Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/aa/64c2fa-df54-47ff-a8c9-bfe0ccb79fcc/1/ug4SZOB7Nwi8udtaFOfMknCGOVg.mft
File: ug4SZOB7Nwi8udtaFOfMknCGOVg.mft (raw, json)
Hash identifier: BfosrHAqdm/KH7Os/RNCFYusCZSUppHnG4qMS6MPIFE=
Subject key identifier: CE:0A:56:FD:71:53:FF:04:58:66:49:82:3C:C5:3A:97:4A:44:A3:E9
Authority key identifier: BA:0E:12:64:E0:7B:37:08:BC:B9:DB:5A:14:E7:CC:92:70:86:39:58
Certificate issuer: /CN=ba0e1264e07b3708bcb9db5a14e7cc9270863958
Certificate serial: 0199221ED9A2AF83E69128C1B0113B2D3AEF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ug4SZOB7Nwi8udtaFOfMknCGOVg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/aa/64c2fa-df54-47ff-a8c9-bfe0ccb79fcc/1/ug4SZOB7Nwi8udtaFOfMknCGOVg.mft
Manifest number: 1678
Signing time: Sun 07 Sep 2025 03:01:11 +0000
Manifest this update: Sun 07 Sep 2025 03:01:11 +0000
Manifest next update: Mon 08 Sep 2025 03:01:11 +0000
Files and hashes: 1: ug4SZOB7Nwi8udtaFOfMknCGOVg.crl (hash: VBLzv+hW6lKv4nlRzdtIm+ePM25UuO7AWB51qdfhUd8=)
2: xXvm8v3Fqzu_dszdmjsgqNl1Hcw.roa (hash: Nh/ftcdTWsREAPkqBZbyfany4F8e1nXpYHmf8szSz/Y=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/aa/64c2fa-df54-47ff-a8c9-bfe0ccb79fcc/1/ug4SZOB7Nwi8udtaFOfMknCGOVg.crl
rsync://rpki.ripe.net/repository/DEFAULT/aa/64c2fa-df54-47ff-a8c9-bfe0ccb79fcc/1/ug4SZOB7Nwi8udtaFOfMknCGOVg.mft
rsync://rpki.ripe.net/repository/DEFAULT/ug4SZOB7Nwi8udtaFOfMknCGOVg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 08 Sep 2025 03:01:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:22:1e:d9:a2:af:83:e6:91:28:c1:b0:11:3b:2d:3a:ef
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ba0e1264e07b3708bcb9db5a14e7cc9270863958
Validity
Not Before: Sep 7 03:01:11 2025 GMT
Not After : Sep 8 03:01:11 2025 GMT
Subject: CN=ce0a56fd7153ff04586649823cc53a974a44a3e9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:20:4c:e7:bc:47:96:b4:29:60:72:59:eb:9c:
d4:d5:9f:ca:77:e6:c8:0d:0e:54:b3:e7:92:63:61:
bc:89:f0:30:17:31:8c:f6:d9:e5:fc:45:e2:66:12:
5d:49:c2:c3:ea:c7:cd:86:53:15:54:c6:a9:da:10:
3f:2d:e4:82:5a:82:51:69:a9:a4:d7:00:72:5f:6b:
18:b8:66:73:04:b4:57:79:b7:03:f9:d0:1a:ae:26:
71:8a:4e:fb:db:c0:da:8c:e6:2d:f8:a4:cd:59:e4:
69:c3:b4:c8:3b:d3:27:df:fa:70:65:19:e8:64:09:
fc:ab:f8:fb:94:c0:2d:4f:b7:c4:14:2f:9d:f8:2a:
d8:c0:bd:c9:03:26:f5:0b:1a:05:ee:8c:1c:26:15:
3f:17:cf:41:32:ef:09:85:98:34:6c:2e:61:a7:da:
dd:93:63:9d:9f:1e:9a:53:10:74:04:11:bd:d4:b8:
54:b2:dd:41:4c:d8:98:ca:10:61:88:07:92:0e:0f:
74:59:14:5e:f7:90:56:8b:ab:9a:5c:a7:fb:be:f4:
2d:ed:17:a0:b1:da:5f:75:10:1f:bd:fd:a4:ea:fb:
4b:1e:6c:9b:cf:15:60:51:22:9f:84:a8:71:a3:76:
19:ac:53:78:13:6a:40:38:a2:68:fd:b8:83:3e:97:
91:0d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CE:0A:56:FD:71:53:FF:04:58:66:49:82:3C:C5:3A:97:4A:44:A3:E9
X509v3 Authority Key Identifier:
keyid:BA:0E:12:64:E0:7B:37:08:BC:B9:DB:5A:14:E7:CC:92:70:86:39:58
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ug4SZOB7Nwi8udtaFOfMknCGOVg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/aa/64c2fa-df54-47ff-a8c9-bfe0ccb79fcc/1/ug4SZOB7Nwi8udtaFOfMknCGOVg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/aa/64c2fa-df54-47ff-a8c9-bfe0ccb79fcc/1/ug4SZOB7Nwi8udtaFOfMknCGOVg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
d9:9e:54:95:3e:80:2a:66:7b:68:50:cd:d5:48:0d:23:c5:ad:
2e:44:f8:6f:93:b0:49:ac:50:84:43:64:28:1e:72:e2:b9:3f:
8b:14:5c:a5:95:41:d3:7b:33:55:da:01:0a:5b:b8:b3:38:7a:
5d:5c:f1:ff:ee:85:a8:16:3d:8f:56:df:60:f4:ee:ce:4a:30:
a4:5b:32:e7:6c:d4:ba:f4:6f:7c:66:c5:28:9b:9f:42:6a:ad:
10:96:d0:36:7d:49:a0:c8:be:d4:dc:42:f6:44:88:c9:49:ed:
e4:ab:72:aa:f0:b2:7d:92:84:9f:1c:35:e0:ce:de:c7:f3:bb:
81:ec:b7:a5:22:c6:fb:ef:5f:0e:6a:a2:88:28:51:a0:49:d4:
05:bc:15:ec:a0:38:37:d7:aa:5d:60:9e:5f:ef:31:26:b4:ff:
df:9f:0a:93:19:53:34:90:7e:c0:52:20:00:cf:1c:dc:8c:fc:
03:ab:03:c9:a0:cb:bf:00:8e:be:0e:d8:6f:67:8a:d4:ae:4a:
15:30:45:15:96:8f:45:07:2b:3f:ba:e4:5c:59:76:f6:c2:f4:
63:67:56:bf:70:f2:48:6f:f5:8d:36:83:78:9d:f0:a9:3f:9c:
04:cc:a5:ff:6b:d3:63:c4:f8:c2:fe:75:56:c1:92:24:1d:06:
a4:5d:8a:96
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Sep 7 09:49:49 2025 by rpki-client