Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fe/4a79a1-3d19-4de4-be89-8a200691f724/1/u_pCfUICOv2oiOhBX07c97ffGwU.mft
File: u_pCfUICOv2oiOhBX07c97ffGwU.mft (raw, json)
Hash identifier: Jq8S8nYguvU9/0uZH/eS9Via39UhfSLxtObwCInYKBY=
Subject key identifier: B8:E1:13:58:20:15:0B:F9:05:0C:E6:9A:AE:AF:63:F2:52:9F:C0:C8
Authority key identifier: BB:FA:42:7D:42:02:3A:FD:A8:88:E8:41:5F:4E:DC:F7:B7:DF:1B:05
Certificate issuer: /CN=bbfa427d42023afda888e8415f4edcf7b7df1b05
Certificate serial: 0197481E715AFAFA576CCFC26FFD23D30204
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/u_pCfUICOv2oiOhBX07c97ffGwU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fe/4a79a1-3d19-4de4-be89-8a200691f724/1/u_pCfUICOv2oiOhBX07c97ffGwU.mft
Manifest number: 07CE
Signing time: Sat 07 Jun 2025 02:00:43 +0000
Manifest this update: Sat 07 Jun 2025 02:00:43 +0000
Manifest next update: Sun 08 Jun 2025 02:00:43 +0000
Files and hashes: 1: K2GMWCCFEI_TRfahmMRjDe9YKEI.roa (hash: vdZSYQjeBwZE35DhIdNU+zQ/gO9XDbHhs5nRKTUQzYc=)
2: u_pCfUICOv2oiOhBX07c97ffGwU.crl (hash: pur9mdEjcByT1Nw56JQDH1PxQzG1TwmmjS9EWueGpUc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/fe/4a79a1-3d19-4de4-be89-8a200691f724/1/u_pCfUICOv2oiOhBX07c97ffGwU.crl
rsync://rpki.ripe.net/repository/DEFAULT/fe/4a79a1-3d19-4de4-be89-8a200691f724/1/u_pCfUICOv2oiOhBX07c97ffGwU.mft
rsync://rpki.ripe.net/repository/DEFAULT/u_pCfUICOv2oiOhBX07c97ffGwU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 08 Jun 2025 02:00:43 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:48:1e:71:5a:fa:fa:57:6c:cf:c2:6f:fd:23:d3:02:04
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=bbfa427d42023afda888e8415f4edcf7b7df1b05
Validity
Not Before: Jun 7 02:00:43 2025 GMT
Not After : Jun 8 02:00:43 2025 GMT
Subject: CN=b8e1135820150bf9050ce69aaeaf63f2529fc0c8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:68:8e:c6:f9:6c:8b:96:cf:48:1c:ac:68:ad:
cb:4f:71:29:23:49:2f:9b:cb:8d:a9:aa:dc:2f:a3:
f7:a9:8f:0d:9d:75:ea:53:e9:63:c2:c1:e7:73:f7:
d8:01:e7:81:5f:47:61:37:d5:af:bc:24:bc:66:c1:
48:7a:08:16:bc:c3:b7:5e:d5:e3:81:17:9b:0a:a1:
7b:cc:41:c0:57:b7:ac:3d:c0:5c:05:1f:7a:21:ab:
31:54:21:b9:c0:8b:97:b1:1e:e9:c6:56:67:7a:04:
ad:74:16:3c:46:68:b3:95:b3:ea:75:02:6a:dc:4b:
78:47:f4:e8:1c:8a:2e:f2:0d:32:bb:14:9e:d0:3f:
80:17:4c:77:b6:8c:e1:66:a7:12:da:35:a1:e8:3a:
83:c3:4e:89:31:00:e2:5a:aa:3c:a8:d6:3e:9c:d0:
3b:76:0f:b2:e3:76:41:00:26:65:b1:64:31:4b:4e:
5a:ba:74:52:49:df:a5:b1:91:44:d1:de:b0:f6:c9:
87:1b:ef:99:e2:54:51:b5:3f:11:5f:37:51:f1:cc:
e9:5a:25:00:b5:b7:41:be:b1:dc:37:22:47:c9:af:
b7:fb:05:11:7a:b8:a1:b5:fc:f7:fd:02:ff:fd:c2:
a4:fc:44:b1:26:16:07:4a:87:bc:34:68:f0:e1:73:
48:f1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B8:E1:13:58:20:15:0B:F9:05:0C:E6:9A:AE:AF:63:F2:52:9F:C0:C8
X509v3 Authority Key Identifier:
keyid:BB:FA:42:7D:42:02:3A:FD:A8:88:E8:41:5F:4E:DC:F7:B7:DF:1B:05
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/u_pCfUICOv2oiOhBX07c97ffGwU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fe/4a79a1-3d19-4de4-be89-8a200691f724/1/u_pCfUICOv2oiOhBX07c97ffGwU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fe/4a79a1-3d19-4de4-be89-8a200691f724/1/u_pCfUICOv2oiOhBX07c97ffGwU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
68:5b:f9:fd:3c:c0:97:ee:e9:f9:da:ea:c8:95:4d:6f:4c:af:
0b:ef:06:c3:cb:58:a7:a7:3e:9b:cc:4a:7d:0b:d3:8e:80:43:
28:1e:ac:ea:8f:3a:64:41:bf:28:9a:24:18:e5:68:b0:32:9e:
ae:a9:b6:56:5a:37:0e:72:b1:fd:27:5b:c0:f7:50:01:9a:22:
2f:9e:f0:55:84:3a:75:40:1f:8d:6f:b8:bd:e1:27:0c:8a:f7:
46:d6:5c:81:a4:6e:f4:a1:4a:09:67:59:43:95:db:e5:d5:7e:
4e:5e:b5:f9:5e:ee:d4:3a:20:84:e3:52:2b:59:2a:56:d5:99:
f5:7d:2a:7e:1a:47:8d:a1:13:46:2b:44:2e:16:ce:0d:c5:ea:
02:a2:cb:bc:06:bb:31:ed:de:c1:0f:98:cb:3e:fd:cc:5b:4a:
5b:87:dd:da:ea:1d:17:26:51:a3:65:fc:16:d1:b0:6c:d3:c0:
b1:c0:64:54:8b:a4:9d:5e:52:80:18:64:18:33:8a:38:d8:20:
41:f8:42:1a:2f:16:87:50:33:6c:19:f8:2e:c6:0e:1d:17:5a:
73:11:2f:95:7d:77:cf:90:61:40:ac:3b:c5:12:3e:72:55:8b:
c9:46:ca:46:0f:04:4d:d5:94:bb:16:b2:d4:01:5a:78:51:4c:
2d:c8:b5:03
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 7 11:34:32 2025 by rpki-client