Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bd/8819e2-c4e3-4bce-a61c-305d41d53a65/1/uFsMinWJOk-OHvDZpNQUeNizMng.mft
File: uFsMinWJOk-OHvDZpNQUeNizMng.mft (raw, json)
Hash identifier: iO5Db7XHY/k8+9PwJFhPCR+TsFSjsuy5C5/7dyqLYqQ=
Subject key identifier: 09:98:35:5F:ED:E8:93:E5:60:20:42:E8:1D:94:5D:F6:B7:88:18:D1
Authority key identifier: B8:5B:0C:8A:75:89:3A:4F:8E:1E:F0:D9:A4:D4:14:78:D8:B3:32:78
Certificate issuer: /CN=b85b0c8a75893a4f8e1ef0d9a4d41478d8b33278
Certificate serial: 0197699791EBF02EE88D4435893FE2FEF111
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/uFsMinWJOk-OHvDZpNQUeNizMng.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bd/8819e2-c4e3-4bce-a61c-305d41d53a65/1/uFsMinWJOk-OHvDZpNQUeNizMng.mft
Manifest number: 14E3
Signing time: Fri 13 Jun 2025 14:00:30 +0000
Manifest this update: Fri 13 Jun 2025 14:00:30 +0000
Manifest next update: Sat 14 Jun 2025 14:00:30 +0000
Files and hashes: 1: FAbnnF69oHTmqk-_EL74zctuaA4.roa (hash: fltdyHSTKiTHvNl3z1Whswl3hhYadpjXzd/kAG+oHEc=)
2: aJV7GbLDrd2CQzyoG7J6OnTP5DY.roa (hash: RYvSIhl4EMxqFZiyrQ0zAL7ZWanzg67h6dO8KAffWY0=)
3: uFsMinWJOk-OHvDZpNQUeNizMng.crl (hash: xK6HspTuyGPvqmcmAgTnbsfR5CnY2Bw8ZrRW5QQ31q0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/bd/8819e2-c4e3-4bce-a61c-305d41d53a65/1/uFsMinWJOk-OHvDZpNQUeNizMng.crl
rsync://rpki.ripe.net/repository/DEFAULT/bd/8819e2-c4e3-4bce-a61c-305d41d53a65/1/uFsMinWJOk-OHvDZpNQUeNizMng.mft
rsync://rpki.ripe.net/repository/DEFAULT/uFsMinWJOk-OHvDZpNQUeNizMng.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 14 Jun 2025 13:55:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:69:97:91:eb:f0:2e:e8:8d:44:35:89:3f:e2:fe:f1:11
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b85b0c8a75893a4f8e1ef0d9a4d41478d8b33278
Validity
Not Before: Jun 13 14:00:30 2025 GMT
Not After : Jun 14 14:00:30 2025 GMT
Subject: CN=0998355fede893e5602042e81d945df6b78818d1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:5c:7d:f1:ee:60:27:24:20:a9:b0:5d:b0:95:
5d:83:8c:57:25:f3:14:00:df:9e:2e:70:26:e1:fd:
c5:d3:c0:9c:9f:db:41:a8:fd:c6:7e:5e:a0:ec:c0:
ca:6c:87:d5:f4:a1:6e:75:e4:38:11:7e:4c:32:16:
7a:90:b7:86:cf:1f:a8:55:9d:a4:52:f6:b4:af:e7:
d5:90:ec:d8:7e:bb:6d:df:c7:87:c0:17:a5:a9:2a:
37:83:eb:6d:4e:e8:cf:6f:df:4a:b8:b5:6d:8c:6d:
c9:dd:62:62:0c:0e:f4:22:ef:9e:fe:10:4a:ce:13:
56:e0:5a:a6:8a:37:59:36:f0:4e:f0:ea:54:51:48:
d9:21:b4:72:00:3a:61:21:aa:8a:e3:18:ab:fd:cf:
31:ff:f7:76:77:28:3c:c0:c3:cd:0e:97:09:db:c3:
9a:09:0d:27:3b:62:4d:0d:fd:92:3d:df:ca:15:f5:
c2:35:64:2f:62:c0:50:05:13:ea:e4:b3:d3:ce:28:
4e:16:e3:7d:ff:7c:fc:c4:48:85:68:7d:09:3d:92:
3b:d8:55:96:1d:46:86:3f:62:8f:9e:1b:79:6a:99:
d2:99:49:a3:4e:83:8b:5d:c5:83:d3:9a:d9:42:c4:
ae:a7:a1:f4:4d:19:78:00:08:f6:02:d0:bc:48:85:
54:1d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
09:98:35:5F:ED:E8:93:E5:60:20:42:E8:1D:94:5D:F6:B7:88:18:D1
X509v3 Authority Key Identifier:
keyid:B8:5B:0C:8A:75:89:3A:4F:8E:1E:F0:D9:A4:D4:14:78:D8:B3:32:78
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/uFsMinWJOk-OHvDZpNQUeNizMng.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bd/8819e2-c4e3-4bce-a61c-305d41d53a65/1/uFsMinWJOk-OHvDZpNQUeNizMng.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bd/8819e2-c4e3-4bce-a61c-305d41d53a65/1/uFsMinWJOk-OHvDZpNQUeNizMng.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
90:8a:58:ee:7f:2b:91:f0:a5:56:97:61:98:19:4f:95:50:42:
7d:b8:5d:05:3b:e7:0b:29:1e:df:f7:fd:46:b1:f2:41:12:19:
9f:fa:9a:46:2b:c1:d7:bf:1a:7d:2a:f3:96:d5:ac:f1:5b:d8:
01:23:ca:a7:4f:71:3a:a5:3c:c7:5e:8c:a6:87:45:1b:30:a1:
21:f9:2c:90:8b:5f:90:16:22:2c:63:9c:47:cf:d2:05:7e:42:
00:3b:68:bf:ad:7c:85:74:36:46:a2:85:b5:68:e1:ba:86:0e:
18:a1:50:bd:2f:50:5c:cf:8b:f4:83:5c:93:5c:8e:48:60:99:
db:61:7d:8f:6c:56:d0:7e:ee:fc:ad:f6:0d:a2:f4:f5:11:45:
28:21:55:9b:d0:03:26:f5:12:2d:32:83:87:31:65:41:bd:27:
42:88:dc:b8:8e:21:85:f3:a1:c1:c9:73:ac:4e:56:43:57:c8:
8c:12:e0:d1:b7:56:49:12:67:fe:3b:4a:1c:7f:4c:52:74:62:
59:b1:1d:8c:25:11:be:72:ed:d4:31:84:28:ed:16:79:f7:8d:
65:88:d6:4b:a4:1a:ae:9c:41:5c:2a:25:57:a5:8f:a5:c1:90:
dd:fe:9c:8c:df:95:78:a4:45:aa:25:c6:6a:83:1f:57:ba:07:
58:e4:77:ed
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jun 13 19:30:19 2025 by rpki-client