Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/df/9760c6-3fce-42bd-bbc8-49fbc30a8f61/1/UKiPmoNBAa34dwN6UcgdEzqpRuw.mft
File: UKiPmoNBAa34dwN6UcgdEzqpRuw.mft (raw, json)
Hash identifier: qV/0dVcw/GyipGUvh6xugeDfLsxpIsEed3l4N+Vy6sA=
Subject key identifier: 27:7A:54:A8:A7:BE:2E:38:03:0C:8C:A1:E0:91:8C:BE:F4:0A:5D:81
Authority key identifier: 50:A8:8F:9A:83:41:01:AD:F8:77:03:7A:51:C8:1D:13:3A:A9:46:EC
Certificate issuer: /CN=50a88f9a834101adf877037a51c81d133aa946ec
Certificate serial: 01974666E8622F1D660C2554FB10BD81D228
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UKiPmoNBAa34dwN6UcgdEzqpRuw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/df/9760c6-3fce-42bd-bbc8-49fbc30a8f61/1/UKiPmoNBAa34dwN6UcgdEzqpRuw.mft
Manifest number: 0D06
Signing time: Fri 06 Jun 2025 18:00:38 +0000
Manifest this update: Fri 06 Jun 2025 18:00:38 +0000
Manifest next update: Sat 07 Jun 2025 18:00:38 +0000
Files and hashes: 1: UKiPmoNBAa34dwN6UcgdEzqpRuw.crl (hash: JaCK2F+rqw8K+FKdQ6PLkoQKq2WnnrBfoDqGLL5u3og=)
2: kc-RSMe4Oew5F8NEK8PnK5Ztook.roa (hash: RrPN8D12kwMiREonpEUwGrZPp2WKXYrir6fymPU5Gvs=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/df/9760c6-3fce-42bd-bbc8-49fbc30a8f61/1/UKiPmoNBAa34dwN6UcgdEzqpRuw.crl
rsync://rpki.ripe.net/repository/DEFAULT/df/9760c6-3fce-42bd-bbc8-49fbc30a8f61/1/UKiPmoNBAa34dwN6UcgdEzqpRuw.mft
rsync://rpki.ripe.net/repository/DEFAULT/UKiPmoNBAa34dwN6UcgdEzqpRuw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 07 Jun 2025 18:00:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:46:66:e8:62:2f:1d:66:0c:25:54:fb:10:bd:81:d2:28
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=50a88f9a834101adf877037a51c81d133aa946ec
Validity
Not Before: Jun 6 18:00:38 2025 GMT
Not After : Jun 7 18:00:38 2025 GMT
Subject: CN=277a54a8a7be2e38030c8ca1e0918cbef40a5d81
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d8:37:d3:99:05:9e:97:45:1f:68:5c:27:f0:54:
d7:e7:92:e9:c8:ec:02:77:4c:83:b2:7a:5f:73:03:
92:41:90:8e:f6:49:0d:82:34:29:68:19:75:c2:b1:
67:00:fb:6b:7d:3e:a4:94:69:54:79:89:a4:74:9f:
d3:9c:d4:07:f0:ba:2f:62:5d:30:dc:12:db:c3:25:
aa:d6:3b:24:a4:dd:7d:c6:48:33:4f:d7:73:ef:8a:
cf:a6:c2:12:d0:f3:9e:bb:56:48:f6:eb:54:b8:65:
7e:32:1a:33:02:24:36:9a:4e:57:d2:c1:86:e8:19:
8a:24:2b:19:a8:9d:1d:ee:fa:02:62:0a:83:3f:71:
f0:26:b3:e4:0c:73:6e:25:1c:2c:f0:27:e0:5c:8c:
c3:15:03:33:0e:e0:ae:cc:ed:07:5e:ea:c8:ab:25:
58:0c:7b:77:cf:58:c9:4d:d5:5a:ff:d6:cf:43:b9:
d8:b7:6c:c0:32:34:33:97:02:a0:da:eb:bd:fe:41:
6b:34:2a:e7:a8:03:d5:8f:e3:49:e0:6a:08:5f:ed:
6c:f0:b1:f4:d1:7f:c4:b2:e4:65:45:4b:46:d3:5a:
e1:f9:be:bd:74:7a:72:5c:09:48:cc:2c:c2:f0:7a:
9c:45:8a:dd:2a:a1:cf:f3:35:00:91:7c:04:3e:25:
2c:49
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
27:7A:54:A8:A7:BE:2E:38:03:0C:8C:A1:E0:91:8C:BE:F4:0A:5D:81
X509v3 Authority Key Identifier:
keyid:50:A8:8F:9A:83:41:01:AD:F8:77:03:7A:51:C8:1D:13:3A:A9:46:EC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UKiPmoNBAa34dwN6UcgdEzqpRuw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/df/9760c6-3fce-42bd-bbc8-49fbc30a8f61/1/UKiPmoNBAa34dwN6UcgdEzqpRuw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/df/9760c6-3fce-42bd-bbc8-49fbc30a8f61/1/UKiPmoNBAa34dwN6UcgdEzqpRuw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
90:40:bd:07:0a:f1:5f:9a:ca:6c:49:77:36:02:a0:e9:bf:e9:
b0:e1:6d:0c:95:34:47:ca:08:84:3a:92:15:13:5c:b9:32:4f:
9f:fc:24:06:e4:fa:43:26:cf:06:ee:53:0b:7c:51:25:de:1a:
6d:50:1c:88:6c:b6:b7:8c:84:f6:a0:36:8c:67:39:ec:62:14:
af:0d:0e:bc:48:04:d5:88:f7:5c:51:c5:e3:7d:a1:24:91:14:
d4:9b:38:54:e2:31:89:7e:10:0b:04:2e:1a:4b:ec:dc:73:6d:
da:62:3e:82:73:a0:6c:88:9a:34:9b:5f:6d:f2:51:0a:24:6a:
d1:c1:83:f9:0c:48:c2:58:09:8b:6a:c1:ff:6c:ed:2b:1f:31:
7d:a1:9d:e9:97:86:7a:ad:e4:be:d7:80:46:f0:05:4d:ff:ad:
03:f9:20:0f:56:b9:2c:cc:c7:13:53:e9:4c:82:a8:66:39:02:
04:82:28:7a:69:08:5f:23:4d:ab:07:27:0b:bc:b8:23:b9:70:
68:62:58:2d:c1:91:6b:37:1c:ab:03:b3:67:0c:89:76:3b:65:
0c:fb:c9:5d:7f:29:2d:83:34:1b:89:8b:eb:9c:f3:a4:b9:76:
24:ef:97:5e:f7:a9:ac:57:0f:56:4f:3e:a7:39:3d:d1:36:e4:
a9:c5:f3:ed
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 7 03:22:43 2025 by rpki-client