Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/90/76a60e-0d81-4c41-b889-91fc0f51ea07/1/UUtNPv-4vQsTNu68uCe3fhKeD28.mft
File: UUtNPv-4vQsTNu68uCe3fhKeD28.mft (raw, json)
Hash identifier: neRcdDTj9ImXewaZQTwnyVfgH/+2CWS7Bv0YWowG5EA=
Subject key identifier: 13:23:A1:DF:E6:9C:14:BA:CA:99:D5:26:68:B1:F1:4D:2D:E6:20:E6
Authority key identifier: 51:4B:4D:3E:FF:B8:BD:0B:13:36:EE:BC:B8:27:B7:7E:12:9E:0F:6F
Certificate issuer: /CN=514b4d3effb8bd0b1336eebcb827b77e129e0f6f
Certificate serial: 01976EBE12B323F2C83478B0F99C3630C6F4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UUtNPv-4vQsTNu68uCe3fhKeD28.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/90/76a60e-0d81-4c41-b889-91fc0f51ea07/1/UUtNPv-4vQsTNu68uCe3fhKeD28.mft
Manifest number: 09FB
Signing time: Sat 14 Jun 2025 14:00:39 +0000
Manifest this update: Sat 14 Jun 2025 14:00:39 +0000
Manifest next update: Sun 15 Jun 2025 14:00:39 +0000
Files and hashes: 1: DkmUUaZoynIEdlR9hMmyYSS3NfA.roa (hash: JaWDKrMwIijsWs6TG8arC0MUQjJ3dz0V76FJO19Gqec=)
2: UUtNPv-4vQsTNu68uCe3fhKeD28.crl (hash: giFDkarek/vJxtN5o6U0A6bTxGe9Rc/1N1hCsue27Kw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/90/76a60e-0d81-4c41-b889-91fc0f51ea07/1/UUtNPv-4vQsTNu68uCe3fhKeD28.crl
rsync://rpki.ripe.net/repository/DEFAULT/90/76a60e-0d81-4c41-b889-91fc0f51ea07/1/UUtNPv-4vQsTNu68uCe3fhKeD28.mft
rsync://rpki.ripe.net/repository/DEFAULT/UUtNPv-4vQsTNu68uCe3fhKeD28.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 15 Jun 2025 14:00:39 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:6e:be:12:b3:23:f2:c8:34:78:b0:f9:9c:36:30:c6:f4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=514b4d3effb8bd0b1336eebcb827b77e129e0f6f
Validity
Not Before: Jun 14 14:00:39 2025 GMT
Not After : Jun 15 14:00:39 2025 GMT
Subject: CN=1323a1dfe69c14baca99d52668b1f14d2de620e6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:97:27:a6:22:10:c7:76:fe:eb:d0:4b:71:64:07:
96:b2:46:73:92:54:4e:25:6a:ec:9c:b8:48:69:42:
ce:21:2f:83:a2:96:69:e7:8b:68:5c:8f:72:7f:05:
f6:09:d0:fc:e4:03:e4:41:00:f4:ec:f9:65:fb:8c:
ce:e7:05:d9:1d:f9:85:57:fd:b5:78:0f:96:e7:96:
2b:fb:c7:0c:e5:f9:43:fd:10:8e:94:52:00:18:38:
20:3e:29:c9:aa:9a:45:42:22:09:a0:e4:95:a8:63:
15:8e:99:c8:4e:8f:de:93:b9:c6:5e:6c:96:59:42:
de:c9:6a:27:30:d3:76:52:6c:c2:58:a9:77:57:dd:
17:7b:89:18:5a:d7:4e:2c:64:b5:c2:b1:a4:fb:bf:
76:5c:a3:73:07:41:26:93:58:5f:ab:27:bc:24:90:
73:13:98:0d:f9:c2:8e:e7:47:3f:84:dc:8f:5b:35:
dc:53:25:5b:7e:a0:d6:aa:4e:9c:4c:c5:4f:ec:cd:
6a:c4:7d:92:b7:e6:82:11:f1:3b:91:5d:e3:02:96:
b2:26:67:b7:51:95:09:bb:b3:b0:d8:ac:b9:f7:76:
9e:1e:9c:dc:6d:f6:c2:af:80:e3:ee:96:2f:e2:40:
45:c5:4f:73:af:df:f2:83:d2:d6:c9:38:bc:49:90:
51:83
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
13:23:A1:DF:E6:9C:14:BA:CA:99:D5:26:68:B1:F1:4D:2D:E6:20:E6
X509v3 Authority Key Identifier:
keyid:51:4B:4D:3E:FF:B8:BD:0B:13:36:EE:BC:B8:27:B7:7E:12:9E:0F:6F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UUtNPv-4vQsTNu68uCe3fhKeD28.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/90/76a60e-0d81-4c41-b889-91fc0f51ea07/1/UUtNPv-4vQsTNu68uCe3fhKeD28.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/90/76a60e-0d81-4c41-b889-91fc0f51ea07/1/UUtNPv-4vQsTNu68uCe3fhKeD28.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
68:91:b7:c3:43:56:d3:4f:a6:78:18:17:e2:a1:8a:d7:e9:c5:
58:1a:59:f0:20:09:68:43:5c:2b:69:39:91:e1:0c:ca:ec:23:
78:47:8e:ce:c6:15:37:33:b7:56:92:30:9e:ec:0f:64:fc:82:
48:b1:27:d0:3b:34:71:e1:a5:50:21:49:7f:26:aa:66:c5:e9:
4c:19:2d:8d:6b:52:f8:09:58:89:22:b8:f5:c7:00:27:4f:a8:
fb:cc:b7:3b:09:f8:9b:24:a4:20:16:c3:a8:51:2b:07:53:f8:
c9:e5:41:54:d7:0f:b0:93:cb:f5:7e:16:2a:ca:d8:25:6a:80:
fa:60:13:38:91:79:59:88:9c:92:14:fa:d8:48:7d:23:3e:29:
28:cf:16:97:47:97:88:a8:aa:61:bd:4e:f1:67:76:33:47:58:
b5:f3:86:a6:4d:d3:c2:88:dc:bd:e5:dc:d0:d0:9d:d2:1a:39:
79:33:12:c0:e0:90:26:f1:95:fc:60:4c:72:9e:8c:3b:4f:00:
85:43:94:35:72:e7:ed:b5:48:22:7e:27:27:cb:cf:9e:68:b2:
91:4b:d5:0b:50:dc:1a:1d:d0:37:5f:f9:29:ad:94:54:e1:84:
53:89:49:fc:96:f1:44:76:cf:9e:13:b7:a6:c5:6a:26:77:1a:
cd:87:8c:c1
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZduvhKzI/LINHiw+Zw2MMb0MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDUxNGI0ZDNlZmZiOGJkMGIxMzM2ZWViY2I4MjdiNzdlMTI5
ZTBmNmYwHhcNMjUwNjE0MTQwMDM5WhcNMjUwNjE1MTQwMDM5WjAzMTEwLwYDVQQD
EygxMzIzYTFkZmU2OWMxNGJhY2E5OWQ1MjY2OGIxZjE0ZDJkZTYyMGU2MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAlyemIhDHdv7r0EtxZAeWskZzklRO
JWrsnLhIaULOIS+DopZp54toXI9yfwX2CdD85APkQQD07Pll+4zO5wXZHfmFV/21
eA+W55Yr+8cM5flD/RCOlFIAGDggPinJqppFQiIJoOSVqGMVjpnITo/ek7nGXmyW
WULeyWonMNN2UmzCWKl3V90Xe4kYWtdOLGS1wrGk+792XKNzB0Emk1hfqye8JJBz
E5gN+cKO50c/hNyPWzXcUyVbfqDWqk6cTMVP7M1qxH2St+aCEfE7kV3jApayJme3
UZUJu7Ow2Ky593aeHpzcbfbCr4Dj7pYv4kBFxU9zr9/yg9LWyTi8SZBRgwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFBMjod/mnBS6ypnVJmix8U0t5iDmMB8GA1UdIwQY
MBaAFFFLTT7/uL0LEzbuvLgnt34Sng9vMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvVVV0TlB2LTR2UXNUTnU2OHVDZTNmaEtlRDI4LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC85MC83NmE2MGUtMGQ4MS00YzQxLWI4ODkt
OTFmYzBmNTFlYTA3LzEvVVV0TlB2LTR2UXNUTnU2OHVDZTNmaEtlRDI4Lm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC85MC83NmE2MGUtMGQ4MS00YzQxLWI4ODktOTFmYzBmNTFlYTA3
LzEvVVV0TlB2LTR2UXNUTnU2OHVDZTNmaEtlRDI4LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAaJG3w0NW
00+meBgX4qGK1+nFWBpZ8CAJaENcK2k5keEMyuwjeEeOzsYVNzO3VpIwnuwPZPyC
SLEn0Ds0ceGlUCFJfyaqZsXpTBktjWtS+AlYiSK49ccAJ0+o+8y3Own4mySkIBbD
qFErB1P4yeVBVNcPsJPL9X4WKsrYJWqA+mATOJF5WYickhT62Eh9Iz4pKM8Wl0eX
iKiqYb1O8Wd2M0dYtfOGpk3TwojcveXc0NCd0ho5eTMSwOCQJvGV/GBMcp6MO08A
hUOUNXLn7bVIIn4nJ8vPnmiykUvVC1DcGh3QN1/5Ka2UVOGEU4lJ/JbxRHbPnhO3
psVqJncazYeMwQ==
-----END CERTIFICATE-----
Generated at Sun Jun 15 00:35:53 2025 by rpki-client