Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/64/af72e8-f0d2-4d66-b520-3aba595b58a8/1/upcN4SazoLVI2tdvXvqIhVxvH_I.mft
File: upcN4SazoLVI2tdvXvqIhVxvH_I.mft (raw, json)
Hash identifier: xRXMg6Xg5zT/5HkAccRjQRkK71B51N819Sg4vSlMR6Y=
Subject key identifier: CE:DA:A1:2B:54:30:74:BA:B2:93:CF:9F:AF:56:5F:A9:56:39:84:31
Authority key identifier: BA:97:0D:E1:26:B3:A0:B5:48:DA:D7:6F:5E:FA:88:85:5C:6F:1F:F2
Certificate issuer: /CN=ba970de126b3a0b548dad76f5efa88855c6f1ff2
Certificate serial: 01991808BE883B3B59B1CFE00616308004A2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/upcN4SazoLVI2tdvXvqIhVxvH_I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/64/af72e8-f0d2-4d66-b520-3aba595b58a8/1/upcN4SazoLVI2tdvXvqIhVxvH_I.mft
Manifest number: 09F2
Signing time: Fri 05 Sep 2025 04:00:50 +0000
Manifest this update: Fri 05 Sep 2025 04:00:50 +0000
Manifest next update: Sat 06 Sep 2025 04:00:50 +0000
Files and hashes: 1: iB0nh2pqz5-ySXR-fF2YCAS68X8.roa (hash: Y94jSzgT6noKQkiYTVT17vXi3fN7I6D0Bkm1xKFYYKk=)
2: upcN4SazoLVI2tdvXvqIhVxvH_I.crl (hash: sAdlkgkAIabKoPpMXxWWlrlwni/QvCRcFMWUaOur2X8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/64/af72e8-f0d2-4d66-b520-3aba595b58a8/1/upcN4SazoLVI2tdvXvqIhVxvH_I.crl
rsync://rpki.ripe.net/repository/DEFAULT/64/af72e8-f0d2-4d66-b520-3aba595b58a8/1/upcN4SazoLVI2tdvXvqIhVxvH_I.mft
rsync://rpki.ripe.net/repository/DEFAULT/upcN4SazoLVI2tdvXvqIhVxvH_I.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 06 Sep 2025 01:00:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:18:08:be:88:3b:3b:59:b1:cf:e0:06:16:30:80:04:a2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ba970de126b3a0b548dad76f5efa88855c6f1ff2
Validity
Not Before: Sep 5 04:00:50 2025 GMT
Not After : Sep 6 04:00:50 2025 GMT
Subject: CN=cedaa12b543074bab293cf9faf565fa956398431
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ce:f6:da:23:ee:bb:df:a5:22:5a:48:d1:d6:f7:
fd:a4:ec:d5:6e:e3:14:98:ac:7c:c5:6d:19:83:72:
04:bb:cb:02:4f:61:e3:42:a7:44:c3:c9:9a:6c:c7:
88:84:ab:c1:af:c5:28:c9:08:a6:cb:8d:0a:aa:30:
fa:1e:9d:c1:88:b3:62:80:2b:66:6d:4d:c8:6b:fc:
da:26:98:2c:31:37:32:8d:b8:fb:fc:60:e8:19:38:
17:df:6c:c5:2f:2a:62:fc:22:bd:24:e9:c5:6a:0c:
71:fe:86:35:48:57:5d:e6:e1:88:ca:88:3b:c3:c2:
3f:f1:be:f9:00:96:86:92:64:9a:2c:f4:cb:2b:61:
2c:1c:b8:32:7b:ee:25:f2:e9:a7:08:99:94:40:69:
5e:14:c5:ad:27:34:ac:4c:58:08:94:db:8d:ce:e6:
01:c9:b4:65:e7:2e:25:16:d6:b3:33:ea:7f:9c:8b:
83:92:7e:07:49:9b:20:00:7c:68:6f:86:ef:42:8f:
53:04:c7:86:3d:a2:94:92:07:e3:23:9f:5f:3a:1a:
30:8e:1f:86:e5:82:3d:b5:a6:8b:21:aa:e1:39:ad:
5e:f9:d3:71:5a:72:2b:39:f4:6a:47:84:8a:2b:6c:
81:fa:e7:00:84:96:aa:e5:9d:1d:55:8b:ef:ed:ef:
85:d3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CE:DA:A1:2B:54:30:74:BA:B2:93:CF:9F:AF:56:5F:A9:56:39:84:31
X509v3 Authority Key Identifier:
keyid:BA:97:0D:E1:26:B3:A0:B5:48:DA:D7:6F:5E:FA:88:85:5C:6F:1F:F2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/upcN4SazoLVI2tdvXvqIhVxvH_I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/64/af72e8-f0d2-4d66-b520-3aba595b58a8/1/upcN4SazoLVI2tdvXvqIhVxvH_I.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/64/af72e8-f0d2-4d66-b520-3aba595b58a8/1/upcN4SazoLVI2tdvXvqIhVxvH_I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
46:ef:c4:6b:1f:6c:57:ce:12:73:ab:3e:69:94:c9:e4:5a:89:
ce:42:d7:1e:97:9e:11:25:af:94:01:0b:de:82:78:f7:1b:5c:
15:fd:69:f4:6d:21:65:d7:58:8f:a7:31:1d:18:72:1c:1c:80:
25:7a:a5:df:66:34:30:14:52:6c:52:7d:b4:34:3b:51:31:99:
43:6b:1b:b7:d1:3d:5a:42:33:d9:6c:c4:27:f4:7f:11:20:f0:
83:a9:4f:42:b7:18:00:d6:1e:64:93:d3:a2:c6:80:66:9a:65:
b4:6f:d0:65:db:1d:c9:c2:a6:c4:b2:24:12:2d:0d:fc:ca:77:
0c:e1:b0:df:1e:a3:b6:12:2b:a6:aa:d8:06:8b:51:ba:2e:94:
68:8e:a9:f8:0e:47:78:91:5c:77:fe:7a:00:1b:7d:cd:2a:ac:
4e:96:24:c9:d5:f3:1e:6d:86:39:53:ba:a9:cf:81:cc:d0:59:
7f:c3:1c:31:bf:36:3a:20:c6:69:4a:36:01:0f:bd:1e:85:a2:
8f:b2:da:25:a1:77:9e:68:15:0c:37:a6:bd:01:c8:ac:4e:a0:
49:58:09:eb:96:d6:b9:b7:dc:52:f8:e4:33:d4:3b:a1:c7:8b:
a4:b8:8c:ee:7c:cd:d2:9a:6d:94:9a:b6:85:24:58:d4:85:7d:
c9:bd:51:cd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Sep 5 06:04:35 2025 by rpki-client