Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d8/e674fb-2683-4cf4-967b-b7c67eacc3a5/1/uEWIWKHL3onJKQYPQvKw35JNTik.mft
File: uEWIWKHL3onJKQYPQvKw35JNTik.mft (raw, json)
Hash identifier: LcsBFgLtzRcKBCpszIrZHgcilQw08T0iNhvn73Ts2I4=
Subject key identifier: 38:CF:F1:AE:1E:07:B7:AD:30:37:ED:7B:0B:77:12:33:B6:7A:32:30
Authority key identifier: B8:45:88:58:A1:CB:DE:89:C9:29:06:0F:42:F2:B0:DF:92:4D:4E:29
Certificate issuer: /CN=b8458858a1cbde89c929060f42f2b0df924d4e29
Certificate serial: 01969CE2B7D17185612182B198D8035AB2C4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/uEWIWKHL3onJKQYPQvKw35JNTik.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d8/e674fb-2683-4cf4-967b-b7c67eacc3a5/1/uEWIWKHL3onJKQYPQvKw35JNTik.mft
Manifest number: 09A3
Signing time: Sun 04 May 2025 20:00:25 +0000
Manifest this update: Sun 04 May 2025 20:00:25 +0000
Manifest next update: Mon 05 May 2025 20:00:25 +0000
Files and hashes: 1: TGrXflCdfRfW3fIuk1M0sun1vvs.roa (hash: alNQcjpWXoWXc70x5wuOV0VaoVsG9NOJ3xbbbXJM7RE=)
2: uEWIWKHL3onJKQYPQvKw35JNTik.crl (hash: HOLGRW4ewhw16at3Gy7NHe3I7Ch7IV+0Wh3/Xbui8zE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d8/e674fb-2683-4cf4-967b-b7c67eacc3a5/1/uEWIWKHL3onJKQYPQvKw35JNTik.crl
rsync://rpki.ripe.net/repository/DEFAULT/d8/e674fb-2683-4cf4-967b-b7c67eacc3a5/1/uEWIWKHL3onJKQYPQvKw35JNTik.mft
rsync://rpki.ripe.net/repository/DEFAULT/uEWIWKHL3onJKQYPQvKw35JNTik.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 05 May 2025 20:00:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:9c:e2:b7:d1:71:85:61:21:82:b1:98:d8:03:5a:b2:c4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b8458858a1cbde89c929060f42f2b0df924d4e29
Validity
Not Before: May 4 20:00:25 2025 GMT
Not After : May 5 20:00:25 2025 GMT
Subject: CN=38cff1ae1e07b7ad3037ed7b0b771233b67a3230
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:b7:1c:f4:58:51:96:94:79:e5:02:14:dd:c0:
82:f2:0a:a4:0b:77:0a:65:d7:40:5d:07:cc:68:df:
b3:a2:0f:26:30:8b:17:ed:21:a2:9f:16:62:5c:02:
05:f0:fa:57:b7:b5:02:73:2c:fd:b4:a7:8f:a8:17:
b2:9a:22:23:d2:fb:16:56:66:c9:eb:ee:3f:69:9e:
d3:70:1c:0a:cb:07:90:f3:5d:3d:f5:69:59:84:b8:
e6:a7:ce:e0:48:ca:ba:4e:a4:a1:50:a9:9c:ec:f4:
51:4b:3c:ec:01:65:15:af:91:d5:fd:52:ec:b3:c3:
1c:03:69:cb:1b:07:a6:ab:21:dc:94:fa:1e:4e:25:
0b:c6:0a:45:13:a8:7b:23:b0:e6:d2:97:0f:38:ce:
86:ef:e8:22:10:fc:cd:60:af:28:1d:8b:8a:87:84:
bd:01:49:b5:0e:64:d7:b3:98:36:2c:19:0c:a3:ca:
cb:e0:d2:39:bb:6e:6b:94:87:06:17:46:61:91:d2:
73:a2:fe:4f:8c:bf:85:e0:fe:53:e1:f1:04:93:db:
22:60:b9:f0:60:d4:75:7d:1d:5f:99:8b:be:e9:7e:
ea:2e:97:3e:47:79:7d:41:9c:0c:bb:f6:b5:f9:c5:
47:49:fb:43:1b:e0:bb:48:98:ed:a0:be:30:dc:dd:
5c:cf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
38:CF:F1:AE:1E:07:B7:AD:30:37:ED:7B:0B:77:12:33:B6:7A:32:30
X509v3 Authority Key Identifier:
keyid:B8:45:88:58:A1:CB:DE:89:C9:29:06:0F:42:F2:B0:DF:92:4D:4E:29
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/uEWIWKHL3onJKQYPQvKw35JNTik.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d8/e674fb-2683-4cf4-967b-b7c67eacc3a5/1/uEWIWKHL3onJKQYPQvKw35JNTik.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d8/e674fb-2683-4cf4-967b-b7c67eacc3a5/1/uEWIWKHL3onJKQYPQvKw35JNTik.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
5f:89:13:ac:54:8e:d6:5f:b0:e2:b4:88:32:53:c1:7b:f8:ab:
0d:ca:ed:38:35:3a:8d:7e:03:80:de:3a:45:cc:9e:b6:48:93:
d0:ec:a7:08:85:f3:cb:d0:0a:19:04:1e:65:5c:02:99:cc:0e:
90:2c:b8:ec:23:4a:96:93:28:df:65:7f:67:ef:73:70:4e:0f:
1a:20:87:34:15:28:d3:90:d3:6c:e3:f8:5f:34:d0:47:90:0e:
a6:31:e1:b9:ac:a0:d8:ad:74:16:cb:3c:12:9f:91:21:0c:b5:
7d:7b:24:0b:16:09:d8:e7:b5:11:32:30:d1:b2:bc:ad:22:99:
21:61:df:5a:fc:92:89:c1:f7:42:62:9a:06:b5:b2:68:9a:e7:
09:7a:98:81:d4:3b:66:3d:6b:94:0f:8d:78:65:64:f7:1e:92:
85:39:4c:39:19:2a:c1:8c:8d:67:f9:f5:2b:16:3c:ac:76:a9:
f8:a4:22:15:1e:b3:3a:00:9b:b8:d2:c2:56:c9:7d:12:f9:7d:
65:3b:11:66:f3:12:d3:f9:19:3e:8b:27:ba:78:d2:f4:b6:dd:
86:4a:dd:ac:df:39:b6:c7:0c:43:eb:27:36:f3:c1:bb:09:e5:
f4:a7:67:1c:94:c3:80:cd:17:79:37:dd:40:c8:3d:a2:0a:df:
31:f9:70:93
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon May 5 04:37:03 2025 by rpki-client