Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f7/6f263a-4193-4309-9c7a-82a6990df38d/1/U2WD3oNvzCjnC_ZurbjTjz9k9OE.mft
File: U2WD3oNvzCjnC_ZurbjTjz9k9OE.mft (raw, json)
Hash identifier: UoqUPn8s0xdwMGfFNe3OQG8VJCgbq0S8eNKsuGx7jSE=
Subject key identifier: 92:B8:42:70:DB:9E:69:72:78:35:14:12:5A:17:E4:0A:03:60:F9:7F
Authority key identifier: 53:65:83:DE:83:6F:CC:28:E7:0B:F6:6E:AD:B8:D3:8F:3F:64:F4:E1
Certificate issuer: /CN=536583de836fcc28e70bf66eadb8d38f3f64f4e1
Certificate serial: 0196BECA4D5309F547A25FCE5806E7FFC9D8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/U2WD3oNvzCjnC_ZurbjTjz9k9OE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f7/6f263a-4193-4309-9c7a-82a6990df38d/1/U2WD3oNvzCjnC_ZurbjTjz9k9OE.mft
Manifest number: 1532
Signing time: Sun 11 May 2025 10:00:51 +0000
Manifest this update: Sun 11 May 2025 10:00:51 +0000
Manifest next update: Mon 12 May 2025 10:00:51 +0000
Files and hashes: 1: U2WD3oNvzCjnC_ZurbjTjz9k9OE.crl (hash: BR/64thKaKj9YLKvvMT7mW674ppP+YluGygWO+4yvT8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f7/6f263a-4193-4309-9c7a-82a6990df38d/1/U2WD3oNvzCjnC_ZurbjTjz9k9OE.crl
rsync://rpki.ripe.net/repository/DEFAULT/f7/6f263a-4193-4309-9c7a-82a6990df38d/1/U2WD3oNvzCjnC_ZurbjTjz9k9OE.mft
rsync://rpki.ripe.net/repository/DEFAULT/U2WD3oNvzCjnC_ZurbjTjz9k9OE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 12 May 2025 10:00:51 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:be:ca:4d:53:09:f5:47:a2:5f:ce:58:06:e7:ff:c9:d8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=536583de836fcc28e70bf66eadb8d38f3f64f4e1
Validity
Not Before: May 11 10:00:51 2025 GMT
Not After : May 12 10:00:51 2025 GMT
Subject: CN=92b84270db9e6972783514125a17e40a0360f97f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e2:b5:22:1e:c1:6c:8c:6b:bc:ca:8d:e8:b0:d3:
2e:a6:3f:6e:21:98:26:6f:47:c2:45:70:6f:61:40:
02:70:be:e2:d4:94:84:aa:31:6c:cd:48:cc:69:8c:
be:17:19:7c:1c:5b:63:32:68:5e:89:0a:2c:bc:27:
a8:c1:db:6e:3e:1a:9a:04:cc:a3:ac:0b:72:e0:a1:
f7:e1:54:9d:a8:46:95:33:06:e7:64:e7:9d:1d:23:
c4:3d:34:9c:31:8f:a4:b8:aa:57:56:0d:01:42:ad:
3b:e9:b8:77:4e:a2:d4:9f:3d:98:ab:9f:89:35:7c:
a8:f8:38:63:f4:30:97:84:a5:a9:89:89:ac:3a:78:
f6:6a:b4:c8:7b:9c:e4:90:30:0c:c6:37:fa:e2:84:
da:f7:b6:97:fd:1a:96:18:27:74:b4:7b:85:e4:e7:
ee:de:2b:68:2d:ab:4b:d8:52:01:25:17:58:a4:00:
2d:d6:c6:43:3b:75:88:27:e6:12:dd:9a:d4:33:60:
c5:d2:ba:9c:4c:ef:12:b8:cb:97:14:ed:36:07:70:
1f:82:0d:82:c9:e9:01:00:8e:6b:49:86:d4:9e:f2:
8b:b8:dc:d8:1e:7b:0c:43:e1:27:49:20:4b:94:32:
8c:39:01:29:72:29:b5:68:7a:d6:49:b5:dc:b8:b8:
0a:2d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
92:B8:42:70:DB:9E:69:72:78:35:14:12:5A:17:E4:0A:03:60:F9:7F
X509v3 Authority Key Identifier:
keyid:53:65:83:DE:83:6F:CC:28:E7:0B:F6:6E:AD:B8:D3:8F:3F:64:F4:E1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/U2WD3oNvzCjnC_ZurbjTjz9k9OE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f7/6f263a-4193-4309-9c7a-82a6990df38d/1/U2WD3oNvzCjnC_ZurbjTjz9k9OE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f7/6f263a-4193-4309-9c7a-82a6990df38d/1/U2WD3oNvzCjnC_ZurbjTjz9k9OE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
71:02:62:c9:f3:df:55:32:92:a4:6f:33:5e:8b:f7:60:c2:18:
f7:cf:8d:07:e0:79:97:6f:30:47:e5:f8:42:00:2e:19:e8:7b:
2f:9f:ac:c8:da:69:c2:ec:3d:7e:18:8d:7a:2c:a3:1e:6e:1c:
eb:c7:9c:ed:6e:f6:d9:37:85:25:1c:34:2a:c2:ca:ec:97:df:
42:4c:44:0d:22:cb:c3:62:c3:3a:fc:cc:cf:14:77:44:91:ea:
e8:a7:ef:31:99:57:7d:6a:57:e1:39:63:d5:97:43:36:5b:07:
50:6a:98:4d:99:e3:fc:ed:67:5a:89:80:53:69:23:00:43:c6:
58:56:4a:ab:27:60:fc:9a:b8:6d:83:98:6c:87:31:2f:bf:c7:
75:d4:33:6d:74:96:b2:ea:5a:8e:22:fb:07:f7:91:ca:34:0e:
5b:f4:54:64:fa:ac:7e:c5:3c:b8:73:f3:5f:ef:86:2b:bf:9e:
bd:c9:b2:e6:e4:f2:0e:70:45:21:19:5f:5d:23:9c:81:76:b9:
d0:9c:a3:38:88:9c:d7:9b:f9:d2:b5:6e:47:d5:6c:d9:b2:4c:
0f:76:11:93:45:f8:5b:4f:c1:2d:0a:22:6c:88:b0:03:0b:0d:
77:df:f2:5a:c6:4b:49:55:03:e6:ff:57:a9:03:28:a6:5f:c8:
80:e6:6c:b7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun May 11 18:54:13 2025 by rpki-client