Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b9/fe6904-eb56-4493-929c-1a9df38f5901/1/2UnKuj1DFWB_Sm1ifs4ezqjLwxk.mft
File: 2UnKuj1DFWB_Sm1ifs4ezqjLwxk.mft (raw, json)
Hash identifier: NVF4ZVeCwG5TUTxhEa0vbiwb0yBSQnUhz75rawfTDU8=
Subject key identifier: ED:16:4F:DD:47:DD:76:AE:7B:C8:C6:DA:94:7A:88:CD:5B:7D:ED:B8
Authority key identifier: D9:49:CA:BA:3D:43:15:60:7F:4A:6D:62:7E:CE:1E:CE:A8:CB:C3:19
Certificate issuer: /CN=d949caba3d4315607f4a6d627ece1ecea8cbc319
Certificate serial: 019880F926CA4B1BA6BD794F9F86678177FE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2UnKuj1DFWB_Sm1ifs4ezqjLwxk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b9/fe6904-eb56-4493-929c-1a9df38f5901/1/2UnKuj1DFWB_Sm1ifs4ezqjLwxk.mft
Manifest number: 0B5B
Signing time: Wed 06 Aug 2025 20:01:08 +0000
Manifest this update: Wed 06 Aug 2025 20:01:08 +0000
Manifest next update: Thu 07 Aug 2025 20:01:08 +0000
Files and hashes: 1: 2UnKuj1DFWB_Sm1ifs4ezqjLwxk.crl (hash: dYAviy8NIzSFcWB99uDWtZ5hcyNWvME5VQaiUxLr9aQ=)
2: 9QEKfiqhzH-bmQh5b6rMdNbStYc.roa (hash: MpYTZwjsTnNyFZWB4RSLKA3k60L/jvvVARMaXOoFY4M=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b9/fe6904-eb56-4493-929c-1a9df38f5901/1/2UnKuj1DFWB_Sm1ifs4ezqjLwxk.crl
rsync://rpki.ripe.net/repository/DEFAULT/b9/fe6904-eb56-4493-929c-1a9df38f5901/1/2UnKuj1DFWB_Sm1ifs4ezqjLwxk.mft
rsync://rpki.ripe.net/repository/DEFAULT/2UnKuj1DFWB_Sm1ifs4ezqjLwxk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 07 Aug 2025 20:01:08 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:80:f9:26:ca:4b:1b:a6:bd:79:4f:9f:86:67:81:77:fe
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d949caba3d4315607f4a6d627ece1ecea8cbc319
Validity
Not Before: Aug 6 20:01:08 2025 GMT
Not After : Aug 7 20:01:08 2025 GMT
Subject: CN=ed164fdd47dd76ae7bc8c6da947a88cd5b7dedb8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:92:c6:4c:ab:b4:ec:50:35:f7:dd:89:7c:ff:
00:04:58:d0:97:b7:4f:52:35:73:aa:d5:10:20:42:
f2:0c:e7:e1:61:1d:8f:68:c3:05:ad:4e:b4:31:62:
7e:e6:2c:bd:bb:90:02:e0:95:ed:e9:52:3b:b3:52:
32:e2:67:0d:05:76:44:f0:fa:03:7c:36:ff:c0:a2:
5f:e6:c4:1b:21:a4:d2:e8:e1:a7:f7:ab:9b:bc:24:
22:87:81:18:ac:24:17:66:66:91:63:37:f9:e3:24:
b0:53:31:cd:22:b8:ad:96:cd:c1:f6:63:3e:61:68:
27:6a:2a:d9:09:5d:96:71:77:6c:3b:ac:a4:8c:5d:
cc:df:b3:77:95:e1:f7:c3:3d:8f:8b:e0:bf:49:3b:
52:fd:bc:d5:fa:f7:7e:b8:17:3a:82:20:d7:5f:d6:
63:e6:8f:a5:48:67:9d:c8:42:70:5b:d7:47:91:3f:
3a:1c:0e:c6:26:59:0c:b7:05:b5:06:43:8b:88:a6:
9d:87:a4:a8:45:2a:09:c9:42:d6:f1:6c:c9:2e:2c:
09:c3:ed:fd:78:8a:e3:05:54:78:e8:13:8a:c1:08:
d8:a0:d8:a4:d8:f1:15:10:23:b2:50:77:b1:56:4d:
c3:5e:c2:3f:0e:38:22:c0:7b:63:37:e4:89:40:f0:
65:11
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
ED:16:4F:DD:47:DD:76:AE:7B:C8:C6:DA:94:7A:88:CD:5B:7D:ED:B8
X509v3 Authority Key Identifier:
keyid:D9:49:CA:BA:3D:43:15:60:7F:4A:6D:62:7E:CE:1E:CE:A8:CB:C3:19
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2UnKuj1DFWB_Sm1ifs4ezqjLwxk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b9/fe6904-eb56-4493-929c-1a9df38f5901/1/2UnKuj1DFWB_Sm1ifs4ezqjLwxk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b9/fe6904-eb56-4493-929c-1a9df38f5901/1/2UnKuj1DFWB_Sm1ifs4ezqjLwxk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
46:73:7e:d9:6d:e6:c6:e7:c3:89:33:b7:05:ff:db:7b:ca:0d:
3b:cd:5f:01:aa:28:e2:28:21:96:ae:de:5a:24:97:28:c6:62:
04:e0:48:c2:04:81:c7:c1:74:d7:c9:73:ff:72:38:01:7e:0e:
59:da:9a:69:05:8a:18:1b:cc:92:ff:ad:2f:2d:17:81:ca:31:
e6:ae:8f:c4:5b:ca:97:85:7d:2f:76:98:23:67:e2:13:a0:ce:
a7:cf:74:ab:ef:ad:cf:47:5a:9f:a5:9c:d3:ee:0d:c3:0a:85:
ef:ae:8a:22:61:26:30:ba:e2:76:34:c9:ab:0b:f8:c5:6f:cb:
52:7c:7f:19:fa:20:2f:14:16:08:7b:e7:bc:95:83:01:84:3a:
17:a7:5d:12:a2:2b:5e:23:87:47:70:83:78:f8:6b:82:d7:f3:
a1:1b:ad:68:90:c2:60:37:16:46:2d:0e:44:97:2a:db:c5:c1:
22:17:92:43:c8:25:20:dd:b1:4d:3c:fb:ac:45:fa:61:a8:bf:
bf:88:49:06:53:2b:e3:d6:02:52:c3:0a:85:58:7f:03:f3:4c:
1a:09:6e:13:5b:cb:9f:4f:ce:d0:ae:90:f0:bd:b2:b7:88:12:
39:b0:dd:b2:ce:e2:88:3c:3a:2f:0f:7c:10:6a:90:e3:fc:66:
d7:d0:2b:73
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Aug 7 01:04:02 2025 by rpki-client