Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e4/b431ca-5275-42b5-8d54-d196f9291732/1/ubDTNDLsp3wFTo-ocHJI2k5H2ws.mft
File: ubDTNDLsp3wFTo-ocHJI2k5H2ws.mft (raw, json)
Hash identifier: 6dZAfXrLlXp86tUDZREsNcNDIBMbX0G/mLg7f5qOHjQ=
Subject key identifier: 5E:0B:25:DF:DA:72:9C:CE:C1:F3:99:E0:1F:94:D1:DD:85:62:4A:08
Authority key identifier: B9:B0:D3:34:32:EC:A7:7C:05:4E:8F:A8:70:72:48:DA:4E:47:DB:0B
Certificate issuer: /CN=b9b0d33432eca77c054e8fa8707248da4e47db0b
Certificate serial: 0199364A65C9E2AE443D719E5C2BEDA0DFAA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ubDTNDLsp3wFTo-ocHJI2k5H2ws.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e4/b431ca-5275-42b5-8d54-d196f9291732/1/ubDTNDLsp3wFTo-ocHJI2k5H2ws.mft
Manifest number: 084B
Signing time: Thu 11 Sep 2025 01:01:09 +0000
Manifest this update: Thu 11 Sep 2025 01:01:09 +0000
Manifest next update: Fri 12 Sep 2025 01:01:09 +0000
Files and hashes: 1: 9qqw5-kT_WV_X39A7wZIImdbzHo.roa (hash: /+5dGBlEHLXX+0YtcqdadMo/w6B/YFbkAqy9tbmNdEg=)
2: D-sLa7SP7XelLhZGOPS-ls06iHQ.roa (hash: O/tqtREZzKy5oPDokpycb2qRKRocKJlF54vVhaheJr4=)
3: XI8GYNvzBktqANN3ULY6yNPZsp4.roa (hash: 0Mxp84Xa3ZGuCVESuvLHwIOTltEO7ZBfIp1LcrOP0ho=)
4: eRUACPCXV-4Ib9JOJdpUbWI_TYw.roa (hash: h9bviEq7QynmkHeqFVqOAhXJmtcEK3L94GyVb2n9ZXc=)
5: hJkdSoDXpzIKTUPp93OLm4_CfgM.roa (hash: GAALV0VthJPoxa0vb/cdFv6fAU1JjHbthL2uNWZeyCc=)
6: ubDTNDLsp3wFTo-ocHJI2k5H2ws.crl (hash: gN30K8qzbE3cpeiHwbB257gHx+tSQDgitFdUvOs4D74=)
7: yLW-Wxb-WEK3SlgHfRgcFULgwtU.roa (hash: 47c/8wbrDeeCgPSJoS7prqWBSvhn47quuwVKT8eb4AA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e4/b431ca-5275-42b5-8d54-d196f9291732/1/ubDTNDLsp3wFTo-ocHJI2k5H2ws.crl
rsync://rpki.ripe.net/repository/DEFAULT/e4/b431ca-5275-42b5-8d54-d196f9291732/1/ubDTNDLsp3wFTo-ocHJI2k5H2ws.mft
rsync://rpki.ripe.net/repository/DEFAULT/ubDTNDLsp3wFTo-ocHJI2k5H2ws.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 12 Sep 2025 01:01:09 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:36:4a:65:c9:e2:ae:44:3d:71:9e:5c:2b:ed:a0:df:aa
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b9b0d33432eca77c054e8fa8707248da4e47db0b
Validity
Not Before: Sep 11 01:01:09 2025 GMT
Not After : Sep 12 01:01:09 2025 GMT
Subject: CN=5e0b25dfda729ccec1f399e01f94d1dd85624a08
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d7:43:48:37:a8:f3:c0:e7:e0:ff:25:e1:a4:0e:
a8:08:75:1b:e6:e1:1b:60:4b:40:0c:a0:ec:0b:c7:
e8:97:7d:11:3b:21:d1:e3:f0:02:42:5f:bf:87:36:
1a:be:eb:5b:06:bc:6e:37:c2:ec:78:cf:b5:24:1a:
45:e4:b1:ba:bf:7e:e9:f6:f5:d6:fd:b3:77:d5:27:
10:bf:be:06:ad:fa:ba:a4:41:3c:4e:21:38:3e:c1:
a2:7c:fe:05:53:ff:14:20:7a:81:31:17:d6:51:44:
65:24:55:cf:9e:be:91:2f:80:41:ef:45:ce:0f:14:
c7:36:d7:61:5d:89:cd:64:89:b2:5b:8e:1a:4f:cb:
a2:5d:4d:69:0e:9e:99:07:d4:bc:c8:bc:f7:09:8b:
d7:70:06:02:0b:3f:55:62:82:dc:c4:d0:33:79:1e:
59:bf:b2:99:3b:83:a5:ce:84:6f:4e:2c:70:30:b3:
6c:f9:1f:5c:2d:18:d7:78:c3:01:31:8a:54:92:c4:
d9:2d:18:1d:2e:24:4b:fc:4f:83:7a:a8:22:6a:a6:
62:9f:eb:f4:7e:af:f7:ca:b7:a1:90:72:6a:a0:c2:
2a:92:f5:1b:d1:26:9e:f7:b8:1e:57:1c:8f:7b:50:
c7:66:99:3a:21:e9:d6:2c:35:88:ed:21:d7:02:1e:
99:f1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5E:0B:25:DF:DA:72:9C:CE:C1:F3:99:E0:1F:94:D1:DD:85:62:4A:08
X509v3 Authority Key Identifier:
keyid:B9:B0:D3:34:32:EC:A7:7C:05:4E:8F:A8:70:72:48:DA:4E:47:DB:0B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ubDTNDLsp3wFTo-ocHJI2k5H2ws.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e4/b431ca-5275-42b5-8d54-d196f9291732/1/ubDTNDLsp3wFTo-ocHJI2k5H2ws.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e4/b431ca-5275-42b5-8d54-d196f9291732/1/ubDTNDLsp3wFTo-ocHJI2k5H2ws.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
4b:8a:2f:a8:00:58:4b:bb:55:f9:6e:38:48:cb:23:e1:02:3c:
b6:b2:de:dc:73:cb:9b:54:b9:09:ca:59:bb:aa:4d:38:71:ce:
28:00:7a:4a:9a:9c:f8:bf:e1:c6:f3:70:4b:a0:6e:69:3d:03:
d6:57:4b:e9:b6:c2:31:e8:a5:b9:8e:25:65:28:61:35:29:8b:
3c:b5:39:dd:84:c4:a4:a5:00:01:65:c3:40:ef:26:b4:09:bc:
7a:21:8a:f1:24:6c:79:94:e0:1b:23:3c:ad:ce:4a:e8:5d:af:
83:cf:45:2d:ff:d7:f0:d6:2c:76:96:d6:8d:be:a1:27:15:63:
7e:1e:eb:a6:1a:4e:5f:76:87:36:f1:dc:38:35:48:bb:e6:0d:
80:8b:70:0a:fe:7e:b0:80:93:36:40:3f:09:b4:6a:7b:31:13:
9f:c0:29:45:46:e0:01:ab:42:21:be:29:c5:3d:db:6d:0c:68:
22:d0:b5:02:7b:d1:b3:f8:32:1e:33:c1:c6:8d:60:de:90:7d:
85:04:ca:0b:30:24:2a:9a:c0:a0:b8:9b:de:32:9b:67:aa:b8:
a3:9d:59:af:87:74:de:8e:28:db:e9:9f:fa:07:0f:f8:98:79:
fd:36:3f:06:00:73:79:47:c6:9f:82:89:50:0a:b7:5a:0f:63:
9c:13:55:66
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Sep 11 08:50:23 2025 by rpki-client