Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/df/98ed86-fe7d-4011-afd3-0f2573eca2e4/1/UgX1htgmO7BtZAUPj0hMFOgDxLI.mft
File: UgX1htgmO7BtZAUPj0hMFOgDxLI.mft (raw, json)
Hash identifier: 1OFpAGxzWjqeCdr2+UFocIS+A/HEmUvPWORUHRoABvw=
Subject key identifier: 65:52:E2:1A:D9:8C:78:C6:DE:28:66:95:7A:41:1F:C7:D9:08:95:1C
Authority key identifier: 52:05:F5:86:D8:26:3B:B0:6D:64:05:0F:8F:48:4C:14:E8:03:C4:B2
Certificate issuer: /CN=5205f586d8263bb06d64050f8f484c14e803c4b2
Certificate serial: 0196C53AE547A8A49AF08AB3DAC49655BFD9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UgX1htgmO7BtZAUPj0hMFOgDxLI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/df/98ed86-fe7d-4011-afd3-0f2573eca2e4/1/UgX1htgmO7BtZAUPj0hMFOgDxLI.mft
Manifest number: 0B76
Signing time: Mon 12 May 2025 16:01:33 +0000
Manifest this update: Mon 12 May 2025 16:01:33 +0000
Manifest next update: Tue 13 May 2025 16:01:33 +0000
Files and hashes: 1: UgX1htgmO7BtZAUPj0hMFOgDxLI.crl (hash: QubbNH9SudGWFwBSKy+XSv3JV2SUbHMR5naRnwEQOqI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/df/98ed86-fe7d-4011-afd3-0f2573eca2e4/1/UgX1htgmO7BtZAUPj0hMFOgDxLI.crl
rsync://rpki.ripe.net/repository/DEFAULT/df/98ed86-fe7d-4011-afd3-0f2573eca2e4/1/UgX1htgmO7BtZAUPj0hMFOgDxLI.mft
rsync://rpki.ripe.net/repository/DEFAULT/UgX1htgmO7BtZAUPj0hMFOgDxLI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 13 May 2025 14:31:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:c5:3a:e5:47:a8:a4:9a:f0:8a:b3:da:c4:96:55:bf:d9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5205f586d8263bb06d64050f8f484c14e803c4b2
Validity
Not Before: May 12 16:01:33 2025 GMT
Not After : May 13 16:01:33 2025 GMT
Subject: CN=6552e21ad98c78c6de2866957a411fc7d908951c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:7d:a6:2b:56:dd:3f:47:f5:a4:0a:e0:92:2a:
37:0d:3f:a1:41:15:88:c3:b8:8e:89:f0:eb:ce:38:
05:50:3d:a4:ea:85:7b:a6:20:3d:1f:e4:1a:64:ce:
be:0f:31:aa:fd:79:0d:6c:90:c0:1d:80:12:49:76:
52:96:5f:7a:18:13:e0:a4:fc:64:9f:5b:55:42:9c:
f8:ea:04:18:bd:c2:94:1e:d8:38:24:2c:61:0e:43:
ac:d9:78:58:1e:f0:38:9a:97:53:01:20:aa:4d:14:
15:6a:fa:d6:10:b8:94:30:dc:d9:28:e9:de:7b:f1:
75:c9:82:48:44:08:ff:67:21:3e:33:8d:38:c4:09:
93:86:c3:8e:43:03:6a:20:df:ab:fd:44:d0:b1:11:
a4:ae:64:90:27:29:14:82:06:80:bd:d8:19:b5:fc:
ab:a5:6d:f3:e7:33:13:9e:a0:23:09:35:19:2c:1d:
1f:1c:c9:87:80:5b:57:48:3f:5a:32:bc:49:bd:f1:
0d:ea:cd:cb:fb:d1:11:e2:9e:3b:8e:00:78:e0:b4:
da:5a:79:04:12:e6:ac:3b:68:ae:b1:43:df:ec:a6:
08:27:0b:26:58:e6:94:16:a3:1d:d4:61:dc:e0:6b:
c7:10:40:61:9f:5c:6a:ab:be:07:3a:a1:90:8b:e6:
bc:af
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
65:52:E2:1A:D9:8C:78:C6:DE:28:66:95:7A:41:1F:C7:D9:08:95:1C
X509v3 Authority Key Identifier:
keyid:52:05:F5:86:D8:26:3B:B0:6D:64:05:0F:8F:48:4C:14:E8:03:C4:B2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UgX1htgmO7BtZAUPj0hMFOgDxLI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/df/98ed86-fe7d-4011-afd3-0f2573eca2e4/1/UgX1htgmO7BtZAUPj0hMFOgDxLI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/df/98ed86-fe7d-4011-afd3-0f2573eca2e4/1/UgX1htgmO7BtZAUPj0hMFOgDxLI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
6e:40:5b:3c:7d:29:9f:b2:94:f0:8f:14:a8:9d:76:90:00:4e:
d3:65:39:cd:28:3e:3a:0a:5a:42:5f:69:52:ff:c1:9f:1a:4f:
07:5c:5c:f8:c8:65:c3:95:d1:d4:54:63:49:cd:29:e7:29:b1:
8a:f3:86:86:84:af:cf:1e:e8:6f:19:ea:0c:88:b3:dc:d2:d9:
e4:ee:e3:e4:64:70:43:d5:e2:5a:e8:1b:9b:4e:7f:4d:60:03:
11:9d:56:78:83:e0:9f:03:28:02:ce:a0:1f:9f:74:f3:d3:69:
d1:e8:cf:c7:41:e5:fb:61:62:46:df:f1:39:a7:59:79:4e:f2:
c5:30:82:69:2d:25:a3:e9:32:2f:93:cc:20:cd:30:cd:92:a2:
e7:31:e5:0d:5a:02:2c:30:4b:c5:d9:51:0a:b1:9c:54:78:04:
c1:21:7b:07:d6:5b:c4:42:0a:84:34:e9:b7:bb:3f:e1:81:08:
0e:af:91:b6:a5:6f:4d:cc:9b:88:c1:03:24:b2:0a:95:e5:e8:
15:9a:1d:23:6c:60:d5:30:69:ea:73:ee:aa:65:0a:f4:fb:8b:
5e:82:cf:1f:20:88:29:3e:12:60:57:32:8f:7f:41:a0:82:7b:
df:3b:f2:f9:3a:31:73:9c:73:23:15:73:2f:a7:a6:32:c2:9a:
c9:20:7a:67
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon May 12 23:16:41 2025 by rpki-client