Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bd/8819e2-c4e3-4bce-a61c-305d41d53a65/1/uFsMinWJOk-OHvDZpNQUeNizMng.mft
File: uFsMinWJOk-OHvDZpNQUeNizMng.mft (raw, json)
Hash identifier: 6r08V3Ib1FwCwv1Y+LVDJaKT2ygXp6BVXnO2WistBZY=
Subject key identifier: F0:04:44:DA:D2:65:46:E3:B1:E7:5E:99:C4:69:0D:69:33:7B:B1:56
Authority key identifier: B8:5B:0C:8A:75:89:3A:4F:8E:1E:F0:D9:A4:D4:14:78:D8:B3:32:78
Certificate issuer: /CN=b85b0c8a75893a4f8e1ef0d9a4d41478d8b33278
Certificate serial: 0196C94DD1D6C786E4B0A006FA88120693CF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/uFsMinWJOk-OHvDZpNQUeNizMng.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bd/8819e2-c4e3-4bce-a61c-305d41d53a65/1/uFsMinWJOk-OHvDZpNQUeNizMng.mft
Manifest number: 1490
Signing time: Tue 13 May 2025 11:00:42 +0000
Manifest this update: Tue 13 May 2025 11:00:42 +0000
Manifest next update: Wed 14 May 2025 11:00:42 +0000
Files and hashes: 1: FAbnnF69oHTmqk-_EL74zctuaA4.roa (hash: fltdyHSTKiTHvNl3z1Whswl3hhYadpjXzd/kAG+oHEc=)
2: aJV7GbLDrd2CQzyoG7J6OnTP5DY.roa (hash: RYvSIhl4EMxqFZiyrQ0zAL7ZWanzg67h6dO8KAffWY0=)
3: uFsMinWJOk-OHvDZpNQUeNizMng.crl (hash: ypowGNzKGL+hatARUa1DoPaaqeWUMmerlUKJbYncqaQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/bd/8819e2-c4e3-4bce-a61c-305d41d53a65/1/uFsMinWJOk-OHvDZpNQUeNizMng.crl
rsync://rpki.ripe.net/repository/DEFAULT/bd/8819e2-c4e3-4bce-a61c-305d41d53a65/1/uFsMinWJOk-OHvDZpNQUeNizMng.mft
rsync://rpki.ripe.net/repository/DEFAULT/uFsMinWJOk-OHvDZpNQUeNizMng.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 14 May 2025 08:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:c9:4d:d1:d6:c7:86:e4:b0:a0:06:fa:88:12:06:93:cf
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b85b0c8a75893a4f8e1ef0d9a4d41478d8b33278
Validity
Not Before: May 13 11:00:42 2025 GMT
Not After : May 14 11:00:42 2025 GMT
Subject: CN=f00444dad26546e3b1e75e99c4690d69337bb156
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:b5:37:f3:96:f7:fa:43:1c:2e:43:e6:89:14:
96:6a:a2:17:6b:1a:d2:5e:66:24:2b:7d:ba:2f:8b:
00:f2:64:3a:51:45:98:c2:7e:f5:4e:90:14:8d:f9:
99:2c:65:7e:9b:e5:f0:2e:10:4a:a2:30:bd:93:5e:
02:33:0c:07:e6:d7:d4:6e:fb:70:c6:a5:c7:8d:db:
79:66:6e:c6:95:8a:44:98:3a:47:14:a3:6e:b0:1e:
1a:2b:87:74:43:26:16:5b:39:3b:90:a5:a2:2c:47:
dd:2a:02:01:db:7f:c9:3a:f8:18:d5:9d:97:ba:fb:
d8:0f:ef:5b:52:d2:2a:77:9c:14:fe:67:ef:f2:b2:
7b:f2:74:3b:a0:e5:72:60:6b:c9:01:7a:58:34:99:
57:f0:f9:b6:f1:0f:60:47:3e:dc:9c:d4:6a:fa:57:
bf:12:6e:ad:a5:ca:4e:a2:43:f2:7f:0e:3a:49:e8:
c9:8e:74:6a:46:22:7f:8b:82:0c:a2:cc:b7:a9:2a:
6a:41:5f:d1:3d:8c:cf:57:8a:fe:e0:f8:66:1d:04:
21:43:2d:28:19:c7:ce:fa:7c:ca:70:87:40:64:01:
e2:d5:5b:a4:75:45:ce:f9:d9:94:4c:87:22:74:ab:
bd:53:de:22:57:92:d6:48:2f:7d:52:50:38:96:0b:
20:fd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F0:04:44:DA:D2:65:46:E3:B1:E7:5E:99:C4:69:0D:69:33:7B:B1:56
X509v3 Authority Key Identifier:
keyid:B8:5B:0C:8A:75:89:3A:4F:8E:1E:F0:D9:A4:D4:14:78:D8:B3:32:78
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/uFsMinWJOk-OHvDZpNQUeNizMng.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bd/8819e2-c4e3-4bce-a61c-305d41d53a65/1/uFsMinWJOk-OHvDZpNQUeNizMng.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bd/8819e2-c4e3-4bce-a61c-305d41d53a65/1/uFsMinWJOk-OHvDZpNQUeNizMng.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
ad:9d:fe:9e:58:67:8a:f5:26:a8:c8:7c:4b:2e:05:1a:97:ab:
fe:46:78:fc:ac:bc:fe:b9:da:c0:1b:c1:5c:cb:8c:cc:cd:94:
d5:f7:01:f5:1d:56:81:57:51:32:b2:bd:61:9c:9e:41:8e:e8:
e5:79:53:4f:4c:ab:87:c6:a6:3f:ac:e4:6d:cf:aa:62:77:82:
c4:dd:7c:dd:7e:fc:33:87:6a:ed:92:4c:b1:c1:3c:09:1e:3d:
7f:4b:15:5b:8b:dd:56:77:da:62:75:9c:00:56:f6:cb:b6:8f:
72:84:96:b2:1e:ae:e2:6d:2b:45:e8:06:e3:c2:fe:ad:82:48:
b3:c1:7f:9f:b2:bd:24:55:5b:37:e5:b7:22:92:3f:0b:7c:3c:
83:6a:35:1b:94:a6:ed:c8:22:64:50:c8:e6:0f:01:cf:fe:13:
4d:ec:d8:e0:77:79:f1:4e:26:5c:40:f5:f0:19:58:9f:32:56:
88:cc:10:6e:cc:db:c1:8a:da:e5:ba:83:0c:f5:a1:ac:0d:66:
47:d2:02:99:a5:a7:15:99:36:33:13:87:9c:cf:c6:07:7c:4d:
65:dd:1e:c5:c1:dd:af:b4:28:0f:7b:36:6c:9d:11:07:5a:4a:
b1:9e:4e:14:21:4e:6c:50:fd:70:13:2f:e4:88:70:d0:2f:e7:
a1:55:75:d1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue May 13 13:27:00 2025 by rpki-client