Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a7/fef2e0-ba37-4812-95ad-411a2712164d/1/U8NcqD_N9xskTtgDrEaOFFPYJo8.mft
File: U8NcqD_N9xskTtgDrEaOFFPYJo8.mft (raw, json)
Hash identifier: PWl+JclmunDEvUelWV3ic1ixr0GhHJy4okEEiRIX9U0=
Subject key identifier: 74:E1:3C:17:AB:B9:EA:23:98:97:AD:0D:E3:6B:7F:09:BC:29:04:FB
Authority key identifier: 53:C3:5C:A8:3F:CD:F7:1B:24:4E:D8:03:AC:46:8E:14:53:D8:26:8F
Certificate issuer: /CN=53c35ca83fcdf71b244ed803ac468e1453d8268f
Certificate serial: 0196DAAF095E62008161D747F30D1729E79C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/U8NcqD_N9xskTtgDrEaOFFPYJo8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a7/fef2e0-ba37-4812-95ad-411a2712164d/1/U8NcqD_N9xskTtgDrEaOFFPYJo8.mft
Manifest number: 0788
Signing time: Fri 16 May 2025 20:00:26 +0000
Manifest this update: Fri 16 May 2025 20:00:26 +0000
Manifest next update: Sat 17 May 2025 20:00:26 +0000
Files and hashes: 1: H-gKJ0jecc_epGWL1KeKZGljJsk.roa (hash: DugijbjySOcyT+ldEPL+0Bc6mUPT5+rGRZ55YajcPYw=)
2: U8NcqD_N9xskTtgDrEaOFFPYJo8.crl (hash: QFILOHVy/Oi0h2q1uz9vJ8hOQy2V3MAoESMFs3A3DhU=)
3: jMo_zU9oPYD4-ORBa0HOxz6ElxQ.roa (hash: B6xq/IGkR0N1YUdtA/OK7mLlIr8yn5LM2g8dHTL3gUI=)
4: qy2YkDqljayW8L1eKrjgUU5sPyQ.roa (hash: AsWZRC0AXC3FY0BmIha8yHFLeU4GKo6EqdCK1jqHGe4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a7/fef2e0-ba37-4812-95ad-411a2712164d/1/U8NcqD_N9xskTtgDrEaOFFPYJo8.crl
rsync://rpki.ripe.net/repository/DEFAULT/a7/fef2e0-ba37-4812-95ad-411a2712164d/1/U8NcqD_N9xskTtgDrEaOFFPYJo8.mft
rsync://rpki.ripe.net/repository/DEFAULT/U8NcqD_N9xskTtgDrEaOFFPYJo8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 17 May 2025 17:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:da:af:09:5e:62:00:81:61:d7:47:f3:0d:17:29:e7:9c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=53c35ca83fcdf71b244ed803ac468e1453d8268f
Validity
Not Before: May 16 20:00:26 2025 GMT
Not After : May 17 20:00:26 2025 GMT
Subject: CN=74e13c17abb9ea239897ad0de36b7f09bc2904fb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:5f:80:b4:06:77:92:86:b6:9d:83:8a:50:87:
36:63:74:12:a4:1e:fb:91:90:bb:c9:3d:5d:bf:9f:
af:62:a9:f2:63:0e:47:56:3f:e9:36:96:e0:61:a8:
4c:17:27:27:9f:48:a9:05:e9:8f:d1:69:d1:61:dd:
61:e4:2b:d6:fa:e7:16:98:f3:61:3a:39:62:01:67:
d7:eb:38:d0:59:93:91:b7:96:f8:70:c1:52:5e:96:
8c:8e:6d:dd:33:40:0a:66:58:2e:75:3a:be:f1:7d:
01:73:d8:1e:e0:89:a9:ab:69:a3:c1:e7:62:30:2b:
f6:a4:e6:c8:9f:67:d7:51:05:df:40:0a:6d:c4:f4:
39:78:2f:3a:70:a9:fc:9a:bd:c6:ea:78:93:a4:18:
ac:bf:cf:d0:ee:7b:5e:15:f1:ca:6e:e4:49:c6:89:
57:4b:67:13:83:e9:f2:c6:91:23:97:81:f1:12:e2:
91:d6:6b:ff:c5:79:a3:be:01:8b:ce:ac:4f:96:3b:
45:70:b5:e0:a3:1e:7d:60:a2:cb:5c:29:45:38:a5:
39:b5:31:c2:09:f2:a5:57:f1:f6:90:53:6f:fa:3c:
7c:0d:bb:d0:57:ee:5d:47:06:34:45:a3:c9:db:01:
d1:3c:be:bc:ea:8c:06:46:e4:7c:12:42:8e:9d:1f:
c0:45
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
74:E1:3C:17:AB:B9:EA:23:98:97:AD:0D:E3:6B:7F:09:BC:29:04:FB
X509v3 Authority Key Identifier:
keyid:53:C3:5C:A8:3F:CD:F7:1B:24:4E:D8:03:AC:46:8E:14:53:D8:26:8F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/U8NcqD_N9xskTtgDrEaOFFPYJo8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a7/fef2e0-ba37-4812-95ad-411a2712164d/1/U8NcqD_N9xskTtgDrEaOFFPYJo8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a7/fef2e0-ba37-4812-95ad-411a2712164d/1/U8NcqD_N9xskTtgDrEaOFFPYJo8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
11:bc:f8:b4:1b:6a:97:3e:66:ec:8c:e3:94:73:f0:9e:6b:49:
0c:06:24:13:0f:7a:02:dd:6b:e5:6c:c2:51:8b:a2:4e:c1:88:
cc:0b:a1:57:25:96:c9:54:2c:5a:9e:83:44:3a:ab:04:15:c4:
2e:59:de:62:7f:fa:ef:22:7f:08:ae:95:ee:47:c3:d2:99:f9:
c7:70:13:3b:d4:b5:b3:b1:be:af:fe:34:0d:67:dd:be:43:86:
9f:5e:ce:89:b1:6f:d0:1d:14:11:64:98:2d:e0:66:bb:36:1a:
22:05:c8:b3:a8:d7:c1:a8:86:0f:be:c6:b3:bf:1a:a7:9c:a3:
b1:76:7e:87:3d:90:7f:b4:d5:a2:71:8f:a7:ef:7f:ed:f4:de:
e2:bb:58:1e:b9:94:72:a4:b8:4b:cc:82:8f:63:1c:47:b7:f6:
2d:a3:60:4a:2a:d3:46:bc:af:54:6c:06:71:32:48:32:e7:2c:
ad:fd:28:8d:c7:ca:5c:38:57:78:37:e4:e7:9b:43:9a:79:75:
dd:9f:6b:fe:f8:eb:e3:ce:ad:34:2b:f2:15:c8:0d:e5:01:b8:
0e:37:22:f5:88:9d:e0:3c:87:85:95:85:5c:5e:ab:3e:ca:88:
fe:a2:c2:2f:14:95:b0:58:b6:b6:45:f7:8e:b8:ce:95:5e:91:
68:33:17:91
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat May 17 03:30:21 2025 by rpki-client