Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/41/8d798a-73d7-44ba-97db-f84b60521df5/1/UFZxLM-od6u3YMt34nBBd0ywRzk.mft
File: UFZxLM-od6u3YMt34nBBd0ywRzk.mft (raw, json)
Hash identifier: nVC9UU1vDUorBKd5+aCWHc/+AqYD+/Gg/L4dzOvMfTU=
Subject key identifier: FF:37:70:53:FC:0E:D7:06:8A:91:38:67:97:AC:1A:C4:25:6A:F1:32
Authority key identifier: 50:56:71:2C:CF:A8:77:AB:B7:60:CB:77:E2:70:41:77:4C:B0:47:39
Certificate issuer: /CN=5056712ccfa877abb760cb77e27041774cb04739
Certificate serial: 01974E5750BAA8633262193AE69606EFA9A1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UFZxLM-od6u3YMt34nBBd0ywRzk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/41/8d798a-73d7-44ba-97db-f84b60521df5/1/UFZxLM-od6u3YMt34nBBd0ywRzk.mft
Manifest number: 1583
Signing time: Sun 08 Jun 2025 07:00:34 +0000
Manifest this update: Sun 08 Jun 2025 07:00:34 +0000
Manifest next update: Mon 09 Jun 2025 07:00:34 +0000
Files and hashes: 1: KkYiM3e0iOAnAg_yFBFSK_bjJl8.roa (hash: 5A5Vdre+g6oCjMH5zABiFnTSkWahsDuZjsJoxbwHMo0=)
2: UFZxLM-od6u3YMt34nBBd0ywRzk.crl (hash: ZIo0/URS1GWnG53O5UIVD5T33cI6vi+qn9XHDBEUJ/0=)
3: _Q23PPlL8v2niGzmSooSDUdLWSk.roa (hash: 8JwVrSvS2kxaZsRD1vVjitt0fjw3hWWmjxqgx0yIUoc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/41/8d798a-73d7-44ba-97db-f84b60521df5/1/UFZxLM-od6u3YMt34nBBd0ywRzk.crl
rsync://rpki.ripe.net/repository/DEFAULT/41/8d798a-73d7-44ba-97db-f84b60521df5/1/UFZxLM-od6u3YMt34nBBd0ywRzk.mft
rsync://rpki.ripe.net/repository/DEFAULT/UFZxLM-od6u3YMt34nBBd0ywRzk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 09 Jun 2025 03:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:4e:57:50:ba:a8:63:32:62:19:3a:e6:96:06:ef:a9:a1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5056712ccfa877abb760cb77e27041774cb04739
Validity
Not Before: Jun 8 07:00:34 2025 GMT
Not After : Jun 9 07:00:34 2025 GMT
Subject: CN=ff377053fc0ed7068a91386797ac1ac4256af132
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:9c:11:56:9e:a9:5e:77:fa:71:45:ea:4b:c0:
19:29:ea:f2:62:6c:61:39:82:ee:0d:2e:7a:e6:18:
b1:89:8f:41:7a:b1:7b:45:55:75:48:bb:56:94:5a:
22:7b:c0:ba:5a:05:fe:6b:fc:28:20:f2:91:39:1c:
a1:bb:68:78:60:9d:b4:af:33:d8:b3:3f:b4:7c:32:
e1:fa:9c:54:ce:77:fa:af:ea:09:c6:a6:64:cb:b3:
4d:06:09:95:a1:20:95:7b:e8:bf:67:89:ec:a0:7c:
b1:d2:c1:cb:a2:3c:ee:57:22:d8:03:35:63:f3:da:
44:d4:64:6e:a3:99:a2:9e:d5:8c:55:0f:c3:c9:29:
41:96:bd:a2:88:6b:cb:ed:6c:08:c6:49:73:e6:ce:
b6:52:25:04:43:ce:0e:9a:11:7b:03:af:9a:04:2b:
c5:12:f8:9e:d4:df:da:42:b8:23:e2:07:b7:0c:e2:
6d:6f:38:b4:a8:5e:78:ee:5c:4d:01:96:a1:30:25:
39:b5:84:32:cc:b9:44:10:71:01:2b:0b:37:ae:9b:
05:29:68:91:1a:eb:41:0b:59:1e:1f:e1:66:d4:a1:
80:3a:13:1c:f2:03:89:c7:5d:e3:55:3c:f3:c2:38:
5a:80:c3:bc:a6:b7:b4:a9:44:2b:d4:d0:e5:31:0f:
23:fd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FF:37:70:53:FC:0E:D7:06:8A:91:38:67:97:AC:1A:C4:25:6A:F1:32
X509v3 Authority Key Identifier:
keyid:50:56:71:2C:CF:A8:77:AB:B7:60:CB:77:E2:70:41:77:4C:B0:47:39
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UFZxLM-od6u3YMt34nBBd0ywRzk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/41/8d798a-73d7-44ba-97db-f84b60521df5/1/UFZxLM-od6u3YMt34nBBd0ywRzk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/41/8d798a-73d7-44ba-97db-f84b60521df5/1/UFZxLM-od6u3YMt34nBBd0ywRzk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
06:39:bd:32:8f:02:8c:e4:3b:54:fb:b5:77:84:ef:e1:15:42:
a8:cb:c0:d6:c2:0e:f5:4c:4a:15:e3:04:70:c1:8f:49:8d:bb:
12:7e:43:a8:55:4f:f4:0f:f8:ad:9f:08:1b:8f:c1:9e:c6:db:
26:2c:66:81:f9:0e:92:2a:58:ed:66:65:7d:b2:ac:02:45:27:
2b:21:a8:20:e9:15:8a:c7:7a:52:18:1f:57:7c:13:15:61:49:
88:8e:94:04:a1:92:ab:eb:e6:af:94:7a:8d:0e:95:ad:f6:c5:
e4:0b:33:10:cf:95:1b:b6:f9:ca:8b:41:3e:de:a2:d2:ff:9a:
f5:76:02:53:35:bc:5b:48:29:d3:53:17:22:63:c2:9c:a9:e1:
f8:bb:26:e5:3a:85:51:1a:91:79:8c:b0:36:0d:5f:00:cb:1d:
c1:8c:27:20:3c:43:50:69:dc:74:34:9a:5f:ed:01:32:f4:53:
cf:9d:71:f0:0c:dc:17:a4:47:7d:2e:b6:94:79:b2:6e:23:0d:
79:13:26:3c:26:14:83:8c:cd:32:56:d7:7b:2b:1e:70:ff:a9:
9f:fc:13:67:3b:83:10:1a:f7:20:8d:ab:99:10:cb:73:56:16:
1c:47:0e:42:51:ea:56:a8:24:93:36:b7:98:68:46:3c:92:15:
a8:c5:2f:6d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 8 11:08:50 2025 by rpki-client