Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/69/ab3219-c64b-470e-8341-3a12027400e6/1/ukQzhlmFp7teJpw3lK5vFkz8Lds.mft
File: ukQzhlmFp7teJpw3lK5vFkz8Lds.mft (raw, json)
Hash identifier: x5HssBXoWytKaQsYgIqOj2waYnufAHr3q4ZE9bJKld8=
Subject key identifier: 9E:EA:AC:05:7C:DC:78:FD:CE:FB:99:D2:7B:B1:CE:5D:D1:16:B5:89
Authority key identifier: BA:44:33:86:59:85:A7:BB:5E:26:9C:37:94:AE:6F:16:4C:FC:2D:DB
Certificate issuer: /CN=ba4433865985a7bb5e269c3794ae6f164cfc2ddb
Certificate serial: 01984A7830E5A0A274140CE84BDB3B8E5BEF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ukQzhlmFp7teJpw3lK5vFkz8Lds.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/69/ab3219-c64b-470e-8341-3a12027400e6/1/ukQzhlmFp7teJpw3lK5vFkz8Lds.mft
Manifest number: 05E1
Signing time: Sun 27 Jul 2025 06:00:47 +0000
Manifest this update: Sun 27 Jul 2025 06:00:47 +0000
Manifest next update: Mon 28 Jul 2025 06:00:47 +0000
Files and hashes: 1: AlkZJ5y5SgK5NicIMpQu5G4y-kk.roa (hash: 6pDsa6TgLwnLkjOOWWhXhHFWrv8bvlopmayBUNqycZY=)
2: ukQzhlmFp7teJpw3lK5vFkz8Lds.crl (hash: g1D0HmG+p18QXLgRfbsoUkPmMpyRxx//evm4G4Rmxg0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/69/ab3219-c64b-470e-8341-3a12027400e6/1/ukQzhlmFp7teJpw3lK5vFkz8Lds.crl
rsync://rpki.ripe.net/repository/DEFAULT/69/ab3219-c64b-470e-8341-3a12027400e6/1/ukQzhlmFp7teJpw3lK5vFkz8Lds.mft
rsync://rpki.ripe.net/repository/DEFAULT/ukQzhlmFp7teJpw3lK5vFkz8Lds.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 28 Jul 2025 05:00:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:4a:78:30:e5:a0:a2:74:14:0c:e8:4b:db:3b:8e:5b:ef
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ba4433865985a7bb5e269c3794ae6f164cfc2ddb
Validity
Not Before: Jul 27 06:00:47 2025 GMT
Not After : Jul 28 06:00:47 2025 GMT
Subject: CN=9eeaac057cdc78fdcefb99d27bb1ce5dd116b589
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d7:ed:3d:6a:29:da:79:a3:b7:7b:47:7a:4f:8b:
d8:c5:c7:85:e8:e4:54:54:1c:dc:8f:04:c1:53:ca:
91:1a:21:0f:90:26:b6:57:53:44:ed:41:d4:d0:6b:
d4:55:04:08:1c:f7:33:90:09:98:ae:92:c7:59:40:
40:0a:e1:51:97:6a:2d:1d:ff:d1:a6:77:9c:05:bc:
9e:2a:95:84:11:f1:b7:e3:33:8a:dd:f0:bc:f4:5f:
89:cf:4e:2b:2b:1a:76:3f:9e:ec:45:06:cd:a8:56:
64:7f:e0:ed:6e:22:8c:3b:1b:b8:df:18:bf:92:2e:
08:ae:6b:1b:89:8a:40:68:f7:34:73:48:25:e8:2a:
76:d0:c0:12:11:99:d0:65:02:0d:7b:d3:eb:6d:30:
85:2c:3f:01:2e:2c:c4:3e:6e:88:3a:dd:3d:e2:ce:
4e:33:f6:53:ae:a9:e0:d3:81:10:ff:3e:82:1a:42:
82:cd:53:e4:da:07:fb:8a:d0:d4:62:0d:25:ef:94:
b2:9d:21:ed:ea:81:34:36:49:e5:14:c9:3c:84:88:
a2:bd:c6:44:0b:b3:80:53:63:ff:1b:be:8d:82:99:
71:0c:31:be:6b:1e:a9:2c:d7:81:7f:f4:ec:42:40:
94:53:e0:fd:2f:ef:44:e2:7e:a3:7d:39:28:ef:a0:
7a:3b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9E:EA:AC:05:7C:DC:78:FD:CE:FB:99:D2:7B:B1:CE:5D:D1:16:B5:89
X509v3 Authority Key Identifier:
keyid:BA:44:33:86:59:85:A7:BB:5E:26:9C:37:94:AE:6F:16:4C:FC:2D:DB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ukQzhlmFp7teJpw3lK5vFkz8Lds.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/69/ab3219-c64b-470e-8341-3a12027400e6/1/ukQzhlmFp7teJpw3lK5vFkz8Lds.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/69/ab3219-c64b-470e-8341-3a12027400e6/1/ukQzhlmFp7teJpw3lK5vFkz8Lds.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
15:d9:1f:a7:2e:e8:a8:fb:fc:75:a1:d5:c0:44:07:2f:f4:22:
5d:8a:27:99:fa:59:11:a6:ee:36:52:22:b3:5c:29:4f:a1:06:
a4:c8:09:14:08:51:5c:b6:47:a7:ae:e8:0d:0d:83:48:6d:72:
32:37:6e:74:35:ba:92:52:f9:c7:6b:3b:ac:fa:19:be:4d:6f:
60:fb:20:8a:63:ca:87:1d:0a:9d:5c:b0:f9:3b:b3:f9:3e:6d:
47:29:59:9e:f5:5e:8b:f2:6f:03:fb:3c:2e:dc:aa:aa:86:14:
b5:9d:42:48:dd:53:4e:cb:0e:6b:df:e0:21:c2:44:e2:bc:5b:
89:6e:f4:57:75:0a:43:61:df:ca:b0:98:59:64:1a:33:e0:c2:
48:49:84:39:ed:c0:08:e7:d0:3a:14:2d:a5:61:ad:4d:9f:23:
38:33:be:2f:e7:86:f5:4c:f1:f7:cc:b5:14:e1:8f:83:61:86:
fa:3a:9b:db:6b:d7:35:18:43:18:05:5a:55:7c:57:9f:80:70:
62:3e:7a:73:f4:aa:ec:82:58:84:e2:24:04:01:a7:62:e2:a9:
cd:be:73:2d:e2:8a:8f:94:3b:a9:f7:14:99:22:7e:dc:91:af:
85:0c:ef:e5:7d:5f:bc:6a:0e:51:8d:b7:79:4e:76:5f:d7:00:
73:86:da:57
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jul 27 10:36:11 2025 by rpki-client