Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/98/28cb5c-298f-4d8b-815b-e5a3778be3ad/1/umCk2HTZYByBQsNS-AxWpDJ2zUc.mft
File: umCk2HTZYByBQsNS-AxWpDJ2zUc.mft (raw, json)
Hash identifier: LFw4zgK6g6R7Wy4ZFQ1DzYkDsm1ILlre7MMtzG0eTA8=
Subject key identifier: 12:CC:D3:6C:CC:CB:24:70:A9:42:59:01:19:DF:1B:E8:83:C3:F9:59
Authority key identifier: BA:60:A4:D8:74:D9:60:1C:81:42:C3:52:F8:0C:56:A4:32:76:CD:47
Certificate issuer: /CN=ba60a4d874d9601c8142c352f80c56a43276cd47
Certificate serial: 01987298D8F5CB8FB6F275AC89256EC2485B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/umCk2HTZYByBQsNS-AxWpDJ2zUc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/98/28cb5c-298f-4d8b-815b-e5a3778be3ad/1/umCk2HTZYByBQsNS-AxWpDJ2zUc.mft
Manifest number: 1626
Signing time: Mon 04 Aug 2025 01:01:16 +0000
Manifest this update: Mon 04 Aug 2025 01:01:16 +0000
Manifest next update: Tue 05 Aug 2025 01:01:16 +0000
Files and hashes: 1: 5U4MEYVwKErq9FhOsJB89ZvBBuA.roa (hash: NDCcRzRMP/wHXoUUOEq/IXJG3IgwKCj1GS7rUpsjlXY=)
2: 60lbisj9EBvEk8CkvIEbp4prM3I.roa (hash: cqYnW2I6KAO2XW2NYFnEXuAIZkVjJlu5WB2aqpTSh88=)
3: bHZh-gl2BV9HaE6gMvNJJyeNKUs.roa (hash: sDUjjxYqPfgF3z6qcjo8Ch8x8GHsvhm9yqvWs72G0WI=)
4: koXm2_p4F4KWKYlIu0UQERaNMQ8.roa (hash: zXAmEZonvu8xaYLE77bD6JgXELMdseALDrYiTNuQR1E=)
5: qerWJ9N0klhuhzcIgvZSrAumV_Y.roa (hash: /vwvzpt6A9BdPc1JxUloTrK4LVtePi7FvbqVFdA3VF8=)
6: umCk2HTZYByBQsNS-AxWpDJ2zUc.crl (hash: 2wbgB9CuQ4Q4nWaW1bRkKOqy/k5PeR4N8rAO1ltAy7o=)
7: zMnP4SbXXtzO5Qz_HmHXST-lJbc.roa (hash: x/mXpix8fyVF7pfT27hYA7xsa5opQzKkRx7F0dXWqMU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/98/28cb5c-298f-4d8b-815b-e5a3778be3ad/1/umCk2HTZYByBQsNS-AxWpDJ2zUc.crl
rsync://rpki.ripe.net/repository/DEFAULT/98/28cb5c-298f-4d8b-815b-e5a3778be3ad/1/umCk2HTZYByBQsNS-AxWpDJ2zUc.mft
rsync://rpki.ripe.net/repository/DEFAULT/umCk2HTZYByBQsNS-AxWpDJ2zUc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 05 Aug 2025 01:01:16 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:72:98:d8:f5:cb:8f:b6:f2:75:ac:89:25:6e:c2:48:5b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ba60a4d874d9601c8142c352f80c56a43276cd47
Validity
Not Before: Aug 4 01:01:16 2025 GMT
Not After : Aug 5 01:01:16 2025 GMT
Subject: CN=12ccd36ccccb2470a942590119df1be883c3f959
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:3a:85:2e:67:de:06:81:9f:72:5c:89:ef:db:
da:7f:68:70:f1:fd:0e:af:0a:33:a8:22:be:e5:85:
fa:c3:bc:04:8a:8d:42:f5:84:ae:9f:fb:91:e5:26:
3d:ae:e8:6b:3e:a2:e7:02:31:0e:0d:d5:7f:c8:75:
28:b9:2f:bf:de:09:e1:f8:ae:ed:01:65:2d:36:9b:
37:c5:38:9f:82:c3:fe:80:02:5a:4a:e3:2b:ef:a1:
49:48:c9:2d:ba:7c:22:fd:16:91:c1:d7:3b:5f:47:
68:94:d8:7e:49:9d:1e:25:5d:96:2d:7b:1c:b2:b5:
a0:91:cd:f3:7b:24:d2:6d:21:e8:60:78:fd:1d:e8:
33:0c:d8:ef:fc:5b:a9:90:73:ec:13:2f:0c:f0:9a:
e9:e7:07:b7:3f:2c:b7:b4:c7:df:23:94:d3:ef:46:
81:6d:51:31:d8:f2:60:aa:ba:f6:57:fb:dd:8d:89:
2d:e2:94:84:f8:2c:c6:0a:a4:01:a2:9a:f2:7c:b2:
33:c9:5f:9c:11:0d:e9:2f:b7:6b:24:30:1c:eb:f6:
20:24:6a:12:d1:16:fb:3f:bf:10:c0:9a:57:30:ae:
23:3f:19:4b:f2:6e:03:ce:5c:0f:fc:ed:ae:b9:9e:
d7:68:2d:30:63:e8:5e:4c:99:34:53:89:d1:a1:2a:
44:51
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
12:CC:D3:6C:CC:CB:24:70:A9:42:59:01:19:DF:1B:E8:83:C3:F9:59
X509v3 Authority Key Identifier:
keyid:BA:60:A4:D8:74:D9:60:1C:81:42:C3:52:F8:0C:56:A4:32:76:CD:47
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/umCk2HTZYByBQsNS-AxWpDJ2zUc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/98/28cb5c-298f-4d8b-815b-e5a3778be3ad/1/umCk2HTZYByBQsNS-AxWpDJ2zUc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/98/28cb5c-298f-4d8b-815b-e5a3778be3ad/1/umCk2HTZYByBQsNS-AxWpDJ2zUc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
14:0b:2b:96:0d:c1:29:3a:b8:59:dc:92:b3:ff:a2:05:eb:3e:
a4:5a:f2:3a:24:b9:47:40:7a:a7:7c:3a:ad:99:0a:c7:60:c7:
02:68:ec:b5:7e:29:46:a4:7c:f2:b8:cb:e8:8e:9f:70:0f:76:
92:ad:b3:0a:cf:7e:12:9e:be:e6:45:da:84:0a:6a:bd:fe:cc:
bc:11:a3:18:df:ae:93:9e:83:d3:71:86:bc:98:b4:e6:ed:d4:
f4:2e:71:c9:16:6d:1f:d4:7a:8a:9c:bf:61:c8:6c:af:5e:6f:
2b:68:41:ae:69:92:b6:2b:74:98:c9:bd:05:77:32:1d:04:84:
81:eb:5a:ef:cf:b6:d7:09:3e:85:f9:be:be:9c:d9:3f:0f:35:
a7:c6:a7:6a:23:70:5c:8b:ff:7f:16:dd:f8:9c:57:f1:02:0e:
80:ce:96:ac:e5:e7:b1:0f:d0:55:b4:08:13:43:f4:84:b8:06:
65:a5:91:03:d5:d8:ae:72:fb:d0:ec:00:25:e1:d9:e9:e7:a2:
46:8e:82:74:9f:63:c4:92:7b:4e:76:ac:78:33:39:13:9b:11:
e3:0d:1e:13:eb:52:91:06:ce:5a:3c:ed:ff:5d:6d:30:7d:0e:
69:d4:34:bb:ee:cb:02:e6:e8:69:67:dc:18:9c:1a:60:4d:37:
1a:5a:03:8d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Aug 4 11:27:11 2025 by rpki-client