Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5b/7eb7c3-e34a-4fbc-9272-4c1c57a81ffd/1/uFnbfywuOzq9i_QV8M4f_zNDKew.mft
File: uFnbfywuOzq9i_QV8M4f_zNDKew.mft (raw, json)
Hash identifier: 8GhYBTcmcld4a9Utnlop9PKkisOLRBOtSC/Jul7YX18=
Subject key identifier: 58:0A:D1:0A:E0:A1:E3:8F:57:19:4A:F1:21:7F:E6:67:08:3D:98:E1
Authority key identifier: B8:59:DB:7F:2C:2E:3B:3A:BD:8B:F4:15:F0:CE:1F:FF:33:43:29:EC
Certificate issuer: /CN=b859db7f2c2e3b3abd8bf415f0ce1fff334329ec
Certificate serial: 01988956F2F9592E811164724FF08C2851FF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/uFnbfywuOzq9i_QV8M4f_zNDKew.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5b/7eb7c3-e34a-4fbc-9272-4c1c57a81ffd/1/uFnbfywuOzq9i_QV8M4f_zNDKew.mft
Manifest number: 0D7D
Signing time: Fri 08 Aug 2025 11:00:33 +0000
Manifest this update: Fri 08 Aug 2025 11:00:33 +0000
Manifest next update: Sat 09 Aug 2025 11:00:33 +0000
Files and hashes: 1: KrWaj3PmGUr__R-XWPo-LvjSSzE.roa (hash: D32/8FWqAF1z0NVQywtDopSVNiH+dneRDeaovNlaE+U=)
2: uFnbfywuOzq9i_QV8M4f_zNDKew.crl (hash: LYvseQoGqJkuKOBEU3I6jwiHbSnrMai4j344XS999Tk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5b/7eb7c3-e34a-4fbc-9272-4c1c57a81ffd/1/uFnbfywuOzq9i_QV8M4f_zNDKew.crl
rsync://rpki.ripe.net/repository/DEFAULT/5b/7eb7c3-e34a-4fbc-9272-4c1c57a81ffd/1/uFnbfywuOzq9i_QV8M4f_zNDKew.mft
rsync://rpki.ripe.net/repository/DEFAULT/uFnbfywuOzq9i_QV8M4f_zNDKew.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 09 Aug 2025 11:00:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:89:56:f2:f9:59:2e:81:11:64:72:4f:f0:8c:28:51:ff
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b859db7f2c2e3b3abd8bf415f0ce1fff334329ec
Validity
Not Before: Aug 8 11:00:33 2025 GMT
Not After : Aug 9 11:00:33 2025 GMT
Subject: CN=580ad10ae0a1e38f57194af1217fe667083d98e1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:c2:d9:f4:4a:8e:2d:6d:0b:97:5f:8e:87:ed:
36:3a:93:3e:3e:4a:26:e8:b7:2c:2f:4b:5a:44:72:
b7:cf:3d:6e:4d:62:ad:69:4c:72:10:8b:1e:e3:13:
31:df:40:62:47:78:04:bb:ba:e6:01:c5:84:25:08:
b5:56:42:98:2c:75:86:3b:c2:09:e5:96:8e:13:29:
0e:d8:30:45:ac:4f:2f:3b:5a:77:52:60:67:3f:ad:
8f:48:8b:82:c0:f9:f4:30:b9:60:73:95:3c:41:f8:
51:ee:58:da:39:2a:33:8a:b3:a7:0e:ec:26:67:78:
1c:d7:c1:3a:3b:32:de:e7:e6:00:90:18:69:54:32:
1c:32:71:ea:a2:71:03:1f:68:a3:b9:25:7c:f3:75:
2e:7a:09:dd:62:09:68:a1:ae:58:c2:2a:d5:ac:61:
aa:eb:e3:97:76:77:4b:5b:01:22:07:85:7a:54:18:
d5:20:f5:30:d4:ad:bc:ea:f8:ec:e8:06:cf:a2:c4:
a0:2d:c3:1e:91:ff:36:8a:0d:ae:ca:9b:ea:4a:bd:
a8:3a:2f:b5:5b:e6:47:c2:b4:c0:8f:91:b4:1e:bd:
12:fe:05:f1:ee:b4:ad:6e:a6:ae:b9:48:4f:64:da:
3e:88:6c:4d:ad:02:e0:1b:a4:b9:06:5d:6b:ae:3c:
ed:e1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
58:0A:D1:0A:E0:A1:E3:8F:57:19:4A:F1:21:7F:E6:67:08:3D:98:E1
X509v3 Authority Key Identifier:
keyid:B8:59:DB:7F:2C:2E:3B:3A:BD:8B:F4:15:F0:CE:1F:FF:33:43:29:EC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/uFnbfywuOzq9i_QV8M4f_zNDKew.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5b/7eb7c3-e34a-4fbc-9272-4c1c57a81ffd/1/uFnbfywuOzq9i_QV8M4f_zNDKew.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5b/7eb7c3-e34a-4fbc-9272-4c1c57a81ffd/1/uFnbfywuOzq9i_QV8M4f_zNDKew.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
95:0b:f1:6e:09:a6:2b:73:20:e8:1a:f8:21:f3:d7:d8:13:bd:
f0:1e:33:da:b7:99:2c:4e:18:c0:8d:cf:9c:9c:ac:7d:df:85:
77:9c:02:c2:ae:40:0a:e5:5c:ee:b1:36:35:61:a3:63:1f:8f:
9e:1c:ea:b3:79:b3:92:ee:11:9a:8a:64:6d:dd:c3:f7:8d:c4:
d3:58:6a:89:44:1f:79:16:2d:ab:ce:e0:ab:3c:ea:ac:b6:e8:
1d:27:07:64:3f:67:84:8a:34:67:40:34:91:ce:b9:16:92:31:
62:d0:e6:df:bb:c9:6e:ef:74:ae:2a:50:87:e9:9d:e1:bb:79:
29:c0:55:a7:35:f0:1f:34:4a:ff:d2:7b:81:3a:80:a6:28:15:
2f:ab:65:33:dd:5e:aa:5a:91:b3:cd:e8:47:9d:e7:38:1f:4d:
31:4c:ae:b1:6c:e5:6d:81:3d:10:51:83:9f:a4:96:69:64:7f:
b7:9c:72:62:7a:0f:22:ec:1e:58:59:c5:1d:cf:4c:2a:61:d0:
3e:af:55:7a:41:1c:df:33:28:41:5e:ba:15:af:9f:91:3c:a0:
be:f8:6a:4f:cf:36:4e:e0:89:76:fe:03:7b:86:04:4b:52:86:
02:ee:19:f6:eb:ba:50:20:96:6b:ed:45:be:17:ee:f0:7e:d5:
4f:14:3c:b9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Aug 8 12:51:28 2025 by rpki-client