Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4a/43bb94-94c6-4dad-a372-5fcfa421975c/1/u7hl_W36q6dxJJt-uujr1SgKDJc.mft
File: u7hl_W36q6dxJJt-uujr1SgKDJc.mft (raw, json)
Hash identifier: zii3G8nEam3MGcmpZzh/5uv/oYwCJVAFtgOn+0rM7wM=
Subject key identifier: 0C:F0:C0:C1:8C:46:3C:EE:E1:44:75:1C:91:1E:A8:E5:70:81:34:AB
Authority key identifier: BB:B8:65:FD:6D:FA:AB:A7:71:24:9B:7E:BA:E8:EB:D5:28:0A:0C:97
Certificate issuer: /CN=bbb865fd6dfaaba771249b7ebae8ebd5280a0c97
Certificate serial: 0198880E2FD1F889D8E0DF8540A6636EEA4D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/u7hl_W36q6dxJJt-uujr1SgKDJc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4a/43bb94-94c6-4dad-a372-5fcfa421975c/1/u7hl_W36q6dxJJt-uujr1SgKDJc.mft
Manifest number: 116C
Signing time: Fri 08 Aug 2025 05:01:27 +0000
Manifest this update: Fri 08 Aug 2025 05:01:27 +0000
Manifest next update: Sat 09 Aug 2025 05:01:27 +0000
Files and hashes: 1: kr3FPTrUbvprQB5gOzb6Xm9In9I.roa (hash: hZOcB5l1wSRFBsah9a6wwCM7j6k84PdiP/Urp0eSJlg=)
2: u7hl_W36q6dxJJt-uujr1SgKDJc.crl (hash: gHnFYgH4RKketNUfv4bDpNEYvp6G9P5uQ1IwbiVRdYo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/4a/43bb94-94c6-4dad-a372-5fcfa421975c/1/u7hl_W36q6dxJJt-uujr1SgKDJc.crl
rsync://rpki.ripe.net/repository/DEFAULT/4a/43bb94-94c6-4dad-a372-5fcfa421975c/1/u7hl_W36q6dxJJt-uujr1SgKDJc.mft
rsync://rpki.ripe.net/repository/DEFAULT/u7hl_W36q6dxJJt-uujr1SgKDJc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 09 Aug 2025 05:01:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:88:0e:2f:d1:f8:89:d8:e0:df:85:40:a6:63:6e:ea:4d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=bbb865fd6dfaaba771249b7ebae8ebd5280a0c97
Validity
Not Before: Aug 8 05:01:27 2025 GMT
Not After : Aug 9 05:01:27 2025 GMT
Subject: CN=0cf0c0c18c463ceee144751c911ea8e5708134ab
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:4a:e7:c1:e7:0e:54:a5:8e:59:7d:57:9a:e6:
a5:bb:3d:fb:01:8c:0a:18:3e:bf:e9:f5:2a:0e:b3:
18:f9:51:0e:e2:84:4b:6b:9e:ac:9a:54:a0:91:3b:
44:b6:3e:ac:21:9f:fe:02:07:b4:f8:b6:e7:95:3f:
14:45:51:7b:5a:82:f8:85:a4:9c:af:1d:58:14:be:
28:f5:5a:ad:08:59:80:99:a0:0a:92:50:42:c0:f4:
ea:b3:e8:02:b3:04:30:a8:d0:dd:2b:d4:b9:5a:05:
e7:6c:f2:df:c8:08:5f:6e:e9:dc:0c:95:13:93:bd:
73:73:71:e4:81:1e:b6:2f:7b:4c:22:b2:5f:4a:af:
a2:a4:89:c6:b4:b9:f5:75:15:c7:30:85:06:06:12:
5b:6c:3d:8f:b5:56:88:51:b9:ba:9e:36:f7:59:68:
84:39:bd:09:a8:af:cd:a9:d0:0e:fb:ef:98:66:c9:
5d:f0:69:b4:08:54:4e:cf:20:2d:55:0d:f7:b3:a9:
8f:7c:20:56:72:76:f4:9b:6b:77:e0:f2:47:d3:7f:
c9:5a:1c:86:0e:a4:4f:75:f8:e2:53:d2:61:20:c5:
14:21:a3:76:cf:3c:a9:0c:53:9b:93:6f:1e:34:55:
55:04:b0:93:d2:a8:dd:e8:77:a1:cf:79:0c:28:a3:
10:7f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0C:F0:C0:C1:8C:46:3C:EE:E1:44:75:1C:91:1E:A8:E5:70:81:34:AB
X509v3 Authority Key Identifier:
keyid:BB:B8:65:FD:6D:FA:AB:A7:71:24:9B:7E:BA:E8:EB:D5:28:0A:0C:97
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/u7hl_W36q6dxJJt-uujr1SgKDJc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4a/43bb94-94c6-4dad-a372-5fcfa421975c/1/u7hl_W36q6dxJJt-uujr1SgKDJc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4a/43bb94-94c6-4dad-a372-5fcfa421975c/1/u7hl_W36q6dxJJt-uujr1SgKDJc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
90:ac:6e:5a:40:f6:08:93:f5:9d:b7:9f:7a:38:47:bc:4f:fd:
67:3b:bb:da:a5:3a:d8:fe:52:4e:db:b9:f4:4b:38:e6:82:a3:
27:de:f3:31:47:e0:68:e2:1d:2f:1a:e2:42:12:06:72:78:fe:
61:17:ac:66:34:cf:79:80:3d:16:a7:d9:8b:19:39:89:6a:05:
91:3f:13:3c:d4:ad:5b:9d:b4:74:3e:d5:7d:29:2a:4c:d2:7c:
e9:08:71:f0:70:e2:de:33:2b:4b:33:42:43:6b:90:e9:08:0f:
91:84:91:bc:f0:bd:c8:1d:da:c0:b6:67:88:4d:84:d6:a5:39:
86:18:63:93:14:d0:bf:0b:96:54:c6:1f:21:b8:22:dd:4b:69:
13:8a:2a:a8:e1:1a:3f:35:7f:a8:35:35:f5:3b:71:9f:6a:a3:
5b:2c:50:f8:77:f0:4b:ae:d0:08:8e:8a:4b:9d:82:da:8f:07:
2c:dc:87:1c:8b:47:b6:37:a6:55:3d:4a:dc:c0:46:5b:ed:47:
97:44:f8:28:d1:e8:bf:67:8b:e7:0f:7a:dd:86:e2:03:3d:13:
12:ec:3a:3d:79:ea:d0:18:8e:16:cb:1c:59:d7:6a:3e:f3:73:
c8:80:23:3c:60:00:00:75:6b:79:d4:2d:5c:8e:6e:ab:12:55:
9a:24:b5:12
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZiIDi/R+InY4N+FQKZjbupNMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGJiYjg2NWZkNmRmYWFiYTc3MTI0OWI3ZWJhZThlYmQ1Mjgw
YTBjOTcwHhcNMjUwODA4MDUwMTI3WhcNMjUwODA5MDUwMTI3WjAzMTEwLwYDVQQD
EygwY2YwYzBjMThjNDYzY2VlZTE0NDc1MWM5MTFlYThlNTcwODEzNGFiMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwErnwecOVKWOWX1Xmualuz37AYwK
GD6/6fUqDrMY+VEO4oRLa56smlSgkTtEtj6sIZ/+Age0+LbnlT8URVF7WoL4haSc
rx1YFL4o9VqtCFmAmaAKklBCwPTqs+gCswQwqNDdK9S5WgXnbPLfyAhfbuncDJUT
k71zc3HkgR62L3tMIrJfSq+ipInGtLn1dRXHMIUGBhJbbD2PtVaIUbm6njb3WWiE
Ob0JqK/NqdAO+++YZsld8Gm0CFROzyAtVQ33s6mPfCBWcnb0m2t34PJH03/JWhyG
DqRPdfjiU9JhIMUUIaN2zzypDFObk28eNFVVBLCT0qjd6Hehz3kMKKMQfwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFAzwwMGMRjzu4UR1HJEeqOVwgTSrMB8GA1UdIwQY
MBaAFLu4Zf1t+quncSSbfrro69UoCgyXMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvdTdobF9XMzZxNmR4Skp0LXV1anIxU2dLREpjLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80YS80M2JiOTQtOTRjNi00ZGFkLWEzNzIt
NWZjZmE0MjE5NzVjLzEvdTdobF9XMzZxNmR4Skp0LXV1anIxU2dLREpjLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC80YS80M2JiOTQtOTRjNi00ZGFkLWEzNzItNWZjZmE0MjE5NzVj
LzEvdTdobF9XMzZxNmR4Skp0LXV1anIxU2dLREpjLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAkKxuWkD2
CJP1nbefejhHvE/9Zzu72qU62P5STtu59Es45oKjJ97zMUfgaOIdLxriQhIGcnj+
YResZjTPeYA9FqfZixk5iWoFkT8TPNStW520dD7VfSkqTNJ86Qhx8HDi3jMrSzNC
Q2uQ6QgPkYSRvPC9yB3awLZniE2E1qU5hhhjkxTQvwuWVMYfIbgi3UtpE4oqqOEa
PzV/qDU19Ttxn2qjWyxQ+HfwS67QCI6KS52C2o8HLNyHHItHtjemVT1K3MBGW+1H
l0T4KNHov2eL5w963YbiAz0TEuw6PXnq0BiOFsscWddqPvNzyIAjPGAAAHVredQt
XI5uqxJVmiS1Eg==
-----END CERTIFICATE-----
Generated at Fri Aug 8 13:05:02 2025 by rpki-client