Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/72/8b400d-1e8e-40da-b1d6-a6541ceb1e43/1/UjLUTZ4IyHPbNcAhUcpErlS0uK8.mft
File: UjLUTZ4IyHPbNcAhUcpErlS0uK8.mft (raw, json)
Hash identifier: +BVeH/QXVPl/Jjx7fE47XudPQ1Kv47eEKLJI516SI7E=
Subject key identifier: F9:5F:D2:F3:37:89:BF:1D:5E:D1:97:D0:CA:02:7B:A0:7D:A5:64:9A
Authority key identifier: 52:32:D4:4D:9E:08:C8:73:DB:35:C0:21:51:CA:44:AE:54:B4:B8:AF
Certificate issuer: /CN=5232d44d9e08c873db35c02151ca44ae54b4b8af
Certificate serial: 01974C31EB2F8CDF56B02FB831FED2A1539E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UjLUTZ4IyHPbNcAhUcpErlS0uK8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/72/8b400d-1e8e-40da-b1d6-a6541ceb1e43/1/UjLUTZ4IyHPbNcAhUcpErlS0uK8.mft
Manifest number: 12DF
Signing time: Sat 07 Jun 2025 21:00:29 +0000
Manifest this update: Sat 07 Jun 2025 21:00:29 +0000
Manifest next update: Sun 08 Jun 2025 21:00:29 +0000
Files and hashes: 1: MggUNL8VW9yE4LnaTyr5YJxrDwU.roa (hash: GpA5vo0L4EKCpZl/rQZR5bRixQFok1LnqW2Xg8KUiaQ=)
2: UjLUTZ4IyHPbNcAhUcpErlS0uK8.crl (hash: //hFfswgO6NcJ6LRf8YrsF8amtskRX6RjLyjzYBL/98=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/72/8b400d-1e8e-40da-b1d6-a6541ceb1e43/1/UjLUTZ4IyHPbNcAhUcpErlS0uK8.crl
rsync://rpki.ripe.net/repository/DEFAULT/72/8b400d-1e8e-40da-b1d6-a6541ceb1e43/1/UjLUTZ4IyHPbNcAhUcpErlS0uK8.mft
rsync://rpki.ripe.net/repository/DEFAULT/UjLUTZ4IyHPbNcAhUcpErlS0uK8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 08 Jun 2025 18:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:4c:31:eb:2f:8c:df:56:b0:2f:b8:31:fe:d2:a1:53:9e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5232d44d9e08c873db35c02151ca44ae54b4b8af
Validity
Not Before: Jun 7 21:00:29 2025 GMT
Not After : Jun 8 21:00:29 2025 GMT
Subject: CN=f95fd2f33789bf1d5ed197d0ca027ba07da5649a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:78:86:39:64:95:ab:66:01:44:56:d6:73:7f:
65:2d:ff:bb:cc:96:22:e7:4e:f1:5d:c3:93:60:2b:
2f:04:62:aa:89:25:11:66:8a:25:e4:06:a0:eb:e0:
cd:66:a2:67:fe:54:c3:0a:59:a0:ef:dd:26:8e:eb:
29:0e:c4:11:06:39:67:9a:06:1d:8d:9c:5b:33:24:
fd:a3:4a:b8:46:25:64:cf:cc:1f:0c:1c:45:27:54:
85:63:02:98:7e:0e:b2:8c:d8:96:65:c9:da:2f:79:
08:8a:9b:71:9f:85:4c:34:fd:ef:8f:ba:11:c4:8c:
be:53:7f:68:9f:e7:c6:b4:62:cd:16:a3:20:f6:d9:
8b:cd:e6:11:07:cf:29:71:57:3a:86:44:48:51:d3:
2f:5c:dd:6c:3b:4f:51:c5:10:73:65:4a:af:f8:4b:
da:ae:d0:da:19:5b:51:d0:f1:bd:8d:e7:97:f5:2b:
70:de:ec:3c:8f:3c:96:8d:1a:61:21:41:db:52:e2:
97:87:3c:c9:66:dc:ab:d7:d7:91:dc:92:fd:e1:2f:
fe:59:ac:f3:69:41:fb:ad:3c:7e:f1:a4:a5:8f:d1:
fa:7c:f0:8d:d1:68:97:6c:71:c5:8d:47:c1:6f:31:
cb:c0:68:db:fc:ee:9e:ec:ce:78:57:11:4b:dd:59:
43:33
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F9:5F:D2:F3:37:89:BF:1D:5E:D1:97:D0:CA:02:7B:A0:7D:A5:64:9A
X509v3 Authority Key Identifier:
keyid:52:32:D4:4D:9E:08:C8:73:DB:35:C0:21:51:CA:44:AE:54:B4:B8:AF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UjLUTZ4IyHPbNcAhUcpErlS0uK8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/72/8b400d-1e8e-40da-b1d6-a6541ceb1e43/1/UjLUTZ4IyHPbNcAhUcpErlS0uK8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/72/8b400d-1e8e-40da-b1d6-a6541ceb1e43/1/UjLUTZ4IyHPbNcAhUcpErlS0uK8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
ab:49:14:78:d9:3d:de:6f:80:78:fe:57:eb:22:42:ea:2d:dd:
e9:1b:2c:b9:c3:cb:00:ce:e5:f1:be:07:c8:79:fd:10:17:51:
ad:0e:fc:7b:e8:23:38:58:d2:0b:89:3b:bf:64:ea:61:94:2e:
ad:cd:b5:21:ed:f5:77:c0:fc:bb:5a:e8:96:ba:be:9f:e8:08:
cb:fe:cf:3d:a1:5d:8b:a3:d3:03:32:cb:15:87:ff:ba:7a:09:
16:19:9d:be:7b:f1:a1:a2:48:e8:f3:da:34:05:32:1b:25:d9:
dd:aa:3c:8a:31:82:e8:e1:5a:bb:db:85:df:3e:c9:5f:de:5f:
21:7f:4e:22:6a:16:a0:f9:f6:39:e9:7d:84:ca:cf:48:b2:92:
a2:ec:ff:a7:c8:f6:eb:ab:d3:89:9d:c2:3f:bd:86:39:d7:b3:
76:4c:a5:26:0d:20:30:42:af:dc:08:95:f4:51:e3:e7:47:4e:
dc:a5:d3:60:1b:28:4c:2b:33:25:ac:6c:86:86:eb:31:c4:8f:
69:d2:e7:0c:d1:8d:c0:e1:c9:1b:85:ca:0e:c3:05:95:c1:21:
f4:49:77:83:0f:ec:34:0a:12:c8:e6:a8:d2:c1:0b:77:3f:f1:
ba:46:01:9c:ba:45:51:a3:02:19:c8:f6:77:06:f6:e4:64:35:
9f:82:50:07
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 7 23:24:28 2025 by rpki-client