Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bd/107788-8502-4541-9480-8f48a3702f90/1/uMaM2mX2aWLMuWg_FVDRTlYQego.mft
File: uMaM2mX2aWLMuWg_FVDRTlYQego.mft (raw, json)
Hash identifier: 0DGBiJY0tgEHSGsQss4J3yqzmrwYYamVrkuOZWMMrQc=
Subject key identifier: EC:7D:34:C8:40:D4:DC:EC:55:CF:21:15:C1:C3:2C:CA:B5:93:A8:78
Authority key identifier: B8:C6:8C:DA:65:F6:69:62:CC:B9:68:3F:15:50:D1:4E:56:10:7A:0A
Certificate issuer: /CN=b8c68cda65f66962ccb9683f1550d14e56107a0a
Certificate serial: 0199172D284F8CA1F3E420E2461228C8430C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/uMaM2mX2aWLMuWg_FVDRTlYQego.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bd/107788-8502-4541-9480-8f48a3702f90/1/uMaM2mX2aWLMuWg_FVDRTlYQego.mft
Manifest number: 077A
Signing time: Fri 05 Sep 2025 00:00:59 +0000
Manifest this update: Fri 05 Sep 2025 00:00:59 +0000
Manifest next update: Sat 06 Sep 2025 00:00:59 +0000
Files and hashes: 1: sIDOXg67yEuo_7naS_BfCVLmcEk.roa (hash: d8agrpVd7dmHrJl/IhvjPgn5Td9Dpm4TU3p5w1Cxjt0=)
2: uMaM2mX2aWLMuWg_FVDRTlYQego.crl (hash: 5gCOPJ2GTJiceeyUa+UmXCOeRy1967Z8Z0iT3bRMqKM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/bd/107788-8502-4541-9480-8f48a3702f90/1/uMaM2mX2aWLMuWg_FVDRTlYQego.crl
rsync://rpki.ripe.net/repository/DEFAULT/bd/107788-8502-4541-9480-8f48a3702f90/1/uMaM2mX2aWLMuWg_FVDRTlYQego.mft
rsync://rpki.ripe.net/repository/DEFAULT/uMaM2mX2aWLMuWg_FVDRTlYQego.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 06 Sep 2025 00:00:59 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:17:2d:28:4f:8c:a1:f3:e4:20:e2:46:12:28:c8:43:0c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b8c68cda65f66962ccb9683f1550d14e56107a0a
Validity
Not Before: Sep 5 00:00:59 2025 GMT
Not After : Sep 6 00:00:59 2025 GMT
Subject: CN=ec7d34c840d4dcec55cf2115c1c32ccab593a878
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d5:b2:65:24:20:52:f8:43:46:f9:ef:3a:4c:42:
27:a6:af:c6:c6:21:c1:c9:bc:1f:e1:13:cd:55:7e:
7c:f2:33:f5:4d:43:b1:b1:a5:67:0e:8f:d9:3f:27:
7d:d4:30:bf:3d:a5:61:cc:b0:1f:c4:e5:51:8a:f5:
d5:b9:ae:83:47:6e:89:5d:82:88:b0:62:fb:b2:98:
5c:04:0d:33:dc:25:3c:8b:17:5e:a9:b8:b4:5f:16:
ae:13:00:84:79:5d:dc:7f:0b:30:5f:01:eb:1e:68:
63:57:1b:71:9e:2f:aa:5b:be:ff:97:0a:37:9a:42:
1d:00:b7:fc:4b:ad:42:51:c3:0c:a3:fb:ff:b5:2e:
48:0c:74:4b:4a:42:22:04:3d:1c:52:3a:93:3b:68:
be:74:15:73:bb:1b:e2:3a:11:c4:39:ba:16:cb:83:
e4:68:38:7c:d0:09:ab:d6:5f:74:bf:9c:4e:bb:a8:
13:b5:f2:12:f3:30:e4:47:8c:b1:47:da:55:92:46:
18:21:50:20:71:e3:b6:c7:61:99:56:3b:29:8d:52:
bb:59:a6:87:34:47:d9:59:e5:f7:17:88:24:b7:f8:
cc:22:af:07:d3:78:50:91:50:56:14:71:fe:dc:8c:
aa:17:42:02:57:f0:22:0f:76:9f:cc:85:98:31:95:
a4:45
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EC:7D:34:C8:40:D4:DC:EC:55:CF:21:15:C1:C3:2C:CA:B5:93:A8:78
X509v3 Authority Key Identifier:
keyid:B8:C6:8C:DA:65:F6:69:62:CC:B9:68:3F:15:50:D1:4E:56:10:7A:0A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/uMaM2mX2aWLMuWg_FVDRTlYQego.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bd/107788-8502-4541-9480-8f48a3702f90/1/uMaM2mX2aWLMuWg_FVDRTlYQego.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bd/107788-8502-4541-9480-8f48a3702f90/1/uMaM2mX2aWLMuWg_FVDRTlYQego.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
63:1e:3b:df:ff:5e:92:76:e8:a0:0b:22:65:bd:c6:34:a5:52:
c5:aa:40:4b:b3:f9:6b:e9:19:f6:0f:9a:cf:4c:71:af:66:a2:
f9:0d:11:5c:db:a0:4e:07:5a:ed:f4:fa:7f:4b:12:5c:4a:6c:
26:06:10:d4:71:c4:cd:7f:9d:7e:f0:47:69:48:f3:bd:bf:12:
72:96:55:26:14:68:6d:75:fd:05:09:0a:b2:01:e6:65:fb:34:
4b:73:2c:be:75:b4:31:2d:22:c1:3b:5c:df:1c:8d:08:2b:0c:
e0:dc:17:a9:d8:90:92:d3:cf:00:81:56:ae:ac:67:40:3c:40:
e6:dc:47:80:90:8b:8f:ba:83:19:c0:5b:86:3f:30:79:fa:86:
7e:ce:7b:d5:db:74:01:f9:bf:07:d9:c6:fb:85:f9:5d:a2:4a:
63:44:7e:05:5b:53:26:99:72:59:95:a3:83:67:a9:94:69:c0:
24:cb:1b:25:cd:44:1d:42:7b:b0:26:55:00:19:a2:86:f0:85:
a9:79:8a:62:0e:73:15:f6:f8:46:05:e7:db:1a:92:5b:b4:72:
9a:f4:bb:88:38:6f:93:32:8c:ef:02:7b:9a:df:88:08:6a:41:
cd:f0:d7:d1:37:04:31:68:9e:b8:5e:0d:66:76:f6:4f:f9:c5:
5d:84:3b:1b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Sep 5 09:52:03 2025 by rpki-client