Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bd/107788-8502-4541-9480-8f48a3702f90/1/uMaM2mX2aWLMuWg_FVDRTlYQego.mft
File: uMaM2mX2aWLMuWg_FVDRTlYQego.mft (raw, json)
Hash identifier: l7zoConwQ1y5Dhux6zgjZqIIgn4bi/ejfbUjAv6nME4=
Subject key identifier: 6D:78:C9:FF:AD:59:96:AB:A2:BC:9C:5E:E0:D9:90:5C:17:ED:7D:68
Authority key identifier: B8:C6:8C:DA:65:F6:69:62:CC:B9:68:3F:15:50:D1:4E:56:10:7A:0A
Certificate issuer: /CN=b8c68cda65f66962ccb9683f1550d14e56107a0a
Certificate serial: 019745C25E73F4A24AF86F772F0EBBB2F007
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/uMaM2mX2aWLMuWg_FVDRTlYQego.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bd/107788-8502-4541-9480-8f48a3702f90/1/uMaM2mX2aWLMuWg_FVDRTlYQego.mft
Manifest number: 0689
Signing time: Fri 06 Jun 2025 15:00:55 +0000
Manifest this update: Fri 06 Jun 2025 15:00:55 +0000
Manifest next update: Sat 07 Jun 2025 15:00:55 +0000
Files and hashes: 1: sIDOXg67yEuo_7naS_BfCVLmcEk.roa (hash: d8agrpVd7dmHrJl/IhvjPgn5Td9Dpm4TU3p5w1Cxjt0=)
2: uMaM2mX2aWLMuWg_FVDRTlYQego.crl (hash: z5szzG9olk94rcgQXJXiKsQ3E0utwlTUVlFZA6OLXZk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/bd/107788-8502-4541-9480-8f48a3702f90/1/uMaM2mX2aWLMuWg_FVDRTlYQego.crl
rsync://rpki.ripe.net/repository/DEFAULT/bd/107788-8502-4541-9480-8f48a3702f90/1/uMaM2mX2aWLMuWg_FVDRTlYQego.mft
rsync://rpki.ripe.net/repository/DEFAULT/uMaM2mX2aWLMuWg_FVDRTlYQego.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 07 Jun 2025 15:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:45:c2:5e:73:f4:a2:4a:f8:6f:77:2f:0e:bb:b2:f0:07
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b8c68cda65f66962ccb9683f1550d14e56107a0a
Validity
Not Before: Jun 6 15:00:55 2025 GMT
Not After : Jun 7 15:00:55 2025 GMT
Subject: CN=6d78c9ffad5996aba2bc9c5ee0d9905c17ed7d68
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9e:8b:7f:a5:ac:f9:29:d3:2b:0d:ed:12:e3:d8:
03:e1:d1:c5:b9:5e:fe:15:34:b7:31:74:9e:7c:53:
1d:b1:3e:35:72:b5:e6:9f:a4:6d:cc:8c:8f:85:ec:
59:b6:5a:7c:b8:58:b4:67:06:b3:c1:ad:2f:41:cc:
15:47:76:3e:a7:5e:1f:ef:18:3d:39:65:08:c4:23:
a7:46:a3:68:4a:01:4b:85:b1:35:a8:73:a1:12:af:
2d:2b:71:b7:4d:b7:65:85:52:2e:d3:d4:a2:fb:03:
59:86:16:f0:db:01:bd:8a:67:20:e0:f5:08:74:4c:
df:5f:95:e7:fe:e5:27:22:1c:51:67:2b:e2:a9:67:
ef:09:5f:ec:af:7e:68:50:f0:b2:b0:8e:7a:45:7a:
5d:b3:2e:24:03:7b:b7:f6:c2:cd:88:d5:cf:da:bb:
a1:f7:47:68:b3:0d:be:91:2c:04:dd:63:78:0b:43:
45:04:ee:7c:3f:08:78:de:e2:96:29:02:86:f5:4f:
c2:97:99:54:21:7f:87:f4:7b:4e:58:77:1a:62:d7:
ee:bf:a8:82:81:0e:27:e8:54:86:6f:6e:8d:25:ca:
60:ee:45:d1:89:01:53:27:54:5d:8c:5c:a8:c3:bb:
90:c0:d2:98:90:f0:78:fd:6e:e1:90:c6:7b:a7:c9:
0a:bf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6D:78:C9:FF:AD:59:96:AB:A2:BC:9C:5E:E0:D9:90:5C:17:ED:7D:68
X509v3 Authority Key Identifier:
keyid:B8:C6:8C:DA:65:F6:69:62:CC:B9:68:3F:15:50:D1:4E:56:10:7A:0A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/uMaM2mX2aWLMuWg_FVDRTlYQego.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bd/107788-8502-4541-9480-8f48a3702f90/1/uMaM2mX2aWLMuWg_FVDRTlYQego.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bd/107788-8502-4541-9480-8f48a3702f90/1/uMaM2mX2aWLMuWg_FVDRTlYQego.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
2f:04:33:66:c9:64:e5:1a:81:9d:01:e5:ae:85:b6:b3:7c:06:
95:eb:7b:ef:af:bd:42:40:4a:b5:e9:4b:60:d8:1c:a8:9e:02:
b9:35:8a:07:04:bd:b6:ed:a9:fd:d5:4f:3d:af:5f:42:4d:23:
49:ea:42:76:a6:fa:f1:7b:58:f0:7f:85:ce:b1:98:ec:5f:19:
3e:21:14:d3:7a:d3:bc:f0:96:20:ee:02:e3:94:12:cd:e2:a2:
f6:3b:53:30:de:0e:9c:4b:06:08:ca:68:82:94:89:06:7e:1e:
7a:76:10:26:8a:bf:3b:bc:28:94:d3:37:71:e5:af:fa:05:0b:
4d:ff:24:98:bf:b1:88:6c:54:35:73:23:61:8c:ff:3c:31:01:
4f:01:d6:52:94:4a:56:b6:94:af:ec:67:59:f6:de:a3:9d:f2:
16:a4:4c:8b:0f:9e:81:ad:41:bf:f3:2e:4d:2c:3f:d6:20:fd:
30:dd:78:70:a8:c0:e9:39:30:b6:c3:2a:8f:05:20:7c:46:22:
9f:5e:26:38:94:bb:a6:fe:f0:b3:68:ca:e9:22:3c:0e:61:50:
2e:a4:4d:e1:31:d1:7b:62:43:25:a1:e4:d6:d8:58:bf:91:f8:
ac:a8:3c:8c:b8:84:13:c3:d1:c4:45:f0:69:1f:77:8b:b7:15:
2a:0b:1e:23
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZdFwl5z9KJK+G93Lw67svAHMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGI4YzY4Y2RhNjVmNjY5NjJjY2I5NjgzZjE1NTBkMTRlNTYx
MDdhMGEwHhcNMjUwNjA2MTUwMDU1WhcNMjUwNjA3MTUwMDU1WjAzMTEwLwYDVQQD
Eyg2ZDc4YzlmZmFkNTk5NmFiYTJiYzljNWVlMGQ5OTA1YzE3ZWQ3ZDY4MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAnot/paz5KdMrDe0S49gD4dHFuV7+
FTS3MXSefFMdsT41crXmn6RtzIyPhexZtlp8uFi0Zwazwa0vQcwVR3Y+p14f7xg9
OWUIxCOnRqNoSgFLhbE1qHOhEq8tK3G3TbdlhVIu09Si+wNZhhbw2wG9imcg4PUI
dEzfX5Xn/uUnIhxRZyviqWfvCV/sr35oUPCysI56RXpdsy4kA3u39sLNiNXP2ruh
90dosw2+kSwE3WN4C0NFBO58Pwh43uKWKQKG9U/Cl5lUIX+H9HtOWHcaYtfuv6iC
gQ4n6FSGb26NJcpg7kXRiQFTJ1RdjFyow7uQwNKYkPB4/W7hkMZ7p8kKvwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFG14yf+tWZarorycXuDZkFwX7X1oMB8GA1UdIwQY
MBaAFLjGjNpl9mlizLloPxVQ0U5WEHoKMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvdU1hTTJtWDJhV0xNdVdnX0ZWRFJUbFlRZWdvLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iZC8xMDc3ODgtODUwMi00NTQxLTk0ODAt
OGY0OGEzNzAyZjkwLzEvdU1hTTJtWDJhV0xNdVdnX0ZWRFJUbFlRZWdvLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9iZC8xMDc3ODgtODUwMi00NTQxLTk0ODAtOGY0OGEzNzAyZjkw
LzEvdU1hTTJtWDJhV0xNdVdnX0ZWRFJUbFlRZWdvLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEALwQzZslk
5RqBnQHlroW2s3wGlet776+9QkBKtelLYNgcqJ4CuTWKBwS9tu2p/dVPPa9fQk0j
SepCdqb68XtY8H+FzrGY7F8ZPiEU03rTvPCWIO4C45QSzeKi9jtTMN4OnEsGCMpo
gpSJBn4eenYQJoq/O7wolNM3ceWv+gULTf8kmL+xiGxUNXMjYYz/PDEBTwHWUpRK
VraUr+xnWfbeo53yFqRMiw+ega1Bv/MuTSw/1iD9MN14cKjA6TkwtsMqjwUgfEYi
n14mOJS7pv7ws2jK6SI8DmFQLqRN4THRe2JDJaHk1thYv5H4rKg8jLiEE8PRxEXw
aR93i7cVKgseIw==
-----END CERTIFICATE-----
Generated at Fri Jun 6 23:53:45 2025 by rpki-client