Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2b/2cbde9-8480-440d-abcf-6d755052bb24/1/ui1f0wndbMbPeIYEHl6cLBomzqs.mft
File: ui1f0wndbMbPeIYEHl6cLBomzqs.mft (raw, json)
Hash identifier: 2tUn3M089N3P7eo9QgwyjCNKLvlXnTrOgzDkItGQnxU=
Subject key identifier: 4B:54:2F:F7:5D:28:31:FA:7B:8D:E5:45:98:7E:09:69:C1:3C:EF:47
Authority key identifier: BA:2D:5F:D3:09:DD:6C:C6:CF:78:86:04:1E:5E:9C:2C:1A:26:CE:AB
Certificate issuer: /CN=ba2d5fd309dd6cc6cf7886041e5e9c2c1a26ceab
Certificate serial: 01974BFB617871FB5DCEBF7BC361626306E9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ui1f0wndbMbPeIYEHl6cLBomzqs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2b/2cbde9-8480-440d-abcf-6d755052bb24/1/ui1f0wndbMbPeIYEHl6cLBomzqs.mft
Manifest number: 1511
Signing time: Sat 07 Jun 2025 20:00:55 +0000
Manifest this update: Sat 07 Jun 2025 20:00:55 +0000
Manifest next update: Sun 08 Jun 2025 20:00:55 +0000
Files and hashes: 1: Kp9T4yQ0BWzmIgTW27o6VMb8qh4.roa (hash: 8tmSpbSEt6oRRtmXjjT27qxLy0bdW3q5K1nXAwi0cxU=)
2: ui1f0wndbMbPeIYEHl6cLBomzqs.crl (hash: /xeDrsJ2pYGdtDrWNOEMywFxJ930SU51hPlcV1m0jSQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2b/2cbde9-8480-440d-abcf-6d755052bb24/1/ui1f0wndbMbPeIYEHl6cLBomzqs.crl
rsync://rpki.ripe.net/repository/DEFAULT/2b/2cbde9-8480-440d-abcf-6d755052bb24/1/ui1f0wndbMbPeIYEHl6cLBomzqs.mft
rsync://rpki.ripe.net/repository/DEFAULT/ui1f0wndbMbPeIYEHl6cLBomzqs.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 08 Jun 2025 18:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:4b:fb:61:78:71:fb:5d:ce:bf:7b:c3:61:62:63:06:e9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ba2d5fd309dd6cc6cf7886041e5e9c2c1a26ceab
Validity
Not Before: Jun 7 20:00:55 2025 GMT
Not After : Jun 8 20:00:55 2025 GMT
Subject: CN=4b542ff75d2831fa7b8de545987e0969c13cef47
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:ac:1c:93:de:98:69:d2:01:73:05:9b:22:b9:
b9:1b:c9:0f:ce:35:f1:5f:81:f2:98:f3:c7:4d:2d:
58:83:f5:89:3d:78:51:20:2b:3f:4f:a6:77:ce:65:
94:6e:a6:a1:11:02:f6:ea:f5:34:08:22:d4:dc:66:
08:20:2b:ed:f3:51:a4:57:43:29:38:99:76:fe:ec:
0f:15:04:b8:18:a9:79:da:13:65:36:50:0d:2b:a0:
3a:d9:29:9e:2d:42:2d:56:9b:5a:ce:cb:28:fc:4a:
4d:86:e2:41:87:34:06:90:2c:e3:0e:4b:49:b6:d1:
a5:9a:36:9f:6e:7b:b6:4d:e1:f2:84:9a:02:d5:ae:
7b:24:c2:ab:86:25:2f:ab:00:e6:2d:e0:eb:ff:06:
a1:c5:d6:1c:a7:b6:07:ef:fc:5a:7c:86:2c:ec:8d:
1e:98:70:6f:88:87:d0:81:d4:89:aa:8f:ff:d5:3b:
0f:cd:34:fb:88:a0:56:f6:ba:19:22:a8:1b:8b:25:
0a:a1:d3:63:16:a0:13:cd:ff:da:e3:ff:b7:be:6a:
a6:16:0c:e1:3e:54:5a:98:fc:e7:bb:8b:3f:e1:58:
d7:c7:82:bd:38:61:51:67:d5:1f:f2:fe:ad:a2:4e:
08:e2:54:74:a8:de:31:7b:aa:eb:52:7c:1e:1c:37:
50:d7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4B:54:2F:F7:5D:28:31:FA:7B:8D:E5:45:98:7E:09:69:C1:3C:EF:47
X509v3 Authority Key Identifier:
keyid:BA:2D:5F:D3:09:DD:6C:C6:CF:78:86:04:1E:5E:9C:2C:1A:26:CE:AB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ui1f0wndbMbPeIYEHl6cLBomzqs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2b/2cbde9-8480-440d-abcf-6d755052bb24/1/ui1f0wndbMbPeIYEHl6cLBomzqs.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2b/2cbde9-8480-440d-abcf-6d755052bb24/1/ui1f0wndbMbPeIYEHl6cLBomzqs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
4d:55:98:ca:eb:ce:9c:5c:49:f9:c3:c4:a0:12:8b:18:2f:8d:
29:89:5d:df:95:1a:96:86:ce:35:3e:65:c0:76:3d:5f:cd:33:
db:01:56:4f:90:4e:87:e2:4b:9c:89:a7:7f:eb:54:7b:20:55:
d4:0c:7d:d4:40:d8:da:8d:d1:02:e7:85:ee:8a:54:1b:71:f4:
09:5d:9d:40:14:0f:28:16:95:62:82:68:38:a7:2c:39:3b:cf:
3a:89:f4:ec:3d:a4:5f:cd:31:c2:a4:0f:84:a3:1e:d5:3f:d4:
25:19:1d:a0:35:8d:a8:bd:ed:ba:37:aa:6a:3b:cb:8e:9c:71:
78:fb:a1:ec:68:9c:37:24:7d:89:6d:90:6a:cc:a1:58:f6:8c:
04:c4:40:df:97:b7:7b:07:c8:0a:17:38:a3:d9:d3:b6:31:68:
1c:41:2d:12:49:69:bf:35:71:b0:a3:4c:3e:c3:ea:52:8e:af:
75:13:87:fd:ef:ac:4d:c7:93:d8:df:dc:ae:1a:3c:81:de:96:
9a:a1:c6:56:5e:94:2f:dd:d6:84:eb:13:8e:6a:c2:fe:bd:c4:
12:2c:27:40:9e:40:6f:51:b8:b0:9a:0e:c2:1a:09:76:1b:e8:
7a:8d:ca:9c:50:15:c8:27:da:16:7c:50:cf:1f:9c:63:91:39:
b3:a4:0d:a9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 7 22:23:16 2025 by rpki-client