Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/18/c46d1e-987d-4f65-b11b-2e2cd6435106/1/upfBVFbrYAQD7PuxbCDggWCUT48.mft
File: upfBVFbrYAQD7PuxbCDggWCUT48.mft (raw, json)
Hash identifier: bhWxTPfw7nKPIa7GEhh9wuOmG5B0LtEnogK3iR8sJQw=
Subject key identifier: B7:06:9C:0D:3B:DC:C7:18:9E:AB:30:93:CA:6A:9F:46:5F:03:11:A6
Authority key identifier: BA:97:C1:54:56:EB:60:04:03:EC:FB:B1:6C:20:E0:81:60:94:4F:8F
Certificate issuer: /CN=ba97c15456eb600403ecfbb16c20e08160944f8f
Certificate serial: 019748C2FE80BC7F4180EBE63E047715D021
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/upfBVFbrYAQD7PuxbCDggWCUT48.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/18/c46d1e-987d-4f65-b11b-2e2cd6435106/1/upfBVFbrYAQD7PuxbCDggWCUT48.mft
Manifest number: 1205
Signing time: Sat 07 Jun 2025 05:00:28 +0000
Manifest this update: Sat 07 Jun 2025 05:00:28 +0000
Manifest next update: Sun 08 Jun 2025 05:00:28 +0000
Files and hashes: 1: SIndVbkKUXy4BUQozeoniwpZDAY.roa (hash: w+S8wcJNHWfC84514ZDYZ2EFFwmdH9ulSWKDE7QHbmQ=)
2: upfBVFbrYAQD7PuxbCDggWCUT48.crl (hash: WEvZq2mv7gN9onBikxeF7pvcC9kdNnSorIjIjkcXqLA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/18/c46d1e-987d-4f65-b11b-2e2cd6435106/1/upfBVFbrYAQD7PuxbCDggWCUT48.crl
rsync://rpki.ripe.net/repository/DEFAULT/18/c46d1e-987d-4f65-b11b-2e2cd6435106/1/upfBVFbrYAQD7PuxbCDggWCUT48.mft
rsync://rpki.ripe.net/repository/DEFAULT/upfBVFbrYAQD7PuxbCDggWCUT48.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 08 Jun 2025 05:00:28 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:48:c2:fe:80:bc:7f:41:80:eb:e6:3e:04:77:15:d0:21
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ba97c15456eb600403ecfbb16c20e08160944f8f
Validity
Not Before: Jun 7 05:00:28 2025 GMT
Not After : Jun 8 05:00:28 2025 GMT
Subject: CN=b7069c0d3bdcc7189eab3093ca6a9f465f0311a6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ed:e8:e1:95:3d:0e:77:c9:5d:18:5c:b5:78:6b:
ec:14:fb:f1:32:00:dd:31:12:69:22:87:02:b7:c2:
71:18:d9:d1:7a:b5:96:95:00:52:13:c5:db:69:a6:
4a:08:e8:f5:c7:b0:6d:e2:6e:79:cd:54:e3:b7:2f:
6b:a0:c4:04:4e:3f:41:0b:0c:b6:d0:ce:19:44:bd:
9b:f8:6a:88:90:05:37:01:7c:1f:7c:eb:a7:3f:3c:
e8:bc:ce:22:7c:c8:6f:f7:1e:5c:27:88:2a:17:20:
51:ce:0d:42:e2:88:99:09:5f:c0:fb:19:ce:07:00:
88:e4:f0:5f:52:6a:ac:35:98:af:39:7c:b1:5b:4f:
56:7d:91:ab:f4:04:1f:ff:c3:44:d4:9e:d1:9a:c0:
10:ef:14:76:8a:4d:3a:cc:9b:74:ab:48:2f:7e:82:
06:0b:c1:1d:3f:fe:6a:c8:76:3f:06:a3:16:95:c4:
aa:31:d3:ff:5d:a2:cb:f8:4f:28:9b:3b:81:2f:57:
1b:17:b4:35:53:a3:4e:57:c3:01:3a:42:50:31:a0:
ee:55:f6:c8:3a:85:28:c6:8a:2f:c8:28:bf:a8:c8:
bc:91:53:5d:f4:d5:bf:23:1d:93:e4:e3:e9:32:78:
aa:f9:b6:3b:21:ac:5b:72:2f:06:d0:52:ea:e7:54:
b2:3d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B7:06:9C:0D:3B:DC:C7:18:9E:AB:30:93:CA:6A:9F:46:5F:03:11:A6
X509v3 Authority Key Identifier:
keyid:BA:97:C1:54:56:EB:60:04:03:EC:FB:B1:6C:20:E0:81:60:94:4F:8F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/upfBVFbrYAQD7PuxbCDggWCUT48.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/18/c46d1e-987d-4f65-b11b-2e2cd6435106/1/upfBVFbrYAQD7PuxbCDggWCUT48.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/18/c46d1e-987d-4f65-b11b-2e2cd6435106/1/upfBVFbrYAQD7PuxbCDggWCUT48.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
43:13:fb:53:91:d6:e4:2c:88:07:0a:91:0f:c7:bf:d3:35:04:
1a:44:e4:e1:bc:77:8f:60:99:5c:e5:48:79:29:a6:27:8f:f0:
de:39:d4:34:bc:0e:09:e4:26:82:25:6a:a0:d1:51:5d:e0:a8:
1a:e3:c4:ee:49:dd:d1:48:3a:96:6a:7d:c6:75:f5:d2:8d:77:
39:39:ee:ed:d1:9e:ea:06:b4:7e:31:7d:84:95:f9:1b:35:d4:
22:7b:f2:9e:83:94:2f:83:4f:13:6b:a6:a5:36:f7:d5:a6:30:
57:44:8e:21:fd:80:a2:86:78:e0:c8:2a:1b:02:1a:7c:60:8a:
20:fc:47:55:4c:4b:ff:ca:c2:4e:dd:0d:0a:bd:bb:8c:43:40:
45:89:e5:3b:0e:9d:e3:19:28:b2:90:76:14:03:be:93:70:0e:
68:da:79:72:8e:bd:41:3b:fb:6a:a6:d2:96:b6:5b:45:d6:cb:
c3:d6:5a:98:06:4d:8d:76:0c:e8:8a:25:b7:39:bf:32:17:63:
c9:98:ad:f9:9c:b7:3e:56:2f:71:22:1a:c0:99:e8:c1:ad:dc:
4d:48:ef:92:f3:c1:68:50:bb:f2:b0:95:1c:6a:93:47:5a:98:
31:a7:c5:5f:12:bb:89:4f:4a:cd:29:18:8f:2b:7f:8c:9b:bf:
99:3d:09:b2
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZdIwv6AvH9BgOvmPgR3FdAhMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGJhOTdjMTU0NTZlYjYwMDQwM2VjZmJiMTZjMjBlMDgxNjA5
NDRmOGYwHhcNMjUwNjA3MDUwMDI4WhcNMjUwNjA4MDUwMDI4WjAzMTEwLwYDVQQD
EyhiNzA2OWMwZDNiZGNjNzE4OWVhYjMwOTNjYTZhOWY0NjVmMDMxMWE2MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA7ejhlT0Od8ldGFy1eGvsFPvxMgDd
MRJpIocCt8JxGNnRerWWlQBSE8XbaaZKCOj1x7Bt4m55zVTjty9roMQETj9BCwy2
0M4ZRL2b+GqIkAU3AXwffOunPzzovM4ifMhv9x5cJ4gqFyBRzg1C4oiZCV/A+xnO
BwCI5PBfUmqsNZivOXyxW09WfZGr9AQf/8NE1J7RmsAQ7xR2ik06zJt0q0gvfoIG
C8EdP/5qyHY/BqMWlcSqMdP/XaLL+E8omzuBL1cbF7Q1U6NOV8MBOkJQMaDuVfbI
OoUoxoovyCi/qMi8kVNd9NW/Ix2T5OPpMniq+bY7Iaxbci8G0FLq51SyPQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFLcGnA073McYnqswk8pqn0ZfAxGmMB8GA1UdIwQY
MBaAFLqXwVRW62AEA+z7sWwg4IFglE+PMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvdXBmQlZGYnJZQVFEN1B1eGJDRGdnV0NVVDQ4LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xOC9jNDZkMWUtOTg3ZC00ZjY1LWIxMWIt
MmUyY2Q2NDM1MTA2LzEvdXBmQlZGYnJZQVFEN1B1eGJDRGdnV0NVVDQ4Lm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8xOC9jNDZkMWUtOTg3ZC00ZjY1LWIxMWItMmUyY2Q2NDM1MTA2
LzEvdXBmQlZGYnJZQVFEN1B1eGJDRGdnV0NVVDQ4LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAQxP7U5HW
5CyIBwqRD8e/0zUEGkTk4bx3j2CZXOVIeSmmJ4/w3jnUNLwOCeQmgiVqoNFRXeCo
GuPE7knd0Ug6lmp9xnX10o13OTnu7dGe6ga0fjF9hJX5GzXUInvynoOUL4NPE2um
pTb31aYwV0SOIf2AooZ44MgqGwIafGCKIPxHVUxL/8rCTt0NCr27jENARYnlOw6d
4xkospB2FAO+k3AOaNp5co69QTv7aqbSlrZbRdbLw9ZamAZNjXYM6Ioltzm/Mhdj
yZit+Zy3PlYvcSIawJnowa3cTUjvkvPBaFC78rCVHGqTR1qYMafFXxK7iU9KzSkY
jyt/jJu/mT0Jsg==
-----END CERTIFICATE-----
Generated at Sat Jun 7 14:02:13 2025 by rpki-client