Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0b/a3735a-eccc-41d7-b723-e01237b5fc10/1/UFzWGp9t6drMDTySFwbffVCvvW8.mft
File: UFzWGp9t6drMDTySFwbffVCvvW8.mft (raw, json)
Hash identifier: vjTLPwNnNnoRQohgNkgKNZzBbMpJFdCxPWLDBUAG9Ko=
Subject key identifier: BD:9B:BC:F4:2C:E8:74:00:08:13:A6:FA:C1:BB:B3:D5:3F:C1:ED:36
Authority key identifier: 50:5C:D6:1A:9F:6D:E9:DA:CC:0D:3C:92:17:06:DF:7D:50:AF:BD:6F
Certificate issuer: /CN=505cd61a9f6de9dacc0d3c921706df7d50afbd6f
Certificate serial: 0198D515897281FD311387C2F92DA4BFCBD7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UFzWGp9t6drMDTySFwbffVCvvW8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0b/a3735a-eccc-41d7-b723-e01237b5fc10/1/UFzWGp9t6drMDTySFwbffVCvvW8.mft
Manifest number: 0C9D
Signing time: Sat 23 Aug 2025 04:00:15 +0000
Manifest this update: Sat 23 Aug 2025 04:00:15 +0000
Manifest next update: Sun 24 Aug 2025 04:00:15 +0000
Files and hashes: 1: 02fZd277xqKcuTMYmhFfbwx9HwA.roa (hash: bemKy7xu5/Ii5zazW11+IHavu8JMVH9QIzpKn7l6Pf4=)
2: UFzWGp9t6drMDTySFwbffVCvvW8.crl (hash: wqzphElc5P4DhicPXgRzVnNtu7lGrqHH9at573Gigds=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0b/a3735a-eccc-41d7-b723-e01237b5fc10/1/UFzWGp9t6drMDTySFwbffVCvvW8.crl
rsync://rpki.ripe.net/repository/DEFAULT/0b/a3735a-eccc-41d7-b723-e01237b5fc10/1/UFzWGp9t6drMDTySFwbffVCvvW8.mft
rsync://rpki.ripe.net/repository/DEFAULT/UFzWGp9t6drMDTySFwbffVCvvW8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 04:00:15 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d5:15:89:72:81:fd:31:13:87:c2:f9:2d:a4:bf:cb:d7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=505cd61a9f6de9dacc0d3c921706df7d50afbd6f
Validity
Not Before: Aug 23 04:00:15 2025 GMT
Not After : Aug 24 04:00:15 2025 GMT
Subject: CN=bd9bbcf42ce874000813a6fac1bbb3d53fc1ed36
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9c:ce:67:81:44:21:a2:08:2f:7f:dd:ec:0e:d2:
f9:76:b0:98:1b:65:4a:c3:e7:65:a9:6c:e1:77:ab:
96:09:c7:d6:79:f6:f0:95:ce:5a:bd:43:88:09:45:
c8:de:70:01:bc:a6:06:f6:b8:b4:e1:b4:4b:b2:a1:
fd:7b:ce:08:04:2f:6e:b2:94:ce:f1:48:ae:cf:29:
ef:d4:16:8e:0a:42:5c:32:6c:1d:52:eb:71:a8:40:
e2:95:2c:f1:00:22:18:c7:16:2b:d5:14:ef:8f:15:
e4:9e:af:28:ac:d9:41:fb:9d:92:65:dc:f2:85:25:
b1:e0:48:ee:8e:21:02:19:6f:02:bd:18:55:a9:92:
a9:57:ad:bf:81:ac:02:0f:04:34:c5:db:7d:bc:ea:
4e:88:2b:6b:a8:b5:93:9f:10:8b:f4:8b:08:f6:45:
87:0a:d7:2e:6e:56:eb:17:ed:52:12:e1:60:a2:2c:
94:be:df:7f:25:66:1a:4d:6e:36:81:2b:48:d4:b5:
8d:45:27:24:2f:32:21:9a:89:72:c1:99:71:61:82:
9f:af:b4:89:f8:f2:26:d7:03:56:0c:11:d6:ab:d0:
ef:60:fc:a4:3a:36:27:83:b6:df:16:d8:7f:f4:7e:
5e:b0:e3:18:39:14:dc:b9:ba:39:82:ff:33:a5:b8:
71:6d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BD:9B:BC:F4:2C:E8:74:00:08:13:A6:FA:C1:BB:B3:D5:3F:C1:ED:36
X509v3 Authority Key Identifier:
keyid:50:5C:D6:1A:9F:6D:E9:DA:CC:0D:3C:92:17:06:DF:7D:50:AF:BD:6F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UFzWGp9t6drMDTySFwbffVCvvW8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0b/a3735a-eccc-41d7-b723-e01237b5fc10/1/UFzWGp9t6drMDTySFwbffVCvvW8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0b/a3735a-eccc-41d7-b723-e01237b5fc10/1/UFzWGp9t6drMDTySFwbffVCvvW8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
7e:34:30:19:22:f0:ca:12:fd:d1:84:c3:a0:17:94:30:5c:5d:
c0:cb:82:91:a0:5e:54:54:30:1d:55:d0:a6:90:77:0d:48:4d:
cc:8d:c1:e9:54:b4:53:ec:0b:97:dc:24:19:ed:b7:a7:63:f7:
23:48:64:da:af:0c:6c:b4:a3:58:45:d9:1a:5f:86:16:50:05:
12:30:52:51:6d:ee:b3:62:99:87:97:f7:7c:44:74:e6:ab:41:
d3:12:4a:bc:e1:82:71:73:ed:9b:63:06:f5:4a:1f:b9:a9:b4:
03:3a:6f:d2:dc:01:4b:4b:e3:b1:03:62:28:54:41:94:a3:67:
25:a8:49:cc:16:f3:c1:85:a1:6b:2b:e7:0b:0a:25:5b:ce:70:
1a:cf:ad:ab:dd:77:8b:0e:71:a0:b1:fb:48:12:84:87:b5:99:
06:3a:1f:8d:d3:f2:44:74:fa:25:e4:26:b8:53:4a:a4:8c:07:
64:4e:84:bc:e5:f6:27:56:29:78:20:77:3b:9f:91:f7:ae:69:
e6:7e:c8:cf:a3:35:e6:33:eb:26:46:14:4b:79:6b:a4:5b:14:
cb:3b:8a:41:ab:e9:7c:08:03:de:d4:41:1a:f4:6b:ca:8c:9c:
b9:9b:a6:ef:28:3e:23:97:4e:96:57:52:80:c6:ab:a2:1e:e4:
04:f8:ef:34
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 11:44:38 2025 by rpki-client