Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/da/f50e2d-e400-44f1-8832-e26960bf34e5/1/UztG46ndW36oqL_aL247rRVQkRM.mft
File: UztG46ndW36oqL_aL247rRVQkRM.mft (raw, json)
Hash identifier: LXEFXMsJybyKcEO6y1NLkfqkqyIBCE8Obe/gishH/o4=
Subject key identifier: 14:6D:6F:38:80:EF:A9:C4:45:FF:42:02:F3:F2:93:23:5D:E1:2B:F1
Authority key identifier: 53:3B:46:E3:A9:DD:5B:7E:A8:A8:BF:DA:2F:6E:3B:AD:15:50:91:13
Certificate issuer: /CN=533b46e3a9dd5b7ea8a8bfda2f6e3bad15509113
Certificate serial: 0196C615C2F21DB56AADF8F3011C263E947C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UztG46ndW36oqL_aL247rRVQkRM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/da/f50e2d-e400-44f1-8832-e26960bf34e5/1/UztG46ndW36oqL_aL247rRVQkRM.mft
Manifest number: 1539
Signing time: Mon 12 May 2025 20:00:37 +0000
Manifest this update: Mon 12 May 2025 20:00:37 +0000
Manifest next update: Tue 13 May 2025 20:00:37 +0000
Files and hashes: 1: 8xMxjtO-k2WYJj5fJmeVkGV5YA4.roa (hash: h2/dulkFhykUkX0igL56x6SI1vv2NsPZ43/9G+3BAxs=)
2: UztG46ndW36oqL_aL247rRVQkRM.crl (hash: rkebMdspu4f7tMec0BNAhr72HbpOwnYZiSz0hQR5Fkc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/da/f50e2d-e400-44f1-8832-e26960bf34e5/1/UztG46ndW36oqL_aL247rRVQkRM.crl
rsync://rpki.ripe.net/repository/DEFAULT/da/f50e2d-e400-44f1-8832-e26960bf34e5/1/UztG46ndW36oqL_aL247rRVQkRM.mft
rsync://rpki.ripe.net/repository/DEFAULT/UztG46ndW36oqL_aL247rRVQkRM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 13 May 2025 14:31:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:c6:15:c2:f2:1d:b5:6a:ad:f8:f3:01:1c:26:3e:94:7c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=533b46e3a9dd5b7ea8a8bfda2f6e3bad15509113
Validity
Not Before: May 12 20:00:37 2025 GMT
Not After : May 13 20:00:37 2025 GMT
Subject: CN=146d6f3880efa9c445ff4202f3f293235de12bf1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:46:4c:7e:8f:34:95:36:15:be:67:e3:e2:9a:
e5:5a:06:ca:3d:4d:b9:61:48:f5:1f:05:06:98:d9:
32:66:8d:f5:58:83:0a:d3:40:e8:d9:b4:5f:bf:f6:
cb:e6:09:0d:1b:b8:4b:98:d8:ae:db:f3:52:49:07:
46:96:a6:ba:bd:4f:d3:35:f6:ab:5b:91:e1:12:ec:
92:e9:63:c1:4f:2d:ad:8d:41:b2:67:36:77:45:c0:
72:5f:60:5e:0d:a8:44:b6:3f:82:20:7e:d4:dd:5c:
b2:f4:aa:bd:3c:c8:5f:43:68:01:29:a4:a4:1f:77:
6e:e7:a6:c1:74:63:78:88:40:51:0f:03:47:2f:b9:
98:a6:f2:c1:a0:31:ae:cc:ec:95:c9:9a:db:a4:86:
90:ff:fb:0f:60:8b:6b:42:1c:d8:db:c5:5d:21:32:
41:70:c2:4a:18:38:d0:20:dd:1d:b2:84:49:72:f5:
91:4c:71:58:d8:cf:af:78:65:6b:44:8c:7a:35:b6:
a2:b9:6b:7e:d7:cf:54:84:7f:e9:af:37:fc:0c:da:
72:b0:6f:97:b8:75:c1:ae:50:c1:1c:94:81:69:9b:
e9:b6:88:d8:04:a2:a5:f8:bd:0a:ff:95:c7:0b:f9:
ed:25:7c:54:6e:e7:03:68:6e:21:c7:88:03:92:d5:
ca:65
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
14:6D:6F:38:80:EF:A9:C4:45:FF:42:02:F3:F2:93:23:5D:E1:2B:F1
X509v3 Authority Key Identifier:
keyid:53:3B:46:E3:A9:DD:5B:7E:A8:A8:BF:DA:2F:6E:3B:AD:15:50:91:13
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UztG46ndW36oqL_aL247rRVQkRM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/da/f50e2d-e400-44f1-8832-e26960bf34e5/1/UztG46ndW36oqL_aL247rRVQkRM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/da/f50e2d-e400-44f1-8832-e26960bf34e5/1/UztG46ndW36oqL_aL247rRVQkRM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
30:a1:3d:98:d2:4f:f9:7a:8e:aa:32:47:41:bb:fb:5b:20:3b:
cd:27:15:3b:86:51:ad:21:21:f2:31:f9:a4:49:f8:2a:cb:77:
f7:ba:f1:e7:19:b5:31:f8:44:f8:38:80:e3:a1:d4:07:a4:0a:
8c:e8:0d:ba:cd:d4:95:2c:72:b2:75:43:da:ef:01:e8:0c:fe:
b2:2d:4b:53:43:26:c6:e7:cb:59:fc:c8:e6:6a:ea:c4:2f:f4:
e0:f3:38:63:85:98:78:89:2e:03:4f:17:e9:cd:fd:dd:d1:64:
81:19:d4:63:6c:9f:92:82:5e:fc:41:d9:a9:79:09:fd:85:ad:
5a:e3:51:59:52:69:0e:10:35:f3:bb:27:2b:d9:5c:c3:3c:d8:
56:17:e2:7c:44:43:58:c7:72:7b:6f:ec:37:dd:30:21:f4:82:
10:7f:9a:e3:5d:b8:66:1e:55:a4:9e:ff:96:58:27:95:6f:70:
ad:43:bf:a6:51:3d:87:29:8b:8f:3e:e3:19:1d:1a:95:bc:76:
36:33:ac:19:23:14:40:57:18:b6:57:7b:82:9d:1d:52:39:0d:
02:c7:07:2a:3a:86:b9:17:41:bd:bf:f6:b4:d0:ef:26:74:bc:
6c:2e:20:36:e6:14:8c:5c:01:cb:38:a6:30:61:ad:bd:07:32:
55:51:d2:ae
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon May 12 23:51:25 2025 by rpki-client