Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ce/a9f0bb-86f6-4ca3-a53f-2e9721d86c3d/1/UIJpb7xB2QYWimDOCUlJAiz2Keg.mft
File: UIJpb7xB2QYWimDOCUlJAiz2Keg.mft (raw, json)
Hash identifier: vbznCj4oxMSDd2Lf5zBtPW4Oa6yz83DyVofE7bdzucA=
Subject key identifier: AD:E0:BB:4B:35:64:4B:8B:61:27:83:46:34:3B:02:91:3B:DE:C8:00
Authority key identifier: 50:82:69:6F:BC:41:D9:06:16:8A:60:CE:09:49:49:02:2C:F6:29:E8
Certificate issuer: /CN=5082696fbc41d906168a60ce094949022cf629e8
Certificate serial: 01969E2C1AE6EC7AC3009BC17F885B9C85F7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UIJpb7xB2QYWimDOCUlJAiz2Keg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ce/a9f0bb-86f6-4ca3-a53f-2e9721d86c3d/1/UIJpb7xB2QYWimDOCUlJAiz2Keg.mft
Manifest number: 02AB
Signing time: Mon 05 May 2025 02:00:12 +0000
Manifest this update: Mon 05 May 2025 02:00:12 +0000
Manifest next update: Tue 06 May 2025 02:00:12 +0000
Files and hashes: 1: UIJpb7xB2QYWimDOCUlJAiz2Keg.crl (hash: ZfXfRIAeBZGbFYW69D7/GfgySNplEUDTqTvXPVxKSyc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ce/a9f0bb-86f6-4ca3-a53f-2e9721d86c3d/1/UIJpb7xB2QYWimDOCUlJAiz2Keg.crl
rsync://rpki.ripe.net/repository/DEFAULT/ce/a9f0bb-86f6-4ca3-a53f-2e9721d86c3d/1/UIJpb7xB2QYWimDOCUlJAiz2Keg.mft
rsync://rpki.ripe.net/repository/DEFAULT/UIJpb7xB2QYWimDOCUlJAiz2Keg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 05 May 2025 22:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:9e:2c:1a:e6:ec:7a:c3:00:9b:c1:7f:88:5b:9c:85:f7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5082696fbc41d906168a60ce094949022cf629e8
Validity
Not Before: May 5 02:00:12 2025 GMT
Not After : May 6 02:00:12 2025 GMT
Subject: CN=ade0bb4b35644b8b61278346343b02913bdec800
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d9:7d:79:d6:cb:5d:f3:88:d0:73:4e:f0:29:44:
a9:bb:40:9e:68:80:74:c4:5c:4e:dc:62:82:a2:76:
f0:36:4f:7b:6c:2a:18:40:97:0d:00:e9:c0:4e:ba:
ce:80:c3:4a:fe:64:c9:ec:9a:e0:08:7d:6a:fe:b4:
28:c8:98:09:4f:c1:11:a7:33:46:22:ce:50:ff:3e:
c6:f0:df:31:db:0b:10:e7:51:cb:f5:3b:bc:9d:c0:
f7:c5:f0:48:d9:dd:be:01:54:cd:4e:9b:8b:a3:7a:
76:54:76:86:cd:ac:7f:23:4e:45:f1:13:5e:91:ab:
bd:ce:2c:41:5f:5b:37:07:a9:78:ca:8d:62:fd:b0:
06:c1:44:0e:4b:2b:99:68:fa:7e:b8:6f:87:49:2d:
2a:bc:87:ce:8b:f1:4d:6d:34:fc:63:e4:4b:aa:aa:
e1:6d:27:b9:42:2e:b6:b8:ba:dd:92:bf:ca:87:f7:
59:37:7e:e9:c3:ec:be:72:9d:86:95:bd:97:b5:8d:
bd:d3:01:fd:8a:17:e5:66:bd:05:c8:0d:5d:f5:27:
f9:fb:44:49:8e:1e:0b:87:b1:60:a4:5c:ef:72:b5:
65:45:24:c4:4f:58:77:e0:47:f4:a7:39:77:49:73:
52:c7:90:17:18:fc:b3:d2:8d:c0:52:a4:17:5c:23:
7e:1d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AD:E0:BB:4B:35:64:4B:8B:61:27:83:46:34:3B:02:91:3B:DE:C8:00
X509v3 Authority Key Identifier:
keyid:50:82:69:6F:BC:41:D9:06:16:8A:60:CE:09:49:49:02:2C:F6:29:E8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UIJpb7xB2QYWimDOCUlJAiz2Keg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ce/a9f0bb-86f6-4ca3-a53f-2e9721d86c3d/1/UIJpb7xB2QYWimDOCUlJAiz2Keg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ce/a9f0bb-86f6-4ca3-a53f-2e9721d86c3d/1/UIJpb7xB2QYWimDOCUlJAiz2Keg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
90:f1:69:c5:d5:37:13:aa:d4:50:0d:84:73:5b:a4:02:7f:de:
cb:04:3f:1e:99:ad:b8:92:17:ff:98:fa:d7:38:c5:20:25:71:
76:5f:fe:b7:5e:14:17:5c:1b:62:6a:fb:5e:60:48:dd:cc:d8:
85:6b:d2:0b:4f:65:94:34:78:2d:af:e8:05:e7:58:a3:05:b3:
c5:2e:c9:90:d4:30:6d:4b:a0:eb:08:a4:78:c5:a8:92:10:18:
82:43:c3:38:73:4f:0c:67:15:96:47:2f:8b:a2:15:30:20:1f:
32:dd:ac:53:2a:3a:09:ac:b4:21:c8:24:fd:80:ec:5d:e9:80:
f2:42:48:e1:7d:1d:31:34:09:5d:20:92:95:48:3c:c0:b2:70:
92:3b:40:b3:27:34:66:60:50:99:9c:75:96:bd:03:b8:9b:ff:
92:b6:4d:11:de:a5:9f:fb:0f:e4:94:55:84:1e:46:01:6c:a6:
bf:7c:a4:df:f8:4c:f0:8f:20:bf:34:d9:aa:bb:11:f8:fb:78:
39:46:61:a4:01:46:a0:1a:eb:a2:75:1e:80:ec:97:33:00:a4:
82:27:dc:b1:00:68:9f:3e:7c:e3:65:87:43:94:49:9a:15:af:
35:53:06:1b:00:ed:15:eb:94:91:50:e2:d0:0b:10:65:f1:61:
21:3e:06:a2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon May 5 06:01:15 2025 by rpki-client