Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d2/4a12c2-9bed-45dd-863c-0b9fb97e529d/1/UAFR5GSyl5E3bAxXvrQMWE71oc8.mft
File: UAFR5GSyl5E3bAxXvrQMWE71oc8.mft (raw, json)
Hash identifier: a0ldtJJf1Zp5Ofus52u3MmUjRj9svQHZrR7FdOdefss=
Subject key identifier: 89:08:8D:53:CA:2D:D6:2D:42:54:94:7F:5A:F1:01:E7:83:06:BA:21
Authority key identifier: 50:01:51:E4:64:B2:97:91:37:6C:0C:57:BE:B4:0C:58:4E:F5:A1:CF
Certificate issuer: /CN=500151e464b29791376c0c57beb40c584ef5a1cf
Certificate serial: 0196A2E50CC3D5C44D06AEE9C94D97F25994
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UAFR5GSyl5E3bAxXvrQMWE71oc8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d2/4a12c2-9bed-45dd-863c-0b9fb97e529d/1/UAFR5GSyl5E3bAxXvrQMWE71oc8.mft
Manifest number: 0E4A
Signing time: Tue 06 May 2025 00:00:42 +0000
Manifest this update: Tue 06 May 2025 00:00:42 +0000
Manifest next update: Wed 07 May 2025 00:00:42 +0000
Files and hashes: 1: 1-KX-hNqJda_u-tMY8JTRfjoeRgw.roa (hash: 0loawEu3EsQvN0YOhlZpUuKsy9W2F4KZ2P7ZrPoURyk=)
2: 4Vp82kMVFy3SS-QpMeiBb_LCuZM.roa (hash: eQLhAc0fHmyRxdit6MMg+tHEhHD6XioTBzmbHJz5rsE=)
3: UAFR5GSyl5E3bAxXvrQMWE71oc8.crl (hash: OlCfFWuyb1Eqcfeg2XPxrb4EX1D5V0ksDSLam8HVob8=)
4: aNBkCcaYmA02zahOwaGbtyYv9MY.roa (hash: D1US2CJVv8mZ6kukpOJiznwJywuhQdkODOcCQGRbYbk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d2/4a12c2-9bed-45dd-863c-0b9fb97e529d/1/UAFR5GSyl5E3bAxXvrQMWE71oc8.crl
rsync://rpki.ripe.net/repository/DEFAULT/d2/4a12c2-9bed-45dd-863c-0b9fb97e529d/1/UAFR5GSyl5E3bAxXvrQMWE71oc8.mft
rsync://rpki.ripe.net/repository/DEFAULT/UAFR5GSyl5E3bAxXvrQMWE71oc8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 06 May 2025 19:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:a2:e5:0c:c3:d5:c4:4d:06:ae:e9:c9:4d:97:f2:59:94
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=500151e464b29791376c0c57beb40c584ef5a1cf
Validity
Not Before: May 6 00:00:42 2025 GMT
Not After : May 7 00:00:42 2025 GMT
Subject: CN=89088d53ca2dd62d4254947f5af101e78306ba21
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:90:7a:a1:61:94:06:d3:48:f7:dc:18:47:e2:12:
e7:4b:e4:63:39:de:14:b2:72:c4:cc:9f:de:30:d0:
75:05:ef:79:c4:2d:d6:01:e4:4a:72:82:8b:f2:73:
db:d4:19:ac:f9:c4:47:64:a8:9c:d1:d7:ea:3a:32:
fb:5a:e3:47:9d:04:0e:7a:fa:ed:80:26:bf:8d:53:
08:a0:36:8f:db:fe:9d:2c:a6:74:5d:32:59:ae:f0:
bc:1d:2c:8b:6f:ff:91:00:74:a1:3a:d7:08:6e:dd:
36:6b:01:a2:ba:2f:54:d6:20:3a:99:aa:a7:5b:48:
e4:49:e2:53:06:ae:b0:10:ae:d1:f8:bb:b2:16:92:
11:6c:27:19:49:78:86:71:7a:d3:09:ea:33:28:29:
25:96:65:58:46:96:07:1a:43:3e:08:21:73:7d:27:
e1:6f:a3:f4:d4:19:4b:60:dc:a2:11:97:36:a0:70:
2f:33:30:bf:88:4a:72:41:24:d9:56:a5:fc:d0:17:
5e:e2:94:99:71:19:87:c3:85:39:ce:01:d2:db:ad:
68:39:e7:8a:d9:79:67:2a:34:5d:4a:b1:73:18:6a:
19:4a:a1:a3:7e:1e:96:8a:97:15:36:3f:9b:03:6f:
3c:10:48:b9:3a:0b:33:99:e6:58:08:04:95:d4:e3:
7b:2b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
89:08:8D:53:CA:2D:D6:2D:42:54:94:7F:5A:F1:01:E7:83:06:BA:21
X509v3 Authority Key Identifier:
keyid:50:01:51:E4:64:B2:97:91:37:6C:0C:57:BE:B4:0C:58:4E:F5:A1:CF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UAFR5GSyl5E3bAxXvrQMWE71oc8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d2/4a12c2-9bed-45dd-863c-0b9fb97e529d/1/UAFR5GSyl5E3bAxXvrQMWE71oc8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d2/4a12c2-9bed-45dd-863c-0b9fb97e529d/1/UAFR5GSyl5E3bAxXvrQMWE71oc8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
52:e8:57:4b:cb:9e:38:4f:e9:b1:33:19:35:6c:04:77:e2:4a:
98:dc:eb:40:2e:8f:75:94:bc:1a:4b:89:92:16:82:df:63:cc:
d7:5f:66:2f:0f:8c:e4:aa:bb:44:a4:79:1b:e4:44:38:4d:44:
64:ca:c7:cb:d4:d5:67:94:c0:fb:60:5d:2e:a0:ad:d8:5e:b1:
ee:4e:2f:74:b9:7d:bd:08:ea:40:7c:2c:fb:3a:ff:65:db:ab:
ff:e9:40:02:3a:62:38:d4:52:1c:e9:73:84:4a:08:06:70:7a:
92:92:c3:d2:97:d4:b9:85:cd:7f:dc:bf:76:cb:ee:09:f3:af:
c7:7a:36:6f:c6:a3:e1:64:92:7c:bf:c5:51:d2:9d:2e:d0:64:
d6:f0:b8:c0:e1:7d:1c:29:59:88:6a:b2:bc:34:d2:de:fc:8d:
4d:6c:b8:96:3b:d1:d5:23:c0:56:50:49:31:8b:17:ab:08:f5:
81:07:78:3b:f1:e7:4f:fa:54:61:59:98:de:4d:05:8a:71:f0:
87:72:e0:03:0f:5c:ff:b4:97:7a:97:cf:a6:02:bc:a0:d9:28:
0f:4d:e3:48:6c:d5:5e:01:c7:3f:26:15:85:73:5a:40:6c:fc:
83:86:60:03:87:c7:c0:b6:42:2f:6a:7e:8e:02:fb:f6:f4:02:
a8:e4:9e:d4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue May 6 04:11:10 2025 by rpki-client