Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d8/847bc8-f7e6-43e0-a5cf-d3e16a163dd3/1/uQ38KmUbXvqywM1ZMi1tO1WQZWM.mft
File: uQ38KmUbXvqywM1ZMi1tO1WQZWM.mft (raw, json)
Hash identifier: cybh7aRFV/Zr7CcR4dCin5E0r4kOZ9YwWAWeqQnEY7w=
Subject key identifier: 28:59:3B:F0:E1:C7:6F:74:0C:79:08:D5:EE:EC:BC:7B:AA:45:12:FE
Authority key identifier: B9:0D:FC:2A:65:1B:5E:FA:B2:C0:CD:59:32:2D:6D:3B:55:90:65:63
Certificate issuer: /CN=b90dfc2a651b5efab2c0cd59322d6d3b55906563
Certificate serial: 0198819E489047DEA6F8A10BEBE636F21921
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/uQ38KmUbXvqywM1ZMi1tO1WQZWM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d8/847bc8-f7e6-43e0-a5cf-d3e16a163dd3/1/uQ38KmUbXvqywM1ZMi1tO1WQZWM.mft
Manifest number: 0A1C
Signing time: Wed 06 Aug 2025 23:01:30 +0000
Manifest this update: Wed 06 Aug 2025 23:01:30 +0000
Manifest next update: Thu 07 Aug 2025 23:01:30 +0000
Files and hashes: 1: FpN3CNrpC7an-iJQGSmMT_sDhCQ.roa (hash: IP5LQBH3slQY1vq5cW96oTpQwzobOGLQLnnmLh+kv0c=)
2: T2xZGAQ2utapiNKAxRkC6LvmPaU.roa (hash: wOG+SGzxtaS4DLVV01zxTU+InL0GZso9vp2F1RAwi2M=)
3: knjugsz4dO-GRlfWjJa4TPEo8dc.roa (hash: pgS04K1pxu870WaArIBezAQBjlsLTOobzOHJ29I84kY=)
4: uQ38KmUbXvqywM1ZMi1tO1WQZWM.crl (hash: kuy4laAPGcScLKjCD70dSMYtH/NXuA7BWg4UM028N8I=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d8/847bc8-f7e6-43e0-a5cf-d3e16a163dd3/1/uQ38KmUbXvqywM1ZMi1tO1WQZWM.crl
rsync://rpki.ripe.net/repository/DEFAULT/d8/847bc8-f7e6-43e0-a5cf-d3e16a163dd3/1/uQ38KmUbXvqywM1ZMi1tO1WQZWM.mft
rsync://rpki.ripe.net/repository/DEFAULT/uQ38KmUbXvqywM1ZMi1tO1WQZWM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 07 Aug 2025 20:46:39 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:81:9e:48:90:47:de:a6:f8:a1:0b:eb:e6:36:f2:19:21
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b90dfc2a651b5efab2c0cd59322d6d3b55906563
Validity
Not Before: Aug 6 23:01:30 2025 GMT
Not After : Aug 7 23:01:30 2025 GMT
Subject: CN=28593bf0e1c76f740c7908d5eeecbc7baa4512fe
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:aa:54:6b:e0:92:9d:3b:fe:29:b8:ff:c3:49:
cc:6a:4c:59:69:d7:e4:af:b1:61:6c:1e:92:29:b6:
37:1e:d7:ba:0c:7d:18:b2:f5:47:0e:5a:dd:ec:5b:
00:d2:09:d2:84:5e:1a:43:74:6e:dd:7f:f8:ca:9f:
b1:5d:6e:91:05:38:2b:9b:49:28:8f:cf:9b:7b:ca:
e5:78:1e:aa:96:b1:f6:be:e5:f4:30:29:25:5e:7c:
13:3a:d9:54:c8:9e:89:0f:95:49:01:c5:4f:56:e4:
58:d5:a5:51:36:ca:d1:91:4f:69:56:cc:a1:44:27:
46:80:6d:c8:1a:77:09:27:90:a4:7b:61:62:af:11:
5f:35:b6:15:c2:a5:63:0b:01:2d:bc:67:06:f4:14:
9f:d7:90:c3:d9:a5:00:56:ff:da:b1:ee:f3:75:43:
f1:a1:64:5c:ce:2c:20:fe:23:21:82:48:eb:88:5c:
1a:18:8b:85:f5:53:4a:5e:1a:32:ea:ce:97:f2:46:
01:e2:03:9e:3a:5b:d3:77:bf:f8:97:91:5f:31:4c:
04:23:a6:88:09:a2:94:72:e5:7b:5e:19:22:40:6b:
8b:d8:97:cd:03:4c:73:e2:e1:89:fd:ca:b9:aa:af:
56:2e:06:4a:9e:5b:dc:ea:ad:a2:09:a0:a0:10:cf:
16:7b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
28:59:3B:F0:E1:C7:6F:74:0C:79:08:D5:EE:EC:BC:7B:AA:45:12:FE
X509v3 Authority Key Identifier:
keyid:B9:0D:FC:2A:65:1B:5E:FA:B2:C0:CD:59:32:2D:6D:3B:55:90:65:63
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/uQ38KmUbXvqywM1ZMi1tO1WQZWM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d8/847bc8-f7e6-43e0-a5cf-d3e16a163dd3/1/uQ38KmUbXvqywM1ZMi1tO1WQZWM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d8/847bc8-f7e6-43e0-a5cf-d3e16a163dd3/1/uQ38KmUbXvqywM1ZMi1tO1WQZWM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
1c:ff:d9:70:82:6c:13:2d:14:0b:c9:9a:b5:02:cf:a1:f4:44:
7e:50:15:b1:8b:f6:e8:a2:24:a1:c2:0d:88:fc:a4:de:ef:69:
f0:01:95:2c:f9:8b:48:e6:2c:00:e4:0d:ed:61:cb:b5:5a:66:
13:68:3e:c7:90:ad:30:0a:d1:24:ea:fa:75:d5:9a:c3:94:26:
b5:13:6c:22:2d:ad:61:f0:ac:f7:e1:1c:eb:1d:6c:af:69:f1:
bf:66:c7:22:33:d4:08:58:6a:f5:0a:4f:5b:47:28:a6:80:3e:
a1:43:5f:5c:ea:db:dc:c1:9a:4c:6e:56:79:ed:84:b6:3c:c2:
77:63:39:14:7b:2f:38:9a:fe:b8:6f:d1:45:ba:62:7c:65:34:
c5:4d:d6:20:d8:81:0f:c7:9b:5e:02:cd:21:c4:92:92:2f:67:
17:7c:d4:5c:10:a4:f3:c7:20:6e:40:cf:86:b2:18:f9:17:2e:
d7:bb:8d:c8:f8:01:4a:07:b4:ef:97:56:ad:78:14:5e:04:99:
ee:ad:49:c3:7a:aa:4c:1f:ff:b1:d2:d0:94:c9:2c:0f:68:26:
f7:cf:11:ff:bb:89:c2:b8:59:74:74:5b:c5:fc:fb:33:1b:70:
e7:12:bc:bd:99:c7:4e:6f:5c:14:0d:cb:2f:bc:b3:a3:33:47:
1e:f6:08:a9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Aug 7 04:25:15 2025 by rpki-client