Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0b/a3735a-eccc-41d7-b723-e01237b5fc10/1/UFzWGp9t6drMDTySFwbffVCvvW8.mft
File: UFzWGp9t6drMDTySFwbffVCvvW8.mft (raw, json)
Hash identifier: CHgxCkiCaSbeJbn5C5+piCE46/niBNOCqQ/9akSneOE=
Subject key identifier: F7:79:CF:7D:1E:3E:CA:13:90:BF:5B:4D:1C:E9:5D:77:58:D8:98:C7
Authority key identifier: 50:5C:D6:1A:9F:6D:E9:DA:CC:0D:3C:92:17:06:DF:7D:50:AF:BD:6F
Certificate issuer: /CN=505cd61a9f6de9dacc0d3c921706df7d50afbd6f
Certificate serial: 0197B7455E86DF4201C125F00AB1ADEE9F5D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UFzWGp9t6drMDTySFwbffVCvvW8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0b/a3735a-eccc-41d7-b723-e01237b5fc10/1/UFzWGp9t6drMDTySFwbffVCvvW8.mft
Manifest number: 0C09
Signing time: Sat 28 Jun 2025 16:01:06 +0000
Manifest this update: Sat 28 Jun 2025 16:01:06 +0000
Manifest next update: Sun 29 Jun 2025 16:01:06 +0000
Files and hashes: 1: 02fZd277xqKcuTMYmhFfbwx9HwA.roa (hash: bemKy7xu5/Ii5zazW11+IHavu8JMVH9QIzpKn7l6Pf4=)
2: UFzWGp9t6drMDTySFwbffVCvvW8.crl (hash: nQGjiEG8swJQA1iH6EhbtNYNVwYgu69lNRmjB3QP05k=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0b/a3735a-eccc-41d7-b723-e01237b5fc10/1/UFzWGp9t6drMDTySFwbffVCvvW8.crl
rsync://rpki.ripe.net/repository/DEFAULT/0b/a3735a-eccc-41d7-b723-e01237b5fc10/1/UFzWGp9t6drMDTySFwbffVCvvW8.mft
rsync://rpki.ripe.net/repository/DEFAULT/UFzWGp9t6drMDTySFwbffVCvvW8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 10:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b7:45:5e:86:df:42:01:c1:25:f0:0a:b1:ad:ee:9f:5d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=505cd61a9f6de9dacc0d3c921706df7d50afbd6f
Validity
Not Before: Jun 28 16:01:06 2025 GMT
Not After : Jun 29 16:01:06 2025 GMT
Subject: CN=f779cf7d1e3eca1390bf5b4d1ce95d7758d898c7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:f3:64:01:36:72:b3:31:16:d6:32:37:6c:69:
28:54:80:a7:56:95:8c:22:2c:1f:bf:58:e8:ec:e0:
34:ea:6f:55:8a:fa:83:1d:2b:7a:73:7b:45:bb:11:
e2:5d:65:88:ce:79:ca:85:64:25:c3:17:5e:dc:b8:
e9:4e:8c:ef:3e:20:05:0d:b5:4b:e4:28:2f:0a:05:
90:6a:64:6b:e2:d2:03:00:33:25:36:24:23:a2:48:
cd:c8:1a:68:29:4d:42:7b:c7:9c:8e:75:71:a5:e7:
38:14:62:dc:ba:a2:ce:d0:bc:a6:c6:4f:d7:c2:58:
25:a9:cf:33:91:b1:24:cf:1b:95:b4:db:a2:19:f8:
4c:47:a0:64:83:d6:e9:33:1b:d4:e4:6a:d5:28:71:
8c:31:1b:62:e6:b9:f4:17:ae:9e:fd:4b:cb:04:c0:
15:7b:87:e1:32:93:2c:6c:f9:53:f8:5f:ea:f3:21:
89:1b:91:9f:96:ec:27:73:43:59:75:39:ea:ac:88:
88:28:17:81:a2:e8:f6:cd:11:49:8e:41:67:04:39:
77:4b:a6:14:02:f1:b0:45:fa:d2:89:9b:d6:c0:74:
2c:ad:72:65:e4:d5:af:91:69:83:6f:25:08:9d:34:
9c:d3:b7:8a:24:01:f2:d9:25:57:c6:48:8b:a4:c5:
94:29
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F7:79:CF:7D:1E:3E:CA:13:90:BF:5B:4D:1C:E9:5D:77:58:D8:98:C7
X509v3 Authority Key Identifier:
keyid:50:5C:D6:1A:9F:6D:E9:DA:CC:0D:3C:92:17:06:DF:7D:50:AF:BD:6F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UFzWGp9t6drMDTySFwbffVCvvW8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0b/a3735a-eccc-41d7-b723-e01237b5fc10/1/UFzWGp9t6drMDTySFwbffVCvvW8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0b/a3735a-eccc-41d7-b723-e01237b5fc10/1/UFzWGp9t6drMDTySFwbffVCvvW8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
81:44:a7:ff:00:14:cf:33:20:d7:4e:4f:0f:6b:42:92:57:0c:
3d:1d:ab:c5:6b:bc:7b:8e:23:5b:22:99:78:bc:aa:a0:b0:4c:
56:10:26:36:fb:bb:0f:eb:32:27:54:19:b5:e8:92:e3:b0:fb:
59:8f:15:39:95:4d:b5:9a:8b:8e:25:e1:03:9f:52:c6:e6:83:
a7:75:11:97:8b:61:50:2a:78:44:56:46:a1:cc:2a:ad:1f:87:
a7:b2:54:15:f7:b0:99:19:ee:02:c1:e3:ab:ea:67:1a:0d:a5:
73:22:82:32:ff:eb:20:42:7f:e2:b7:18:df:2e:9e:09:df:f2:
24:a2:51:51:b4:b2:8c:a1:ed:95:2e:c2:24:44:9d:af:98:7c:
6d:a4:f6:9a:8b:01:10:84:f4:18:3b:02:af:b9:01:84:65:b8:
0d:92:f8:8a:8f:43:37:3f:00:e8:7b:27:3f:c9:cd:8c:bd:9e:
10:74:2c:48:4f:5e:94:a5:37:b4:1d:fb:7e:77:f9:95:1b:f7:
6e:f4:55:ba:5b:2d:83:ad:42:d7:e4:45:3b:31:09:dd:e2:73:
67:ab:cd:57:8b:f9:09:4f:46:99:2a:3a:4f:43:db:5b:dc:fc:
db:54:5d:7a:3f:8f:45:8a:d0:fc:a3:dd:5e:a9:57:8f:16:91:
3c:74:21:c8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 28 19:19:31 2025 by rpki-client