Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/71/eca809-d942-4d89-b438-a1c29992bfbe/1/UlG0CzMZisWh7fUP_whigWAzXf0.mft
File: UlG0CzMZisWh7fUP_whigWAzXf0.mft (raw, json)
Hash identifier: WaZaPEexDcFjJnr4M/48jYozxqXvvAWfv3qrqkad5Ko=
Subject key identifier: 9A:16:F5:E4:5C:FC:D5:04:5F:B8:BE:76:20:BF:0B:30:AB:9A:14:6F
Authority key identifier: 52:51:B4:0B:33:19:8A:C5:A1:ED:F5:0F:FF:08:62:81:60:33:5D:FD
Certificate issuer: /CN=5251b40b33198ac5a1edf50fff08628160335dfd
Certificate serial: 019750EA42ABF8867291FAFA7DE88954D6F2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UlG0CzMZisWh7fUP_whigWAzXf0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/71/eca809-d942-4d89-b438-a1c29992bfbe/1/UlG0CzMZisWh7fUP_whigWAzXf0.mft
Manifest number: 147F
Signing time: Sun 08 Jun 2025 19:00:19 +0000
Manifest this update: Sun 08 Jun 2025 19:00:19 +0000
Manifest next update: Mon 09 Jun 2025 19:00:19 +0000
Files and hashes: 1: B5jBrigaJO3-AA-t_YN4JZyKlOc.roa (hash: rGNTEj/GGFLwPvW+NfWJ0mtsiCJfkPNhKXWRWEo8b5k=)
2: UlG0CzMZisWh7fUP_whigWAzXf0.crl (hash: siJgfaBjRzFZGWwugDV0+GVKqcw9/Z7z99mLyAv5hOs=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/71/eca809-d942-4d89-b438-a1c29992bfbe/1/UlG0CzMZisWh7fUP_whigWAzXf0.crl
rsync://rpki.ripe.net/repository/DEFAULT/71/eca809-d942-4d89-b438-a1c29992bfbe/1/UlG0CzMZisWh7fUP_whigWAzXf0.mft
rsync://rpki.ripe.net/repository/DEFAULT/UlG0CzMZisWh7fUP_whigWAzXf0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 09 Jun 2025 12:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:50:ea:42:ab:f8:86:72:91:fa:fa:7d:e8:89:54:d6:f2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5251b40b33198ac5a1edf50fff08628160335dfd
Validity
Not Before: Jun 8 19:00:19 2025 GMT
Not After : Jun 9 19:00:19 2025 GMT
Subject: CN=9a16f5e45cfcd5045fb8be7620bf0b30ab9a146f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:0c:98:0c:9b:c7:f1:22:03:d5:d9:f7:4d:d7:
df:41:6a:69:91:f0:44:86:41:bb:f8:58:41:80:55:
90:0a:c2:4c:0d:c5:ef:a8:d4:63:f2:53:e1:50:c3:
f5:27:15:c8:96:69:56:c9:12:1e:bc:0c:0c:52:d7:
b5:23:ce:7b:5f:7e:0c:a3:52:23:d0:a3:38:1d:ef:
7f:85:dd:71:89:d7:77:1a:ef:26:e8:60:64:98:84:
16:94:f9:ce:53:f6:be:0f:ac:23:7c:70:9b:4c:50:
66:77:b2:10:85:14:a5:46:3e:29:eb:c7:61:29:e2:
27:fa:88:67:15:19:1c:4a:40:5c:86:79:74:ca:fe:
21:51:dd:e4:28:30:7d:40:e1:12:8a:fc:17:1f:e5:
87:e6:01:52:77:50:33:17:e8:51:b8:05:f3:9d:91:
fe:4b:5c:65:5b:cc:d5:28:17:eb:f5:05:64:ce:86:
10:e5:69:3f:8d:8c:11:6e:ea:43:25:d5:c5:f2:b2:
8d:c7:60:1c:51:83:96:76:0f:8c:7c:96:c2:4b:6f:
97:4b:c7:4b:bd:72:22:e0:58:ac:a8:0a:40:d1:cc:
b6:4f:ff:42:9c:b2:de:2e:2b:a4:5d:f0:b2:2c:ec:
5c:99:64:4c:51:7b:04:bd:da:38:72:b9:a0:56:81:
ba:35
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9A:16:F5:E4:5C:FC:D5:04:5F:B8:BE:76:20:BF:0B:30:AB:9A:14:6F
X509v3 Authority Key Identifier:
keyid:52:51:B4:0B:33:19:8A:C5:A1:ED:F5:0F:FF:08:62:81:60:33:5D:FD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UlG0CzMZisWh7fUP_whigWAzXf0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/71/eca809-d942-4d89-b438-a1c29992bfbe/1/UlG0CzMZisWh7fUP_whigWAzXf0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/71/eca809-d942-4d89-b438-a1c29992bfbe/1/UlG0CzMZisWh7fUP_whigWAzXf0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
98:0e:6d:28:18:4d:d0:a1:e5:c4:e5:b2:40:0c:4b:81:b6:9f:
4f:46:86:08:b5:d5:fd:2a:c9:b6:cc:24:b5:48:4b:88:b8:48:
93:0b:42:d4:b5:08:04:30:85:67:bb:49:6d:2a:cb:b4:84:cb:
78:d4:0e:a5:ec:40:20:ca:bd:22:f8:38:58:1e:88:92:ad:01:
a0:cd:9c:94:de:17:c3:ba:94:74:b2:8a:12:28:1d:34:4e:c7:
14:8b:d1:cb:10:38:2f:43:f9:02:3a:97:54:60:eb:f6:a2:21:
61:ab:ba:d2:96:6f:fa:04:84:bc:0c:cb:3f:e3:50:75:c4:b0:
e1:68:c1:bb:d3:b9:db:94:08:6f:da:2b:68:a0:70:51:10:6f:
7a:d8:01:fa:ff:ae:ce:7a:ff:48:44:2f:a0:52:d6:1c:d3:5e:
ba:a4:b5:24:76:4e:f5:7c:2b:40:66:76:22:0a:ae:15:75:92:
1a:28:6c:55:72:98:a7:9b:0c:ad:79:30:4c:bd:f1:a2:c6:37:
c8:d0:8d:36:4b:29:f6:5e:3d:8a:58:d2:0d:1a:4e:7b:11:bb:
db:ff:fa:1e:25:06:a9:34:c7:40:a9:9a:56:60:f4:76:60:0e:
b2:a3:f0:24:f0:9e:6f:98:c2:1d:81:e5:b5:94:be:da:d9:14:
c7:4a:f9:ba
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 8 21:11:28 2025 by rpki-client