Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ad/fe07b7-f464-4e67-8299-ca5e685438a2/1/uXK9SdVRtK2lvWu2lWGKeUUa004.mft
File: uXK9SdVRtK2lvWu2lWGKeUUa004.mft (raw, json)
Hash identifier: bsNzl5pnmvwj2Srok+srbVjfWyhcXAtGm7wAu3XX+FI=
Subject key identifier: 9E:D3:7D:08:F1:9E:2A:0A:BB:E1:D9:DF:3C:66:87:04:90:5E:A5:37
Authority key identifier: B9:72:BD:49:D5:51:B4:AD:A5:BD:6B:B6:95:61:8A:79:45:1A:D3:4E
Certificate issuer: /CN=b972bd49d551b4ada5bd6bb695618a79451ad34e
Certificate serial: 01974AE8B566C55478399CB7B757AAED992C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/uXK9SdVRtK2lvWu2lWGKeUUa004.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ad/fe07b7-f464-4e67-8299-ca5e685438a2/1/uXK9SdVRtK2lvWu2lWGKeUUa004.mft
Manifest number: 07DD
Signing time: Sat 07 Jun 2025 15:00:54 +0000
Manifest this update: Sat 07 Jun 2025 15:00:54 +0000
Manifest next update: Sun 08 Jun 2025 15:00:54 +0000
Files and hashes: 1: hcpelkMB3HLp2KFjx3F4u7p7QiA.roa (hash: 61+3xEVQzTEIYSViuJWqNAx3iaX+tJlcGs9MEnOKcRg=)
2: uXK9SdVRtK2lvWu2lWGKeUUa004.crl (hash: VxnY/uhOm+7oLf2KScCOo4GD5dWGFiudutFAl9cGxnY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ad/fe07b7-f464-4e67-8299-ca5e685438a2/1/uXK9SdVRtK2lvWu2lWGKeUUa004.crl
rsync://rpki.ripe.net/repository/DEFAULT/ad/fe07b7-f464-4e67-8299-ca5e685438a2/1/uXK9SdVRtK2lvWu2lWGKeUUa004.mft
rsync://rpki.ripe.net/repository/DEFAULT/uXK9SdVRtK2lvWu2lWGKeUUa004.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 08 Jun 2025 09:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:4a:e8:b5:66:c5:54:78:39:9c:b7:b7:57:aa:ed:99:2c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b972bd49d551b4ada5bd6bb695618a79451ad34e
Validity
Not Before: Jun 7 15:00:54 2025 GMT
Not After : Jun 8 15:00:54 2025 GMT
Subject: CN=9ed37d08f19e2a0abbe1d9df3c668704905ea537
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:4c:6e:40:17:75:8b:57:b1:bf:2d:39:ea:01:
8b:fd:16:94:53:87:5d:81:40:a0:f3:75:43:f1:d2:
28:b7:e4:45:49:fe:75:2a:55:af:0f:e6:73:54:8e:
66:9c:b2:98:2e:f5:01:a5:ca:a4:ce:94:2c:a6:8d:
36:83:f5:1f:61:a4:a0:0a:f9:c2:04:81:f2:e1:c6:
b6:1d:43:63:9d:bc:12:61:76:66:0b:89:c3:36:7f:
79:b7:42:cb:99:28:bd:fd:0b:c9:a6:0c:5f:54:db:
77:4f:37:d4:9f:af:4f:3f:44:e3:15:79:02:f9:3e:
9e:f5:4e:e7:e2:f6:37:57:7a:9f:47:d0:da:fd:7a:
55:8e:1e:7a:97:a7:7b:c8:66:75:e8:7e:ca:e6:4d:
2f:a3:2a:b8:68:d9:cf:6e:64:de:7d:2f:05:23:07:
79:fd:d5:07:42:ce:72:50:b9:f0:98:a6:f2:ae:7f:
8e:57:76:16:21:b1:d9:0b:15:d7:eb:0e:57:41:ac:
93:45:73:09:48:16:35:d9:90:80:d2:1e:f4:0d:2c:
aa:06:7d:d6:61:98:a5:35:bc:d9:eb:f5:f4:fe:ed:
54:1a:11:95:7c:81:d2:39:8f:c7:ff:6c:dd:85:88:
38:ef:34:bf:39:2d:19:a5:d8:51:67:bd:4f:74:74:
ed:35
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9E:D3:7D:08:F1:9E:2A:0A:BB:E1:D9:DF:3C:66:87:04:90:5E:A5:37
X509v3 Authority Key Identifier:
keyid:B9:72:BD:49:D5:51:B4:AD:A5:BD:6B:B6:95:61:8A:79:45:1A:D3:4E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/uXK9SdVRtK2lvWu2lWGKeUUa004.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ad/fe07b7-f464-4e67-8299-ca5e685438a2/1/uXK9SdVRtK2lvWu2lWGKeUUa004.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ad/fe07b7-f464-4e67-8299-ca5e685438a2/1/uXK9SdVRtK2lvWu2lWGKeUUa004.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
10:cd:10:62:21:59:10:ff:1d:78:39:e5:a3:12:20:bb:f5:00:
be:77:a1:b0:fc:64:a7:33:1a:d2:48:a6:7f:22:e0:af:b3:42:
95:a6:38:0d:69:ed:42:b3:23:51:6e:63:b2:ba:3e:4d:72:2d:
62:6d:fc:bf:51:49:88:db:7a:30:4d:17:be:1a:4f:fa:ad:ed:
6c:c0:39:e6:6d:47:cc:1d:b8:42:08:1a:fd:dc:fa:6c:e0:16:
f5:e7:fb:e9:b6:a0:d2:49:8d:fe:92:08:83:4e:75:43:c4:82:
a8:79:c0:94:b9:18:9f:20:5b:b4:74:53:7c:6d:d9:bb:98:16:
ae:bd:62:f1:05:ca:9a:c1:02:cf:7a:84:bf:d8:98:ce:85:67:
27:d7:65:59:f3:22:74:2a:0e:3f:8d:63:12:db:35:7a:10:5e:
9f:21:b3:e3:23:47:20:57:78:45:97:4a:cd:fe:30:a5:eb:70:
c6:34:0c:6b:41:a7:bc:a3:83:0c:4a:f7:bf:d6:47:7a:fc:66:
c2:61:ba:28:dd:f1:3f:04:5c:d4:fd:fb:f0:21:41:9a:ee:e6:
40:30:04:44:b1:7b:8a:bc:4e:e9:b2:9b:f0:66:b5:99:6f:f7:
13:32:e2:f4:c2:05:f9:a6:68:1c:a1:af:5d:67:a4:71:b8:6e:
86:75:6e:0f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 7 19:25:32 2025 by rpki-client