Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a0/12c66d-ac63-43fc-8894-ab087f43b595/1/u4rmO3V9oa95DyD1nGNIEe7rG8w.mft
File: u4rmO3V9oa95DyD1nGNIEe7rG8w.mft (raw, json)
Hash identifier: YIgvWzN+Mwn36ftpSodVzxRVINUBAhuC1ZvuFbPlq5I=
Subject key identifier: 62:8F:28:C1:91:B3:DB:14:00:EF:F8:16:87:42:90:C0:E6:1B:4A:73
Authority key identifier: BB:8A:E6:3B:75:7D:A1:AF:79:0F:20:F5:9C:63:48:11:EE:EB:1B:CC
Certificate issuer: /CN=bb8ae63b757da1af790f20f59c634811eeeb1bcc
Certificate serial: 01974A43B3346C638D1FD5D13361979060F9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/u4rmO3V9oa95DyD1nGNIEe7rG8w.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a0/12c66d-ac63-43fc-8894-ab087f43b595/1/u4rmO3V9oa95DyD1nGNIEe7rG8w.mft
Manifest number: 0A1E
Signing time: Sat 07 Jun 2025 12:00:40 +0000
Manifest this update: Sat 07 Jun 2025 12:00:40 +0000
Manifest next update: Sun 08 Jun 2025 12:00:40 +0000
Files and hashes: 1: DIYIrtOVCh0oZUgoHnsBzDVYRgk.roa (hash: 9ygbw2KxTYEdLBVrIZpBTqLv2Fu0lBk+DuBHrlgf8dM=)
2: u4rmO3V9oa95DyD1nGNIEe7rG8w.crl (hash: cxkneOXPgKB0iJEv+GIpEgacK1aIuM/mTWVYKaK34W4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a0/12c66d-ac63-43fc-8894-ab087f43b595/1/u4rmO3V9oa95DyD1nGNIEe7rG8w.crl
rsync://rpki.ripe.net/repository/DEFAULT/a0/12c66d-ac63-43fc-8894-ab087f43b595/1/u4rmO3V9oa95DyD1nGNIEe7rG8w.mft
rsync://rpki.ripe.net/repository/DEFAULT/u4rmO3V9oa95DyD1nGNIEe7rG8w.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 08 Jun 2025 09:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:4a:43:b3:34:6c:63:8d:1f:d5:d1:33:61:97:90:60:f9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=bb8ae63b757da1af790f20f59c634811eeeb1bcc
Validity
Not Before: Jun 7 12:00:40 2025 GMT
Not After : Jun 8 12:00:40 2025 GMT
Subject: CN=628f28c191b3db1400eff816874290c0e61b4a73
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:58:e8:88:60:fb:1a:28:31:49:e9:db:b3:a1:
38:bd:a6:29:3a:64:45:a0:02:46:10:0c:05:b0:60:
53:64:81:70:28:88:2c:2b:68:3e:30:c3:74:de:fe:
c5:ab:15:34:7c:b8:67:37:6b:22:8c:bf:65:2f:e4:
60:31:3c:7a:4b:fd:7f:79:5f:e5:4b:8c:b0:e0:39:
27:fc:af:eb:d6:92:f5:ab:13:bb:dc:b0:79:6e:08:
c0:ec:f9:0b:f1:de:51:20:d1:be:bf:fd:70:86:27:
27:2d:88:cc:30:ff:d1:76:98:ee:2f:34:23:88:1b:
97:16:6c:a4:d1:6f:d0:6f:33:1b:68:97:31:d0:63:
b1:c3:3a:ad:13:65:39:b1:28:d6:dc:c5:4e:16:24:
bd:68:04:1b:4a:6b:e1:07:4d:dc:82:97:e9:e9:b2:
32:2e:fb:85:c4:bf:24:98:a2:83:78:fd:64:a5:8d:
77:79:e0:bd:f0:e3:db:df:d1:6c:cd:f2:59:8d:97:
6f:d3:ad:3d:de:66:04:b0:5d:a0:82:43:f3:6c:5d:
52:92:a0:88:3e:74:1f:94:b0:a6:b6:3b:9e:22:13:
cf:01:72:3c:ee:35:55:6c:a2:62:ef:5b:67:5a:3d:
1d:93:e4:e1:0a:b9:4c:a3:cf:23:0b:2d:f9:41:f7:
5c:57
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
62:8F:28:C1:91:B3:DB:14:00:EF:F8:16:87:42:90:C0:E6:1B:4A:73
X509v3 Authority Key Identifier:
keyid:BB:8A:E6:3B:75:7D:A1:AF:79:0F:20:F5:9C:63:48:11:EE:EB:1B:CC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/u4rmO3V9oa95DyD1nGNIEe7rG8w.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a0/12c66d-ac63-43fc-8894-ab087f43b595/1/u4rmO3V9oa95DyD1nGNIEe7rG8w.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a0/12c66d-ac63-43fc-8894-ab087f43b595/1/u4rmO3V9oa95DyD1nGNIEe7rG8w.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
36:21:2e:d1:21:4e:45:60:21:e8:cd:68:be:84:f9:9a:fd:23:
8d:82:22:f0:a5:66:e3:fa:bc:f8:8e:8b:ff:2a:0c:b4:13:e4:
1b:d7:94:20:06:43:7c:44:4a:0a:0c:5a:2e:ff:7a:88:7d:4b:
52:79:fb:fc:1f:ba:66:45:54:e8:56:60:3d:97:78:e1:ae:bd:
1b:2f:62:44:b5:26:86:8a:84:b0:e7:1c:ba:54:a8:d2:d8:94:
61:27:84:4c:56:89:28:6b:7d:3d:55:c4:1d:93:d7:ec:71:0f:
be:49:8c:16:1e:46:39:18:f8:28:23:67:49:5c:e9:74:e7:8c:
93:e0:6a:86:49:3c:e0:a2:ad:ac:be:af:1d:1c:8a:09:38:79:
a7:80:05:73:a6:61:68:d7:ff:2f:8e:16:22:a3:de:c3:b7:8f:
4e:2d:99:a9:87:20:0c:d7:bd:ee:19:46:27:29:c0:72:a2:c8:
7d:56:6d:33:56:a8:32:14:e6:ff:4d:d0:b3:23:77:d8:5c:5f:
4d:bf:0d:93:86:48:6a:37:6f:0a:24:7b:36:8e:c3:d4:72:43:
f7:41:7f:df:9f:04:7a:3c:d9:92:4b:62:2a:66:2c:01:59:81:
ca:ed:57:84:c2:05:ab:5e:64:b4:c4:f4:3e:c3:f3:d5:fc:8d:
3d:11:0f:b8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 7 13:59:22 2025 by rpki-client