00:6b:c9:57:
ae:43:26:5a:ac:04:4c:2d:a2:92:c3:4a:e6:fa:20:
b5:f4:23:08:89:76:55:3b:aa:1a:fe:cf:ca:b5:ca:
e0:9e:73:88:16:1d:7e:3a:a2:55:e4:47:79:e6:a0:
6c:70:22:db:ca:76:c5:ed:be:df:9b:6d:12:1b:74:
54:e5:7c:43:28:c7:4f:1c:64:af:5d:1c:07:b1:3d:
60:2f:b8:81:f0:7c:2c:cb:8e:a4:7d:30:65:5d:1d:
de:12:2e:e4:4c:52:8b:27:b4:5f:86:9a:7e:aa:5a:
97:33:b0:db:ef:9e:4b:64:6a:95:ea:ee:cb:ae:42:
48:7f:c2:71:19:7e:cb:16:de:67:01:eb:d9:d1:be:
96:fe:ce:80:6b:cc:3f:28:67:90:24:33:0f:c1:38:
fd:e7:27:43:2d:6e:78:66:3e:5a:bb:7e:17:7a:8e:
db:be:9b:9d:ed:5a:fa:c7:95:88:d3:f0:f8:4d:a6:
81:0d:f7:6e:48:49:d7:b0:06:33:27:d4:dd:7c:71:
02:a0:25:6f:e0:87:05:0b:34:6e:a9:c5:96:ec:f9:
d0:c3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
23:B6:B7:C7:00:26:36:86:29:8A:63:BB:E5:AA:F3:3A:1D:F1:50:C4
X509v3 Authority Key Identifier:
keyid:53:B6:2A:CE:61:5B:90:6B:42:AB:27:F4:FB:1D:20:3D:F3:6D:54:36
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/U7YqzmFbkGtCqyf0-x0gPfNtVDY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9d/8b07cd-0ced-4afc-8d02-972a4c3dc3f3/1/U7YqzmFbkGtCqyf0-x0gPfNtVDY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9d/8b07cd-0ced-4afc-8d02-972a4c3dc3f3/1/U7YqzmFbkGtCqyf0-x0gPfNtVDY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
2e:40:c9:f6:82:cf:ed:25:6d:7f:e2:84:54:29:e8:43:d2:d1:
c0:85:b1:2c:20:82:fa:8d:57:9c:d3:17:f5:fb:a7:b6:64:ef:
1b:62:6f:9a:42:ea:f9:fd:da:8f:53:31:a3:95:05:97:f4:15:
02:24:ad:23:c4:d6:bd:ef:d1:a9:ac:8e:c4:43:bb:70:9c:e1:
55:9b:7d:e4:70:6d:d4:21:2a:c9:f1:fb:39:5e:83:60:20:f7:
b2:42:a3:43:2f:1e:81:70:1d:36:43:de:93:45:56:ad:05:dc:
b1:56:0d:5b:67:93:9f:51:ed:49:3b:9c:2c:57:fb:c8:92:e9:
7a:47:35:30:fa:1e:7e:0e:7d:c8:8d:0a:6b:3b:29:ec:47:9e:
a1:7e:94:51:5f:57:15:ed:09:1c:74:49:20:1b:57:a1:4a:d5:
c4:60:97:cc:1c:1a:92:9b:21:25:a6:5c:d6:00:f5:98:6d:c0:
2c:71:5c:22:79:70:bf:8b:a3:eb:52:53:07:b7:55:51:33:5e:
18:c8:e7:c6:fa:28:7f:2b:b7:21:d0:5c:92:f3:9d:bd:35:c7:
d0:01:17:fc:d2:07:f0:c2:45:44:26:bc:f2:28:3b:03:f0:4e:
11:a8:e1:04:49:3e:c2:9b:3f:cf:68:24:4d:9c:63:de:f1:7d:
4b:ae:dc:e0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu May 8 09:38:00 2025 by rpki-client