Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/39/a3ede6-bc31-4d00-925c-3d612f324996/1/uHt2aWhxYpblu6C86DhWrnFluLg.mft
File: uHt2aWhxYpblu6C86DhWrnFluLg.mft (raw, json)
Hash identifier: j3P/PnkJgSkbUkB+Z/frmQelDc5NeQswb3E7wSSiqt4=
Subject key identifier: 83:36:F7:28:78:F3:0B:F1:B1:0D:D9:F0:7A:B6:37:26:4E:07:15:5B
Authority key identifier: B8:7B:76:69:68:71:62:96:E5:BB:A0:BC:E8:38:56:AE:71:65:B8:B8
Certificate issuer: /CN=b87b766968716296e5bba0bce83856ae7165b8b8
Certificate serial: 01973A2C542EDD674EE1D32C7B6A449DB14C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/uHt2aWhxYpblu6C86DhWrnFluLg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/39/a3ede6-bc31-4d00-925c-3d612f324996/1/uHt2aWhxYpblu6C86DhWrnFluLg.mft
Manifest number: 157A
Signing time: Wed 04 Jun 2025 09:01:12 +0000
Manifest this update: Wed 04 Jun 2025 09:01:12 +0000
Manifest next update: Thu 05 Jun 2025 09:01:12 +0000
Files and hashes: 1: EMnxCwOEWhhPugjrcZ3jtYAbiJc.roa (hash: ioXKgGTre/pDJJ5LrVdx9gIh66mx4jxeELCjJSUVqnM=)
2: ft2mxf9aaNoul-AnIThMbBr-lps.roa (hash: xnKzHyjITrVDUs70AuSd+gwg5cbW8huGbxIys16mcfk=)
3: uHt2aWhxYpblu6C86DhWrnFluLg.crl (hash: 3lKNWgLmUqIPhMMnDWNxt/e3XCtywxV0fFYX9ra7Gl0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/39/a3ede6-bc31-4d00-925c-3d612f324996/1/uHt2aWhxYpblu6C86DhWrnFluLg.crl
rsync://rpki.ripe.net/repository/DEFAULT/39/a3ede6-bc31-4d00-925c-3d612f324996/1/uHt2aWhxYpblu6C86DhWrnFluLg.mft
rsync://rpki.ripe.net/repository/DEFAULT/uHt2aWhxYpblu6C86DhWrnFluLg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 05 Jun 2025 09:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:3a:2c:54:2e:dd:67:4e:e1:d3:2c:7b:6a:44:9d:b1:4c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b87b766968716296e5bba0bce83856ae7165b8b8
Validity
Not Before: Jun 4 09:01:12 2025 GMT
Not After : Jun 5 09:01:12 2025 GMT
Subject: CN=8336f72878f30bf1b10dd9f07ab637264e07155b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d6:fa:84:12:b5:db:70:f3:d4:55:a1:ab:a4:d3:
a5:70:19:d5:15:c5:13:74:0f:82:12:70:a0:ad:75:
5e:9a:6d:cb:84:ce:9f:3f:99:8d:86:96:df:0c:a7:
b1:8e:24:13:9f:28:b4:10:85:c1:09:09:2d:3c:ab:
a8:9d:cf:7c:ed:47:51:54:c8:5c:8c:1a:f9:16:34:
81:1f:3f:3e:00:f6:03:8d:9a:6a:38:0a:e9:85:0a:
25:6d:05:c3:0c:57:6a:cb:ef:61:b4:1c:89:29:05:
60:a0:88:35:49:42:9b:b4:e6:70:64:6a:27:9a:06:
29:6d:21:02:55:7a:f6:fe:df:40:e0:6a:0a:78:69:
33:aa:18:e8:38:1f:57:0e:e7:37:98:b4:e3:99:66:
60:b4:31:e7:48:11:9d:b5:4f:31:6f:2b:32:18:3f:
aa:a4:e2:af:87:8a:1f:7e:f5:dc:52:c1:c8:df:39:
c4:ac:2a:87:ba:b5:f1:3c:ef:32:7f:4b:80:8b:f2:
fd:7d:b3:2a:b3:e4:f9:c5:39:25:4c:4a:15:06:ff:
d8:b5:79:1b:10:32:c5:5a:db:6a:0b:71:ca:f7:72:
e2:57:e7:66:68:21:c5:8f:ba:ad:36:e6:05:06:56:
a8:18:9a:03:2f:f3:93:f1:a2:0a:1c:6d:b8:04:34:
fb:57
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
83:36:F7:28:78:F3:0B:F1:B1:0D:D9:F0:7A:B6:37:26:4E:07:15:5B
X509v3 Authority Key Identifier:
keyid:B8:7B:76:69:68:71:62:96:E5:BB:A0:BC:E8:38:56:AE:71:65:B8:B8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/uHt2aWhxYpblu6C86DhWrnFluLg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/39/a3ede6-bc31-4d00-925c-3d612f324996/1/uHt2aWhxYpblu6C86DhWrnFluLg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/39/a3ede6-bc31-4d00-925c-3d612f324996/1/uHt2aWhxYpblu6C86DhWrnFluLg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
13:57:2c:53:43:28:51:36:5d:b2:8e:ed:52:da:77:ac:81:01:
61:fe:3f:1a:10:1d:38:4e:e4:36:b7:0e:86:78:cc:ce:f6:6b:
f6:42:00:1a:f2:26:b2:f0:1f:ff:80:55:a1:68:1e:26:5c:9b:
b7:8d:ee:bd:8d:db:ac:3c:0b:3c:9b:3d:35:40:50:7e:e5:34:
0f:a6:e4:d6:2d:1c:5e:91:74:be:0f:45:0c:ce:fe:86:8a:5f:
b1:af:bb:f2:02:11:7d:c2:4a:68:6b:26:ac:1d:be:b4:7b:2c:
67:2d:16:b8:ea:b5:9d:bb:e8:0e:85:6e:e3:ac:90:ee:4d:bc:
43:62:e3:1c:bb:3d:01:de:19:82:41:87:6d:65:48:29:c8:ca:
c1:24:fb:63:78:6d:33:9e:48:31:ff:36:14:ec:79:c3:ab:44:
94:70:fb:ac:94:80:8b:68:f9:05:7c:c6:b0:54:00:39:22:db:
cd:ab:84:0f:4b:e6:0d:98:9c:18:52:f1:a2:54:8d:37:97:9e:
55:5c:67:35:0a:0f:35:5f:2a:91:a8:d1:0e:d8:2a:42:9f:5a:
6c:7f:6e:77:56:ad:f8:f8:c8:d6:51:f7:1b:02:84:6b:8d:5c:
67:8d:d3:0e:a1:a6:62:e4:2e:1d:0a:29:c6:c7:84:74:ca:1e:
90:06:fe:05
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZc6LFQu3WdO4dMse2pEnbFMMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGI4N2I3NjY5Njg3MTYyOTZlNWJiYTBiY2U4Mzg1NmFlNzE2
NWI4YjgwHhcNMjUwNjA0MDkwMTEyWhcNMjUwNjA1MDkwMTEyWjAzMTEwLwYDVQQD
Eyg4MzM2ZjcyODc4ZjMwYmYxYjEwZGQ5ZjA3YWI2MzcyNjRlMDcxNTViMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA1vqEErXbcPPUVaGrpNOlcBnVFcUT
dA+CEnCgrXVemm3LhM6fP5mNhpbfDKexjiQTnyi0EIXBCQktPKuonc987UdRVMhc
jBr5FjSBHz8+APYDjZpqOArphQolbQXDDFdqy+9htByJKQVgoIg1SUKbtOZwZGon
mgYpbSECVXr2/t9A4GoKeGkzqhjoOB9XDuc3mLTjmWZgtDHnSBGdtU8xbysyGD+q
pOKvh4offvXcUsHI3znErCqHurXxPO8yf0uAi/L9fbMqs+T5xTklTEoVBv/YtXkb
EDLFWttqC3HK93LiV+dmaCHFj7qtNuYFBlaoGJoDL/OT8aIKHG24BDT7VwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFIM29yh48wvxsQ3Z8Hq2NyZOBxVbMB8GA1UdIwQY
MBaAFLh7dmlocWKW5bugvOg4Vq5xZbi4MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvdUh0MmFXaHhZcGJsdTZDODZEaFdybkZsdUxnLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zOS9hM2VkZTYtYmMzMS00ZDAwLTkyNWMt
M2Q2MTJmMzI0OTk2LzEvdUh0MmFXaHhZcGJsdTZDODZEaFdybkZsdUxnLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8zOS9hM2VkZTYtYmMzMS00ZDAwLTkyNWMtM2Q2MTJmMzI0OTk2
LzEvdUh0MmFXaHhZcGJsdTZDODZEaFdybkZsdUxnLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAE1csU0Mo
UTZdso7tUtp3rIEBYf4/GhAdOE7kNrcOhnjMzvZr9kIAGvImsvAf/4BVoWgeJlyb
t43uvY3brDwLPJs9NUBQfuU0D6bk1i0cXpF0vg9FDM7+hopfsa+78gIRfcJKaGsm
rB2+tHssZy0WuOq1nbvoDoVu46yQ7k28Q2LjHLs9Ad4ZgkGHbWVIKcjKwST7Y3ht
M55IMf82FOx5w6tElHD7rJSAi2j5BXzGsFQAOSLbzauED0vmDZicGFLxolSNN5ee
VVxnNQoPNV8qkajRDtgqQp9abH9ud1at+PjI1lH3GwKEa41cZ43TDqGmYuQuHQop
xseEdMoekAb+BQ==
-----END CERTIFICATE-----
Generated at Wed Jun 4 11:10:53 2025 by rpki-client