Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fe/472a4d-fcae-4454-9967-02ded9b2e0c9/1/umhZWZeQDe0wDpklcJ2mJ-k_Njo.mft
File: umhZWZeQDe0wDpklcJ2mJ-k_Njo.mft (raw, json)
Hash identifier: 2Z9AfEdaVA+VIV7HqTy28romQMaE+ndEAgKopTDXmDA=
Subject key identifier: F1:7F:C7:2A:57:C6:E4:85:95:3A:C5:56:6B:F9:E7:DE:8E:BB:5A:34
Authority key identifier: BA:68:59:59:97:90:0D:ED:30:0E:99:25:70:9D:A6:27:E9:3F:36:3A
Certificate issuer: /CN=ba68595997900ded300e9925709da627e93f363a
Certificate serial: 01977151383E8E9268DF62A2F3DC2448E31C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/umhZWZeQDe0wDpklcJ2mJ-k_Njo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fe/472a4d-fcae-4454-9967-02ded9b2e0c9/1/umhZWZeQDe0wDpklcJ2mJ-k_Njo.mft
Manifest number: 0E2E
Signing time: Sun 15 Jun 2025 02:00:37 +0000
Manifest this update: Sun 15 Jun 2025 02:00:37 +0000
Manifest next update: Mon 16 Jun 2025 02:00:37 +0000
Files and hashes: 1: Vevc9vrQGyVF5o4NzN0QFHnZAiA.roa (hash: AOWcNE88wNCBWfSzm2+MmaRV4c7usJ5kQGrhyE8Gj6M=)
2: umhZWZeQDe0wDpklcJ2mJ-k_Njo.crl (hash: KvbTO3cfGBV3qQ5CckIoXl7rAIaPsISXPF05urRypXY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/fe/472a4d-fcae-4454-9967-02ded9b2e0c9/1/umhZWZeQDe0wDpklcJ2mJ-k_Njo.crl
rsync://rpki.ripe.net/repository/DEFAULT/fe/472a4d-fcae-4454-9967-02ded9b2e0c9/1/umhZWZeQDe0wDpklcJ2mJ-k_Njo.mft
rsync://rpki.ripe.net/repository/DEFAULT/umhZWZeQDe0wDpklcJ2mJ-k_Njo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 15 Jun 2025 22:19:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:71:51:38:3e:8e:92:68:df:62:a2:f3:dc:24:48:e3:1c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ba68595997900ded300e9925709da627e93f363a
Validity
Not Before: Jun 15 02:00:37 2025 GMT
Not After : Jun 16 02:00:37 2025 GMT
Subject: CN=f17fc72a57c6e485953ac5566bf9e7de8ebb5a34
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:6f:0f:45:12:e5:79:1b:19:a2:24:31:08:a1:
94:50:71:05:f9:f6:69:36:e9:54:32:b6:5c:92:7a:
f4:0a:aa:d6:1a:0b:8d:12:06:e4:dd:0d:1f:87:00:
73:e7:63:c8:6a:83:09:26:cb:1d:dd:cd:ac:45:83:
5a:91:e6:3b:13:0c:97:6f:31:5d:41:67:3e:cc:49:
01:d3:1f:0d:3a:ab:9a:e5:87:84:cf:0a:64:3c:2d:
55:10:39:48:18:92:ea:85:24:f0:1f:2c:2c:34:4d:
f9:fd:10:54:b8:f7:8e:c0:47:01:c0:c8:12:cf:b0:
11:b8:d9:b2:cc:a0:90:f5:a1:d4:f4:26:26:0f:cf:
bf:5a:1b:6b:52:ef:e4:1e:5b:1d:4c:d6:d3:e2:6a:
45:f4:ce:d8:a0:4d:c4:94:72:4f:ce:be:c3:09:16:
78:ab:c4:0b:1f:66:0e:8e:fb:c6:eb:92:b4:19:d8:
88:bb:28:72:49:82:04:64:5c:76:52:c6:23:45:24:
f2:0e:d8:29:a9:42:88:32:da:15:51:e0:14:4f:87:
ab:c6:3a:bc:6f:ef:f4:49:01:56:40:a1:4f:c1:0e:
83:dc:77:f5:bb:16:c8:d8:ec:ff:0c:02:b2:af:db:
dc:60:08:42:71:c4:89:8f:5e:09:bd:32:9b:fc:b0:
b1:89
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F1:7F:C7:2A:57:C6:E4:85:95:3A:C5:56:6B:F9:E7:DE:8E:BB:5A:34
X509v3 Authority Key Identifier:
keyid:BA:68:59:59:97:90:0D:ED:30:0E:99:25:70:9D:A6:27:E9:3F:36:3A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/umhZWZeQDe0wDpklcJ2mJ-k_Njo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fe/472a4d-fcae-4454-9967-02ded9b2e0c9/1/umhZWZeQDe0wDpklcJ2mJ-k_Njo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fe/472a4d-fcae-4454-9967-02ded9b2e0c9/1/umhZWZeQDe0wDpklcJ2mJ-k_Njo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
09:8f:44:01:5f:04:90:4a:7b:51:73:ae:99:e1:db:a7:49:04:
28:66:8e:1a:4d:2f:a6:ce:c8:c6:da:eb:ff:16:ae:99:b0:69:
2a:2b:20:e6:8c:cb:9c:0f:a5:e0:07:85:50:b1:c8:fe:a9:bd:
eb:c4:13:b6:75:0d:52:17:b5:41:df:f8:23:a2:31:9b:57:15:
35:b3:ee:c9:93:9e:05:53:41:55:e9:bf:f7:34:c4:db:36:ff:
d3:b6:87:93:c3:22:45:31:73:70:5d:1b:8f:72:5b:5d:16:20:
ba:b8:1f:69:bc:7d:f9:d6:07:85:89:4e:44:8b:40:02:c1:cc:
db:30:02:b9:57:91:d8:7a:42:aa:fa:ee:3a:b9:2b:25:af:68:
d1:6c:75:cd:4a:ff:ee:ed:47:12:eb:4a:8e:bf:3b:0e:f9:63:
c0:13:4c:d6:af:ce:30:98:af:4c:99:01:f5:a2:9c:76:8f:6c:
5a:2f:df:67:17:23:bd:ef:58:16:78:8f:7a:c3:22:53:ee:85:
d2:e7:d3:5f:3d:09:10:bf:70:a7:18:45:07:3f:5b:1d:f8:af:
f1:3f:6a:cd:ac:fe:39:c9:20:3e:7d:15:d9:e0:00:0f:76:93:
39:d1:17:b7:69:cb:2a:d8:b3:ad:20:e5:d0:0f:97:93:a1:5f:
0c:7b:b7:fa
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 15 07:45:06 2025 by rpki-client