Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/db/3b59d5-602d-4351-96bc-a108649d51e2/1/UGF1T3aJFp9qFQZQlUcmcrorRYk.mft
File: UGF1T3aJFp9qFQZQlUcmcrorRYk.mft (raw, json)
Hash identifier: 2vgUBEOn/doPdu1gvUbJ5XLHW6aiGWpivgtt/xVBd2w=
Subject key identifier: AF:12:AB:2C:C0:E1:61:E5:C6:3F:5C:3C:43:79:BB:A1:F7:A3:6A:A0
Authority key identifier: 50:61:75:4F:76:89:16:9F:6A:15:06:50:95:47:26:72:BA:2B:45:89
Certificate issuer: /CN=5061754f7689169f6a15065095472672ba2b4589
Certificate serial: 0196BFDD2D873DF3D0988745ACF0B39B27CB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UGF1T3aJFp9qFQZQlUcmcrorRYk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/db/3b59d5-602d-4351-96bc-a108649d51e2/1/UGF1T3aJFp9qFQZQlUcmcrorRYk.mft
Manifest number: 0CA9
Signing time: Sun 11 May 2025 15:01:05 +0000
Manifest this update: Sun 11 May 2025 15:01:05 +0000
Manifest next update: Mon 12 May 2025 15:01:05 +0000
Files and hashes: 1: UGF1T3aJFp9qFQZQlUcmcrorRYk.crl (hash: MsM9agMO7Qv0Agd6n/RbqQNwA8D88uEX8CuEsBsLFj8=)
2: yiSfs72_nEyzYSAodCILSS2FNUg.roa (hash: S9gHpNvUCJD2H4bcxuT5WWB4Uck7rHXNRIxCLUlb2hE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/db/3b59d5-602d-4351-96bc-a108649d51e2/1/UGF1T3aJFp9qFQZQlUcmcrorRYk.crl
rsync://rpki.ripe.net/repository/DEFAULT/db/3b59d5-602d-4351-96bc-a108649d51e2/1/UGF1T3aJFp9qFQZQlUcmcrorRYk.mft
rsync://rpki.ripe.net/repository/DEFAULT/UGF1T3aJFp9qFQZQlUcmcrorRYk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 12 May 2025 15:01:05 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:bf:dd:2d:87:3d:f3:d0:98:87:45:ac:f0:b3:9b:27:cb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5061754f7689169f6a15065095472672ba2b4589
Validity
Not Before: May 11 15:01:05 2025 GMT
Not After : May 12 15:01:05 2025 GMT
Subject: CN=af12ab2cc0e161e5c63f5c3c4379bba1f7a36aa0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:fc:d5:ac:ff:cb:38:b7:a0:63:0c:09:04:48:
0a:96:f4:f8:3c:3f:3b:3a:40:a5:d5:54:07:a0:b4:
92:91:4d:40:3c:e2:14:84:70:bd:79:87:49:5d:f7:
57:f8:54:ff:3b:bd:32:f2:95:3c:64:ad:07:da:6e:
9b:e4:e6:f5:a0:31:36:7f:54:14:01:51:3e:4d:84:
2c:ac:3a:40:7b:a3:af:78:c5:21:30:ed:7c:51:45:
35:eb:ea:dc:86:8a:ee:18:29:5e:d3:55:4d:65:85:
90:19:2a:ad:fc:62:9a:89:a3:7f:96:72:9c:0e:02:
7e:f4:21:51:71:8d:aa:ec:21:2a:10:1a:de:ee:37:
15:63:08:18:0d:f8:35:d3:a1:5b:5b:02:a1:2a:2d:
c7:30:9e:33:c0:54:50:3c:1b:48:a0:fd:ff:0a:6e:
f0:0d:55:5e:df:8f:f5:71:e1:82:f7:04:46:72:e3:
78:a1:14:54:2f:ce:d9:e8:18:1a:e3:dc:08:1a:bc:
84:6d:63:6d:57:61:e2:11:d3:3e:17:a3:aa:9e:98:
37:ed:84:29:77:d3:a4:41:14:d8:aa:bd:7e:68:bb:
d4:28:1d:7f:4f:a9:39:c7:12:2d:71:90:1a:a4:59:
0b:57:35:b8:b6:7d:fa:a2:a7:1a:37:98:64:76:58:
de:47
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AF:12:AB:2C:C0:E1:61:E5:C6:3F:5C:3C:43:79:BB:A1:F7:A3:6A:A0
X509v3 Authority Key Identifier:
keyid:50:61:75:4F:76:89:16:9F:6A:15:06:50:95:47:26:72:BA:2B:45:89
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UGF1T3aJFp9qFQZQlUcmcrorRYk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/db/3b59d5-602d-4351-96bc-a108649d51e2/1/UGF1T3aJFp9qFQZQlUcmcrorRYk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/db/3b59d5-602d-4351-96bc-a108649d51e2/1/UGF1T3aJFp9qFQZQlUcmcrorRYk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
45:a7:71:a5:0e:e9:58:8f:4f:a6:25:e0:b7:f6:bc:b8:74:3e:
2c:7e:78:54:61:e8:17:69:5f:ed:15:2a:5a:e6:6f:7b:e3:0f:
83:fa:f2:94:bf:23:9b:3d:75:b7:b6:17:f3:91:cc:59:df:ed:
7e:37:7a:fa:ad:49:7e:46:b9:50:32:8e:9b:61:cd:d5:c6:97:
97:96:a8:36:6d:2c:56:08:6c:cf:5b:31:e5:e1:a6:03:a0:23:
d7:0e:71:c6:44:1a:82:92:29:50:41:17:ef:38:f3:33:1f:3a:
43:16:b1:7f:5f:f4:eb:b0:f6:5c:1d:a4:cf:93:92:e1:fb:80:
c9:a6:7b:43:f0:eb:95:d7:de:e2:04:bd:ba:af:d7:8a:0e:38:
05:af:84:d4:98:01:35:42:9d:1c:c7:70:5f:ae:53:3d:47:c5:
d7:f9:0b:32:9c:49:f0:5c:09:45:18:07:fd:ce:cb:40:32:b5:
9f:3d:df:99:83:83:7d:a1:42:a5:dd:96:76:ac:d4:a4:b2:fd:
cc:e5:12:b1:0f:e5:01:5d:f6:b3:b3:c6:f4:d4:12:51:23:f3:
0e:fe:e0:1e:a3:9c:c3:0e:66:5e:68:b8:67:de:6b:73:42:31:
28:7c:1b:59:fc:58:6b:36:c5:c6:52:b3:6e:ea:1b:26:7b:00:
9b:ae:46:8b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun May 11 18:16:46 2025 by rpki-client