Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0b/a3735a-eccc-41d7-b723-e01237b5fc10/1/UFzWGp9t6drMDTySFwbffVCvvW8.mft
File: UFzWGp9t6drMDTySFwbffVCvvW8.mft (raw, json)
Hash identifier: 3ipffJgbImnQ1373iDy/5NdrG6ZtcgmS4zg9h/Yti8M=
Subject key identifier: C8:82:83:99:FD:B9:F1:4E:92:1C:FC:AF:A7:25:5D:1C:B7:77:04:58
Authority key identifier: 50:5C:D6:1A:9F:6D:E9:DA:CC:0D:3C:92:17:06:DF:7D:50:AF:BD:6F
Certificate issuer: /CN=505cd61a9f6de9dacc0d3c921706df7d50afbd6f
Certificate serial: 0197778A44EE63B66D4D185B00A32035B4E3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UFzWGp9t6drMDTySFwbffVCvvW8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0b/a3735a-eccc-41d7-b723-e01237b5fc10/1/UFzWGp9t6drMDTySFwbffVCvvW8.mft
Manifest number: 0BE8
Signing time: Mon 16 Jun 2025 07:00:39 +0000
Manifest this update: Mon 16 Jun 2025 07:00:39 +0000
Manifest next update: Tue 17 Jun 2025 07:00:39 +0000
Files and hashes: 1: 02fZd277xqKcuTMYmhFfbwx9HwA.roa (hash: bemKy7xu5/Ii5zazW11+IHavu8JMVH9QIzpKn7l6Pf4=)
2: UFzWGp9t6drMDTySFwbffVCvvW8.crl (hash: T6NM10us621A/mf3bAPJ2HiBMKjBJqmvYaHp4R4TRR8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0b/a3735a-eccc-41d7-b723-e01237b5fc10/1/UFzWGp9t6drMDTySFwbffVCvvW8.crl
rsync://rpki.ripe.net/repository/DEFAULT/0b/a3735a-eccc-41d7-b723-e01237b5fc10/1/UFzWGp9t6drMDTySFwbffVCvvW8.mft
rsync://rpki.ripe.net/repository/DEFAULT/UFzWGp9t6drMDTySFwbffVCvvW8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 17 Jun 2025 07:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:77:8a:44:ee:63:b6:6d:4d:18:5b:00:a3:20:35:b4:e3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=505cd61a9f6de9dacc0d3c921706df7d50afbd6f
Validity
Not Before: Jun 16 07:00:39 2025 GMT
Not After : Jun 17 07:00:39 2025 GMT
Subject: CN=c8828399fdb9f14e921cfcafa7255d1cb7770458
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:42:5c:d2:7d:11:02:a5:e5:87:dc:5d:b4:e4:
47:3f:d4:c7:dd:e5:d0:3c:83:d9:7c:cc:20:0d:cb:
3f:ab:ec:4c:b3:1a:36:64:d4:6d:4b:b1:fa:1c:d0:
ef:23:9a:37:f7:55:0f:b8:0c:ac:72:4d:d2:5f:45:
da:54:f8:6b:83:3c:6e:13:96:59:b9:80:3e:d6:24:
fc:ec:06:bb:75:36:8f:2d:50:3d:d0:bb:f9:6e:0d:
c9:b5:53:d3:32:11:b3:c4:04:13:99:2f:d4:7f:41:
f0:f1:5d:3e:6b:1b:b8:fc:58:49:26:e0:43:57:e3:
00:30:25:66:80:df:cf:d2:fa:c8:09:26:8f:d5:f0:
34:41:36:3e:58:59:35:6e:c0:ce:4e:bc:2d:4e:c2:
94:22:e5:0c:af:1f:fa:9b:54:b9:d0:30:53:f8:6a:
9c:b7:fd:e1:b6:3f:e2:ff:8b:bd:9a:5c:35:49:70:
7d:8a:9a:69:6c:f4:0f:b5:4b:35:b7:16:c7:12:04:
e6:9d:cd:ef:e1:3b:a2:19:0d:46:71:94:5b:94:ca:
ce:ca:7e:c8:75:01:e0:df:a6:99:ce:26:40:ce:87:
9e:ab:d2:bf:87:e5:c9:4a:48:aa:f5:0b:11:b8:2c:
b0:09:72:09:a1:d7:af:f1:5d:30:de:c6:8f:20:58:
fa:eb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C8:82:83:99:FD:B9:F1:4E:92:1C:FC:AF:A7:25:5D:1C:B7:77:04:58
X509v3 Authority Key Identifier:
keyid:50:5C:D6:1A:9F:6D:E9:DA:CC:0D:3C:92:17:06:DF:7D:50:AF:BD:6F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UFzWGp9t6drMDTySFwbffVCvvW8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0b/a3735a-eccc-41d7-b723-e01237b5fc10/1/UFzWGp9t6drMDTySFwbffVCvvW8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0b/a3735a-eccc-41d7-b723-e01237b5fc10/1/UFzWGp9t6drMDTySFwbffVCvvW8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
00:8a:41:90:3d:15:57:e5:43:0f:75:79:d8:9e:8f:6e:fe:ab:
6f:b7:2a:de:6f:1d:e5:e0:04:14:a9:c1:1e:d2:f4:b5:f3:2d:
0d:19:5b:eb:75:5d:6d:01:b4:e4:e1:19:14:fc:58:90:1f:09:
3c:d8:15:2d:ac:e1:26:33:2f:77:9c:c1:78:25:15:4d:22:04:
f3:d4:c7:b1:1d:35:a5:fa:69:c0:59:55:cd:74:6b:92:5b:26:
e5:c2:9c:f4:43:1d:bd:51:ab:85:7e:bb:19:15:7c:dc:a9:72:
66:b5:bb:b3:cd:a8:a1:ab:e7:6b:1b:de:24:1d:13:c9:1d:7a:
cc:b4:a6:be:da:f0:f4:d9:6a:f5:12:a9:f9:51:5e:d9:e6:09:
9d:22:91:57:9e:2d:48:90:70:3c:e3:39:ea:ad:2b:f5:5b:c5:
7f:d5:a9:46:61:05:5f:24:7d:66:e6:e6:7a:19:d8:e7:ec:e8:
62:b3:74:e5:b0:38:aa:bd:30:13:ce:b8:cb:5c:96:59:1d:b9:
66:48:6a:29:26:ee:34:b1:3f:63:17:85:49:7c:43:87:95:f7:
8b:2a:8b:76:54:5b:70:51:8f:a0:8c:8d:e2:14:e1:16:f5:7d:
14:cc:cb:12:bc:f1:a2:76:82:f3:48:09:de:67:42:34:76:68:
71:c4:0b:bf
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jun 16 12:15:37 2025 by rpki-client