Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d1/caf5ea-626e-455a-8708-f5ca8fa7270d/1/ufHVsG9XAVVf9YiBVN0UG0iJYRc.mft
File: ufHVsG9XAVVf9YiBVN0UG0iJYRc.mft (raw, json)
Hash identifier: WDNGyJszllLUs1onMnhoz8S/tVTX6p48dLbWj1D4xGo=
Subject key identifier: 4A:59:EE:E7:03:0C:5A:AA:28:C1:D4:18:49:84:A2:12:71:5B:CE:33
Authority key identifier: B9:F1:D5:B0:6F:57:01:55:5F:F5:88:81:54:DD:14:1B:48:89:61:17
Certificate issuer: /CN=b9f1d5b06f5701555ff5888154dd141b48896117
Certificate serial: 0196A465F1BD426BA729887D2232D8E8E173
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ufHVsG9XAVVf9YiBVN0UG0iJYRc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d1/caf5ea-626e-455a-8708-f5ca8fa7270d/1/ufHVsG9XAVVf9YiBVN0UG0iJYRc.mft
Manifest number: 153E
Signing time: Tue 06 May 2025 07:01:06 +0000
Manifest this update: Tue 06 May 2025 07:01:06 +0000
Manifest next update: Wed 07 May 2025 07:01:06 +0000
Files and hashes: 1: ufHVsG9XAVVf9YiBVN0UG0iJYRc.crl (hash: groLZHSi90/H1CYKkPPTc2vumRo8ImCbt98aNV/nCBk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d1/caf5ea-626e-455a-8708-f5ca8fa7270d/1/ufHVsG9XAVVf9YiBVN0UG0iJYRc.crl
rsync://rpki.ripe.net/repository/DEFAULT/d1/caf5ea-626e-455a-8708-f5ca8fa7270d/1/ufHVsG9XAVVf9YiBVN0UG0iJYRc.mft
rsync://rpki.ripe.net/repository/DEFAULT/ufHVsG9XAVVf9YiBVN0UG0iJYRc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 07 May 2025 04:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:a4:65:f1:bd:42:6b:a7:29:88:7d:22:32:d8:e8:e1:73
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b9f1d5b06f5701555ff5888154dd141b48896117
Validity
Not Before: May 6 07:01:06 2025 GMT
Not After : May 7 07:01:06 2025 GMT
Subject: CN=4a59eee7030c5aaa28c1d4184984a212715bce33
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:2c:3b:5d:29:e4:23:2e:6f:2f:1a:92:47:e3:
45:e8:69:52:ba:5c:08:99:09:7b:87:2d:49:42:87:
82:9e:85:80:fc:62:26:f6:0e:c7:93:a0:94:f3:2c:
33:32:c5:c2:f7:bd:f7:33:a7:25:34:85:03:f4:87:
94:0a:ba:e8:6d:50:df:70:8d:8e:7a:4c:8a:94:4c:
6d:45:21:90:b6:59:39:b7:a7:dd:5d:00:a9:62:c5:
43:50:b0:8f:61:3f:13:2c:71:41:11:f7:1b:9f:1e:
ce:e9:0f:e2:63:fa:ae:a1:a3:3a:3c:53:d9:d7:8a:
07:93:ca:94:62:fa:20:a8:6a:95:ab:99:d5:e0:2a:
24:cc:d0:eb:3f:a5:d2:cd:a4:a4:ab:d1:ef:02:3c:
27:74:ca:cc:4f:9a:02:f5:0e:2f:ff:94:da:1e:20:
0a:53:ec:0c:2a:f2:51:a4:04:c9:61:5c:31:30:05:
8a:96:6f:23:01:70:07:c7:c2:11:84:7c:a3:a2:2d:
34:60:a7:4e:eb:7d:9c:87:00:19:57:b9:61:6d:c6:
a7:d6:46:42:7c:53:b8:81:f0:ae:05:1a:00:ba:9d:
70:57:7f:18:bf:7e:22:ae:ea:af:58:be:a9:3f:cf:
a2:f6:9e:65:45:21:b6:7d:ab:5d:1b:42:77:42:c6:
65:75
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4A:59:EE:E7:03:0C:5A:AA:28:C1:D4:18:49:84:A2:12:71:5B:CE:33
X509v3 Authority Key Identifier:
keyid:B9:F1:D5:B0:6F:57:01:55:5F:F5:88:81:54:DD:14:1B:48:89:61:17
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ufHVsG9XAVVf9YiBVN0UG0iJYRc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d1/caf5ea-626e-455a-8708-f5ca8fa7270d/1/ufHVsG9XAVVf9YiBVN0UG0iJYRc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d1/caf5ea-626e-455a-8708-f5ca8fa7270d/1/ufHVsG9XAVVf9YiBVN0UG0iJYRc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
49:66:f0:69:a1:a0:3b:b3:86:37:d0:8f:43:3c:1f:08:b1:7b:
2a:6a:bb:eb:7b:7a:b9:ad:a5:ca:b4:46:8d:af:2e:6d:cb:90:
08:d5:64:66:0b:bd:67:91:a9:7f:c6:a1:44:f2:d8:78:70:45:
d8:f7:98:1c:8e:08:72:6c:23:be:f3:26:1a:ac:6e:fb:ff:fe:
24:7d:e4:de:30:7e:01:7c:82:25:34:a2:fb:14:15:54:06:03:
98:cb:ef:f2:f1:a2:8b:9a:7a:3a:0f:d2:56:13:33:cf:af:81:
a2:0e:d3:cf:61:c0:9a:f2:98:07:3d:f0:e8:e3:f2:fa:b1:6c:
5b:94:1d:17:6d:32:00:6b:2a:8c:8a:73:ac:53:d7:46:0a:d7:
4e:ea:29:a8:1a:4c:39:64:5d:bc:0d:dc:29:74:df:77:de:4d:
1e:06:e4:0c:58:cf:fb:92:f8:f3:44:46:6d:33:ab:a1:06:18:
62:b3:b8:5f:01:57:33:f0:37:e4:f4:4e:21:0b:5a:01:64:27:
d2:c5:05:56:3b:bb:e8:20:66:ef:ea:3a:8e:c1:8b:07:a3:ed:
a3:cf:85:73:3f:ec:a0:64:fc:61:4a:65:10:d3:f1:d2:a7:34:
13:0d:9f:df:1f:2b:eb:17:54:15:90:02:b3:b2:79:aa:3e:99:
6c:75:84:2d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue May 6 12:07:48 2025 by rpki-client