Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ce/5974d6-6c67-442b-993a-7ae5987bee62/1/UmLT8nzAW-WSS7e9iQ9-be_7SX0.mft
File: UmLT8nzAW-WSS7e9iQ9-be_7SX0.mft (raw, json)
Hash identifier: KAtKqO9hqECMLbahmDLg85PW6KJYkeYFHtrTGGgL3Ls=
Subject key identifier: 1E:4D:B3:CC:B2:D8:0E:0A:3E:09:C0:49:85:BF:03:AC:43:A7:EA:05
Authority key identifier: 52:62:D3:F2:7C:C0:5B:E5:92:4B:B7:BD:89:0F:7E:6D:EF:FB:49:7D
Certificate issuer: /CN=5262d3f27cc05be5924bb7bd890f7e6deffb497d
Certificate serial: 0196BC6DB02BBA72249C9FDB944B90B4291F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UmLT8nzAW-WSS7e9iQ9-be_7SX0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ce/5974d6-6c67-442b-993a-7ae5987bee62/1/UmLT8nzAW-WSS7e9iQ9-be_7SX0.mft
Manifest number: 1491
Signing time: Sat 10 May 2025 23:00:27 +0000
Manifest this update: Sat 10 May 2025 23:00:27 +0000
Manifest next update: Sun 11 May 2025 23:00:27 +0000
Files and hashes: 1: UmLT8nzAW-WSS7e9iQ9-be_7SX0.crl (hash: Y3JM5L7M+wgye7xNI/DiSGQcEVTtWVFbNN2dT4akm8M=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ce/5974d6-6c67-442b-993a-7ae5987bee62/1/UmLT8nzAW-WSS7e9iQ9-be_7SX0.crl
rsync://rpki.ripe.net/repository/DEFAULT/ce/5974d6-6c67-442b-993a-7ae5987bee62/1/UmLT8nzAW-WSS7e9iQ9-be_7SX0.mft
rsync://rpki.ripe.net/repository/DEFAULT/UmLT8nzAW-WSS7e9iQ9-be_7SX0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 11 May 2025 22:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:bc:6d:b0:2b:ba:72:24:9c:9f:db:94:4b:90:b4:29:1f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5262d3f27cc05be5924bb7bd890f7e6deffb497d
Validity
Not Before: May 10 23:00:27 2025 GMT
Not After : May 11 23:00:27 2025 GMT
Subject: CN=1e4db3ccb2d80e0a3e09c04985bf03ac43a7ea05
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:b9:f9:68:04:f8:58:10:61:ca:4a:96:ec:0c:
e9:de:5c:73:6b:d8:be:6a:c6:aa:d4:a7:80:22:36:
c1:00:7e:c6:8c:5f:7d:a0:de:16:1c:de:92:38:f8:
8f:a2:55:0b:15:1b:8c:00:79:25:25:55:38:ea:65:
06:9b:86:13:f4:3d:c8:75:d4:af:46:8b:df:ec:70:
f8:66:60:3c:59:cb:9c:a2:3d:4d:19:f5:c9:07:f9:
51:de:4f:a6:7a:cd:86:39:0c:64:2d:e1:28:c6:b4:
3b:28:0e:ea:19:31:18:07:b1:7d:2d:fe:69:1e:1c:
02:a5:dd:5c:8f:da:0d:35:91:ec:57:2e:dc:0d:83:
0f:6b:a9:74:00:b9:6e:6b:24:d0:a7:04:e9:05:b7:
72:96:c6:a3:f9:18:2f:5e:82:f1:97:5f:7f:f3:0f:
f5:1b:d3:2a:1f:dd:ea:f4:1b:cb:79:6a:71:16:18:
74:d4:2a:84:05:80:07:ef:5d:0e:4c:61:ef:74:fc:
cf:77:03:fc:80:da:e1:cb:df:27:f7:9b:2a:0a:cc:
f8:d1:9c:fd:6f:30:d7:f5:f5:e1:29:32:70:79:d9:
e6:98:25:a3:d5:06:27:d2:d9:c6:75:aa:8e:a4:50:
60:76:8c:13:a2:a0:00:ae:96:67:0e:8b:6d:e7:2a:
8f:ed
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1E:4D:B3:CC:B2:D8:0E:0A:3E:09:C0:49:85:BF:03:AC:43:A7:EA:05
X509v3 Authority Key Identifier:
keyid:52:62:D3:F2:7C:C0:5B:E5:92:4B:B7:BD:89:0F:7E:6D:EF:FB:49:7D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UmLT8nzAW-WSS7e9iQ9-be_7SX0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ce/5974d6-6c67-442b-993a-7ae5987bee62/1/UmLT8nzAW-WSS7e9iQ9-be_7SX0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ce/5974d6-6c67-442b-993a-7ae5987bee62/1/UmLT8nzAW-WSS7e9iQ9-be_7SX0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
a9:33:50:63:6a:33:b5:9c:7f:3c:82:09:93:51:96:f6:e1:80:
f0:6c:e6:50:5f:cc:f9:23:6e:87:8b:9c:8a:c5:8a:7d:7a:24:
97:09:b5:71:9e:3a:1b:89:6e:16:d3:84:4d:57:31:80:66:b8:
bf:31:96:45:a1:a6:af:e8:4f:8c:69:42:e3:f5:ff:aa:d4:cb:
86:39:1a:49:ab:ae:cb:af:9d:ae:fd:a2:7a:6a:ef:56:b9:84:
76:e6:46:3b:37:62:a3:96:4e:b6:91:04:de:2b:3d:90:8a:a9:
fb:98:8b:a3:85:77:3c:92:ac:ea:9d:bb:36:30:92:5d:b5:ac:
b1:e6:fe:ae:78:04:10:e6:e0:5b:24:e1:32:12:66:87:51:5b:
0d:ca:35:91:78:9f:ce:b2:9c:d7:44:e8:ae:ea:ae:ab:78:3a:
27:99:2b:7a:d3:ee:d7:c6:e0:9e:20:eb:3e:81:61:b2:6e:a3:
ce:3e:6d:2d:79:5c:5e:16:e0:16:d0:2c:b2:b1:9a:38:f2:6f:
80:ed:49:0d:42:fd:ff:23:0d:e2:ba:18:d6:6b:91:ee:40:0a:
3f:9f:46:0e:83:44:be:81:aa:00:c0:b3:63:89:77:09:4c:ca:
97:81:6c:bd:1c:e9:42:56:e8:58:b7:99:43:d9:b8:44:dc:7a:
44:a6:ef:39
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun May 11 06:13:57 2025 by rpki-client