Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0f/368a8d-eff2-49c2-a963-a1861e53544d/1/uNPsuPcR4LkrUFuKD3pe4EIpE5U.mft
File: uNPsuPcR4LkrUFuKD3pe4EIpE5U.mft (raw, json)
Hash identifier: TnQ8GdYm7Dl4DQ8pAfK3fqnJHVvFGML5DGRLP38FO2g=
Subject key identifier: C1:23:E1:8B:1A:39:5F:82:4D:D9:0C:06:A5:0F:50:4E:BE:72:61:66
Authority key identifier: B8:D3:EC:B8:F7:11:E0:B9:2B:50:5B:8A:0F:7A:5E:E0:42:29:13:95
Certificate issuer: /CN=b8d3ecb8f711e0b92b505b8a0f7a5ee042291395
Certificate serial: 0197485522DCCE4353210A5BC1F320D4C8C5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/uNPsuPcR4LkrUFuKD3pe4EIpE5U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0f/368a8d-eff2-49c2-a963-a1861e53544d/1/uNPsuPcR4LkrUFuKD3pe4EIpE5U.mft
Manifest number: 0E37
Signing time: Sat 07 Jun 2025 03:00:28 +0000
Manifest this update: Sat 07 Jun 2025 03:00:28 +0000
Manifest next update: Sun 08 Jun 2025 03:00:28 +0000
Files and hashes: 1: P77Q3SiMGocGRB6eMcUK3MHjTkI.roa (hash: s4PL8KdADdPsj9L9e3HHEkTIVlBNiN0s/bQOnwu+zOw=)
2: uNPsuPcR4LkrUFuKD3pe4EIpE5U.crl (hash: DoDzv1AWGGutZ/ZU3NUEXt4NLtUzo2iwEv597oVTqow=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0f/368a8d-eff2-49c2-a963-a1861e53544d/1/uNPsuPcR4LkrUFuKD3pe4EIpE5U.crl
rsync://rpki.ripe.net/repository/DEFAULT/0f/368a8d-eff2-49c2-a963-a1861e53544d/1/uNPsuPcR4LkrUFuKD3pe4EIpE5U.mft
rsync://rpki.ripe.net/repository/DEFAULT/uNPsuPcR4LkrUFuKD3pe4EIpE5U.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 08 Jun 2025 00:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:48:55:22:dc:ce:43:53:21:0a:5b:c1:f3:20:d4:c8:c5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b8d3ecb8f711e0b92b505b8a0f7a5ee042291395
Validity
Not Before: Jun 7 03:00:28 2025 GMT
Not After : Jun 8 03:00:28 2025 GMT
Subject: CN=c123e18b1a395f824dd90c06a50f504ebe726166
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d3:9c:14:dd:c6:12:91:14:e1:a0:56:f9:32:17:
cf:fb:9c:f2:51:cc:fb:d0:79:df:82:c7:07:45:7d:
92:05:76:c6:62:61:6d:6e:ef:25:40:77:b4:a2:1e:
52:37:2e:11:e2:72:2d:1a:b0:e0:33:2d:1b:97:bf:
90:fe:e4:17:57:4e:2b:c7:53:40:94:59:c0:67:8f:
4a:63:93:9a:5d:fa:81:20:87:cb:90:2d:7f:de:f9:
65:f8:c1:bd:8a:b7:9a:24:e7:be:1f:44:f5:9a:a6:
6a:cd:b3:26:a6:61:e6:5a:c5:78:87:4a:8d:14:93:
1a:28:f3:39:3a:63:ef:11:22:b3:86:8b:02:6e:b3:
cf:f2:13:ea:fd:28:f2:bb:8c:ad:ed:98:03:52:2f:
f2:e4:e5:a3:a5:bd:fc:c1:22:ed:13:83:12:13:3d:
d5:6c:1a:a3:14:3a:00:3f:40:51:7d:3f:a9:2c:1a:
95:a0:1b:e6:e0:72:f9:2a:88:91:ad:86:a7:9b:2d:
cd:dc:54:34:ba:f4:56:5e:ed:f6:19:0d:3a:7e:e5:
51:31:e3:b0:d0:bd:1a:2c:7a:32:f5:36:38:c9:8a:
5a:10:99:3c:ec:06:6e:a9:98:5e:b6:86:68:f2:8f:
6f:20:25:89:63:3e:56:4a:fd:1b:e2:48:8b:e5:a3:
a0:03
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C1:23:E1:8B:1A:39:5F:82:4D:D9:0C:06:A5:0F:50:4E:BE:72:61:66
X509v3 Authority Key Identifier:
keyid:B8:D3:EC:B8:F7:11:E0:B9:2B:50:5B:8A:0F:7A:5E:E0:42:29:13:95
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/uNPsuPcR4LkrUFuKD3pe4EIpE5U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0f/368a8d-eff2-49c2-a963-a1861e53544d/1/uNPsuPcR4LkrUFuKD3pe4EIpE5U.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0f/368a8d-eff2-49c2-a963-a1861e53544d/1/uNPsuPcR4LkrUFuKD3pe4EIpE5U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
a9:5d:19:a0:0c:58:8e:91:ef:55:0f:7b:39:f9:d1:a5:1e:d7:
d9:fd:fb:1b:95:f4:9b:8e:fd:8e:35:29:8c:75:14:0a:64:18:
90:9a:67:d1:2f:0d:75:f7:b2:fe:28:07:e6:89:c0:12:ca:ac:
32:ba:3b:ac:a9:be:15:ed:f0:cf:7e:c6:f1:36:17:58:ad:1e:
63:c9:5e:df:8c:d9:fe:13:1d:00:8b:33:16:c5:62:ef:bb:f9:
c4:a4:c5:27:3c:93:3b:44:59:5f:13:07:21:25:20:7e:61:84:
ec:a7:a9:c5:81:e1:11:71:97:a6:2e:9c:74:41:da:f2:43:d6:
a0:ad:d8:35:da:f9:13:70:cc:28:c4:e4:df:16:6b:83:83:b0:
f8:d8:57:6d:de:c4:0a:91:0d:00:85:97:34:99:d3:58:b0:3d:
07:e5:47:7f:7e:14:ec:9e:ae:17:09:c9:ce:49:55:a1:8a:77:
29:33:39:d6:5a:38:dd:f4:27:68:cd:f6:ed:c4:37:94:16:ff:
d2:cb:2b:c4:18:c7:ba:e8:45:ca:9a:ad:e8:ea:59:f8:d8:57:
ba:3e:70:e0:03:be:85:2f:ad:fc:53:47:4c:3d:79:4e:06:3e:
65:65:7e:50:f5:da:15:a3:2a:61:a0:5e:2f:a4:0b:36:c0:7b:
3e:6d:13:82
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 7 09:17:50 2025 by rpki-client