Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c0/f3d326-154e-412e-b344-7d22b7684479/1/uah5UDfdQPAYNz9HxZ4EohL1oFU.mft
File: uah5UDfdQPAYNz9HxZ4EohL1oFU.mft (raw, json)
Hash identifier: BA8hry1U1bRdTD+FtECz4JCUTcE1gMHS4l1wUypb1cU=
Subject key identifier: 1C:B5:D0:56:ED:22:ED:88:71:30:94:89:18:66:AF:C4:E9:FF:AB:3C
Authority key identifier: B9:A8:79:50:37:DD:40:F0:18:37:3F:47:C5:9E:04:A2:12:F5:A0:55
Certificate issuer: /CN=b9a8795037dd40f018373f47c59e04a212f5a055
Certificate serial: 019749D5BC574F57B6AE02E4976EF6D0F08F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/uah5UDfdQPAYNz9HxZ4EohL1oFU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c0/f3d326-154e-412e-b344-7d22b7684479/1/uah5UDfdQPAYNz9HxZ4EohL1oFU.mft
Manifest number: 1070
Signing time: Sat 07 Jun 2025 10:00:33 +0000
Manifest this update: Sat 07 Jun 2025 10:00:33 +0000
Manifest next update: Sun 08 Jun 2025 10:00:33 +0000
Files and hashes: 1: M1itbXmnZylV5aQUWr69aXiCwXg.roa (hash: oXiWWV28pZSLXwASeR4LLqDCm3LTnJMuWV3NYCvwU8Q=)
2: uah5UDfdQPAYNz9HxZ4EohL1oFU.crl (hash: o+xUR+PyOmlwvdDMxJa50w8PqtXBZ+hlPes2tIEMXsU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c0/f3d326-154e-412e-b344-7d22b7684479/1/uah5UDfdQPAYNz9HxZ4EohL1oFU.crl
rsync://rpki.ripe.net/repository/DEFAULT/c0/f3d326-154e-412e-b344-7d22b7684479/1/uah5UDfdQPAYNz9HxZ4EohL1oFU.mft
rsync://rpki.ripe.net/repository/DEFAULT/uah5UDfdQPAYNz9HxZ4EohL1oFU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 08 Jun 2025 09:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:49:d5:bc:57:4f:57:b6:ae:02:e4:97:6e:f6:d0:f0:8f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b9a8795037dd40f018373f47c59e04a212f5a055
Validity
Not Before: Jun 7 10:00:33 2025 GMT
Not After : Jun 8 10:00:33 2025 GMT
Subject: CN=1cb5d056ed22ed88713094891866afc4e9ffab3c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:e7:57:f8:af:1d:3d:5e:ef:f8:78:5d:6a:b2:
8d:6c:bc:d3:74:14:01:8f:78:62:f3:3e:02:2e:f5:
e3:53:ba:f3:e5:5e:37:73:57:0b:6c:ff:a5:71:19:
c3:c2:67:f6:8c:6d:e9:50:44:12:5b:07:9b:8d:e5:
f8:51:66:ad:95:52:1f:a3:14:82:0a:5b:0d:82:8c:
71:79:51:07:28:2d:8b:80:71:d7:bd:6b:7a:9b:02:
9a:1c:75:5c:f4:61:ef:66:95:90:5a:f8:6c:5a:91:
64:bd:55:15:02:e2:fe:ff:bb:db:d4:19:b9:b1:46:
51:96:0a:d8:f2:30:4b:78:e3:24:fd:3e:41:70:d2:
ea:12:98:d9:87:11:77:b5:57:cb:a8:bc:eb:82:0b:
03:70:10:1f:88:e9:d1:9c:c2:21:e6:c5:bc:54:ec:
c4:8d:08:1e:63:47:71:43:49:91:09:87:29:69:cf:
28:de:80:4d:d7:45:77:b5:b6:77:9a:89:61:bb:1d:
67:3c:2b:c9:4d:7b:a9:2a:4e:99:78:c8:c5:5b:ec:
cb:21:a4:25:b3:26:2f:ce:48:c3:96:54:0b:d7:5c:
ae:5d:d7:b3:d5:8b:0e:48:d7:2a:64:cc:17:4a:e0:
dc:a4:49:d5:ac:69:ef:3b:15:18:82:1a:33:b5:0e:
15:61
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1C:B5:D0:56:ED:22:ED:88:71:30:94:89:18:66:AF:C4:E9:FF:AB:3C
X509v3 Authority Key Identifier:
keyid:B9:A8:79:50:37:DD:40:F0:18:37:3F:47:C5:9E:04:A2:12:F5:A0:55
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/uah5UDfdQPAYNz9HxZ4EohL1oFU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/f3d326-154e-412e-b344-7d22b7684479/1/uah5UDfdQPAYNz9HxZ4EohL1oFU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/f3d326-154e-412e-b344-7d22b7684479/1/uah5UDfdQPAYNz9HxZ4EohL1oFU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
3f:70:41:3b:20:58:6a:1f:de:bf:cc:de:0b:35:fa:ef:4f:4d:
94:f0:72:e2:c0:b6:e1:99:b0:4b:62:52:f3:8f:00:29:3c:c0:
11:70:38:f9:36:be:51:43:0d:1b:ef:d3:a2:f0:d9:1c:38:e8:
6c:bd:1e:0e:d2:21:8a:23:82:96:25:64:f7:53:40:3f:b3:2d:
0b:fd:e5:24:8c:32:c7:cc:1f:84:6d:f8:c6:d6:24:41:a3:c4:
09:16:6a:79:07:58:77:23:ef:16:c3:eb:ba:fd:dc:3d:96:cd:
d3:79:d5:42:f0:3c:6f:dd:94:f5:a3:ed:07:9a:cf:54:ba:01:
e8:9c:04:ce:8c:ed:76:e7:94:87:9d:cb:1e:f1:d2:da:c1:73:
5d:5e:6a:35:9d:a8:3e:a1:83:18:cb:2a:e1:b9:24:10:a2:8b:
78:37:46:6f:03:47:75:e5:0a:04:04:fc:97:d8:13:f4:06:81:
df:d1:bd:a8:2b:7d:9d:24:e6:73:bc:4a:09:09:ec:f3:e4:95:
25:6c:9e:77:ed:ba:a0:32:e8:15:5d:ef:72:6a:6f:fd:32:0b:
1d:be:62:ea:ee:54:55:4f:09:2d:a7:85:60:e6:b6:d1:c6:56:
55:76:eb:e8:d3:b0:50:08:7c:7a:d5:4d:d7:70:4f:3f:bd:03:
1f:70:28:bf
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZdJ1bxXT1e2rgLkl2720PCPMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGI5YTg3OTUwMzdkZDQwZjAxODM3M2Y0N2M1OWUwNGEyMTJm
NWEwNTUwHhcNMjUwNjA3MTAwMDMzWhcNMjUwNjA4MTAwMDMzWjAzMTEwLwYDVQQD
EygxY2I1ZDA1NmVkMjJlZDg4NzEzMDk0ODkxODY2YWZjNGU5ZmZhYjNjMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvudX+K8dPV7v+HhdarKNbLzTdBQB
j3hi8z4CLvXjU7rz5V43c1cLbP+lcRnDwmf2jG3pUEQSWwebjeX4UWatlVIfoxSC
ClsNgoxxeVEHKC2LgHHXvWt6mwKaHHVc9GHvZpWQWvhsWpFkvVUVAuL+/7vb1Bm5
sUZRlgrY8jBLeOMk/T5BcNLqEpjZhxF3tVfLqLzrggsDcBAfiOnRnMIh5sW8VOzE
jQgeY0dxQ0mRCYcpac8o3oBN10V3tbZ3molhux1nPCvJTXupKk6ZeMjFW+zLIaQl
syYvzkjDllQL11yuXdez1YsOSNcqZMwXSuDcpEnVrGnvOxUYghoztQ4VYQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFBy10FbtIu2IcTCUiRhmr8Tp/6s8MB8GA1UdIwQY
MBaAFLmoeVA33UDwGDc/R8WeBKIS9aBVMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvdWFoNVVEZmRRUEFZTno5SHhaNEVvaEwxb0ZVLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jMC9mM2QzMjYtMTU0ZS00MTJlLWIzNDQt
N2QyMmI3Njg0NDc5LzEvdWFoNVVEZmRRUEFZTno5SHhaNEVvaEwxb0ZVLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9jMC9mM2QzMjYtMTU0ZS00MTJlLWIzNDQtN2QyMmI3Njg0NDc5
LzEvdWFoNVVEZmRRUEFZTno5SHhaNEVvaEwxb0ZVLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAP3BBOyBY
ah/ev8zeCzX6709NlPBy4sC24ZmwS2JS848AKTzAEXA4+Ta+UUMNG+/TovDZHDjo
bL0eDtIhiiOCliVk91NAP7MtC/3lJIwyx8wfhG34xtYkQaPECRZqeQdYdyPvFsPr
uv3cPZbN03nVQvA8b92U9aPtB5rPVLoB6JwEzoztdueUh53LHvHS2sFzXV5qNZ2o
PqGDGMsq4bkkEKKLeDdGbwNHdeUKBAT8l9gT9AaB39G9qCt9nSTmc7xKCQns8+SV
JWyed+26oDLoFV3vcmpv/TILHb5i6u5UVU8JLaeFYOa20cZWVXbr6NOwUAh8etVN
13BPP70DH3Aovw==
-----END CERTIFICATE-----
Generated at Sat Jun 7 15:33:01 2025 by rpki-client