Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/29/4dfbd4-8ed7-45f2-950d-3aeb7cde036c/1/ufdp1EM7dwTfcD0WRbf-qO-_km4.mft
File: ufdp1EM7dwTfcD0WRbf-qO-_km4.mft (raw, json)
Hash identifier: 2/w2uEILwDycqgrXkFqC8HrbeKHwy9Yq5hGsp3S/HmM=
Subject key identifier: 07:27:54:9E:47:98:D9:00:9B:BB:A1:D9:13:E0:74:F4:B8:E6:B4:4B
Authority key identifier: B9:F7:69:D4:43:3B:77:04:DF:70:3D:16:45:B7:FE:A8:EF:BF:92:6E
Certificate issuer: /CN=b9f769d4433b7704df703d1645b7fea8efbf926e
Certificate serial: 0197458B168052F0F02E9EC89F354EE26290
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ufdp1EM7dwTfcD0WRbf-qO-_km4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/29/4dfbd4-8ed7-45f2-950d-3aeb7cde036c/1/ufdp1EM7dwTfcD0WRbf-qO-_km4.mft
Manifest number: 157D
Signing time: Fri 06 Jun 2025 14:00:32 +0000
Manifest this update: Fri 06 Jun 2025 14:00:32 +0000
Manifest next update: Sat 07 Jun 2025 14:00:32 +0000
Files and hashes: 1: 0JNfBNzU72OAoNIfj1jhygVeYQU.roa (hash: oGcfqT/JJ8LL0qB7k2QsQSpg+/RTt2AO65zLWXlHWAA=)
2: ufdp1EM7dwTfcD0WRbf-qO-_km4.crl (hash: HWRjqCs3LvK1o+Q4V+rkE5NCX+cZi7oUYQ/YiHDcAtM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/29/4dfbd4-8ed7-45f2-950d-3aeb7cde036c/1/ufdp1EM7dwTfcD0WRbf-qO-_km4.crl
rsync://rpki.ripe.net/repository/DEFAULT/29/4dfbd4-8ed7-45f2-950d-3aeb7cde036c/1/ufdp1EM7dwTfcD0WRbf-qO-_km4.mft
rsync://rpki.ripe.net/repository/DEFAULT/ufdp1EM7dwTfcD0WRbf-qO-_km4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 07 Jun 2025 14:00:32 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:45:8b:16:80:52:f0:f0:2e:9e:c8:9f:35:4e:e2:62:90
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b9f769d4433b7704df703d1645b7fea8efbf926e
Validity
Not Before: Jun 6 14:00:32 2025 GMT
Not After : Jun 7 14:00:32 2025 GMT
Subject: CN=0727549e4798d9009bbba1d913e074f4b8e6b44b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:98:84:d7:d1:07:44:0d:6b:2d:4e:98:b6:e0:60:
d6:5e:74:d5:6d:1d:0a:f8:5b:f4:d6:54:71:37:09:
12:a7:da:78:6b:5f:95:1d:84:2d:43:49:05:9f:70:
86:47:86:70:13:fb:28:7e:71:d8:c9:2e:b5:b5:70:
6c:1b:3f:04:90:eb:6c:01:14:d5:a9:29:88:6b:e4:
c3:86:9c:bf:b1:07:20:2f:d6:14:6d:9f:43:81:f6:
2b:10:f1:f6:27:39:ef:dc:37:32:12:c3:3d:36:89:
8f:d6:df:eb:dc:c3:80:fe:6a:a4:fd:72:fd:f9:4b:
d2:46:bc:ed:29:fb:fe:68:0f:fb:f8:9a:a9:c9:9c:
d7:16:c6:32:a0:59:44:69:db:79:fe:1f:2c:ee:87:
2f:fc:c1:c5:1d:cc:70:83:70:05:13:11:5c:90:82:
61:75:d3:95:48:cc:49:19:64:a1:cc:6f:31:d9:51:
11:40:69:3c:13:fe:ab:88:48:4a:41:48:c8:22:df:
f6:e9:fe:41:ec:9f:fe:01:98:0d:93:91:b2:bf:f6:
01:51:e8:c7:97:6f:3d:11:f4:5e:ea:78:59:79:20:
0f:ed:b2:9e:f1:5e:fd:52:36:53:ee:27:2c:f3:4b:
36:46:ed:e5:65:b3:d8:97:70:bd:70:7c:ef:7e:4b:
2c:71
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
07:27:54:9E:47:98:D9:00:9B:BB:A1:D9:13:E0:74:F4:B8:E6:B4:4B
X509v3 Authority Key Identifier:
keyid:B9:F7:69:D4:43:3B:77:04:DF:70:3D:16:45:B7:FE:A8:EF:BF:92:6E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ufdp1EM7dwTfcD0WRbf-qO-_km4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/29/4dfbd4-8ed7-45f2-950d-3aeb7cde036c/1/ufdp1EM7dwTfcD0WRbf-qO-_km4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/29/4dfbd4-8ed7-45f2-950d-3aeb7cde036c/1/ufdp1EM7dwTfcD0WRbf-qO-_km4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
8d:b6:2e:0b:b0:da:7a:eb:e5:e6:a7:8a:8d:c3:f8:50:c2:91:
95:2e:9c:d1:73:d5:6a:ca:62:84:e4:1b:df:9f:87:88:be:5e:
3a:01:f5:ed:89:0a:01:e8:e4:89:c6:fe:9b:75:f9:89:7f:88:
3a:c0:d7:c3:60:77:a5:eb:5e:b8:04:22:46:41:d9:42:11:3a:
ef:3b:83:75:b1:00:ca:12:4f:25:f7:a5:21:ef:f1:50:7b:f3:
a6:d7:29:f6:dc:27:9e:a0:e8:15:0f:13:98:24:b0:3c:c3:08:
1e:d2:0f:0d:f8:3f:0a:e5:d1:58:c4:e3:1c:c2:d8:cb:b0:dd:
ea:52:44:c9:51:c4:66:ab:b8:71:fd:32:bf:43:05:af:44:19:
bd:e6:d9:e6:9b:95:37:c2:1d:ed:c0:74:0b:36:28:31:06:b7:
b4:c1:be:20:d1:7c:09:11:8e:e1:06:fa:ff:15:03:74:dd:e5:
ab:1c:7b:42:14:01:1a:1e:bd:66:bc:97:0b:a7:f4:92:08:53:
5c:aa:0a:eb:c2:51:de:23:e1:30:e5:f5:b3:a5:d9:5f:c3:2c:
d3:e5:c6:ee:f9:48:4d:29:a1:1d:99:5e:62:44:7f:d3:9d:2b:
18:74:bb:85:7b:82:52:73:1d:94:2d:3a:85:c9:03:ee:2a:38:
28:d0:ba:06
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZdFixaAUvDwLp7InzVO4mKQMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGI5Zjc2OWQ0NDMzYjc3MDRkZjcwM2QxNjQ1YjdmZWE4ZWZi
ZjkyNmUwHhcNMjUwNjA2MTQwMDMyWhcNMjUwNjA3MTQwMDMyWjAzMTEwLwYDVQQD
EygwNzI3NTQ5ZTQ3OThkOTAwOWJiYmExZDkxM2UwNzRmNGI4ZTZiNDRiMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAmITX0QdEDWstTpi24GDWXnTVbR0K
+Fv01lRxNwkSp9p4a1+VHYQtQ0kFn3CGR4ZwE/sofnHYyS61tXBsGz8EkOtsARTV
qSmIa+TDhpy/sQcgL9YUbZ9DgfYrEPH2Jznv3DcyEsM9NomP1t/r3MOA/mqk/XL9
+UvSRrztKfv+aA/7+JqpyZzXFsYyoFlEadt5/h8s7ocv/MHFHcxwg3AFExFckIJh
ddOVSMxJGWShzG8x2VERQGk8E/6riEhKQUjIIt/26f5B7J/+AZgNk5Gyv/YBUejH
l289EfRe6nhZeSAP7bKe8V79UjZT7ics80s2Ru3lZbPYl3C9cHzvfksscQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFAcnVJ5HmNkAm7uh2RPgdPS45rRLMB8GA1UdIwQY
MBaAFLn3adRDO3cE33A9FkW3/qjvv5JuMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvdWZkcDFFTTdkd1RmY0QwV1JiZi1xTy1fa200LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yOS80ZGZiZDQtOGVkNy00NWYyLTk1MGQt
M2FlYjdjZGUwMzZjLzEvdWZkcDFFTTdkd1RmY0QwV1JiZi1xTy1fa200Lm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8yOS80ZGZiZDQtOGVkNy00NWYyLTk1MGQtM2FlYjdjZGUwMzZj
LzEvdWZkcDFFTTdkd1RmY0QwV1JiZi1xTy1fa200LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAjbYuC7Da
euvl5qeKjcP4UMKRlS6c0XPVaspihOQb35+HiL5eOgH17YkKAejkicb+m3X5iX+I
OsDXw2B3peteuAQiRkHZQhE67zuDdbEAyhJPJfelIe/xUHvzptcp9twnnqDoFQ8T
mCSwPMMIHtIPDfg/CuXRWMTjHMLYy7Dd6lJEyVHEZqu4cf0yv0MFr0QZvebZ5puV
N8Id7cB0CzYoMQa3tMG+INF8CRGO4Qb6/xUDdN3lqxx7QhQBGh69ZryXC6f0kghT
XKoK68JR3iPhMOX1s6XZX8Ms0+XG7vlITSmhHZleYkR/050rGHS7hXuCUnMdlC06
hckD7io4KNC6Bg==
-----END CERTIFICATE-----
Generated at Sat Jun 7 01:10:13 2025 by rpki-client