Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/aa/64c2fa-df54-47ff-a8c9-bfe0ccb79fcc/1/ug4SZOB7Nwi8udtaFOfMknCGOVg.mft
File: ug4SZOB7Nwi8udtaFOfMknCGOVg.mft (raw, json)
Hash identifier: 5r4TyyeB4gCdGbRLHixmULAEKW2x0kg3xTz2nWaGJ14=
Subject key identifier: 69:23:7A:6C:17:6A:17:BC:03:04:17:EC:6F:88:AB:D2:80:44:8F:32
Authority key identifier: BA:0E:12:64:E0:7B:37:08:BC:B9:DB:5A:14:E7:CC:92:70:86:39:58
Certificate issuer: /CN=ba0e1264e07b3708bcb9db5a14e7cc9270863958
Certificate serial: 019748FAC3B9E5ECE1F1ED22A62EF4E20EC2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ug4SZOB7Nwi8udtaFOfMknCGOVg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/aa/64c2fa-df54-47ff-a8c9-bfe0ccb79fcc/1/ug4SZOB7Nwi8udtaFOfMknCGOVg.mft
Manifest number: 1583
Signing time: Sat 07 Jun 2025 06:01:22 +0000
Manifest this update: Sat 07 Jun 2025 06:01:22 +0000
Manifest next update: Sun 08 Jun 2025 06:01:22 +0000
Files and hashes: 1: ug4SZOB7Nwi8udtaFOfMknCGOVg.crl (hash: HQG8IuuP7ua3wGTMI6eoGAyTityszMApXaHg9Y9qT3Q=)
2: xXvm8v3Fqzu_dszdmjsgqNl1Hcw.roa (hash: Nh/ftcdTWsREAPkqBZbyfany4F8e1nXpYHmf8szSz/Y=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/aa/64c2fa-df54-47ff-a8c9-bfe0ccb79fcc/1/ug4SZOB7Nwi8udtaFOfMknCGOVg.crl
rsync://rpki.ripe.net/repository/DEFAULT/aa/64c2fa-df54-47ff-a8c9-bfe0ccb79fcc/1/ug4SZOB7Nwi8udtaFOfMknCGOVg.mft
rsync://rpki.ripe.net/repository/DEFAULT/ug4SZOB7Nwi8udtaFOfMknCGOVg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 07 Jun 2025 22:50:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:48:fa:c3:b9:e5:ec:e1:f1:ed:22:a6:2e:f4:e2:0e:c2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ba0e1264e07b3708bcb9db5a14e7cc9270863958
Validity
Not Before: Jun 7 06:01:22 2025 GMT
Not After : Jun 8 06:01:22 2025 GMT
Subject: CN=69237a6c176a17bc030417ec6f88abd280448f32
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:df:a0:4d:c1:f2:9d:0d:77:dd:9e:a0:ba:6c:
64:7d:ec:0d:80:48:8c:15:64:10:36:6f:4b:59:3e:
88:48:ca:2f:32:d5:42:ba:72:2f:c9:42:3e:ea:a2:
8f:84:1e:e1:70:de:c8:87:88:fe:8d:bd:6b:bc:bd:
e5:f9:6f:b9:b4:ea:c1:74:54:15:dc:d1:85:02:20:
4a:a3:1c:2c:81:86:1b:13:fe:1a:1e:73:7a:ef:5c:
14:98:c6:ed:64:5a:f8:6c:7a:7c:5d:0e:89:5a:35:
4d:8a:bb:fe:62:e0:4e:07:a9:2a:fc:6a:c9:5f:6c:
29:f5:06:f1:69:3d:2e:e3:a7:37:d6:7a:c7:73:58:
ba:f7:78:de:9d:24:c0:ab:d6:ac:2c:11:95:28:38:
83:48:19:9a:5a:52:1c:87:f1:47:c4:56:4b:86:bd:
84:a0:97:a1:81:b5:79:1c:16:ba:ca:96:9a:45:de:
08:a7:04:ad:e9:bb:3d:08:45:3c:e7:f8:07:d0:4c:
70:72:d9:7c:0f:04:94:fe:f7:78:b4:f1:1e:9d:ac:
3b:53:30:a5:a7:0b:49:55:a0:b5:ea:33:09:81:ae:
fa:32:96:53:c3:d7:b4:4a:df:2d:92:bc:2f:d0:61:
4b:05:93:cb:35:11:be:6e:dd:2a:6f:01:af:79:b8:
14:21
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
69:23:7A:6C:17:6A:17:BC:03:04:17:EC:6F:88:AB:D2:80:44:8F:32
X509v3 Authority Key Identifier:
keyid:BA:0E:12:64:E0:7B:37:08:BC:B9:DB:5A:14:E7:CC:92:70:86:39:58
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ug4SZOB7Nwi8udtaFOfMknCGOVg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/aa/64c2fa-df54-47ff-a8c9-bfe0ccb79fcc/1/ug4SZOB7Nwi8udtaFOfMknCGOVg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/aa/64c2fa-df54-47ff-a8c9-bfe0ccb79fcc/1/ug4SZOB7Nwi8udtaFOfMknCGOVg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
b0:d0:a7:04:cd:68:d0:fa:a1:1a:93:24:bb:a3:75:be:84:87:
4d:8d:bb:86:ae:52:1e:8a:e1:98:15:1f:bc:6a:a2:d0:10:1e:
a1:87:dc:02:3c:e8:33:ba:5d:65:0f:28:be:84:e3:85:96:f2:
f9:57:1a:c8:66:e0:f2:69:52:e9:7f:ea:c8:cd:ab:a6:6e:91:
d3:58:25:86:de:27:a3:ea:fc:3d:25:92:7a:73:30:86:d9:3c:
30:f5:d5:e2:cf:dd:b6:5d:15:fa:47:8e:b8:41:84:57:27:fd:
f8:c2:b5:23:6e:fb:eb:34:ef:5f:c1:75:80:f7:63:36:4b:fc:
25:7e:c9:e0:c7:18:3d:0b:c5:f5:60:dc:05:ad:ff:5e:f0:e7:
80:6a:a8:bd:e8:02:8d:10:6d:4e:0c:fe:25:76:05:4b:fb:e1:
db:81:c4:77:65:b3:56:0b:47:dc:df:24:4c:b7:0c:0e:13:6d:
36:ff:02:85:7c:01:b6:95:9a:d4:61:7c:88:8c:ce:b8:66:3f:
1a:49:d9:e5:b5:7f:31:fd:ee:08:58:aa:7a:2c:30:e1:48:a8:
84:67:e9:7f:65:fc:a2:03:a8:62:d9:8c:21:4e:f0:2c:51:d0:
32:16:39:e1:87:e0:c5:bc:3c:3f:07:33:3a:5f:8f:7f:20:13:
92:24:52:e2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 7 09:02:54 2025 by rpki-client