Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/65/9fce78-4f9d-4847-b759-b451e477b9c2/1/UJSiarpxAHYh_VmdU3u3rqreizM.mft
File: UJSiarpxAHYh_VmdU3u3rqreizM.mft (raw, json)
Hash identifier: EYT0LCYoF3PGYJbZ/eo92HfMLTBrCMjNnCs+wcgkKa4=
Subject key identifier: 6E:E7:F7:A2:29:31:50:6C:9C:68:35:35:46:8F:D6:42:E7:84:A3:9E
Authority key identifier: 50:94:A2:6A:BA:71:00:76:21:FD:59:9D:53:7B:B7:AE:AA:DE:8B:33
Certificate issuer: /CN=5094a26aba71007621fd599d537bb7aeaade8b33
Certificate serial: 019835038228057A8A9EDB1F00F7DDE78513
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UJSiarpxAHYh_VmdU3u3rqreizM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/65/9fce78-4f9d-4847-b759-b451e477b9c2/1/UJSiarpxAHYh_VmdU3u3rqreizM.mft
Manifest number: 15FA
Signing time: Wed 23 Jul 2025 02:01:18 +0000
Manifest this update: Wed 23 Jul 2025 02:01:18 +0000
Manifest next update: Thu 24 Jul 2025 02:01:18 +0000
Files and hashes: 1: PYLR3kfr_0El_Ga2E9JeZcCyCVc.roa (hash: A0449RCi6B29H8zKA0rMM/NDvKNi2c+elOaTXG6BpHk=)
2: UJSiarpxAHYh_VmdU3u3rqreizM.crl (hash: lMV4O57Bh6ZFGhp3X0QxSIk51mrq/xAAKWZtd7Sdq+Y=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/65/9fce78-4f9d-4847-b759-b451e477b9c2/1/UJSiarpxAHYh_VmdU3u3rqreizM.crl
rsync://rpki.ripe.net/repository/DEFAULT/65/9fce78-4f9d-4847-b759-b451e477b9c2/1/UJSiarpxAHYh_VmdU3u3rqreizM.mft
rsync://rpki.ripe.net/repository/DEFAULT/UJSiarpxAHYh_VmdU3u3rqreizM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 24 Jul 2025 02:01:18 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:35:03:82:28:05:7a:8a:9e:db:1f:00:f7:dd:e7:85:13
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5094a26aba71007621fd599d537bb7aeaade8b33
Validity
Not Before: Jul 23 02:01:18 2025 GMT
Not After : Jul 24 02:01:18 2025 GMT
Subject: CN=6ee7f7a22931506c9c683535468fd642e784a39e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:dd:b6:8b:76:cd:4b:a3:0a:dc:43:ce:92:a6:
82:a2:7a:e3:a6:1d:a0:e9:da:93:f4:a4:76:59:1f:
91:4b:91:85:e6:50:b9:f6:a9:d1:d7:bd:56:f5:63:
1f:58:5c:d8:e3:ae:81:12:c7:e2:53:21:68:94:cc:
56:37:64:86:4a:cb:ad:33:87:f6:03:2d:6c:37:33:
3d:83:27:40:7b:71:a9:16:df:6c:f3:02:f5:aa:2a:
b5:11:3f:1e:f0:63:54:a2:a7:96:5c:66:f1:be:65:
6b:58:ed:9f:fa:45:ab:db:88:53:43:bc:9a:05:1c:
7a:27:83:67:5d:b8:2f:68:41:16:10:3d:00:d8:b5:
df:b5:18:06:30:e7:1d:11:33:9a:48:1a:05:f3:01:
b7:c5:b0:a8:49:24:22:44:e1:0b:3e:00:ed:15:20:
f2:5b:51:37:cd:fc:bc:49:18:1c:e4:ff:69:ad:13:
d7:89:e0:1e:93:d8:d4:4b:7a:3e:1c:b4:bd:6a:4f:
12:f9:8c:10:f6:a1:fb:da:3c:ea:33:25:ab:6c:6c:
4c:28:1c:70:b2:2b:88:ac:05:b3:21:88:bf:89:f4:
39:7f:b5:b1:89:6f:62:e8:7c:c1:3d:a8:9c:f8:83:
97:ee:fd:2f:01:fc:92:5e:36:f7:f6:bd:6b:b5:eb:
72:ab
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6E:E7:F7:A2:29:31:50:6C:9C:68:35:35:46:8F:D6:42:E7:84:A3:9E
X509v3 Authority Key Identifier:
keyid:50:94:A2:6A:BA:71:00:76:21:FD:59:9D:53:7B:B7:AE:AA:DE:8B:33
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UJSiarpxAHYh_VmdU3u3rqreizM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/65/9fce78-4f9d-4847-b759-b451e477b9c2/1/UJSiarpxAHYh_VmdU3u3rqreizM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/65/9fce78-4f9d-4847-b759-b451e477b9c2/1/UJSiarpxAHYh_VmdU3u3rqreizM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
85:dc:53:82:ab:22:ad:57:5a:53:65:ff:de:29:18:91:66:1f:
81:3d:2b:ab:6c:d3:83:ee:c9:ac:06:6e:d8:97:d0:b3:fd:3e:
4c:15:b8:c0:60:23:19:7d:07:be:1c:e4:42:2f:43:a3:e0:d1:
53:66:5b:44:0b:ca:5b:f2:20:51:9b:7b:9f:8f:db:6b:a4:b5:
e7:53:40:c7:ec:85:79:bc:fc:9e:89:15:4f:e8:f6:57:66:48:
55:7c:5d:88:70:2e:0f:b1:1b:66:da:d0:a9:1c:08:10:ca:d9:
aa:98:8d:75:4a:18:b4:a4:d8:a7:d0:62:b2:38:a0:3d:16:3b:
88:e0:a5:63:8f:28:1a:65:03:a0:f1:a5:3f:25:e7:24:df:90:
30:0a:5f:97:87:35:2e:76:30:51:07:42:ae:ed:bf:05:18:47:
69:3b:69:d8:35:7f:21:1f:2e:99:43:ac:31:4a:cd:5e:cc:2b:
b1:06:b5:90:ea:24:2a:58:14:b8:24:22:01:49:6a:8f:4e:98:
f6:75:a6:4c:3d:44:29:cb:9a:71:22:bb:dd:a6:07:47:10:7d:
25:9b:29:94:b6:af:97:04:ff:9d:a2:35:9f:c2:9b:de:e7:fa:
28:bc:26:ea:41:81:27:7d:d3:ef:28:1b:bb:06:51:f6:65:d7:
89:c5:1a:3b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 23 12:00:58 2025 by rpki-client