Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/aa/244958-aa2d-478c-b0ff-69efad6c3a80/1/UHeXmaO44PDx48dJjAWjP4X7u80.mft
File: UHeXmaO44PDx48dJjAWjP4X7u80.mft (raw, json)
Hash identifier: TmG1SbKISeOcxXM7bs4VJR2FmbzvOeb9JzKJX2A9/xo=
Subject key identifier: CF:46:17:C6:E1:CC:2F:45:1A:08:FE:C6:B7:95:4E:54:79:09:77:6E
Authority key identifier: 50:77:97:99:A3:B8:E0:F0:F1:E3:C7:49:8C:05:A3:3F:85:FB:BB:CD
Certificate issuer: /CN=50779799a3b8e0f0f1e3c7498c05a33f85fbbbcd
Certificate serial: 01976C2B52AD1E1E7D2C24DD74015D976F38
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UHeXmaO44PDx48dJjAWjP4X7u80.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/aa/244958-aa2d-478c-b0ff-69efad6c3a80/1/UHeXmaO44PDx48dJjAWjP4X7u80.mft
Manifest number: 1455
Signing time: Sat 14 Jun 2025 02:01:07 +0000
Manifest this update: Sat 14 Jun 2025 02:01:07 +0000
Manifest next update: Sun 15 Jun 2025 02:01:07 +0000
Files and hashes: 1: Sy9MkTO2BPRvKPMpsGDN-2TnmTk.roa (hash: Zvh1o0q4voreyVSKOLfHlxnIapN8G7OyPz3tE/wp4Tg=)
2: UHeXmaO44PDx48dJjAWjP4X7u80.crl (hash: UmSqQtvrN/vMwic/V7WCtO52FOyAt9QIlqG4KhVJS3Q=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/aa/244958-aa2d-478c-b0ff-69efad6c3a80/1/UHeXmaO44PDx48dJjAWjP4X7u80.crl
rsync://rpki.ripe.net/repository/DEFAULT/aa/244958-aa2d-478c-b0ff-69efad6c3a80/1/UHeXmaO44PDx48dJjAWjP4X7u80.mft
rsync://rpki.ripe.net/repository/DEFAULT/UHeXmaO44PDx48dJjAWjP4X7u80.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 15 Jun 2025 01:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:6c:2b:52:ad:1e:1e:7d:2c:24:dd:74:01:5d:97:6f:38
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=50779799a3b8e0f0f1e3c7498c05a33f85fbbbcd
Validity
Not Before: Jun 14 02:01:07 2025 GMT
Not After : Jun 15 02:01:07 2025 GMT
Subject: CN=cf4617c6e1cc2f451a08fec6b7954e547909776e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:86:38:15:04:0e:82:cf:97:68:b8:cc:19:a8:cf:
30:44:ee:5f:17:e6:c3:8d:79:6a:ee:db:8c:9d:6d:
38:22:9a:67:02:40:25:c7:53:3b:3d:9c:51:df:04:
b7:f9:fc:42:e5:bf:91:26:82:d2:ad:70:e0:1e:82:
c6:bc:d4:57:ca:af:41:18:97:1e:3e:34:9d:97:cf:
82:75:a2:bf:f3:d9:8f:5a:7c:81:dc:ca:88:9f:cd:
cb:5b:7d:23:63:7a:92:82:b2:bb:9c:3d:32:7d:cf:
0d:22:44:96:37:13:39:87:c6:55:10:9e:78:d4:d2:
85:8c:f9:5e:14:51:09:30:7e:9c:f1:e0:c0:da:46:
a2:20:29:05:69:c7:1c:00:51:d1:c1:24:d0:c1:09:
f0:6f:c9:80:94:47:a0:c7:97:57:b6:e9:17:c0:12:
76:eb:45:6a:06:c7:30:f4:41:32:8d:18:5d:ee:bb:
92:ac:c3:c4:98:96:f4:42:47:6f:c9:24:fa:d2:54:
62:55:f7:54:8b:25:44:11:57:f4:62:ea:48:66:c3:
18:c8:59:1b:9b:41:e8:05:9d:bc:c5:7c:c8:30:3d:
ae:8c:ab:e6:d0:ce:63:d0:e3:4f:59:f7:65:7c:a8:
a1:dc:08:2b:0d:cf:d9:0f:64:82:ad:91:e2:68:5d:
e7:e5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CF:46:17:C6:E1:CC:2F:45:1A:08:FE:C6:B7:95:4E:54:79:09:77:6E
X509v3 Authority Key Identifier:
keyid:50:77:97:99:A3:B8:E0:F0:F1:E3:C7:49:8C:05:A3:3F:85:FB:BB:CD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UHeXmaO44PDx48dJjAWjP4X7u80.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/aa/244958-aa2d-478c-b0ff-69efad6c3a80/1/UHeXmaO44PDx48dJjAWjP4X7u80.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/aa/244958-aa2d-478c-b0ff-69efad6c3a80/1/UHeXmaO44PDx48dJjAWjP4X7u80.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
45:a9:6b:dd:e9:4a:54:ec:55:23:dc:87:c8:b6:75:33:1c:cb:
99:85:c6:98:c9:d4:3c:e7:1e:cc:3b:fc:81:28:91:8e:a3:87:
30:f8:dc:80:d5:b2:06:d8:2f:99:f4:d2:ff:cb:4a:7a:b4:5d:
2a:d1:1d:7c:fc:14:fa:5a:1c:e7:6f:e3:09:d8:b3:c3:2b:68:
b3:a1:e0:95:4c:98:ca:ca:6b:d5:7b:ad:4f:c6:3a:2c:f9:f3:
65:db:30:39:74:7e:4e:6a:0b:a3:bb:2d:67:41:fa:36:e4:62:
0e:2d:79:01:28:18:30:34:09:7e:69:7b:9f:de:42:c9:ea:fd:
4e:cf:96:00:8f:4e:65:6c:e5:fa:74:45:c3:a2:59:84:43:03:
3e:d1:79:c8:e4:12:cd:df:5a:d1:62:03:be:f5:a2:82:26:c8:
f5:c7:00:79:ae:83:3a:88:b0:49:46:3b:36:80:3e:8a:2c:d2:
c7:fc:55:d4:e1:31:84:1a:f2:87:6f:7e:8c:a9:19:b0:70:28:
4c:83:b8:9b:78:43:a7:41:16:28:ec:40:fd:1e:d4:f2:5d:14:
9d:e3:5b:f9:dc:ac:bb:8f:8c:8a:e2:20:e4:b6:c3:ce:23:f6:
d8:bc:65:d8:a5:6d:88:aa:40:bf:55:d9:27:10:75:e0:54:28:
6d:f6:47:bd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 14 09:13:42 2025 by rpki-client