Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c7/0f8ce7-ca96-435b-8574-ac620da2f87e/1/UFPH2pyP_-pc7ZenmQIA1L7uQXc.mft
File: UFPH2pyP_-pc7ZenmQIA1L7uQXc.mft (raw, json)
Hash identifier: 3GztTkpYH5m2FkYdK0twtrJ4Y9E6FJgLPZoDG8CltpQ=
Subject key identifier: 15:9F:F8:B5:40:10:85:29:52:2F:12:E7:2A:8F:BE:9E:80:11:A4:F4
Authority key identifier: 50:53:C7:DA:9C:8F:FF:EA:5C:ED:97:A7:99:02:00:D4:BE:EE:41:77
Certificate issuer: /CN=5053c7da9c8fffea5ced97a7990200d4beee4177
Certificate serial: 0196A19B30A66FE8BA85CAB2C0F371729038
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UFPH2pyP_-pc7ZenmQIA1L7uQXc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c7/0f8ce7-ca96-435b-8574-ac620da2f87e/1/UFPH2pyP_-pc7ZenmQIA1L7uQXc.mft
Manifest number: 0471
Signing time: Mon 05 May 2025 18:00:24 +0000
Manifest this update: Mon 05 May 2025 18:00:24 +0000
Manifest next update: Tue 06 May 2025 18:00:24 +0000
Files and hashes: 1: CtRLEvt809yNddQQC3-YdVEz8S0.roa (hash: iOnEw767paDA6G2cUVNf8J3Qp7lK0IUOS20QbdMgtb4=)
2: UFPH2pyP_-pc7ZenmQIA1L7uQXc.crl (hash: EJ1aH02hY19dSy4BBFg2gkHe2/fJUZqcVBI8bti95ZQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c7/0f8ce7-ca96-435b-8574-ac620da2f87e/1/UFPH2pyP_-pc7ZenmQIA1L7uQXc.crl
rsync://rpki.ripe.net/repository/DEFAULT/c7/0f8ce7-ca96-435b-8574-ac620da2f87e/1/UFPH2pyP_-pc7ZenmQIA1L7uQXc.mft
rsync://rpki.ripe.net/repository/DEFAULT/UFPH2pyP_-pc7ZenmQIA1L7uQXc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 06 May 2025 10:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:a1:9b:30:a6:6f:e8:ba:85:ca:b2:c0:f3:71:72:90:38
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5053c7da9c8fffea5ced97a7990200d4beee4177
Validity
Not Before: May 5 18:00:24 2025 GMT
Not After : May 6 18:00:24 2025 GMT
Subject: CN=159ff8b540108529522f12e72a8fbe9e8011a4f4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:07:e9:b4:dc:e6:b3:d9:79:35:97:6d:28:30:
b0:eb:43:a8:3b:31:94:86:a1:2a:31:ef:07:3e:4e:
7c:5c:f1:4e:b7:9b:f6:34:ca:7f:6b:c3:39:77:5c:
de:fd:9f:e7:1d:5a:53:a5:fe:eb:12:c6:45:3c:ef:
25:f5:f1:4c:c6:a3:ee:9d:36:6c:69:4d:6c:83:f0:
7b:ef:1d:42:8b:0f:26:75:30:70:2e:c5:9c:3a:d4:
e4:37:7e:e2:77:fb:6f:cb:31:4c:bd:3f:38:92:e5:
71:5e:e7:eb:9a:d2:8a:11:37:87:24:c4:6e:23:6f:
d7:24:40:a4:d5:bd:6d:78:b9:90:64:f3:1f:c5:1a:
4e:6b:92:68:a8:2c:50:ba:8e:ed:f0:e2:5f:06:bb:
20:0f:7b:13:06:89:77:30:81:5c:e7:14:6a:09:33:
6f:e3:c7:5f:2b:3c:da:f3:25:f5:4d:54:3f:cc:7a:
16:1e:68:ac:13:8e:2c:32:d6:08:43:8f:bf:aa:20:
07:8d:e9:cf:11:13:20:1e:8d:87:0d:fa:a7:4c:b9:
36:64:74:77:8b:ce:65:aa:1a:9b:da:a1:30:d0:ee:
96:6d:8d:f7:87:13:67:d6:fa:a8:77:b0:d8:4e:11:
f1:53:76:9e:f7:ad:ed:fb:54:1d:5e:fb:90:2e:8e:
6f:07
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
15:9F:F8:B5:40:10:85:29:52:2F:12:E7:2A:8F:BE:9E:80:11:A4:F4
X509v3 Authority Key Identifier:
keyid:50:53:C7:DA:9C:8F:FF:EA:5C:ED:97:A7:99:02:00:D4:BE:EE:41:77
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UFPH2pyP_-pc7ZenmQIA1L7uQXc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c7/0f8ce7-ca96-435b-8574-ac620da2f87e/1/UFPH2pyP_-pc7ZenmQIA1L7uQXc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c7/0f8ce7-ca96-435b-8574-ac620da2f87e/1/UFPH2pyP_-pc7ZenmQIA1L7uQXc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
7f:61:d3:65:20:d4:dc:3c:98:27:de:15:8c:ca:0b:49:cd:2f:
b6:78:28:9a:44:47:93:52:40:bc:64:7e:7a:16:86:d3:0f:fb:
a0:d1:2f:7d:38:94:cf:37:66:c8:3d:7e:21:2d:8d:1c:48:5c:
5b:4b:e2:60:68:8a:2b:db:68:dc:2d:0f:1d:65:fb:5a:77:32:
02:35:46:8d:be:7c:0a:ae:89:21:dc:ff:67:58:74:3b:52:2d:
39:1a:89:46:4d:16:16:39:d4:d5:5e:d9:34:23:f6:42:f8:f7:
40:bd:11:20:6d:de:50:25:95:35:42:95:15:2b:ce:da:c1:4c:
9f:6a:fe:7b:f7:6e:75:a8:37:00:61:95:39:74:34:f8:2c:b9:
8f:60:8d:f8:10:18:0f:99:53:73:9e:62:2c:b5:5b:e0:82:79:
0b:d5:24:9a:b6:a7:bd:e1:71:f3:e4:fb:e8:c1:d9:93:a5:4f:
d2:91:86:f2:bb:9d:78:38:fc:24:aa:55:aa:2f:72:44:63:04:
62:27:e6:88:43:ba:b7:97:3b:09:02:1e:68:ca:3f:31:05:3b:
17:ab:63:23:9e:35:d9:a6:07:2c:3c:43:ad:16:e5:f1:5a:09:
df:fe:f9:73:36:4b:3b:0b:b3:8a:39:f7:9a:cc:e3:08:47:c9:
6d:ca:0a:6b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon May 5 19:51:34 2025 by rpki-client