Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/35/04e8b2-c76f-4629-95ad-a7d945af14e5/1/U-Ou3ZG-gkUTQtzRyYKDRdtmGl8.mft
File: U-Ou3ZG-gkUTQtzRyYKDRdtmGl8.mft (raw, json)
Hash identifier: ug3gNmfSoGHRSkA4cxUqEC18x2wFzuuQXo71XzwnnwE=
Subject key identifier: 89:57:0D:A9:9E:A9:00:13:19:E7:A0:6F:48:D1:A3:52:9F:93:FA:40
Authority key identifier: 53:E3:AE:DD:91:BE:82:45:13:42:DC:D1:C9:82:83:45:DB:66:1A:5F
Certificate issuer: /CN=53e3aedd91be82451342dcd1c9828345db661a5f
Certificate serial: 01977677AFAA6AFE5D455AE2EA5759F7201C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/U-Ou3ZG-gkUTQtzRyYKDRdtmGl8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/35/04e8b2-c76f-4629-95ad-a7d945af14e5/1/U-Ou3ZG-gkUTQtzRyYKDRdtmGl8.mft
Manifest number: 081F
Signing time: Mon 16 Jun 2025 02:00:44 +0000
Manifest this update: Mon 16 Jun 2025 02:00:44 +0000
Manifest next update: Tue 17 Jun 2025 02:00:44 +0000
Files and hashes: 1: If5j4KjsWFg3kwDUxrHpbFCCjpg.roa (hash: iGbVOgQjxfoZ4tZTHfIMlZvCv27war8Yd/ywUcGl39o=)
2: U-Ou3ZG-gkUTQtzRyYKDRdtmGl8.crl (hash: ET4qyAQCML38JvIoVBA0MKCtQX+wSM8BTUNn3XsDo/4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/35/04e8b2-c76f-4629-95ad-a7d945af14e5/1/U-Ou3ZG-gkUTQtzRyYKDRdtmGl8.crl
rsync://rpki.ripe.net/repository/DEFAULT/35/04e8b2-c76f-4629-95ad-a7d945af14e5/1/U-Ou3ZG-gkUTQtzRyYKDRdtmGl8.mft
rsync://rpki.ripe.net/repository/DEFAULT/U-Ou3ZG-gkUTQtzRyYKDRdtmGl8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 17 Jun 2025 02:00:44 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:76:77:af:aa:6a:fe:5d:45:5a:e2:ea:57:59:f7:20:1c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=53e3aedd91be82451342dcd1c9828345db661a5f
Validity
Not Before: Jun 16 02:00:44 2025 GMT
Not After : Jun 17 02:00:44 2025 GMT
Subject: CN=89570da99ea9001319e7a06f48d1a3529f93fa40
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d8:53:d3:6e:1d:db:f3:f3:9e:38:d1:3f:d7:0e:
92:e8:3d:b1:14:79:f4:9b:77:a3:b1:cb:db:ea:28:
90:f0:ee:c6:e5:d0:37:1e:4d:d0:9f:98:10:e5:16:
a2:94:7d:e8:02:5f:e8:dc:93:a4:90:f0:97:57:bd:
d0:1e:77:d7:9c:86:21:0a:8d:60:e8:77:b9:99:c6:
61:79:ba:9f:77:26:1c:51:e2:72:4b:29:23:06:a7:
9f:17:3a:25:91:9c:13:f5:51:7a:e3:a4:92:6f:2c:
01:e6:87:da:5e:a4:82:a0:47:c5:c5:3d:f7:e9:a7:
59:ed:3f:9b:4c:48:25:62:2d:82:f6:c1:4f:f1:26:
c8:92:14:1f:ff:d2:c1:b4:4b:e0:af:92:c7:3a:79:
46:a5:fe:38:d4:15:8c:10:92:2f:33:2f:85:4e:5c:
16:55:17:87:28:cb:45:66:66:7d:a3:f7:c4:70:0a:
15:a9:bd:c8:dc:9d:80:cd:f4:05:0a:f2:bf:07:9a:
85:f0:de:41:3e:fa:59:e8:50:95:b1:eb:2e:48:52:
0d:e5:12:2f:10:bd:22:a5:28:2f:2b:7e:83:f6:b9:
7a:1a:f8:d1:6e:7e:63:e7:1f:a3:32:d7:14:a8:87:
25:95:25:2e:9a:3c:5b:ec:44:fc:fb:e6:0d:61:9f:
94:33
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
89:57:0D:A9:9E:A9:00:13:19:E7:A0:6F:48:D1:A3:52:9F:93:FA:40
X509v3 Authority Key Identifier:
keyid:53:E3:AE:DD:91:BE:82:45:13:42:DC:D1:C9:82:83:45:DB:66:1A:5F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/U-Ou3ZG-gkUTQtzRyYKDRdtmGl8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/35/04e8b2-c76f-4629-95ad-a7d945af14e5/1/U-Ou3ZG-gkUTQtzRyYKDRdtmGl8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/35/04e8b2-c76f-4629-95ad-a7d945af14e5/1/U-Ou3ZG-gkUTQtzRyYKDRdtmGl8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
3c:e6:8a:00:ca:78:e4:dc:0d:d2:7c:2f:20:9c:03:12:18:ad:
e9:13:5a:dc:aa:9e:01:df:ce:b8:ee:8e:bd:18:37:bb:9e:b5:
97:50:62:2b:14:50:12:14:91:4d:4c:19:04:1d:76:47:34:9a:
8a:b4:76:84:c3:be:05:ec:38:65:91:1d:24:1e:76:f0:ce:40:
25:c1:89:b1:65:03:50:18:56:ba:9d:e9:ed:47:7d:12:fd:41:
52:e6:42:a5:28:27:00:4e:43:08:21:bd:69:5e:69:e3:11:f6:
4c:98:78:c8:3e:5c:cb:ec:e7:c3:d9:5a:2c:ec:0d:8d:36:6f:
42:15:97:3c:8d:0b:be:27:66:7a:65:a2:9e:ff:86:f1:06:6d:
61:c6:2f:19:72:71:f8:42:66:6c:0a:71:13:23:a1:01:48:ae:
72:b1:cb:cb:7a:a9:25:31:3c:22:ac:43:01:69:6e:e7:7c:4a:
94:f6:a8:6e:57:0b:0c:93:92:7a:7f:1b:a8:80:e5:59:da:7d:
bc:15:de:4e:5b:11:b5:71:85:46:2a:f2:15:42:ca:59:86:d1:
2f:46:7d:10:cb:cf:cd:91:b8:f8:f7:01:ce:f4:62:24:c0:63:
95:2e:67:dd:22:2f:35:d0:ee:74:36:fd:1c:59:46:77:94:33:
54:02:78:09
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jun 16 09:13:50 2025 by rpki-client