Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/72/8b400d-1e8e-40da-b1d6-a6541ceb1e43/1/UjLUTZ4IyHPbNcAhUcpErlS0uK8.mft
File: UjLUTZ4IyHPbNcAhUcpErlS0uK8.mft (raw, json)
Hash identifier: GCZFxIFLwiopy/APmnj1zrTGmeiN3qYslTrLnQzyTHE=
Subject key identifier: C3:09:C2:6F:08:16:2F:D4:FB:4F:82:EC:B3:6B:18:F5:67:F4:84:85
Authority key identifier: 52:32:D4:4D:9E:08:C8:73:DB:35:C0:21:51:CA:44:AE:54:B4:B8:AF
Certificate issuer: /CN=5232d44d9e08c873db35c02151ca44ae54b4b8af
Certificate serial: 01976D06608F7F2F8C8538DFF9968491D6B2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UjLUTZ4IyHPbNcAhUcpErlS0uK8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/72/8b400d-1e8e-40da-b1d6-a6541ceb1e43/1/UjLUTZ4IyHPbNcAhUcpErlS0uK8.mft
Manifest number: 12F0
Signing time: Sat 14 Jun 2025 06:00:23 +0000
Manifest this update: Sat 14 Jun 2025 06:00:23 +0000
Manifest next update: Sun 15 Jun 2025 06:00:23 +0000
Files and hashes: 1: MggUNL8VW9yE4LnaTyr5YJxrDwU.roa (hash: GpA5vo0L4EKCpZl/rQZR5bRixQFok1LnqW2Xg8KUiaQ=)
2: UjLUTZ4IyHPbNcAhUcpErlS0uK8.crl (hash: ZUp2QL58nToFpqZFtKUs8ERpkPFtLOWHQuPL7XjbgYg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/72/8b400d-1e8e-40da-b1d6-a6541ceb1e43/1/UjLUTZ4IyHPbNcAhUcpErlS0uK8.crl
rsync://rpki.ripe.net/repository/DEFAULT/72/8b400d-1e8e-40da-b1d6-a6541ceb1e43/1/UjLUTZ4IyHPbNcAhUcpErlS0uK8.mft
rsync://rpki.ripe.net/repository/DEFAULT/UjLUTZ4IyHPbNcAhUcpErlS0uK8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 15 Jun 2025 01:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:6d:06:60:8f:7f:2f:8c:85:38:df:f9:96:84:91:d6:b2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5232d44d9e08c873db35c02151ca44ae54b4b8af
Validity
Not Before: Jun 14 06:00:23 2025 GMT
Not After : Jun 15 06:00:23 2025 GMT
Subject: CN=c309c26f08162fd4fb4f82ecb36b18f567f48485
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:49:ee:6b:3b:f2:a8:7a:95:91:ea:b6:41:d0:
3f:fe:e7:0e:cd:80:8e:1b:5f:6d:52:87:45:9e:0f:
7f:40:0b:e2:58:8d:ca:7e:a3:be:d4:04:5f:c9:c7:
e9:e7:d5:95:63:f6:59:47:00:ec:53:16:84:b6:7a:
7d:99:59:33:9a:29:9a:6f:c5:66:34:6e:c0:05:7c:
11:fb:5a:eb:dd:72:84:10:87:ec:e4:06:27:5c:bf:
a4:8d:99:88:05:40:04:77:e3:55:37:e5:ab:9c:98:
d0:8c:38:d7:13:36:09:cd:f0:ec:40:de:ca:b2:39:
63:89:e4:a7:36:98:19:dc:4d:fb:2d:fa:c9:cd:30:
d3:09:56:a5:9d:57:57:d9:2b:a9:c5:b9:fe:fd:9b:
e2:56:85:ec:3f:12:67:50:08:a7:84:0a:d8:ee:c6:
b0:7b:03:d8:72:3e:7f:54:6e:15:0a:b4:7f:1e:d6:
0a:49:3d:0c:e8:e3:71:78:39:5a:70:40:cf:ef:49:
88:1c:62:3a:92:35:21:09:e8:82:63:2d:11:8c:be:
ab:ab:e7:b4:6c:8d:18:64:f0:ca:6a:a6:7d:d6:75:
77:8e:1f:12:49:4a:51:04:a0:0a:21:ce:28:35:7c:
38:31:30:dd:26:c1:3a:4e:28:17:69:a1:89:03:35:
d9:3d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C3:09:C2:6F:08:16:2F:D4:FB:4F:82:EC:B3:6B:18:F5:67:F4:84:85
X509v3 Authority Key Identifier:
keyid:52:32:D4:4D:9E:08:C8:73:DB:35:C0:21:51:CA:44:AE:54:B4:B8:AF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UjLUTZ4IyHPbNcAhUcpErlS0uK8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/72/8b400d-1e8e-40da-b1d6-a6541ceb1e43/1/UjLUTZ4IyHPbNcAhUcpErlS0uK8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/72/8b400d-1e8e-40da-b1d6-a6541ceb1e43/1/UjLUTZ4IyHPbNcAhUcpErlS0uK8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
9c:ce:34:6a:03:55:e5:4d:b3:65:ee:4e:64:93:43:d8:40:0e:
90:0f:39:20:82:39:ff:c1:3a:a6:63:15:e8:b5:5f:00:47:7a:
ad:46:99:a4:29:a4:3e:da:44:17:dd:33:42:ef:b7:08:6b:0f:
09:a4:a5:76:17:ee:f2:bb:68:08:4b:68:24:07:a4:d2:e2:9c:
ec:62:c4:5f:03:02:7d:3d:99:18:b7:e7:81:26:2e:27:4a:85:
6b:b2:ae:81:55:27:ef:c9:29:15:33:84:9b:a6:a9:59:85:64:
7b:db:4f:c5:c7:03:02:06:a3:06:f8:b2:4d:7c:29:f2:31:fc:
13:14:38:f5:b8:93:d4:5c:bd:f0:e4:70:1d:f3:45:44:8e:02:
89:69:13:c2:a4:b4:be:41:03:b7:1f:1b:78:f8:3a:66:fc:e9:
0d:7c:d3:9f:20:91:d7:c5:7b:a0:58:f1:6a:db:2d:f6:b2:ac:
97:7c:86:01:26:da:b1:46:91:a6:12:f7:31:8f:dd:4f:41:71:
85:0e:3f:82:96:21:09:01:f3:1f:41:7c:87:ad:e4:4f:dd:ce:
3f:86:c9:f2:26:76:e7:47:64:ec:4c:a3:7d:b1:37:09:b8:ec:
d7:74:b8:72:0a:f2:e6:f2:64:5f:1c:98:f7:0b:e9:ec:81:7d:
29:df:d3:23
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 14 12:00:43 2025 by rpki-client