Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3b/10d153-c3c3-4011-97cf-10fdca385ea4/1/uohh4X6-1XlQ_zLHs3f8QwQT2-Q.mft
File: uohh4X6-1XlQ_zLHs3f8QwQT2-Q.mft (raw, json)
Hash identifier: HDzNUiYu4c3hgMqmFLdA8t25kmdWV+54AeQ4f9FLKGU=
Subject key identifier: A1:A2:E9:17:EA:80:70:72:97:CE:EE:3B:49:A3:C5:EF:BB:48:45:C8
Authority key identifier: BA:88:61:E1:7E:BE:D5:79:50:FF:32:C7:B3:77:FC:43:04:13:DB:E4
Certificate issuer: /CN=ba8861e17ebed57950ff32c7b377fc430413dbe4
Certificate serial: 0198C6497FFE1E52277DC3546124744FF56A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/uohh4X6-1XlQ_zLHs3f8QwQT2-Q.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3b/10d153-c3c3-4011-97cf-10fdca385ea4/1/uohh4X6-1XlQ_zLHs3f8QwQT2-Q.mft
Manifest number: 0D6A
Signing time: Wed 20 Aug 2025 07:02:42 +0000
Manifest this update: Wed 20 Aug 2025 07:02:42 +0000
Manifest next update: Thu 21 Aug 2025 07:02:42 +0000
Files and hashes: 1: 3eC8nP2y0M7Dk50w-cz0uqTipws.roa (hash: oL1pIlz/bhILnljMZOEBWQ6dy5AQHNGyWJuSJLm2sWA=)
2: DKKUdW46_6zXz80AQeVOjRiUJ4A.roa (hash: xKACAtSTQQnsNmsto4dOmpcxKzakaVi9kzieeQlXs5g=)
3: mj78j7-0AeevMahy3Oa3oEUR37o.roa (hash: GV37V8PynELJMOdG95g3RGrNY37XlDLhQkTKeFw+n+A=)
4: uohh4X6-1XlQ_zLHs3f8QwQT2-Q.crl (hash: hteVVkNxLZeuvO/JJ6IYiX85iN/O2v7EiavCwa/a12M=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3b/10d153-c3c3-4011-97cf-10fdca385ea4/1/uohh4X6-1XlQ_zLHs3f8QwQT2-Q.crl
rsync://rpki.ripe.net/repository/DEFAULT/3b/10d153-c3c3-4011-97cf-10fdca385ea4/1/uohh4X6-1XlQ_zLHs3f8QwQT2-Q.mft
rsync://rpki.ripe.net/repository/DEFAULT/uohh4X6-1XlQ_zLHs3f8QwQT2-Q.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 21 Aug 2025 07:02:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:c6:49:7f:fe:1e:52:27:7d:c3:54:61:24:74:4f:f5:6a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ba8861e17ebed57950ff32c7b377fc430413dbe4
Validity
Not Before: Aug 20 07:02:42 2025 GMT
Not After : Aug 21 07:02:42 2025 GMT
Subject: CN=a1a2e917ea80707297ceee3b49a3c5efbb4845c8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:b9:4d:69:74:74:58:2b:61:83:80:67:04:c1:
0e:fc:f4:00:50:3c:bd:a8:2f:46:80:c0:fa:47:b4:
21:22:1e:63:a7:60:bf:98:93:aa:ef:de:99:d8:52:
c4:29:24:f8:4b:55:3e:ad:2a:3c:87:6b:b7:e7:28:
1f:c2:9b:3f:9a:b6:1c:07:ac:0f:dc:91:1f:1e:05:
89:85:de:ea:54:79:2f:76:f3:4a:1c:97:24:63:4e:
1d:a1:90:d3:83:0d:ee:b7:71:15:a4:ce:15:21:f4:
60:d5:91:c0:37:b6:d8:d7:a8:a6:ed:86:6e:f5:e1:
59:e6:c7:c1:b3:f0:6a:3c:2d:ab:16:d9:b9:de:bc:
f7:26:04:bc:96:a9:4e:80:50:9a:55:97:5b:41:ae:
45:9e:05:14:de:00:6c:4c:4a:8e:8b:bd:13:3b:c5:
ca:a2:51:98:59:14:01:5a:a2:ab:56:2d:5d:73:6d:
38:4f:df:e0:57:00:d2:fd:52:78:fa:05:d4:53:f0:
fa:e4:6a:53:41:53:b9:d7:20:63:40:70:b4:69:a9:
d3:7b:80:ee:f8:ec:22:3c:bc:c9:bb:7a:3c:07:b2:
65:91:04:ae:2e:f0:62:5c:fd:96:d9:cd:8e:9c:f0:
39:d1:bc:e8:83:e9:62:ce:4d:dd:ce:08:16:e7:e0:
0f:f9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A1:A2:E9:17:EA:80:70:72:97:CE:EE:3B:49:A3:C5:EF:BB:48:45:C8
X509v3 Authority Key Identifier:
keyid:BA:88:61:E1:7E:BE:D5:79:50:FF:32:C7:B3:77:FC:43:04:13:DB:E4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/uohh4X6-1XlQ_zLHs3f8QwQT2-Q.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3b/10d153-c3c3-4011-97cf-10fdca385ea4/1/uohh4X6-1XlQ_zLHs3f8QwQT2-Q.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3b/10d153-c3c3-4011-97cf-10fdca385ea4/1/uohh4X6-1XlQ_zLHs3f8QwQT2-Q.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
23:be:e4:19:2d:12:2e:a6:ae:f7:b3:18:e3:34:09:22:dd:11:
57:ec:9c:85:34:29:b0:65:74:78:95:92:61:8e:f1:cd:06:a2:
b0:ae:7c:5b:a9:7f:8b:b2:59:9f:60:5a:e0:3b:8a:72:6e:f0:
90:81:cb:d8:eb:1f:c5:10:60:66:6d:43:8e:a6:e0:20:64:4c:
71:63:35:35:fa:61:34:58:ee:0e:4f:82:49:92:83:1f:03:c4:
0b:7a:f1:53:a5:15:f6:37:c2:8f:45:04:b7:25:e5:be:14:e7:
a2:20:8f:6d:ff:a2:43:95:89:ca:f9:13:23:78:68:f8:27:a5:
69:71:96:0a:81:47:98:9d:f1:b7:5b:fa:14:29:09:1a:d3:9d:
e4:81:90:49:1f:cd:f7:9b:d5:1a:9a:37:cd:bb:39:74:01:c0:
96:dc:b5:cb:d6:fe:a2:ea:1f:83:83:df:fc:2c:53:55:1b:32:
9a:96:f1:58:d6:52:71:e1:43:61:e6:fb:29:52:b1:12:c9:b4:
b0:d8:36:d9:43:a8:f0:30:6f:c8:a9:ab:1d:2c:8e:2b:b2:b9:
65:e2:c7:c9:3b:60:4d:ec:88:22:13:e3:c2:72:a0:bb:2e:11:
8e:06:5a:60:ba:4b:1f:c7:14:1a:d8:05:3b:c0:44:8d:2f:6f:
1f:4a:d2:69
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Aug 20 15:31:55 2025 by rpki-client