Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/71/71f439-2b1b-4ef0-b6a5-8fcaa6936c6c/1/uqpkzSnJTM3hREj2GhcsdjseQFA.mft
File: uqpkzSnJTM3hREj2GhcsdjseQFA.mft (raw, json)
Hash identifier: AUqL8CE3GSCpblAMb/II7VEIl2jrKMVKBb6WIrsH26o=
Subject key identifier: 5A:A0:FC:DA:BA:3A:2C:9F:10:7E:87:26:A8:B0:66:D7:17:E5:37:26
Authority key identifier: BA:AA:64:CD:29:C9:4C:CD:E1:44:48:F6:1A:17:2C:76:3B:1E:40:50
Certificate issuer: /CN=baaa64cd29c94ccde14448f61a172c763b1e4050
Certificate serial: 01974DE986385B5DEE06E5DD072797F63D78
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/uqpkzSnJTM3hREj2GhcsdjseQFA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/71/71f439-2b1b-4ef0-b6a5-8fcaa6936c6c/1/uqpkzSnJTM3hREj2GhcsdjseQFA.mft
Manifest number: 05D5
Signing time: Sun 08 Jun 2025 05:00:39 +0000
Manifest this update: Sun 08 Jun 2025 05:00:39 +0000
Manifest next update: Mon 09 Jun 2025 05:00:39 +0000
Files and hashes: 1: 78qzTXd1x9Fq51bVnqtwUpES8tE.roa (hash: cFYT5YQ4faJqGDT5XV6eOPdhzfgW7hK/0zl0h4kFiw8=)
2: uqpkzSnJTM3hREj2GhcsdjseQFA.crl (hash: 5W1VqMwCjeG/eYc2VxteOb3ikwvOF8qP0US3buYQwEE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/71/71f439-2b1b-4ef0-b6a5-8fcaa6936c6c/1/uqpkzSnJTM3hREj2GhcsdjseQFA.crl
rsync://rpki.ripe.net/repository/DEFAULT/71/71f439-2b1b-4ef0-b6a5-8fcaa6936c6c/1/uqpkzSnJTM3hREj2GhcsdjseQFA.mft
rsync://rpki.ripe.net/repository/DEFAULT/uqpkzSnJTM3hREj2GhcsdjseQFA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 09 Jun 2025 03:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:4d:e9:86:38:5b:5d:ee:06:e5:dd:07:27:97:f6:3d:78
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=baaa64cd29c94ccde14448f61a172c763b1e4050
Validity
Not Before: Jun 8 05:00:39 2025 GMT
Not After : Jun 9 05:00:39 2025 GMT
Subject: CN=5aa0fcdaba3a2c9f107e8726a8b066d717e53726
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:89:0a:a8:bb:11:3a:ff:94:f8:f8:c6:c9:89:87:
d2:4a:9c:44:1a:fa:d0:45:a1:b7:7b:98:ac:97:c2:
56:c8:6f:66:95:ac:82:af:3c:84:19:50:6d:fc:60:
dd:95:16:6b:ad:d4:43:c9:16:bf:1f:64:57:1f:59:
d7:a7:a7:a8:54:e2:00:de:a8:ba:ee:0c:bb:ff:45:
87:40:a8:41:80:61:08:7c:13:69:b4:d2:8d:21:c9:
91:b1:21:76:a1:11:aa:ad:46:43:cc:5f:24:36:c7:
7a:fb:38:c0:50:e9:8a:5e:bf:1d:34:f4:44:ce:cc:
70:f7:12:7f:c4:23:3b:65:4e:87:cd:7a:35:85:8c:
5a:c9:5e:4d:ce:55:07:8b:67:f5:79:e5:27:36:70:
43:43:40:99:ae:91:41:95:b3:78:10:15:30:85:8b:
29:03:e6:5c:9f:25:86:c1:a3:3c:81:58:ce:a5:1c:
12:42:cf:b4:ec:b4:3a:52:cc:ad:8f:b0:dc:c5:38:
9b:05:56:d6:19:78:bb:b5:4d:1c:ff:87:b1:f9:ca:
9f:f1:68:7c:5d:58:48:4c:76:c9:f3:38:98:91:dd:
88:56:94:c5:3a:bd:80:88:6f:b9:1a:77:31:f9:3a:
02:5b:f2:ae:3c:16:87:a7:6e:c0:54:b8:37:05:d3:
4a:5d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5A:A0:FC:DA:BA:3A:2C:9F:10:7E:87:26:A8:B0:66:D7:17:E5:37:26
X509v3 Authority Key Identifier:
keyid:BA:AA:64:CD:29:C9:4C:CD:E1:44:48:F6:1A:17:2C:76:3B:1E:40:50
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/uqpkzSnJTM3hREj2GhcsdjseQFA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/71/71f439-2b1b-4ef0-b6a5-8fcaa6936c6c/1/uqpkzSnJTM3hREj2GhcsdjseQFA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/71/71f439-2b1b-4ef0-b6a5-8fcaa6936c6c/1/uqpkzSnJTM3hREj2GhcsdjseQFA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
70:84:75:4c:31:d4:e9:48:0f:5a:8e:05:a6:a4:28:0c:f5:96:
b5:cb:d8:a8:f6:16:71:cb:1f:cc:e9:ca:48:d6:16:cf:98:86:
be:42:e6:f9:d3:00:25:14:06:43:cc:d5:25:62:fb:00:ca:5d:
20:a4:ae:56:7c:5d:24:e6:3a:74:f8:01:83:9e:e5:97:b7:96:
9d:4c:bb:0e:07:55:b7:48:1d:93:97:cf:6b:40:26:0b:97:f5:
49:aa:0a:41:69:0a:13:0e:ea:1e:40:ca:25:d4:a4:9e:ed:ac:
e7:9a:93:2e:d5:7c:05:3b:4d:26:0d:38:e1:82:22:46:4c:a4:
40:ff:b6:71:b2:ef:58:00:22:f3:75:fe:49:a8:ac:e4:2b:6a:
7c:48:f2:dd:86:bc:0f:2e:c7:0a:5e:e7:f7:4c:6f:ec:f8:d7:
6c:7b:48:ba:35:8b:12:20:d0:8a:fb:47:17:44:1a:69:f4:64:
8b:89:15:3a:fa:c9:8d:e7:20:8d:cb:7d:e9:2c:f0:82:df:4b:
83:ad:ac:04:2a:c9:67:9e:0c:4e:d2:cd:65:29:34:28:91:28:
e0:fc:b8:19:86:af:da:bd:f7:28:94:89:56:7e:88:e0:e4:8b:
37:45:8d:2e:b0:07:ee:21:27:66:ea:37:9f:c2:ed:a2:01:5a:
2c:03:fa:1c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 8 13:24:49 2025 by rpki-client