Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3b/10d153-c3c3-4011-97cf-10fdca385ea4/1/uohh4X6-1XlQ_zLHs3f8QwQT2-Q.mft
File: uohh4X6-1XlQ_zLHs3f8QwQT2-Q.mft (raw, json)
Hash identifier: QLpdsQcMhlX1Av+XJLpDWmZbcRMZgvXsppS3ehD68yQ=
Subject key identifier: C8:87:91:25:8C:C3:BB:86:C7:03:DD:E0:28:52:49:A0:7B:EB:7A:C2
Authority key identifier: BA:88:61:E1:7E:BE:D5:79:50:FF:32:C7:B3:77:FC:43:04:13:DB:E4
Certificate issuer: /CN=ba8861e17ebed57950ff32c7b377fc430413dbe4
Certificate serial: 01974DE97A7BA400ABC5ED430419E0310AF7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/uohh4X6-1XlQ_zLHs3f8QwQT2-Q.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3b/10d153-c3c3-4011-97cf-10fdca385ea4/1/uohh4X6-1XlQ_zLHs3f8QwQT2-Q.mft
Manifest number: 0CA7
Signing time: Sun 08 Jun 2025 05:00:36 +0000
Manifest this update: Sun 08 Jun 2025 05:00:36 +0000
Manifest next update: Mon 09 Jun 2025 05:00:36 +0000
Files and hashes: 1: DKKUdW46_6zXz80AQeVOjRiUJ4A.roa (hash: xKACAtSTQQnsNmsto4dOmpcxKzakaVi9kzieeQlXs5g=)
2: uohh4X6-1XlQ_zLHs3f8QwQT2-Q.crl (hash: vjXjff5exODdi6Ra9zitoMQZ2fs/NB0SM5bXIBZiqqw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3b/10d153-c3c3-4011-97cf-10fdca385ea4/1/uohh4X6-1XlQ_zLHs3f8QwQT2-Q.crl
rsync://rpki.ripe.net/repository/DEFAULT/3b/10d153-c3c3-4011-97cf-10fdca385ea4/1/uohh4X6-1XlQ_zLHs3f8QwQT2-Q.mft
rsync://rpki.ripe.net/repository/DEFAULT/uohh4X6-1XlQ_zLHs3f8QwQT2-Q.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 09 Jun 2025 03:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:4d:e9:7a:7b:a4:00:ab:c5:ed:43:04:19:e0:31:0a:f7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ba8861e17ebed57950ff32c7b377fc430413dbe4
Validity
Not Before: Jun 8 05:00:36 2025 GMT
Not After : Jun 9 05:00:36 2025 GMT
Subject: CN=c88791258cc3bb86c703dde0285249a07beb7ac2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d3:b2:da:85:c6:87:03:fe:b4:cf:a8:ce:46:ec:
87:9e:ad:4d:4e:46:b1:ef:ed:3d:9a:ca:14:12:44:
6e:bb:78:c6:46:cb:c0:01:71:2d:7f:3f:04:8a:0d:
75:13:d0:16:99:c0:c6:15:ab:c8:4a:e2:7a:1c:78:
e1:f7:81:5e:c9:87:9e:67:f1:30:59:c4:fe:05:1a:
eb:80:2d:ec:33:32:70:c2:15:6d:f4:68:7b:32:96:
df:60:5b:28:bd:ca:a6:3d:dc:64:6e:92:0d:01:a0:
4c:7e:f4:d3:37:4a:35:41:b0:57:41:e9:2d:41:61:
8e:a7:01:96:c5:d6:73:bd:15:16:d9:22:b0:61:4a:
d8:79:96:f1:06:ab:c5:f4:b9:27:d5:b4:cf:33:f5:
2b:18:a6:98:d3:9d:bc:56:1f:ca:a5:96:c5:69:10:
08:51:94:3a:c0:57:c7:f9:f5:c0:71:04:70:08:05:
89:3c:41:14:f4:ec:27:71:73:2e:ed:a9:58:c9:1c:
bb:0f:6c:60:ae:f3:2e:19:82:6e:7f:ea:23:7f:97:
ad:7b:eb:a8:68:6c:3c:9f:06:f2:56:da:c5:ec:4b:
e6:d3:bb:8c:69:76:bf:41:3b:bf:59:1a:fb:f2:06:
02:1e:97:67:68:a8:31:09:ec:c0:60:3a:93:ba:f4:
39:61
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C8:87:91:25:8C:C3:BB:86:C7:03:DD:E0:28:52:49:A0:7B:EB:7A:C2
X509v3 Authority Key Identifier:
keyid:BA:88:61:E1:7E:BE:D5:79:50:FF:32:C7:B3:77:FC:43:04:13:DB:E4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/uohh4X6-1XlQ_zLHs3f8QwQT2-Q.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3b/10d153-c3c3-4011-97cf-10fdca385ea4/1/uohh4X6-1XlQ_zLHs3f8QwQT2-Q.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3b/10d153-c3c3-4011-97cf-10fdca385ea4/1/uohh4X6-1XlQ_zLHs3f8QwQT2-Q.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
76:e3:51:f8:2f:92:1e:31:29:f8:82:75:ec:46:06:b6:98:3b:
5e:2d:b0:cb:89:69:26:5a:f9:d3:10:75:71:6d:60:37:6c:08:
58:2c:16:d5:3a:98:ec:ab:65:5a:43:5b:47:5e:69:df:a6:0e:
9c:db:26:78:44:e6:40:f2:b6:ea:77:7c:0d:9e:50:95:4e:7a:
ac:e8:d7:fe:fb:0e:07:23:3a:89:80:9b:43:80:c9:8b:c5:52:
e4:b9:6a:86:28:09:bb:77:c1:39:3e:14:05:57:2f:e2:6c:2e:
b2:20:39:85:f2:d8:51:db:89:0f:37:cd:dc:4f:09:ea:ae:63:
db:79:e7:97:67:53:34:38:5b:53:af:16:40:33:c8:83:92:74:
f9:50:c3:6b:93:1c:ff:92:ff:35:1d:cf:3d:fe:ae:98:70:9a:
1c:5c:14:20:0b:93:d1:55:2e:52:5d:38:30:d6:67:0d:a7:f2:
6c:2a:22:0b:9c:45:cd:ac:9f:34:0c:27:ed:42:cf:7d:4b:8c:
b8:bd:aa:f4:1d:15:e1:ac:7d:3d:cf:c4:29:51:8c:42:64:db:
09:ef:2c:e3:f9:2d:80:28:29:bc:7a:36:13:8e:ce:b2:29:b0:
e3:40:2d:18:01:89:ae:50:7c:a3:bc:53:81:c7:c7:7f:46:1f:
e8:96:56:ee
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 8 08:07:02 2025 by rpki-client