Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e8/af5657-c8b2-4855-82a7-1dd57e3f3d97/1/U1UECuknhr8XJ7a07MEJO4p0Aes.mft
File: U1UECuknhr8XJ7a07MEJO4p0Aes.mft (raw, json)
Hash identifier: +rxqikkv9vygG0qlgAEK7bG4rcgsrVEOUPyMJDLPOqA=
Subject key identifier: 41:57:98:49:50:FF:3F:4F:75:E2:AC:DD:48:7D:AB:4C:DC:F8:8C:FE
Authority key identifier: 53:55:04:0A:E9:27:86:BF:17:27:B6:B4:EC:C1:09:3B:8A:74:01:EB
Certificate issuer: /CN=5355040ae92786bf1727b6b4ecc1093b8a7401eb
Certificate serial: 0196C3F0CDF039B68D8443AC7A02FD954700
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/U1UECuknhr8XJ7a07MEJO4p0Aes.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e8/af5657-c8b2-4855-82a7-1dd57e3f3d97/1/U1UECuknhr8XJ7a07MEJO4p0Aes.mft
Manifest number: 099A
Signing time: Mon 12 May 2025 10:01:00 +0000
Manifest this update: Mon 12 May 2025 10:01:00 +0000
Manifest next update: Tue 13 May 2025 10:01:00 +0000
Files and hashes: 1: GBm75ZmZioJB2ocCMhAt7gwcAjo.roa (hash: gsh5fLNtNPH78sBeeVxRzXrv6jA9hVTz/xvnQZtNCkc=)
2: U1UECuknhr8XJ7a07MEJO4p0Aes.crl (hash: 2g10CFRjsb54YQAax0cSNgatq4cnzjso83wo5INUl2Y=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e8/af5657-c8b2-4855-82a7-1dd57e3f3d97/1/U1UECuknhr8XJ7a07MEJO4p0Aes.crl
rsync://rpki.ripe.net/repository/DEFAULT/e8/af5657-c8b2-4855-82a7-1dd57e3f3d97/1/U1UECuknhr8XJ7a07MEJO4p0Aes.mft
rsync://rpki.ripe.net/repository/DEFAULT/U1UECuknhr8XJ7a07MEJO4p0Aes.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 13 May 2025 10:01:00 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:c3:f0:cd:f0:39:b6:8d:84:43:ac:7a:02:fd:95:47:00
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5355040ae92786bf1727b6b4ecc1093b8a7401eb
Validity
Not Before: May 12 10:01:00 2025 GMT
Not After : May 13 10:01:00 2025 GMT
Subject: CN=4157984950ff3f4f75e2acdd487dab4cdcf88cfe
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:fc:db:f5:01:4e:59:bd:ce:77:d6:5d:4f:15:
e6:c2:31:de:51:0f:98:ea:49:20:01:38:9e:83:f7:
5f:b1:a3:67:4c:0f:28:30:31:9c:35:99:1a:ae:06:
50:9a:7f:31:f8:a4:2e:43:f7:72:a7:76:3d:61:50:
de:20:86:a5:33:51:6d:bf:27:07:81:6b:60:39:db:
a8:30:89:62:a3:97:ba:57:3c:74:5b:2d:19:7c:79:
ca:5d:a1:7e:a4:a4:0f:4e:26:58:ce:fb:4b:06:2f:
59:f2:72:34:40:75:2d:84:e6:2d:56:9f:ee:f9:33:
46:82:84:0e:d7:52:81:77:1f:7f:c6:3f:8a:78:82:
73:d6:5d:49:7a:2a:c8:06:5a:e3:db:67:90:79:0a:
f7:88:1b:e0:e7:b1:bd:53:82:cc:f5:49:58:f8:b3:
a3:88:02:c9:79:4d:19:98:fb:26:dc:e7:99:5c:f0:
97:c3:a4:d5:18:2e:8e:c5:71:47:20:3c:2e:d2:ff:
8d:61:54:20:30:f0:e0:2a:a2:3f:d3:ca:0c:95:66:
f9:fd:6a:04:85:c9:91:4c:3f:ed:25:9b:9f:d1:54:
f0:a5:73:f7:6a:20:8a:ca:04:27:00:16:ca:c9:5c:
2d:cb:b7:20:81:0f:62:ab:b6:b5:5d:01:ff:1c:ec:
c9:01
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
41:57:98:49:50:FF:3F:4F:75:E2:AC:DD:48:7D:AB:4C:DC:F8:8C:FE
X509v3 Authority Key Identifier:
keyid:53:55:04:0A:E9:27:86:BF:17:27:B6:B4:EC:C1:09:3B:8A:74:01:EB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/U1UECuknhr8XJ7a07MEJO4p0Aes.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e8/af5657-c8b2-4855-82a7-1dd57e3f3d97/1/U1UECuknhr8XJ7a07MEJO4p0Aes.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e8/af5657-c8b2-4855-82a7-1dd57e3f3d97/1/U1UECuknhr8XJ7a07MEJO4p0Aes.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
3e:ba:c1:e5:5e:81:68:2b:6f:a5:e3:3f:09:0a:c0:8a:30:ee:
28:33:4f:ea:65:6f:66:3f:5b:59:77:b5:c1:1b:34:aa:1b:b4:
70:20:22:33:5e:26:e1:e0:c1:ac:dc:2b:9f:7c:a6:4a:82:5b:
12:fd:d0:b2:56:0c:bd:43:2e:6f:c4:e6:19:47:5f:23:7c:27:
2f:9a:2a:0c:7f:15:95:fc:04:d9:81:50:e6:7e:5d:b5:f0:f1:
9f:ae:0d:cd:25:d2:77:ad:32:50:ee:35:eb:28:6e:3c:8d:61:
28:ed:58:41:25:e0:3b:a5:45:39:d4:5c:1d:57:9c:d1:43:87:
46:68:9d:58:6e:27:ba:eb:af:bc:5d:3d:c5:1b:1e:c6:a1:d5:
5c:89:1e:2e:1c:88:d0:d8:12:a6:56:9e:8b:fd:ae:22:68:7d:
b8:3c:68:35:5b:76:ff:63:31:00:56:7d:76:10:a3:22:f9:4a:
ca:c9:87:1b:90:7f:5b:b5:de:8e:a8:95:3b:b8:30:39:33:16:
18:02:62:cf:ff:41:5c:8f:47:08:43:47:07:44:77:d3:76:c7:
0b:97:0b:00:d3:01:d2:b7:68:f2:65:2a:8f:6d:bd:8c:ba:09:
c3:76:b6:31:a8:2f:6a:76:fd:3c:dc:71:09:4b:73:10:6b:7d:
11:1e:c1:63
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon May 12 20:15:41 2025 by rpki-client