Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/64/af72e8-f0d2-4d66-b520-3aba595b58a8/1/upcN4SazoLVI2tdvXvqIhVxvH_I.mft
File: upcN4SazoLVI2tdvXvqIhVxvH_I.mft (raw, json)
Hash identifier: QExFKnzxZi22lhXZG8PJExQ711hR8szjIgiFbgIWRfw=
Subject key identifier: 0F:E0:D2:84:D7:FB:D3:61:42:27:09:8E:73:C1:8A:E3:F9:72:9B:7B
Authority key identifier: BA:97:0D:E1:26:B3:A0:B5:48:DA:D7:6F:5E:FA:88:85:5C:6F:1F:F2
Certificate issuer: /CN=ba970de126b3a0b548dad76f5efa88855c6f1ff2
Certificate serial: 01974E2062F82B82411F0AE93933FD440AFA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/upcN4SazoLVI2tdvXvqIhVxvH_I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/64/af72e8-f0d2-4d66-b520-3aba595b58a8/1/upcN4SazoLVI2tdvXvqIhVxvH_I.mft
Manifest number: 0905
Signing time: Sun 08 Jun 2025 06:00:34 +0000
Manifest this update: Sun 08 Jun 2025 06:00:34 +0000
Manifest next update: Mon 09 Jun 2025 06:00:34 +0000
Files and hashes: 1: iB0nh2pqz5-ySXR-fF2YCAS68X8.roa (hash: Y94jSzgT6noKQkiYTVT17vXi3fN7I6D0Bkm1xKFYYKk=)
2: upcN4SazoLVI2tdvXvqIhVxvH_I.crl (hash: Y+Dqhx0z+TTnjncuWyiGe0sMdHIvxx0MFH81Ug6gqaY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/64/af72e8-f0d2-4d66-b520-3aba595b58a8/1/upcN4SazoLVI2tdvXvqIhVxvH_I.crl
rsync://rpki.ripe.net/repository/DEFAULT/64/af72e8-f0d2-4d66-b520-3aba595b58a8/1/upcN4SazoLVI2tdvXvqIhVxvH_I.mft
rsync://rpki.ripe.net/repository/DEFAULT/upcN4SazoLVI2tdvXvqIhVxvH_I.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 09 Jun 2025 03:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:4e:20:62:f8:2b:82:41:1f:0a:e9:39:33:fd:44:0a:fa
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ba970de126b3a0b548dad76f5efa88855c6f1ff2
Validity
Not Before: Jun 8 06:00:34 2025 GMT
Not After : Jun 9 06:00:34 2025 GMT
Subject: CN=0fe0d284d7fbd3614227098e73c18ae3f9729b7b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:2b:89:22:b9:a8:bb:9d:3c:3d:cc:f1:5d:6f:
a6:89:0e:b5:1e:0e:cf:b7:50:ad:9e:de:55:12:fa:
f0:05:2c:69:50:55:c9:f8:51:f3:fb:0e:da:48:df:
b2:01:24:24:71:a2:17:cc:46:75:78:f9:cd:d1:1a:
21:9e:d4:ae:36:51:89:6c:b4:4e:ae:35:b7:e4:ca:
38:03:d5:dc:5d:4b:c6:78:b7:37:ec:e3:3d:b1:92:
27:f9:58:96:b9:ec:69:02:0f:68:ff:84:09:13:68:
2c:da:49:94:23:da:41:ab:1b:8b:04:78:2b:68:d7:
f3:37:39:9b:00:22:45:dc:88:91:2b:5e:1f:9e:f8:
32:1b:13:74:dc:76:8b:7a:77:54:6d:96:49:09:fa:
bb:67:8b:29:6f:de:f7:0f:4d:8f:d7:e5:7f:0a:42:
8d:0d:2c:b4:2d:75:86:55:02:1b:b2:2b:fb:d4:cf:
84:f8:46:eb:a2:dd:29:ef:d7:34:22:b9:2a:06:a2:
14:40:bb:c3:43:2b:94:5b:7d:aa:b8:df:20:45:ea:
e8:a1:2c:1b:85:83:19:72:dc:29:3d:33:65:2a:c3:
18:3a:3d:27:af:0c:0f:d9:0c:00:d9:81:ae:a7:32:
62:e2:84:9f:b0:04:5c:8f:18:4d:77:6f:f4:90:7f:
24:01
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0F:E0:D2:84:D7:FB:D3:61:42:27:09:8E:73:C1:8A:E3:F9:72:9B:7B
X509v3 Authority Key Identifier:
keyid:BA:97:0D:E1:26:B3:A0:B5:48:DA:D7:6F:5E:FA:88:85:5C:6F:1F:F2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/upcN4SazoLVI2tdvXvqIhVxvH_I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/64/af72e8-f0d2-4d66-b520-3aba595b58a8/1/upcN4SazoLVI2tdvXvqIhVxvH_I.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/64/af72e8-f0d2-4d66-b520-3aba595b58a8/1/upcN4SazoLVI2tdvXvqIhVxvH_I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
81:b9:fd:3d:ec:59:61:3f:67:1c:c4:ad:08:84:de:e8:2c:b7:
a4:77:46:f8:b3:b7:04:1f:88:37:f7:28:51:f6:de:1e:df:12:
13:c5:97:d4:e3:d4:25:cc:a9:c0:e9:23:1f:04:a5:a3:fd:28:
a1:88:9d:e6:a1:50:49:82:f6:6d:85:20:9c:0d:e2:0c:76:85:
ff:66:6f:8b:4f:e7:57:97:d1:fe:2b:56:8f:38:ab:3c:17:a2:
62:72:7d:92:8e:cb:bd:c6:59:28:4a:d1:45:38:6c:0f:5c:88:
68:6a:6f:41:36:b4:b2:2d:ec:e5:2f:6f:b4:93:5a:e0:8d:26:
9c:b8:03:21:7c:43:1d:98:35:20:dc:37:15:8d:83:bd:77:33:
07:2c:73:a0:6f:83:d0:3c:d4:44:17:ba:d8:35:13:28:71:4c:
80:09:84:ef:79:77:53:84:4d:b3:eb:ac:c3:27:57:5e:82:f0:
23:cf:64:b4:69:30:d3:cc:11:df:58:89:1a:24:26:c4:f0:08:
1a:79:95:44:2f:eb:39:40:d3:a0:8c:b1:94:71:ae:71:ed:68:
a3:78:7e:0d:fd:42:af:9a:6e:b2:a6:55:3f:c0:d8:dd:08:92:
c6:0b:c9:66:4f:99:2d:8e:de:b8:d0:90:1d:16:3f:4e:b8:da:
40:90:60:d5
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZdOIGL4K4JBHwrpOTP9RAr6MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGJhOTcwZGUxMjZiM2EwYjU0OGRhZDc2ZjVlZmE4ODg1NWM2
ZjFmZjIwHhcNMjUwNjA4MDYwMDM0WhcNMjUwNjA5MDYwMDM0WjAzMTEwLwYDVQQD
EygwZmUwZDI4NGQ3ZmJkMzYxNDIyNzA5OGU3M2MxOGFlM2Y5NzI5YjdiMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtCuJIrmou508PczxXW+miQ61Hg7P
t1Ctnt5VEvrwBSxpUFXJ+FHz+w7aSN+yASQkcaIXzEZ1ePnN0RohntSuNlGJbLRO
rjW35Mo4A9XcXUvGeLc37OM9sZIn+ViWuexpAg9o/4QJE2gs2kmUI9pBqxuLBHgr
aNfzNzmbACJF3IiRK14fnvgyGxN03HaLendUbZZJCfq7Z4spb973D02P1+V/CkKN
DSy0LXWGVQIbsiv71M+E+Ebrot0p79c0IrkqBqIUQLvDQyuUW32quN8gRerooSwb
hYMZctwpPTNlKsMYOj0nrwwP2QwA2YGupzJi4oSfsARcjxhNd2/0kH8kAQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFA/g0oTX+9NhQicJjnPBiuP5cpt7MB8GA1UdIwQY
MBaAFLqXDeEms6C1SNrXb176iIVcbx/yMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvdXBjTjRTYXpvTFZJMnRkdlh2cUloVnh2SF9JLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82NC9hZjcyZTgtZjBkMi00ZDY2LWI1MjAt
M2FiYTU5NWI1OGE4LzEvdXBjTjRTYXpvTFZJMnRkdlh2cUloVnh2SF9JLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC82NC9hZjcyZTgtZjBkMi00ZDY2LWI1MjAtM2FiYTU5NWI1OGE4
LzEvdXBjTjRTYXpvTFZJMnRkdlh2cUloVnh2SF9JLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAgbn9PexZ
YT9nHMStCITe6Cy3pHdG+LO3BB+IN/coUfbeHt8SE8WX1OPUJcypwOkjHwSlo/0o
oYid5qFQSYL2bYUgnA3iDHaF/2Zvi0/nV5fR/itWjzirPBeiYnJ9ko7LvcZZKErR
RThsD1yIaGpvQTa0si3s5S9vtJNa4I0mnLgDIXxDHZg1INw3FY2DvXczByxzoG+D
0DzURBe62DUTKHFMgAmE73l3U4RNs+uswydXXoLwI89ktGkw08wR31iJGiQmxPAI
GnmVRC/rOUDToIyxlHGuce1oo3h+Df1Cr5pusqZVP8DY3QiSxgvJZk+ZLY7euNCQ
HRY/TrjaQJBg1Q==
-----END CERTIFICATE-----
Generated at Sun Jun 8 12:30:34 2025 by rpki-client