Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0b/f3c5d8-5ea5-482e-931f-29c023f94781/1/uo2tLEoOEXpoaMjWe-EDCKZJdK0.mft
File: uo2tLEoOEXpoaMjWe-EDCKZJdK0.mft (raw, json)
Hash identifier: ITSWbEXupY8ub8JUEuc1i3jPHtQA02oZKNZYavBhSr0=
Subject key identifier: 25:FA:36:5C:15:AD:6A:FB:7F:16:14:7D:F4:06:EF:F6:93:16:26:8E
Authority key identifier: BA:8D:AD:2C:4A:0E:11:7A:68:68:C8:D6:7B:E1:03:08:A6:49:74:AD
Certificate issuer: /CN=ba8dad2c4a0e117a6868c8d67be10308a64974ad
Certificate serial: 0198D4A8397943A605FF2E4A1B225A29C9B8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/uo2tLEoOEXpoaMjWe-EDCKZJdK0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0b/f3c5d8-5ea5-482e-931f-29c023f94781/1/uo2tLEoOEXpoaMjWe-EDCKZJdK0.mft
Manifest number: 04C6
Signing time: Sat 23 Aug 2025 02:00:51 +0000
Manifest this update: Sat 23 Aug 2025 02:00:51 +0000
Manifest next update: Sun 24 Aug 2025 02:00:51 +0000
Files and hashes: 1: AHKOzgYDCyvjAkh-ui4tIs6DkuE.roa (hash: 4hfOmwMTypbmuLmMH8Qfr5/pQbm/yaKEh2rP/ouR/uE=)
2: uo2tLEoOEXpoaMjWe-EDCKZJdK0.crl (hash: 5zG8rtRYVk1ijG6R4mw1QactAV8mODKj2zgO4+ioAjE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0b/f3c5d8-5ea5-482e-931f-29c023f94781/1/uo2tLEoOEXpoaMjWe-EDCKZJdK0.crl
rsync://rpki.ripe.net/repository/DEFAULT/0b/f3c5d8-5ea5-482e-931f-29c023f94781/1/uo2tLEoOEXpoaMjWe-EDCKZJdK0.mft
rsync://rpki.ripe.net/repository/DEFAULT/uo2tLEoOEXpoaMjWe-EDCKZJdK0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 02:00:51 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d4:a8:39:79:43:a6:05:ff:2e:4a:1b:22:5a:29:c9:b8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ba8dad2c4a0e117a6868c8d67be10308a64974ad
Validity
Not Before: Aug 23 02:00:51 2025 GMT
Not After : Aug 24 02:00:51 2025 GMT
Subject: CN=25fa365c15ad6afb7f16147df406eff69316268e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:94:e0:e4:24:11:e3:dc:1d:b6:25:95:15:60:
fa:63:81:d9:92:b2:e8:b4:a9:f7:8f:7f:62:64:cf:
74:3a:cf:31:e0:e7:51:ff:e2:a9:06:a0:57:90:1c:
be:b2:ba:9e:0d:f7:0f:06:e8:ef:03:25:7e:88:9d:
14:c3:96:d3:d9:f2:e1:53:d6:7d:0f:ce:cc:5f:a7:
83:7f:d0:f5:a6:82:01:42:a5:e3:9c:e2:82:d3:fa:
6d:6c:1c:e4:79:a3:f6:26:54:cb:58:68:fa:1e:da:
3f:27:73:b7:54:de:06:01:62:7a:d2:df:b7:56:5b:
f8:ef:f9:b8:6c:99:8d:81:39:b6:4e:62:d3:e6:9d:
8a:27:f6:31:5f:b5:bb:84:e7:07:f0:f0:dd:2a:1f:
31:c2:1a:99:01:4f:3d:ab:61:03:56:0b:96:64:d2:
1e:36:7b:44:f5:7e:82:bc:0e:19:b2:7a:93:48:e2:
a7:dc:24:b0:13:05:c2:28:63:f9:ef:0a:55:1d:61:
17:6d:b4:a7:5e:cf:78:8b:39:f0:62:4f:41:62:51:
20:9d:85:ed:13:40:74:d4:dc:6c:20:ea:71:7b:9d:
9a:af:1c:08:de:7d:ab:cc:79:4c:51:61:d6:15:f6:
25:48:8b:e8:48:24:8e:86:0d:bf:2b:c6:f2:45:17:
59:2d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
25:FA:36:5C:15:AD:6A:FB:7F:16:14:7D:F4:06:EF:F6:93:16:26:8E
X509v3 Authority Key Identifier:
keyid:BA:8D:AD:2C:4A:0E:11:7A:68:68:C8:D6:7B:E1:03:08:A6:49:74:AD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/uo2tLEoOEXpoaMjWe-EDCKZJdK0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0b/f3c5d8-5ea5-482e-931f-29c023f94781/1/uo2tLEoOEXpoaMjWe-EDCKZJdK0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0b/f3c5d8-5ea5-482e-931f-29c023f94781/1/uo2tLEoOEXpoaMjWe-EDCKZJdK0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
56:9f:91:8c:7c:7b:f1:42:08:41:77:6c:9a:c0:72:06:07:2a:
4a:4a:aa:3e:f5:73:e1:64:e9:40:36:07:00:6a:52:97:6e:d5:
f9:fe:7b:27:2d:c6:39:a1:44:ba:58:c2:0c:d5:5f:1c:38:f2:
49:83:d6:9f:d3:87:72:c2:21:e9:ae:2e:66:bc:b2:a3:98:8a:
a3:87:5c:7f:ee:f0:61:13:51:29:8b:09:7d:d5:ee:28:5d:ad:
bc:bc:f0:55:38:f6:6d:f7:40:df:17:93:34:4b:7b:90:56:52:
32:f7:c7:b6:01:e7:4f:49:1d:de:d7:b5:fd:6d:fc:51:fe:58:
bd:90:3f:8e:b6:3f:c9:fa:9f:ae:a5:df:7c:b2:e8:cd:a8:d4:
63:bc:7c:1a:d0:5b:fc:31:25:31:76:0a:23:db:c6:71:ea:32:
77:72:da:e6:1d:0e:2a:02:ea:55:b2:d3:65:cf:70:4c:f9:4c:
3d:23:69:f1:1f:de:1f:dc:fb:bd:8e:a7:ed:9b:19:c9:4c:81:
fe:00:65:a7:a8:f9:75:41:00:f4:38:5c:5e:6d:cb:87:b9:2f:
3c:2d:79:a4:d2:96:53:a3:35:69:48:5d:19:17:bd:53:23:b5:
4e:c7:7e:98:8c:f2:f2:80:13:0c:b1:e6:be:c1:5b:c7:32:f0:
a9:17:19:68
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 11:35:52 2025 by rpki-client