Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/dc/24a0bd-0838-4c95-9ccd-30f608ade48d/1/ufdKR6bRoL9MIW5fq02R-xKd89Y.mft
File: ufdKR6bRoL9MIW5fq02R-xKd89Y.mft (raw, json)
Hash identifier: z6nQ74aJk/Mx5e2xey6pCKWWWPkTWZJcZ93q5IvVH1Y=
Subject key identifier: CE:84:43:10:CF:05:7D:F9:71:CA:57:22:3E:BF:A5:3E:F2:09:4D:DC
Authority key identifier: B9:F7:4A:47:A6:D1:A0:BF:4C:21:6E:5F:AB:4D:91:FB:12:9D:F3:D6
Certificate issuer: /CN=b9f74a47a6d1a0bf4c216e5fab4d91fb129df3d6
Certificate serial: 0196BB9244E3E8FB4BF66B9DED469EFDCC1C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ufdKR6bRoL9MIW5fq02R-xKd89Y.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/dc/24a0bd-0838-4c95-9ccd-30f608ade48d/1/ufdKR6bRoL9MIW5fq02R-xKd89Y.mft
Manifest number: 0A69
Signing time: Sat 10 May 2025 19:00:47 +0000
Manifest this update: Sat 10 May 2025 19:00:47 +0000
Manifest next update: Sun 11 May 2025 19:00:47 +0000
Files and hashes: 1: 5AZ3tR0kmtggSX8GQL0nk_9vkNM.roa (hash: o7jn9b/bWLBA/ntIWwkYzFbMhpkdc8Mhco9rAn9gsO0=)
2: ufdKR6bRoL9MIW5fq02R-xKd89Y.crl (hash: K42A/y9MSDyQN+EU6HM1Vl12bPH70TeLNYsN1FGYw7w=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/dc/24a0bd-0838-4c95-9ccd-30f608ade48d/1/ufdKR6bRoL9MIW5fq02R-xKd89Y.crl
rsync://rpki.ripe.net/repository/DEFAULT/dc/24a0bd-0838-4c95-9ccd-30f608ade48d/1/ufdKR6bRoL9MIW5fq02R-xKd89Y.mft
rsync://rpki.ripe.net/repository/DEFAULT/ufdKR6bRoL9MIW5fq02R-xKd89Y.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 11 May 2025 19:00:47 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:bb:92:44:e3:e8:fb:4b:f6:6b:9d:ed:46:9e:fd:cc:1c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b9f74a47a6d1a0bf4c216e5fab4d91fb129df3d6
Validity
Not Before: May 10 19:00:47 2025 GMT
Not After : May 11 19:00:47 2025 GMT
Subject: CN=ce844310cf057df971ca57223ebfa53ef2094ddc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:16:a6:ac:fb:39:8f:e4:09:d3:31:06:8c:90:
d9:a5:a6:b5:68:18:59:d1:c5:99:10:16:b8:40:d0:
de:55:bc:d4:a9:42:b8:0b:b7:1f:b8:12:b8:70:d5:
c6:41:2d:da:2b:1a:46:97:24:b9:38:e1:e9:b4:55:
84:3d:35:f5:3e:86:27:a6:cd:0e:80:e0:1c:74:e3:
ff:ca:89:26:6c:98:d2:7f:ea:47:29:1f:6b:fa:59:
69:81:b0:d2:ff:97:84:c1:a9:f9:c4:cd:b9:7f:44:
a9:62:27:44:eb:6f:7a:bc:38:32:f6:1b:d8:40:09:
bf:3f:7a:e5:aa:16:a8:6c:fe:24:67:c6:37:6e:d9:
ca:24:f9:5a:89:f8:bb:3d:74:a3:9a:89:76:4f:90:
5f:19:5e:cb:a9:12:c7:1a:d8:18:3c:8f:56:90:59:
40:62:a9:64:7d:c5:a9:64:d1:17:1b:62:00:65:63:
89:1e:88:30:41:2b:b6:12:2f:fb:a8:8b:f8:fb:af:
2f:fa:dc:ff:aa:16:49:96:b6:e5:72:bf:e9:28:84:
24:30:7c:76:26:0c:3c:0b:db:49:6c:f2:93:e0:ce:
a7:d8:e6:c9:ce:0c:bf:f7:1f:bb:af:02:e5:4d:91:
7f:c3:b5:49:d8:a7:7e:12:ec:68:62:8b:6f:81:ff:
f6:37
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CE:84:43:10:CF:05:7D:F9:71:CA:57:22:3E:BF:A5:3E:F2:09:4D:DC
X509v3 Authority Key Identifier:
keyid:B9:F7:4A:47:A6:D1:A0:BF:4C:21:6E:5F:AB:4D:91:FB:12:9D:F3:D6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ufdKR6bRoL9MIW5fq02R-xKd89Y.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/dc/24a0bd-0838-4c95-9ccd-30f608ade48d/1/ufdKR6bRoL9MIW5fq02R-xKd89Y.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/dc/24a0bd-0838-4c95-9ccd-30f608ade48d/1/ufdKR6bRoL9MIW5fq02R-xKd89Y.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
61:34:17:af:d1:53:28:79:06:6e:eb:4c:f2:8d:7f:2d:b1:bb:
72:3b:69:96:a0:13:c8:a1:c1:5e:25:ae:34:8e:96:74:e6:84:
eb:53:7c:51:09:81:12:57:bf:7e:41:57:f4:82:22:e0:62:de:
ec:98:a3:74:6f:c1:61:a2:68:97:42:55:8b:fb:7d:19:ca:5a:
3e:c5:ba:5a:39:44:20:98:8f:5f:0b:5f:22:52:61:fd:eb:e8:
de:fe:d2:ae:09:ee:23:5e:59:ec:94:e6:28:26:fe:ab:b6:d5:
f8:6e:22:f5:62:76:37:fd:51:e2:21:e8:0a:bf:1b:b3:30:3b:
1c:f9:ef:c7:05:5b:c7:e1:f2:ff:60:17:fe:58:7b:95:8e:c8:
61:93:6a:e6:ec:df:04:2c:39:05:68:22:b4:2e:df:ba:08:16:
35:4f:b6:23:58:2a:e8:20:fa:30:0a:2d:3a:68:fa:c3:1f:ab:
c7:cf:98:8f:33:ed:52:c0:0b:9f:ed:f2:e0:89:32:3c:86:d4:
fc:54:b7:09:f7:9a:78:78:ff:21:33:13:57:df:99:ca:13:b3:
a0:c5:1b:4e:8c:b7:3e:45:20:8a:55:ed:6d:92:a0:3c:29:ef:
c4:a5:86:49:84:7d:c1:c2:85:70:01:ce:2f:5c:fe:5a:28:18:
a3:c4:ca:96
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun May 11 00:48:08 2025 by rpki-client