Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/aa/244958-aa2d-478c-b0ff-69efad6c3a80/1/UHeXmaO44PDx48dJjAWjP4X7u80.mft
File: UHeXmaO44PDx48dJjAWjP4X7u80.mft (raw, json)
Hash identifier: IHXTip7kWPwmrZgiGSvwy0vH4akz+eRhM+Hq60dNnsM=
Subject key identifier: 58:EE:AC:83:4E:F2:9E:1F:36:F5:4A:AC:0E:18:3A:EA:75:FF:56:52
Authority key identifier: 50:77:97:99:A3:B8:E0:F0:F1:E3:C7:49:8C:05:A3:3F:85:FB:BB:CD
Certificate issuer: /CN=50779799a3b8e0f0f1e3c7498c05a33f85fbbbcd
Certificate serial: 019874BE6C35A963B659EC7F49F8FE257A25
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UHeXmaO44PDx48dJjAWjP4X7u80.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/aa/244958-aa2d-478c-b0ff-69efad6c3a80/1/UHeXmaO44PDx48dJjAWjP4X7u80.mft
Manifest number: 14DE
Signing time: Mon 04 Aug 2025 11:01:33 +0000
Manifest this update: Mon 04 Aug 2025 11:01:33 +0000
Manifest next update: Tue 05 Aug 2025 11:01:33 +0000
Files and hashes: 1: Sy9MkTO2BPRvKPMpsGDN-2TnmTk.roa (hash: Zvh1o0q4voreyVSKOLfHlxnIapN8G7OyPz3tE/wp4Tg=)
2: UHeXmaO44PDx48dJjAWjP4X7u80.crl (hash: zXxOSt55nAmEVsK0Mbb31oj3u4gkNs6NWsNAUbOu/zI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/aa/244958-aa2d-478c-b0ff-69efad6c3a80/1/UHeXmaO44PDx48dJjAWjP4X7u80.crl
rsync://rpki.ripe.net/repository/DEFAULT/aa/244958-aa2d-478c-b0ff-69efad6c3a80/1/UHeXmaO44PDx48dJjAWjP4X7u80.mft
rsync://rpki.ripe.net/repository/DEFAULT/UHeXmaO44PDx48dJjAWjP4X7u80.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 05 Aug 2025 11:01:33 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:74:be:6c:35:a9:63:b6:59:ec:7f:49:f8:fe:25:7a:25
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=50779799a3b8e0f0f1e3c7498c05a33f85fbbbcd
Validity
Not Before: Aug 4 11:01:33 2025 GMT
Not After : Aug 5 11:01:33 2025 GMT
Subject: CN=58eeac834ef29e1f36f54aac0e183aea75ff5652
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:9c:ba:74:98:7c:0d:d0:f1:01:45:47:61:c2:
62:72:55:c9:b4:8c:55:f4:85:b9:f7:f3:25:3f:92:
2d:46:67:30:31:92:f6:42:ae:02:a6:32:10:46:fb:
eb:aa:c6:6c:48:87:f8:db:d6:73:b8:ca:64:03:d3:
ad:a6:2c:d5:6b:d5:ce:00:d4:c5:55:17:4a:57:cc:
6d:b1:32:2d:97:ae:12:34:db:c7:b8:43:ab:a8:e6:
b8:19:83:06:6f:8f:83:37:09:80:6e:68:3f:32:fc:
95:47:9b:b5:11:24:d4:a0:bc:ef:5f:c6:4e:27:19:
11:23:9c:1a:53:b6:37:ad:a9:9d:d0:b2:92:e0:a3:
6b:b0:ba:71:26:49:5c:68:4a:99:ca:dd:fc:df:b3:
89:ee:a5:39:fc:9f:e2:53:16:3b:f7:fa:16:7b:e8:
2c:5f:a2:c2:cc:b2:53:02:b7:bf:2b:37:ce:06:11:
b8:9c:1c:b0:8c:16:f6:f7:a4:4d:02:f8:5a:aa:20:
c9:74:4f:a1:97:ae:be:7c:35:78:80:30:d0:8c:0c:
4e:f8:88:45:85:c9:a7:ab:ad:b3:9e:a4:34:bc:52:
9d:87:de:b3:3e:b0:4b:cb:a0:9c:3f:fd:5f:86:b1:
47:81:d2:e7:8a:b2:a7:fb:8a:67:e0:3e:aa:ee:17:
1d:b9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
58:EE:AC:83:4E:F2:9E:1F:36:F5:4A:AC:0E:18:3A:EA:75:FF:56:52
X509v3 Authority Key Identifier:
keyid:50:77:97:99:A3:B8:E0:F0:F1:E3:C7:49:8C:05:A3:3F:85:FB:BB:CD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UHeXmaO44PDx48dJjAWjP4X7u80.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/aa/244958-aa2d-478c-b0ff-69efad6c3a80/1/UHeXmaO44PDx48dJjAWjP4X7u80.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/aa/244958-aa2d-478c-b0ff-69efad6c3a80/1/UHeXmaO44PDx48dJjAWjP4X7u80.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
69:59:c4:67:14:b2:98:58:fe:c7:2a:e9:e4:15:4f:22:cb:1c:
78:50:56:4a:06:2d:92:1a:3a:ad:fd:83:85:fa:b4:6b:b9:9a:
af:34:8e:e3:4a:10:6e:43:36:95:d4:7c:92:8d:22:bc:89:2b:
26:ad:74:ab:33:ee:dc:07:4e:55:1e:3c:88:70:23:27:80:28:
0f:ef:51:83:9b:a6:51:94:e5:77:9b:af:b2:a5:85:e6:ff:a8:
a9:50:d7:c6:db:69:2c:c4:73:cd:33:6c:fb:15:b1:94:dd:59:
f8:f2:8b:38:d9:4b:2d:e0:52:80:68:6c:b9:fc:ca:1d:c5:42:
94:fd:da:1b:a9:2f:c1:76:2c:d4:eb:23:14:bc:a8:89:50:cb:
66:77:28:cd:fa:8b:5d:ae:2c:51:dd:14:a9:f4:b9:f4:a0:49:
8d:98:0d:7f:a3:bd:ea:76:aa:e5:b1:48:e8:29:e0:25:73:38:
3d:27:e1:ad:12:41:4e:8c:d3:7b:da:d4:e5:c3:f7:83:dd:ce:
72:4c:2c:da:2e:d4:36:15:d5:83:b7:18:81:f4:69:e2:ed:1e:
2b:88:b5:d8:5c:a2:b1:b0:1c:ea:37:4c:1a:b7:88:59:85:e4:
e2:66:71:a1:53:21:ce:49:4c:61:5d:07:35:f9:3d:a5:3f:68:
32:a6:b4:88
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Aug 4 14:01:35 2025 by rpki-client