Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fe/472a4d-fcae-4454-9967-02ded9b2e0c9/1/umhZWZeQDe0wDpklcJ2mJ-k_Njo.mft
File: umhZWZeQDe0wDpklcJ2mJ-k_Njo.mft (raw, json)
Hash identifier: X8TREOQqvPS4QTae0eUqvFvc2NDDS/anHqc7lwIHFeY=
Subject key identifier: 7D:C1:FB:62:9B:27:FF:98:B4:61:CF:86:52:37:EB:CC:4D:4C:44:48
Authority key identifier: BA:68:59:59:97:90:0D:ED:30:0E:99:25:70:9D:A6:27:E9:3F:36:3A
Certificate issuer: /CN=ba68595997900ded300e9925709da627e93f363a
Certificate serial: 01974AB19AB5AC2BCAF2DA580DFD2A2E1F86
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/umhZWZeQDe0wDpklcJ2mJ-k_Njo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fe/472a4d-fcae-4454-9967-02ded9b2e0c9/1/umhZWZeQDe0wDpklcJ2mJ-k_Njo.mft
Manifest number: 0E1A
Signing time: Sat 07 Jun 2025 14:00:42 +0000
Manifest this update: Sat 07 Jun 2025 14:00:42 +0000
Manifest next update: Sun 08 Jun 2025 14:00:42 +0000
Files and hashes: 1: Vevc9vrQGyVF5o4NzN0QFHnZAiA.roa (hash: AOWcNE88wNCBWfSzm2+MmaRV4c7usJ5kQGrhyE8Gj6M=)
2: umhZWZeQDe0wDpklcJ2mJ-k_Njo.crl (hash: 1KpeSJX7foXbltlP/tDeT3k+SX+nM8baM+zteM90tlQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/fe/472a4d-fcae-4454-9967-02ded9b2e0c9/1/umhZWZeQDe0wDpklcJ2mJ-k_Njo.crl
rsync://rpki.ripe.net/repository/DEFAULT/fe/472a4d-fcae-4454-9967-02ded9b2e0c9/1/umhZWZeQDe0wDpklcJ2mJ-k_Njo.mft
rsync://rpki.ripe.net/repository/DEFAULT/umhZWZeQDe0wDpklcJ2mJ-k_Njo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 08 Jun 2025 14:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:4a:b1:9a:b5:ac:2b:ca:f2:da:58:0d:fd:2a:2e:1f:86
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ba68595997900ded300e9925709da627e93f363a
Validity
Not Before: Jun 7 14:00:42 2025 GMT
Not After : Jun 8 14:00:42 2025 GMT
Subject: CN=7dc1fb629b27ff98b461cf865237ebcc4d4c4448
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:fc:51:53:a9:8a:a1:19:b7:dc:7d:df:f5:a2:
4c:48:fb:2e:10:94:3d:8b:a8:fa:d0:3c:a4:3e:18:
02:62:5f:d6:2d:e0:cd:51:91:c9:be:21:5d:bd:84:
54:7b:91:c2:8a:b5:99:c1:6e:c7:48:8e:d8:b7:9f:
b8:98:1d:60:d3:40:87:25:9d:13:20:07:80:b3:3d:
7d:ad:47:61:4b:08:80:f3:4a:62:00:f3:10:48:9a:
77:eb:76:54:d1:49:ec:70:3c:b2:aa:52:7d:92:43:
8b:b4:30:2e:8b:1c:9d:9b:13:17:db:fe:af:18:46:
c3:57:e1:e0:76:d5:df:5e:16:cf:b8:9c:7d:c1:70:
a8:c6:a0:05:44:aa:91:28:a5:bf:77:8a:a5:de:a4:
5b:99:88:b9:d4:b6:e7:80:f4:d4:b8:c9:fa:15:15:
c3:68:47:08:50:4d:dd:4d:bb:e2:f2:f6:c0:8a:5a:
f3:cf:a4:97:bc:25:2e:73:84:27:82:28:bf:27:49:
80:68:07:bb:8b:00:85:64:0f:52:bb:07:5a:4d:d6:
06:af:24:9b:d4:1d:a5:de:e6:7e:22:39:c5:2b:71:
8c:62:46:1c:cb:f3:e8:99:59:ab:33:19:7e:c3:a7:
e0:08:b3:d3:53:89:89:d0:33:8b:44:ae:6c:d4:16:
aa:55
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7D:C1:FB:62:9B:27:FF:98:B4:61:CF:86:52:37:EB:CC:4D:4C:44:48
X509v3 Authority Key Identifier:
keyid:BA:68:59:59:97:90:0D:ED:30:0E:99:25:70:9D:A6:27:E9:3F:36:3A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/umhZWZeQDe0wDpklcJ2mJ-k_Njo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fe/472a4d-fcae-4454-9967-02ded9b2e0c9/1/umhZWZeQDe0wDpklcJ2mJ-k_Njo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fe/472a4d-fcae-4454-9967-02ded9b2e0c9/1/umhZWZeQDe0wDpklcJ2mJ-k_Njo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
b1:91:9c:61:23:f2:b6:d5:48:4f:83:55:1a:6a:2d:d9:37:07:
4c:7c:bc:f6:41:3c:c2:ba:a9:54:07:76:e3:76:8f:da:48:96:
51:1a:38:da:25:32:64:02:2c:6b:15:23:4c:c0:22:05:52:0e:
ab:4f:42:22:51:40:43:f1:6f:b4:31:f3:43:22:91:7f:5c:ea:
97:64:8e:77:a2:7c:0b:10:a6:3b:28:fa:40:78:f5:75:53:08:
be:cc:d5:c0:81:47:f1:98:68:ea:0f:0a:6b:ba:0e:40:66:5b:
93:9b:24:58:61:11:95:44:2c:39:e4:9e:90:aa:4f:eb:9a:8b:
a4:06:da:c0:ba:cd:91:85:b4:19:76:c1:94:fe:32:26:f5:a4:
be:f5:d7:4f:70:4e:b0:08:bd:08:a8:29:e6:e6:5f:7f:41:55:
f4:19:9b:cc:53:59:a2:85:39:19:06:76:53:6b:37:56:09:74:
ee:fa:8a:89:d0:6c:e6:bd:8a:77:42:c0:89:b2:04:83:8c:7c:
f6:d9:6e:4a:71:f0:68:94:18:eb:50:5f:a6:7b:f1:18:1b:23:
2f:e8:b7:35:0a:13:f4:b4:44:4b:43:a8:2e:f2:28:d5:34:15:
9f:30:00:01:cc:97:a0:db:24:69:40:61:63:c6:0b:5f:45:40:
63:72:4f:3f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 8 00:50:06 2025 by rpki-client