Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5d/945b53-d788-487b-a982-0903ee7c1902/1/bUmIt5OIS3moT-NFY9A581RsGF8.mft
File: bUmIt5OIS3moT-NFY9A581RsGF8.mft (raw, json)
Hash identifier: wlAXJw0yCshMRKXvethay7rTB5idWa2mwwRXJ0PMMW8=
Subject key identifier: 52:7B:A6:64:BE:59:47:EC:93:1D:63:9F:C5:B7:AB:26:21:6B:92:24
Authority key identifier: 6D:49:88:B7:93:88:4B:79:A8:4F:E3:45:63:D0:39:F3:54:6C:18:5F
Certificate issuer: /CN=6d4988b793884b79a84fe34563d039f3546c185f
Certificate serial: 019921E7BA7B509C4FAA9DBE56BCBD4C7A48
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bUmIt5OIS3moT-NFY9A581RsGF8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5d/945b53-d788-487b-a982-0903ee7c1902/1/bUmIt5OIS3moT-NFY9A581RsGF8.mft
Manifest number: 34
Signing time: Sun 07 Sep 2025 02:00:58 +0000
Manifest this update: Sun 07 Sep 2025 02:00:58 +0000
Manifest next update: Mon 08 Sep 2025 02:00:58 +0000
Files and hashes: 1: PbKFQNF-KRL6ofwi4j3Bg5k5waE.roa (hash: YTTgn2RJvO9vy8iO3c6Slj7449QcwGlGTqJtOMaavFU=)
2: bUmIt5OIS3moT-NFY9A581RsGF8.crl (hash: 7pPYOVxWWhv2wPZneRQCZw8AEdkSQU1J5XYj92Daztk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5d/945b53-d788-487b-a982-0903ee7c1902/1/bUmIt5OIS3moT-NFY9A581RsGF8.crl
rsync://rpki.ripe.net/repository/DEFAULT/5d/945b53-d788-487b-a982-0903ee7c1902/1/bUmIt5OIS3moT-NFY9A581RsGF8.mft
rsync://rpki.ripe.net/repository/DEFAULT/bUmIt5OIS3moT-NFY9A581RsGF8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 08 Sep 2025 02:00:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:21:e7:ba:7b:50:9c:4f:aa:9d:be:56:bc:bd:4c:7a:48
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6d4988b793884b79a84fe34563d039f3546c185f
Validity
Not Before: Sep 7 02:00:58 2025 GMT
Not After : Sep 8 02:00:58 2025 GMT
Subject: CN=527ba664be5947ec931d639fc5b7ab26216b9224
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:8d:7d:29:16:bf:cf:9b:5e:3a:4f:d3:bd:92:
25:da:ce:0a:b1:7e:7b:7c:c2:a9:e4:c5:93:e1:ce:
50:22:17:89:af:83:78:b2:92:35:e7:3d:62:f9:97:
d9:0d:8a:36:5b:83:d0:cd:dc:e3:74:40:2f:0c:d1:
9d:4c:af:39:54:43:df:a4:07:da:b9:85:3e:fc:1b:
94:3b:a9:f6:1c:ce:07:9e:c2:14:a1:ec:8e:15:d1:
20:12:e4:ef:2c:f0:a5:e9:3f:8b:52:a7:88:0f:81:
99:ee:82:dc:f0:eb:2b:2a:b4:ba:a4:a5:81:bf:6c:
4b:08:e4:7b:40:d3:ae:49:a3:e7:c9:fc:fc:81:b9:
8a:8c:a5:c6:64:48:8e:ca:25:04:f2:94:da:9f:f4:
cd:24:59:d5:ea:c0:04:8c:80:9b:db:7f:74:6b:49:
f1:36:69:74:fb:cf:d8:6b:e7:35:e3:a3:2f:b3:fd:
d1:7a:f5:34:0c:77:5f:7a:8a:dd:12:87:f6:1f:ae:
2d:f6:08:27:e4:03:ae:26:57:c8:08:dd:88:4b:ae:
43:c7:25:55:54:b0:88:76:f3:bc:e9:61:d1:9a:4e:
95:a2:39:87:ae:06:29:63:3c:58:a0:5f:2b:4b:ba:
79:5f:d8:33:5e:54:be:9b:57:3d:56:fe:ba:52:4c:
9e:f3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
52:7B:A6:64:BE:59:47:EC:93:1D:63:9F:C5:B7:AB:26:21:6B:92:24
X509v3 Authority Key Identifier:
keyid:6D:49:88:B7:93:88:4B:79:A8:4F:E3:45:63:D0:39:F3:54:6C:18:5F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bUmIt5OIS3moT-NFY9A581RsGF8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5d/945b53-d788-487b-a982-0903ee7c1902/1/bUmIt5OIS3moT-NFY9A581RsGF8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5d/945b53-d788-487b-a982-0903ee7c1902/1/bUmIt5OIS3moT-NFY9A581RsGF8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
34:b4:ca:6b:2d:8d:9d:30:96:6b:b9:dd:bb:02:0a:f4:92:e2:
23:43:9f:eb:56:33:ec:81:a9:88:80:63:99:fd:39:ee:55:0c:
f2:b9:96:dc:1c:af:fc:15:1b:e1:de:7b:7c:37:77:97:8b:dd:
5d:88:1a:1b:76:d6:6d:f9:0c:18:4b:4c:7e:0b:52:13:cf:87:
17:a5:7b:c4:66:39:32:c7:83:e5:5e:db:e8:82:ab:b5:20:e8:
ce:29:2c:d8:e2:7e:30:92:20:00:96:87:6d:17:71:59:0e:14:
42:8a:e4:a8:22:59:ed:59:25:08:0b:99:66:01:12:c5:4a:de:
fc:9b:2b:7d:d5:75:28:88:74:75:fd:0f:84:1c:2a:17:59:6b:
df:e0:60:c2:98:d6:64:20:ea:0d:cd:fb:4f:8b:25:9d:4f:7d:
c8:e1:f0:1e:ab:fa:96:9e:e8:32:a8:47:65:60:5e:fa:71:4b:
37:03:61:6b:03:ee:88:52:63:70:af:57:86:41:67:15:49:df:
b5:cd:27:cd:b8:37:0a:25:b4:30:29:c6:d6:33:f4:d2:8a:59:
81:36:d3:48:0e:ed:5e:09:90:0d:cc:57:91:ae:c5:b1:47:af:
b9:86:7e:d9:2d:ed:ac:1b:7d:3f:3a:97:88:cb:91:a6:5d:26:
79:d8:13:5e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Sep 7 12:33:34 2025 by rpki-client