Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bd/8819e2-c4e3-4bce-a61c-305d41d53a65/1/uFsMinWJOk-OHvDZpNQUeNizMng.mft
File: uFsMinWJOk-OHvDZpNQUeNizMng.mft (raw, json)
Hash identifier: VhPXTnqb+4lwGEQ7drzcJo2lYUQOBB2w+rLMdsh2jMA=
Subject key identifier: 60:2B:1B:C8:26:50:88:0C:14:C8:02:92:AE:CE:C4:7B:F6:5C:D9:4F
Authority key identifier: B8:5B:0C:8A:75:89:3A:4F:8E:1E:F0:D9:A4:D4:14:78:D8:B3:32:78
Certificate issuer: /CN=b85b0c8a75893a4f8e1ef0d9a4d41478d8b33278
Certificate serial: 0198819E396B1E8CBD05D77325E5E817CA2F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/uFsMinWJOk-OHvDZpNQUeNizMng.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bd/8819e2-c4e3-4bce-a61c-305d41d53a65/1/uFsMinWJOk-OHvDZpNQUeNizMng.mft
Manifest number: 1574
Signing time: Wed 06 Aug 2025 23:01:26 +0000
Manifest this update: Wed 06 Aug 2025 23:01:26 +0000
Manifest next update: Thu 07 Aug 2025 23:01:26 +0000
Files and hashes: 1: FAbnnF69oHTmqk-_EL74zctuaA4.roa (hash: fltdyHSTKiTHvNl3z1Whswl3hhYadpjXzd/kAG+oHEc=)
2: aJV7GbLDrd2CQzyoG7J6OnTP5DY.roa (hash: RYvSIhl4EMxqFZiyrQ0zAL7ZWanzg67h6dO8KAffWY0=)
3: uFsMinWJOk-OHvDZpNQUeNizMng.crl (hash: hIMTTzMDcmIFC0f4+oC4Oxs8HvtxliBcEvMLWPpTUR8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/bd/8819e2-c4e3-4bce-a61c-305d41d53a65/1/uFsMinWJOk-OHvDZpNQUeNizMng.crl
rsync://rpki.ripe.net/repository/DEFAULT/bd/8819e2-c4e3-4bce-a61c-305d41d53a65/1/uFsMinWJOk-OHvDZpNQUeNizMng.mft
rsync://rpki.ripe.net/repository/DEFAULT/uFsMinWJOk-OHvDZpNQUeNizMng.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 07 Aug 2025 20:46:39 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:81:9e:39:6b:1e:8c:bd:05:d7:73:25:e5:e8:17:ca:2f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b85b0c8a75893a4f8e1ef0d9a4d41478d8b33278
Validity
Not Before: Aug 6 23:01:26 2025 GMT
Not After : Aug 7 23:01:26 2025 GMT
Subject: CN=602b1bc82650880c14c80292aecec47bf65cd94f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e3:6b:95:92:56:52:2c:7f:f3:51:2e:3c:24:45:
e1:9d:e1:82:55:b6:1c:12:4a:4f:f1:70:b9:0e:6d:
cd:7d:fc:30:12:df:e4:38:7f:fa:d3:63:08:ae:31:
72:87:a8:0e:b8:22:d8:c5:3a:78:ba:7b:d4:f7:36:
17:8e:7d:17:e3:fb:a0:ac:0b:3f:7e:cc:b8:c5:10:
ae:57:f7:3c:30:46:d2:05:44:7e:7a:2e:a6:40:d2:
8c:0b:64:0d:4b:e3:79:36:61:dc:8e:e0:85:ae:14:
e7:c8:86:4b:e8:82:d9:57:47:1c:a6:74:7e:16:95:
62:39:33:d2:57:50:9b:e0:7f:25:b1:9b:49:9f:8d:
35:a0:45:ba:6a:0e:53:db:74:17:f9:b0:4a:1b:9a:
8f:27:a1:f3:05:b1:af:93:53:f2:5f:d2:a0:fb:40:
0e:d2:4b:ab:a9:89:e0:0e:a6:db:cd:41:3a:6f:c0:
84:75:52:48:74:06:01:8d:68:e9:3b:72:8f:9e:85:
1c:29:c2:ee:4a:2c:21:28:23:ce:1f:5a:a8:65:b3:
47:b6:bc:d7:b9:50:f4:7f:b1:2f:33:33:f8:2c:bc:
ba:04:11:09:4e:22:dd:0a:3f:e8:ee:38:bc:5a:54:
96:d6:b7:b1:8f:36:56:3d:11:95:f2:8a:5c:a4:83:
20:f1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
60:2B:1B:C8:26:50:88:0C:14:C8:02:92:AE:CE:C4:7B:F6:5C:D9:4F
X509v3 Authority Key Identifier:
keyid:B8:5B:0C:8A:75:89:3A:4F:8E:1E:F0:D9:A4:D4:14:78:D8:B3:32:78
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/uFsMinWJOk-OHvDZpNQUeNizMng.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bd/8819e2-c4e3-4bce-a61c-305d41d53a65/1/uFsMinWJOk-OHvDZpNQUeNizMng.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bd/8819e2-c4e3-4bce-a61c-305d41d53a65/1/uFsMinWJOk-OHvDZpNQUeNizMng.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
b1:56:1a:79:b6:7e:0d:fe:39:02:d7:ef:f9:2a:4b:72:f6:52:
13:e5:2b:18:40:c4:96:fe:c2:69:26:bc:d0:ef:c3:0d:d5:26:
a8:75:42:80:22:59:b2:12:88:a2:28:9f:a9:14:21:0c:64:52:
09:6d:28:ca:f5:c3:43:66:b7:fb:d9:dd:98:c0:bd:e5:7d:1c:
a2:6c:24:61:41:13:aa:e0:ed:96:7a:4b:74:7b:61:02:95:be:
59:32:ca:5d:bd:ee:f7:da:2a:bf:59:d8:de:68:5c:12:51:f0:
e4:02:ad:3c:d3:00:e0:9b:f9:98:43:bd:5a:6f:b4:4f:09:b5:
75:85:f8:77:ab:cf:88:27:78:eb:19:d4:c2:6d:5d:78:b0:8a:
fb:6f:4f:6a:ec:c8:39:12:38:e9:4c:f6:ca:f5:d9:23:84:1b:
90:03:d7:6f:ef:71:9e:3c:f7:fe:72:57:2e:d5:e3:f1:96:fb:
4c:ec:94:c7:37:25:85:97:aa:49:97:fe:91:15:31:33:cc:ee:
36:e4:1a:c9:8c:21:a5:1c:59:8c:1f:de:99:3e:6b:a9:9f:d5:
d5:4c:c0:5c:8c:22:f7:a1:6a:fa:a7:a4:17:94:25:d0:74:a6:
2f:bc:59:a0:23:94:ca:dd:9b:40:3b:b0:ee:f5:af:c8:cd:b8:
1f:d7:e7:39
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Aug 7 01:22:52 2025 by rpki-client