Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4a/43bb94-94c6-4dad-a372-5fcfa421975c/1/u7hl_W36q6dxJJt-uujr1SgKDJc.mft
File: u7hl_W36q6dxJJt-uujr1SgKDJc.mft (raw, json)
Hash identifier: Y1caiy07ccn6aiibHdWKFuzxWkJYGqH95TH+/Lg/IEc=
Subject key identifier: 9E:4F:FD:2B:2E:9D:FB:35:C2:78:35:6D:88:1F:84:BF:4A:C6:BE:7B
Authority key identifier: BB:B8:65:FD:6D:FA:AB:A7:71:24:9B:7E:BA:E8:EB:D5:28:0A:0C:97
Certificate issuer: /CN=bbb865fd6dfaaba771249b7ebae8ebd5280a0c97
Certificate serial: 019853E8A9CE7F6052B4E5D0C2B76E2DE22B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/u7hl_W36q6dxJJt-uujr1SgKDJc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4a/43bb94-94c6-4dad-a372-5fcfa421975c/1/u7hl_W36q6dxJJt-uujr1SgKDJc.mft
Manifest number: 1151
Signing time: Tue 29 Jul 2025 02:00:13 +0000
Manifest this update: Tue 29 Jul 2025 02:00:13 +0000
Manifest next update: Wed 30 Jul 2025 02:00:13 +0000
Files and hashes: 1: kr3FPTrUbvprQB5gOzb6Xm9In9I.roa (hash: hZOcB5l1wSRFBsah9a6wwCM7j6k84PdiP/Urp0eSJlg=)
2: u7hl_W36q6dxJJt-uujr1SgKDJc.crl (hash: uFYjIyOnCAm/7z5Pgv/VkGkvctt0VI4h4aBwDZQBGUQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/4a/43bb94-94c6-4dad-a372-5fcfa421975c/1/u7hl_W36q6dxJJt-uujr1SgKDJc.crl
rsync://rpki.ripe.net/repository/DEFAULT/4a/43bb94-94c6-4dad-a372-5fcfa421975c/1/u7hl_W36q6dxJJt-uujr1SgKDJc.mft
rsync://rpki.ripe.net/repository/DEFAULT/u7hl_W36q6dxJJt-uujr1SgKDJc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 29 Jul 2025 23:00:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:53:e8:a9:ce:7f:60:52:b4:e5:d0:c2:b7:6e:2d:e2:2b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=bbb865fd6dfaaba771249b7ebae8ebd5280a0c97
Validity
Not Before: Jul 29 02:00:13 2025 GMT
Not After : Jul 30 02:00:13 2025 GMT
Subject: CN=9e4ffd2b2e9dfb35c278356d881f84bf4ac6be7b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:50:ca:00:4a:8a:da:78:79:be:82:bd:1b:da:
d8:3a:26:95:d8:96:53:01:c3:54:82:bf:80:d9:d0:
5b:e4:16:9d:e6:1d:2c:3b:47:9d:04:d8:3e:c6:5e:
72:f0:22:73:eb:a3:aa:10:c8:e4:db:88:f3:84:34:
10:d2:38:f8:88:7f:25:d2:cd:ed:98:59:40:c7:c8:
ac:97:36:a0:5a:18:56:03:de:a2:b7:6c:54:5a:74:
0f:8b:0d:99:2c:65:53:2e:53:7e:45:c5:37:b3:23:
a0:43:3b:7a:50:81:0f:96:d3:61:05:01:d3:7c:82:
f0:7e:f7:c8:9f:bd:d0:48:85:20:3e:aa:27:4d:3c:
15:53:55:b7:ed:12:50:0b:be:f7:00:fd:33:bb:66:
64:9a:b6:ee:b9:90:66:3d:36:1c:08:23:cd:d3:d2:
51:6b:2c:2e:50:41:46:23:78:72:7b:84:5c:db:ff:
46:b0:ad:1a:fc:27:8a:96:bf:0f:da:78:30:d6:f7:
0f:56:68:d7:4a:c8:f1:f3:fd:a1:71:16:99:c5:9c:
bd:eb:5b:c3:aa:9e:6f:33:79:1d:05:ca:76:4d:ea:
ba:dd:15:0d:40:fe:0b:62:d1:3b:08:54:ac:a4:55:
f7:5f:30:cc:bc:71:86:55:c6:58:e6:30:50:92:5f:
71:6d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9E:4F:FD:2B:2E:9D:FB:35:C2:78:35:6D:88:1F:84:BF:4A:C6:BE:7B
X509v3 Authority Key Identifier:
keyid:BB:B8:65:FD:6D:FA:AB:A7:71:24:9B:7E:BA:E8:EB:D5:28:0A:0C:97
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/u7hl_W36q6dxJJt-uujr1SgKDJc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4a/43bb94-94c6-4dad-a372-5fcfa421975c/1/u7hl_W36q6dxJJt-uujr1SgKDJc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4a/43bb94-94c6-4dad-a372-5fcfa421975c/1/u7hl_W36q6dxJJt-uujr1SgKDJc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
af:50:05:50:40:e4:9d:8c:f0:eb:1f:a4:3d:64:eb:d7:99:17:
20:ed:b7:36:11:f7:d8:bc:7e:9a:0f:11:2d:2b:9e:f8:10:77:
58:d0:69:29:df:df:78:c8:fd:53:1a:dc:63:0b:95:5e:6e:57:
d7:3c:4f:7a:a9:27:dc:5b:a7:e0:e5:a1:56:75:76:98:c7:f2:
e5:ca:e6:87:00:05:22:ef:fb:a0:c8:78:94:79:bc:9f:74:e9:
dc:c4:e2:07:ab:23:05:21:ed:28:fb:7c:5f:4d:c8:7d:57:c4:
8e:48:9d:fa:57:0c:05:6a:2e:93:b6:72:ef:38:88:22:f6:b7:
72:c2:6b:8a:07:90:32:da:22:50:b0:af:37:3e:f2:6e:4d:e2:
39:90:b3:df:e8:26:f4:80:bc:db:e4:22:c1:a7:1d:0a:7a:1b:
ba:21:b3:5a:5c:67:dc:15:d9:da:4d:fa:74:fe:0c:8e:5b:39:
0e:95:27:05:c0:92:9f:19:ed:71:c8:3f:2d:60:b6:19:11:b0:
a6:3a:0e:5c:c5:a5:1e:99:8e:e9:7a:ec:f7:46:07:16:ef:ad:
33:4f:ee:6d:34:cf:15:87:92:1d:46:07:6c:b1:b3:a3:38:c1:
46:c9:4a:18:2b:33:40:c7:6c:36:3d:7a:ba:f3:8e:79:01:5f:
51:e9:20:cf
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jul 29 04:39:37 2025 by rpki-client