Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/be/b93b66-af35-49d1-bd78-7ff8443d9c21/1/uXhT3Vdz8qawcYefW567Dm9Ofao.mft
File: uXhT3Vdz8qawcYefW567Dm9Ofao.mft (raw, json)
Hash identifier: DGlqVOASn3cY8ldqof3334yCWQrZBfI7gREFGcHgO3U=
Subject key identifier: 8B:17:F5:4B:DF:5D:CC:95:63:2C:CC:46:DF:E1:1B:AF:CF:9E:36:2B
Authority key identifier: B9:78:53:DD:57:73:F2:A6:B0:71:87:9F:5B:9E:BB:0E:6F:4E:7D:AA
Certificate issuer: /CN=b97853dd5773f2a6b071879f5b9ebb0e6f4e7daa
Certificate serial: 0196C1CB1CF34BE8C3ADD9E1AD6CBDB94557
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/uXhT3Vdz8qawcYefW567Dm9Ofao.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/be/b93b66-af35-49d1-bd78-7ff8443d9c21/1/uXhT3Vdz8qawcYefW567Dm9Ofao.mft
Manifest number: 14C8
Signing time: Mon 12 May 2025 00:00:35 +0000
Manifest this update: Mon 12 May 2025 00:00:35 +0000
Manifest next update: Tue 13 May 2025 00:00:35 +0000
Files and hashes: 1: uXhT3Vdz8qawcYefW567Dm9Ofao.crl (hash: Wr3BvqFePAhe8LpAj/ixH4Qh9Sfd3h+eOci+JvNJTg8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/be/b93b66-af35-49d1-bd78-7ff8443d9c21/1/uXhT3Vdz8qawcYefW567Dm9Ofao.crl
rsync://rpki.ripe.net/repository/DEFAULT/be/b93b66-af35-49d1-bd78-7ff8443d9c21/1/uXhT3Vdz8qawcYefW567Dm9Ofao.mft
rsync://rpki.ripe.net/repository/DEFAULT/uXhT3Vdz8qawcYefW567Dm9Ofao.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 13 May 2025 00:00:35 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:c1:cb:1c:f3:4b:e8:c3:ad:d9:e1:ad:6c:bd:b9:45:57
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b97853dd5773f2a6b071879f5b9ebb0e6f4e7daa
Validity
Not Before: May 12 00:00:35 2025 GMT
Not After : May 13 00:00:35 2025 GMT
Subject: CN=8b17f54bdf5dcc95632ccc46dfe11bafcf9e362b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d9:b3:07:47:2e:c6:0f:2d:41:28:23:3c:61:6e:
94:49:a5:3f:84:75:52:bb:52:1c:ca:62:cb:ad:5d:
ca:b5:2f:28:6c:0e:22:7b:32:08:c7:8b:b8:7b:4c:
d0:55:3a:4c:81:95:14:0a:5e:ae:6e:55:f1:48:5e:
68:69:26:45:91:bd:62:0d:04:13:4f:25:d4:fd:b7:
b8:fa:a6:6e:c7:e9:bc:03:a3:2f:91:6c:66:de:1c:
45:87:10:cc:3e:7d:fa:d5:e7:28:7d:c3:de:43:5d:
68:be:22:f3:85:af:34:60:96:1a:f3:e4:e7:8d:4d:
e8:59:15:b4:36:e1:a2:4e:b4:56:03:a3:f6:46:1c:
4c:b2:f2:de:d8:bf:f8:e7:6c:59:a6:cf:f2:d8:5d:
a9:79:67:6e:89:8a:a2:9d:cc:52:53:1c:6a:a7:53:
4f:c8:73:38:93:ca:9d:f8:27:cb:58:11:08:82:60:
1f:16:4a:5b:00:6d:44:9b:df:7a:3c:3d:a0:d5:18:
96:bb:d9:03:fd:27:c9:ca:90:db:40:71:21:b1:32:
be:cc:45:6e:89:34:d6:a6:3c:6d:f8:01:bd:e2:f5:
5d:e2:0f:4a:2a:7e:ae:09:ba:cf:34:70:8c:bf:be:
d2:ff:4f:96:43:44:0f:81:f5:99:7f:32:80:21:3b:
ee:c9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8B:17:F5:4B:DF:5D:CC:95:63:2C:CC:46:DF:E1:1B:AF:CF:9E:36:2B
X509v3 Authority Key Identifier:
keyid:B9:78:53:DD:57:73:F2:A6:B0:71:87:9F:5B:9E:BB:0E:6F:4E:7D:AA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/uXhT3Vdz8qawcYefW567Dm9Ofao.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/be/b93b66-af35-49d1-bd78-7ff8443d9c21/1/uXhT3Vdz8qawcYefW567Dm9Ofao.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/be/b93b66-af35-49d1-bd78-7ff8443d9c21/1/uXhT3Vdz8qawcYefW567Dm9Ofao.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
84:13:20:d5:d9:a3:5f:52:87:62:04:84:87:1e:a4:5c:b8:d1:
0b:51:c3:f0:56:71:23:7c:8b:78:0c:53:f6:17:ad:94:bb:5f:
9c:ae:cd:f2:08:94:99:f1:d6:02:66:cd:a8:eb:be:13:f5:b1:
24:63:b7:6d:de:ff:70:4f:40:68:6f:d3:d1:37:b2:5a:fe:54:
54:39:57:28:a9:8b:a5:c2:1e:70:b2:6e:0a:d9:b0:a3:52:d5:
45:3b:35:fd:82:82:02:19:05:59:15:6a:4f:1e:8d:1b:d8:d3:
23:c4:50:c5:f3:2e:a1:43:ca:cf:7e:c7:ed:34:bc:e8:b4:92:
d1:7d:4d:a6:6d:1e:8c:3d:01:e5:a5:96:49:07:94:9f:56:df:
d3:16:3d:30:83:6b:5d:29:fe:66:dc:84:84:c7:7f:7d:f2:82:
d7:5f:4a:9c:73:ba:14:5a:6f:14:b9:13:39:fc:5b:bb:99:85:
4d:63:e3:25:b3:dd:2d:08:83:4a:06:0d:e0:d1:42:5b:68:fa:
ec:18:62:50:0e:73:82:57:c3:c0:38:a0:1d:27:33:e4:1a:31:
53:1d:0d:7f:22:19:b7:0a:b4:23:09:ab:63:4b:4b:c2:4f:cb:
51:12:8d:15:20:87:11:a6:9c:d5:79:85:a1:31:ca:f5:29:1b:
9c:09:6c:67
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon May 12 06:42:23 2025 by rpki-client