Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4a/43bb94-94c6-4dad-a372-5fcfa421975c/1/u7hl_W36q6dxJJt-uujr1SgKDJc.mft
File: u7hl_W36q6dxJJt-uujr1SgKDJc.mft (raw, json)
Hash identifier: eCj6kF57CB4B/OJAOcj3/iHx2az9ZPPr5fSnofVot+w=
Subject key identifier: 29:DF:39:12:A2:92:DD:87:61:88:AB:24:61:DC:48:AE:46:39:A9:F6
Authority key identifier: BB:B8:65:FD:6D:FA:AB:A7:71:24:9B:7E:BA:E8:EB:D5:28:0A:0C:97
Certificate issuer: /CN=bbb865fd6dfaaba771249b7ebae8ebd5280a0c97
Certificate serial: 01974F336F6B84DBE7BED3CAAC566E8DA264
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/u7hl_W36q6dxJJt-uujr1SgKDJc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4a/43bb94-94c6-4dad-a372-5fcfa421975c/1/u7hl_W36q6dxJJt-uujr1SgKDJc.mft
Manifest number: 10CA
Signing time: Sun 08 Jun 2025 11:01:00 +0000
Manifest this update: Sun 08 Jun 2025 11:01:00 +0000
Manifest next update: Mon 09 Jun 2025 11:01:00 +0000
Files and hashes: 1: kr3FPTrUbvprQB5gOzb6Xm9In9I.roa (hash: hZOcB5l1wSRFBsah9a6wwCM7j6k84PdiP/Urp0eSJlg=)
2: u7hl_W36q6dxJJt-uujr1SgKDJc.crl (hash: s0BdPx5yfMqeJLgMBom6tAI5vbgSPltJZqHjS2l4YHo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/4a/43bb94-94c6-4dad-a372-5fcfa421975c/1/u7hl_W36q6dxJJt-uujr1SgKDJc.crl
rsync://rpki.ripe.net/repository/DEFAULT/4a/43bb94-94c6-4dad-a372-5fcfa421975c/1/u7hl_W36q6dxJJt-uujr1SgKDJc.mft
rsync://rpki.ripe.net/repository/DEFAULT/u7hl_W36q6dxJJt-uujr1SgKDJc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 09 Jun 2025 11:01:00 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:4f:33:6f:6b:84:db:e7:be:d3:ca:ac:56:6e:8d:a2:64
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=bbb865fd6dfaaba771249b7ebae8ebd5280a0c97
Validity
Not Before: Jun 8 11:01:00 2025 GMT
Not After : Jun 9 11:01:00 2025 GMT
Subject: CN=29df3912a292dd876188ab2461dc48ae4639a9f6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:b5:37:f5:7f:7b:c0:51:c3:cf:dd:2d:f0:5a:
6a:45:b5:65:91:0e:68:28:0d:6a:63:62:f4:c9:3d:
e8:53:e7:ac:b0:cb:44:8b:a7:68:b5:a8:ed:e8:0c:
90:2c:1e:d0:8e:d3:0f:50:d5:41:8a:25:1d:60:5d:
d3:f4:c6:73:59:15:95:9f:d4:6d:bb:37:60:da:d4:
97:99:24:18:5e:28:95:5f:28:89:a4:b7:32:35:e0:
6b:fc:f8:29:89:47:1f:98:55:17:07:57:d4:e3:c7:
a0:d6:51:57:38:db:28:60:b0:8c:38:75:d7:64:c8:
6a:c8:4f:49:49:c9:48:5e:df:cc:37:02:67:1e:5f:
cd:d4:00:67:95:6b:f1:fb:ee:73:a1:83:6b:70:85:
c6:3f:bc:dd:91:15:8f:e3:f3:b5:48:7f:8d:1b:72:
2a:a9:a9:f6:44:ae:be:d9:6f:b4:1f:22:bd:d7:b4:
f8:3c:b6:d1:35:ce:32:26:78:da:e8:9b:19:c3:9e:
47:c3:3a:65:ae:b8:ab:74:6f:4c:29:4a:3f:0b:99:
9c:66:d5:5a:81:58:32:8c:8b:a3:c5:1e:e2:16:12:
8c:14:b5:9b:1e:7c:da:b7:c5:0b:97:f0:d8:15:02:
b4:d7:f8:99:3e:c5:c8:a0:16:ae:9f:16:11:8b:7d:
1d:bf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
29:DF:39:12:A2:92:DD:87:61:88:AB:24:61:DC:48:AE:46:39:A9:F6
X509v3 Authority Key Identifier:
keyid:BB:B8:65:FD:6D:FA:AB:A7:71:24:9B:7E:BA:E8:EB:D5:28:0A:0C:97
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/u7hl_W36q6dxJJt-uujr1SgKDJc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4a/43bb94-94c6-4dad-a372-5fcfa421975c/1/u7hl_W36q6dxJJt-uujr1SgKDJc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4a/43bb94-94c6-4dad-a372-5fcfa421975c/1/u7hl_W36q6dxJJt-uujr1SgKDJc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
70:a2:0f:12:6e:c2:e1:0c:91:bf:89:5e:2d:80:5f:41:da:3c:
38:ba:88:fc:3d:7a:3f:39:c7:83:45:e4:24:1b:88:4d:5d:7d:
b8:ae:e4:3a:77:e0:37:e5:97:5c:f8:0a:98:de:c0:4f:60:ef:
d5:41:ad:44:72:87:6d:c2:44:00:0e:5e:c0:31:14:f3:ab:bc:
20:bd:17:68:13:00:92:41:ac:3a:82:6f:46:48:5c:a6:38:2e:
31:d6:8b:6e:92:08:78:a2:8e:f6:b0:9c:ea:b9:7b:82:a6:f0:
36:ff:72:80:fb:b6:e3:67:2f:59:23:a4:85:f0:05:76:c5:5f:
5a:24:f8:f4:5e:47:23:d2:33:e3:08:94:af:1b:e8:00:02:75:
67:5f:ab:23:77:9c:8b:62:04:c2:31:6f:8f:e6:ef:00:ba:c8:
d5:0e:60:82:2f:e0:02:2f:28:7f:bd:47:8a:9c:38:1f:0f:07:
14:da:bc:6e:18:98:a7:48:82:94:52:e1:21:67:ea:94:c3:8f:
55:e5:08:64:bf:90:1a:f7:74:c7:30:6a:cf:fa:67:30:11:df:
58:cf:ee:3b:8a:6f:ac:85:69:15:a5:a7:3d:c7:a4:b1:b5:a1:
91:f1:f0:57:50:37:d2:c1:e8:b2:4e:eb:47:e5:80:8c:4d:d4:
e4:25:6d:0a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 8 16:46:23 2025 by rpki-client