Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/df/c77825-68a3-4b3e-bc90-523fd86a07c7/1/U3h815RuENiGRqx53lfMbsWeQTI.mft
File: U3h815RuENiGRqx53lfMbsWeQTI.mft (raw, json)
Hash identifier: 6JfCno2vWVomBoWHevFgF8wMVEti1FRh73UabwfI5sg=
Subject key identifier: 0C:55:4B:0D:91:FE:EB:6E:F3:00:04:D3:D3:8D:09:0C:BB:D0:77:EC
Authority key identifier: 53:78:7C:D7:94:6E:10:D8:86:46:AC:79:DE:57:CC:6E:C5:9E:41:32
Certificate issuer: /CN=53787cd7946e10d88646ac79de57cc6ec59e4132
Certificate serial: 0196AF8E0552B4D9CC565E847407A94C40A9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/U3h815RuENiGRqx53lfMbsWeQTI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/df/c77825-68a3-4b3e-bc90-523fd86a07c7/1/U3h815RuENiGRqx53lfMbsWeQTI.mft
Manifest number: 11DB
Signing time: Thu 08 May 2025 11:00:42 +0000
Manifest this update: Thu 08 May 2025 11:00:42 +0000
Manifest next update: Fri 09 May 2025 11:00:42 +0000
Files and hashes: 1: Gb_tS4tDYUhq7ZFBBu6bXOHKxSQ.roa (hash: j+ql1A+cPykDsn/U+bRsvn2rorjyFgGlp+mF0Qt3tRQ=)
2: U3h815RuENiGRqx53lfMbsWeQTI.crl (hash: 8hvf7E2vwl4OPnvoPwblvErZUAu8jgtAbju47MysbJM=)
3: aDocXw9aAWTC2tonweXjSXZoNMs.roa (hash: M6NywDoKFY4uKrDQ3WCmTb7f59Ph9hBt6rzgbYZvGvU=)
4: dqRRF9NrCy7kpjHElym2fRaWWpg.roa (hash: yVbcvUrGd5qHEf8kKaXL1t+AGyhms8ILF9sbmeot86I=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/df/c77825-68a3-4b3e-bc90-523fd86a07c7/1/U3h815RuENiGRqx53lfMbsWeQTI.crl
rsync://rpki.ripe.net/repository/DEFAULT/df/c77825-68a3-4b3e-bc90-523fd86a07c7/1/U3h815RuENiGRqx53lfMbsWeQTI.mft
rsync://rpki.ripe.net/repository/DEFAULT/U3h815RuENiGRqx53lfMbsWeQTI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 09 May 2025 11:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:af:8e:05:52:b4:d9:cc:56:5e:84:74:07:a9:4c:40:a9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=53787cd7946e10d88646ac79de57cc6ec59e4132
Validity
Not Before: May 8 11:00:42 2025 GMT
Not After : May 9 11:00:42 2025 GMT
Subject: CN=0c554b0d91feeb6ef30004d3d38d090cbbd077ec
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:44:84:bd:65:67:91:cf:a3:91:02:15:2d:8d:
2c:29:f9:44:4f:34:e5:df:03:ac:f6:8d:eb:26:56:
5f:a1:77:a5:35:78:96:46:bc:3d:19:02:92:27:1a:
20:90:f7:35:3e:0f:1d:2a:f3:b8:30:4e:66:13:bb:
0b:95:06:9e:4b:ff:26:e4:b9:d0:b1:ae:1f:73:0d:
94:99:8e:bd:a5:2d:25:b8:a7:65:b8:e8:62:e3:6d:
5d:76:0e:98:82:4f:9a:f2:19:27:56:90:52:41:90:
8e:4a:e6:94:a6:18:f4:31:d7:a9:50:41:77:b7:53:
1d:ab:88:e1:96:ec:d3:2a:9e:e0:57:6c:e5:64:fa:
7b:96:de:5f:1e:e0:51:a4:3d:92:96:84:41:2e:19:
1f:77:1b:a1:4d:cb:99:ac:7e:45:04:1b:03:74:93:
10:4c:30:1c:0e:f4:ee:b7:0c:3c:1e:79:25:dc:c0:
e7:e9:1e:df:0f:37:e0:fe:9e:e4:86:fa:bb:96:97:
14:38:ad:d8:10:a5:10:b5:1e:16:59:30:0e:55:40:
a1:e6:1f:9d:ed:24:db:77:2c:4d:6d:90:51:bd:16:
78:e6:e5:e9:6c:47:c1:27:36:77:92:e3:f1:42:70:
7e:57:a7:88:2f:4f:a3:5e:28:f0:94:51:cc:15:66:
e8:73
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0C:55:4B:0D:91:FE:EB:6E:F3:00:04:D3:D3:8D:09:0C:BB:D0:77:EC
X509v3 Authority Key Identifier:
keyid:53:78:7C:D7:94:6E:10:D8:86:46:AC:79:DE:57:CC:6E:C5:9E:41:32
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/U3h815RuENiGRqx53lfMbsWeQTI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/df/c77825-68a3-4b3e-bc90-523fd86a07c7/1/U3h815RuENiGRqx53lfMbsWeQTI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/df/c77825-68a3-4b3e-bc90-523fd86a07c7/1/U3h815RuENiGRqx53lfMbsWeQTI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
2b:3c:ef:0d:03:be:2b:85:f7:71:65:af:b4:9d:16:eb:9b:ad:
89:40:a7:92:14:4c:97:6f:01:02:00:9c:45:9f:70:ea:19:e4:
99:5b:54:6e:a7:05:82:ad:8b:cb:c1:d6:33:47:6f:e6:3f:d9:
1f:74:9a:2c:19:02:71:02:26:ae:94:eb:a0:8c:f6:2b:09:5c:
f4:67:1a:c7:c4:3b:b5:ab:fd:23:17:c4:34:37:c0:0a:9a:75:
c0:3c:0d:c0:0d:b0:5e:9a:ed:ef:b9:21:f5:b2:f7:60:73:fa:
1f:07:a4:d3:46:d8:7a:a7:69:31:69:de:4c:f3:13:69:be:6a:
ae:2c:49:83:4b:84:9b:03:68:7d:bb:c0:1d:c5:2d:56:9a:d7:
12:d3:e7:a4:23:19:dd:5a:d4:07:9a:7a:cb:74:78:6a:d0:28:
fe:53:41:0f:32:b4:96:02:6f:90:0b:38:94:b7:32:7f:e7:89:
2c:6a:ea:25:c6:f1:3b:cb:7b:9c:dc:23:17:d5:34:c2:ce:cd:
cd:78:62:25:00:31:0f:49:f1:e2:0c:26:7b:c6:4a:a0:69:f8:
0c:67:10:1b:2a:f4:c7:ef:4c:da:e2:1c:79:f7:82:cf:78:ac:
3e:4b:fc:3e:5b:ac:81:f2:c6:14:65:4b:b7:9b:59:33:d5:41:
80:d2:97:9f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu May 8 18:59:48 2025 by rpki-client