Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fe/472a4d-fcae-4454-9967-02ded9b2e0c9/1/umhZWZeQDe0wDpklcJ2mJ-k_Njo.mft
File: umhZWZeQDe0wDpklcJ2mJ-k_Njo.mft (raw, json)
Hash identifier: YwzW8aRYRRGijZw/eopMKFAf84r18BsaEzbA7kHKarA=
Subject key identifier: 57:66:8C:55:EF:5A:57:60:EA:83:9D:D7:5D:84:83:1F:09:43:E3:C3
Authority key identifier: BA:68:59:59:97:90:0D:ED:30:0E:99:25:70:9D:A6:27:E9:3F:36:3A
Certificate issuer: /CN=ba68595997900ded300e9925709da627e93f363a
Certificate serial: 0198819E03D3E02BE7D6ED21021F8138EECF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/umhZWZeQDe0wDpklcJ2mJ-k_Njo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fe/472a4d-fcae-4454-9967-02ded9b2e0c9/1/umhZWZeQDe0wDpklcJ2mJ-k_Njo.mft
Manifest number: 0EBB
Signing time: Wed 06 Aug 2025 23:01:13 +0000
Manifest this update: Wed 06 Aug 2025 23:01:13 +0000
Manifest next update: Thu 07 Aug 2025 23:01:13 +0000
Files and hashes: 1: Vevc9vrQGyVF5o4NzN0QFHnZAiA.roa (hash: AOWcNE88wNCBWfSzm2+MmaRV4c7usJ5kQGrhyE8Gj6M=)
2: umhZWZeQDe0wDpklcJ2mJ-k_Njo.crl (hash: i3DpG+xUAs+yyqwKk0Dc5kkY3I1xOEpXGOkWgmE551s=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/fe/472a4d-fcae-4454-9967-02ded9b2e0c9/1/umhZWZeQDe0wDpklcJ2mJ-k_Njo.crl
rsync://rpki.ripe.net/repository/DEFAULT/fe/472a4d-fcae-4454-9967-02ded9b2e0c9/1/umhZWZeQDe0wDpklcJ2mJ-k_Njo.mft
rsync://rpki.ripe.net/repository/DEFAULT/umhZWZeQDe0wDpklcJ2mJ-k_Njo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 07 Aug 2025 20:46:39 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:81:9e:03:d3:e0:2b:e7:d6:ed:21:02:1f:81:38:ee:cf
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ba68595997900ded300e9925709da627e93f363a
Validity
Not Before: Aug 6 23:01:13 2025 GMT
Not After : Aug 7 23:01:13 2025 GMT
Subject: CN=57668c55ef5a5760ea839dd75d84831f0943e3c3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e2:1f:f7:b2:03:30:01:ae:0a:21:c7:3b:3c:b6:
e8:0b:6f:83:9c:d2:91:af:c8:c9:85:bb:6d:29:95:
b7:1e:24:7b:31:a2:d5:af:07:84:a1:b5:4a:37:f6:
5e:53:c2:42:14:dd:f7:00:c7:3d:18:60:eb:9c:59:
39:e8:dc:87:b0:31:69:84:46:85:40:05:48:55:fe:
bc:47:e7:a4:7e:60:dd:b9:ce:90:d6:8e:7d:20:8f:
57:69:f9:13:77:88:45:2e:a5:c0:53:a3:46:91:51:
51:7f:7c:62:f5:e1:c5:f1:82:7e:1b:ab:94:64:23:
11:b0:e6:25:03:94:a4:66:d2:2f:f0:2d:af:5b:3c:
ba:57:72:1d:68:0a:0d:ec:a4:2a:03:19:2d:48:cf:
87:01:84:96:67:f6:c1:57:63:c8:4b:60:a1:aa:4a:
1b:99:bf:6e:ed:ab:15:2f:0d:6b:b5:15:05:32:73:
ff:f5:ec:27:f3:13:a5:3f:e6:24:95:3e:3e:f1:e3:
b1:72:3d:08:02:e7:06:b1:86:8b:c9:a0:d4:c4:b5:
8d:be:35:22:5a:f3:72:e1:1e:07:ed:43:4a:0c:de:
84:58:5b:1f:b4:eb:2b:25:08:b3:27:4f:25:64:0b:
f8:ce:b1:7e:0a:19:19:8d:1a:9e:96:9e:7d:81:4e:
73:ab
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
57:66:8C:55:EF:5A:57:60:EA:83:9D:D7:5D:84:83:1F:09:43:E3:C3
X509v3 Authority Key Identifier:
keyid:BA:68:59:59:97:90:0D:ED:30:0E:99:25:70:9D:A6:27:E9:3F:36:3A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/umhZWZeQDe0wDpklcJ2mJ-k_Njo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fe/472a4d-fcae-4454-9967-02ded9b2e0c9/1/umhZWZeQDe0wDpklcJ2mJ-k_Njo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fe/472a4d-fcae-4454-9967-02ded9b2e0c9/1/umhZWZeQDe0wDpklcJ2mJ-k_Njo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
7a:82:73:97:17:46:67:98:f7:33:64:0c:b3:b0:03:42:99:50:
2e:c1:36:47:61:1b:ee:2f:b8:b9:ab:b9:87:f2:4e:60:83:9a:
4d:73:1c:cf:91:e4:e5:b7:f5:73:74:0a:e8:57:9a:cb:7f:05:
4d:db:52:ed:b3:ae:d6:2f:92:ef:a9:5a:ed:bd:cb:0d:47:b3:
c5:f1:fd:c5:f8:9f:f3:61:5c:01:4f:b0:b3:c4:8f:59:83:ae:
c5:ee:c5:32:06:f8:3e:99:8e:8c:42:2b:c2:7e:cb:d1:28:14:
b8:2e:d2:94:a9:b9:7e:fb:9c:cb:66:13:40:4a:64:4e:97:d4:
96:94:ea:95:9d:08:24:62:3d:ab:4a:8d:a0:bd:62:4f:c1:f0:
ad:22:08:7c:1e:66:7c:db:f7:ef:df:38:42:b5:0c:30:b4:ee:
eb:92:fc:29:58:e6:aa:52:a0:df:a5:1f:78:0b:2b:ea:14:3d:
69:68:a1:9e:79:7d:a9:08:f3:f8:9d:c3:6f:d3:59:d4:a8:5b:
64:05:61:49:01:7e:80:27:6e:25:e1:97:43:56:25:c5:4c:9e:
3f:a8:82:45:a0:73:78:2f:45:8d:86:fc:ce:6c:22:53:ab:50:
a0:0e:12:7c:a9:ff:72:95:97:95:c9:d6:72:04:09:b0:1a:f5:
49:7f:a7:bc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Aug 7 00:35:08 2025 by rpki-client