Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/35/04e8b2-c76f-4629-95ad-a7d945af14e5/1/U-Ou3ZG-gkUTQtzRyYKDRdtmGl8.mft
File: U-Ou3ZG-gkUTQtzRyYKDRdtmGl8.mft (raw, json)
Hash identifier: M2yj9WoJOBVKakdobd+UtLZMB4yS2U0j1mDewp24PAw=
Subject key identifier: 06:A9:9C:12:71:C1:71:23:6D:91:46:7E:93:E8:EB:D2:9C:D1:B9:13
Authority key identifier: 53:E3:AE:DD:91:BE:82:45:13:42:DC:D1:C9:82:83:45:DB:66:1A:5F
Certificate issuer: /CN=53e3aedd91be82451342dcd1c9828345db661a5f
Certificate serial: 01974A0C8A9D20C6CCB6D472D5F3D5909029
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/U-Ou3ZG-gkUTQtzRyYKDRdtmGl8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/35/04e8b2-c76f-4629-95ad-a7d945af14e5/1/U-Ou3ZG-gkUTQtzRyYKDRdtmGl8.mft
Manifest number: 0808
Signing time: Sat 07 Jun 2025 11:00:25 +0000
Manifest this update: Sat 07 Jun 2025 11:00:25 +0000
Manifest next update: Sun 08 Jun 2025 11:00:25 +0000
Files and hashes: 1: If5j4KjsWFg3kwDUxrHpbFCCjpg.roa (hash: iGbVOgQjxfoZ4tZTHfIMlZvCv27war8Yd/ywUcGl39o=)
2: U-Ou3ZG-gkUTQtzRyYKDRdtmGl8.crl (hash: ckXoF7yPCovan6P4HzbYTTHjFnlKV4x36TZEv1Njg1I=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/35/04e8b2-c76f-4629-95ad-a7d945af14e5/1/U-Ou3ZG-gkUTQtzRyYKDRdtmGl8.crl
rsync://rpki.ripe.net/repository/DEFAULT/35/04e8b2-c76f-4629-95ad-a7d945af14e5/1/U-Ou3ZG-gkUTQtzRyYKDRdtmGl8.mft
rsync://rpki.ripe.net/repository/DEFAULT/U-Ou3ZG-gkUTQtzRyYKDRdtmGl8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 08 Jun 2025 09:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:4a:0c:8a:9d:20:c6:cc:b6:d4:72:d5:f3:d5:90:90:29
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=53e3aedd91be82451342dcd1c9828345db661a5f
Validity
Not Before: Jun 7 11:00:25 2025 GMT
Not After : Jun 8 11:00:25 2025 GMT
Subject: CN=06a99c1271c171236d91467e93e8ebd29cd1b913
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:fb:d7:37:79:20:9c:67:78:b2:9d:62:88:3d:
4b:ad:cc:b4:b1:06:43:55:d1:cd:82:0a:4e:69:c8:
10:e1:2c:c6:25:bc:15:d4:f4:83:ec:8a:44:b1:2a:
38:87:c2:b3:be:8e:11:73:70:d7:d9:fe:1f:31:8f:
a4:68:08:02:59:1a:93:22:f4:24:9c:99:05:2b:a5:
0e:95:5c:84:d0:64:0a:5b:0f:4a:7f:1e:56:8a:bd:
a3:c8:4e:91:c6:30:ce:4f:48:f3:4a:ba:3d:ed:69:
09:1d:57:1a:b9:e9:e3:af:31:3b:fb:aa:c6:19:f3:
c6:68:8b:3d:86:78:48:2e:bf:f8:20:d9:89:06:4c:
fe:dd:8d:ec:5c:14:f0:26:66:fd:01:24:30:65:f8:
94:4d:a4:87:db:40:d6:bb:58:8a:2d:5e:47:75:18:
fc:14:ae:ed:81:f0:4b:b8:db:ed:02:84:63:33:d8:
50:e7:03:0e:1d:80:2f:11:1e:28:d9:29:80:d0:67:
e7:64:db:2f:b0:4a:df:f4:98:3d:6a:3c:b4:db:08:
33:0f:9a:3e:0c:ec:26:0f:f8:22:c7:79:69:17:c1:
7e:fc:85:d9:60:1c:92:9c:fb:8d:c7:90:38:24:74:
b5:2e:58:a5:11:0b:41:0e:cb:2e:36:dd:65:d6:ef:
eb:c1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
06:A9:9C:12:71:C1:71:23:6D:91:46:7E:93:E8:EB:D2:9C:D1:B9:13
X509v3 Authority Key Identifier:
keyid:53:E3:AE:DD:91:BE:82:45:13:42:DC:D1:C9:82:83:45:DB:66:1A:5F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/U-Ou3ZG-gkUTQtzRyYKDRdtmGl8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/35/04e8b2-c76f-4629-95ad-a7d945af14e5/1/U-Ou3ZG-gkUTQtzRyYKDRdtmGl8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/35/04e8b2-c76f-4629-95ad-a7d945af14e5/1/U-Ou3ZG-gkUTQtzRyYKDRdtmGl8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
28:e8:9a:48:53:60:0b:4a:88:37:8c:af:e2:69:42:bb:f3:6b:
98:d8:78:39:d7:fc:e6:8a:4f:5f:b5:78:76:05:5e:c7:a9:96:
52:c6:c4:c3:33:d9:3e:cb:ea:10:0f:55:13:f2:59:f7:28:f0:
3c:02:2c:1c:19:69:31:7c:1b:43:91:1d:fe:4e:f3:3c:8c:e3:
70:72:c5:b7:02:6d:32:28:00:9e:95:d7:36:3c:ef:e4:8b:76:
c0:b0:a8:4a:70:63:b5:5e:74:80:87:a0:e3:77:4d:2f:64:ee:
ba:b1:c5:c3:d7:61:84:63:db:f7:fd:22:6b:3a:bc:0d:27:8f:
a1:49:78:fb:15:6d:25:7a:6e:f1:a9:26:71:38:65:11:90:fa:
ba:6c:b3:0a:0a:dc:04:68:c4:b9:46:0f:88:76:08:ba:49:5b:
ee:94:55:69:f8:12:38:59:a2:b3:63:c7:01:b0:7a:d6:ff:4d:
56:a5:ed:4f:05:3e:0c:79:6c:99:14:4a:da:22:2c:d3:48:d5:
d2:9e:45:23:5e:e8:ca:bd:22:3d:6f:3d:0f:6c:4c:c0:c0:d5:
21:ea:f2:f9:52:d1:48:b8:46:26:cf:af:69:35:26:9b:cd:f9:
23:67:77:33:95:c2:9c:59:dc:21:78:9d:c2:83:88:f8:f8:e0:
c6:f5:e7:d1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 7 15:28:00 2025 by rpki-client