Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0b/f3c5d8-5ea5-482e-931f-29c023f94781/1/uo2tLEoOEXpoaMjWe-EDCKZJdK0.mft
File: uo2tLEoOEXpoaMjWe-EDCKZJdK0.mft (raw, json)
Hash identifier: hDeNNoAFI2nKoqu5DaPU1ybisPlso+J5XA1ymasoE3k=
Subject key identifier: A4:2F:85:56:A9:DD:6F:D3:17:7B:4F:26:38:D9:52:23:DD:86:D9:17
Authority key identifier: BA:8D:AD:2C:4A:0E:11:7A:68:68:C8:D6:7B:E1:03:08:A6:49:74:AD
Certificate issuer: /CN=ba8dad2c4a0e117a6868c8d67be10308a64974ad
Certificate serial: 0197B6D78C39B4E7DC5626F34149A7B82E2E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/uo2tLEoOEXpoaMjWe-EDCKZJdK0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0b/f3c5d8-5ea5-482e-931f-29c023f94781/1/uo2tLEoOEXpoaMjWe-EDCKZJdK0.mft
Manifest number: 0432
Signing time: Sat 28 Jun 2025 14:01:08 +0000
Manifest this update: Sat 28 Jun 2025 14:01:08 +0000
Manifest next update: Sun 29 Jun 2025 14:01:08 +0000
Files and hashes: 1: AHKOzgYDCyvjAkh-ui4tIs6DkuE.roa (hash: 4hfOmwMTypbmuLmMH8Qfr5/pQbm/yaKEh2rP/ouR/uE=)
2: uo2tLEoOEXpoaMjWe-EDCKZJdK0.crl (hash: U1mc5IAWAkuKcUM6/V6aEDD6e2E/GYSM5xJl690EU1U=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0b/f3c5d8-5ea5-482e-931f-29c023f94781/1/uo2tLEoOEXpoaMjWe-EDCKZJdK0.crl
rsync://rpki.ripe.net/repository/DEFAULT/0b/f3c5d8-5ea5-482e-931f-29c023f94781/1/uo2tLEoOEXpoaMjWe-EDCKZJdK0.mft
rsync://rpki.ripe.net/repository/DEFAULT/uo2tLEoOEXpoaMjWe-EDCKZJdK0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 14:01:08 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b6:d7:8c:39:b4:e7:dc:56:26:f3:41:49:a7:b8:2e:2e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ba8dad2c4a0e117a6868c8d67be10308a64974ad
Validity
Not Before: Jun 28 14:01:08 2025 GMT
Not After : Jun 29 14:01:08 2025 GMT
Subject: CN=a42f8556a9dd6fd3177b4f2638d95223dd86d917
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:93:41:b0:57:ab:ec:3c:ca:05:7e:7e:60:28:be:
6c:fc:dd:7f:ce:20:8d:20:3a:e0:c8:a7:90:44:8f:
2e:da:dd:31:c7:11:41:55:94:d0:47:b3:44:13:44:
fc:92:98:19:24:4d:bb:b3:11:b8:95:7b:e3:70:0a:
f2:34:4a:d7:e1:fe:8f:18:ee:aa:e8:fe:9b:82:c2:
ed:da:58:44:5f:5e:d0:0b:c4:58:7d:24:5a:51:e1:
50:da:b0:b3:40:66:d5:93:77:b7:6c:05:f3:a1:6a:
f6:76:84:32:4e:a3:06:fa:15:14:1c:e4:eb:aa:07:
19:9c:e5:3c:21:41:7c:e9:c7:be:7c:b5:3e:e3:bd:
34:1c:43:12:f7:6c:ac:ee:ab:49:03:b2:bd:62:00:
51:ed:2e:24:f5:74:26:77:ce:d5:c7:12:2f:51:fb:
28:8d:5b:f1:f4:6a:e6:a0:e8:60:18:b9:fa:dc:ea:
13:23:de:13:02:a8:9b:a9:25:22:51:1a:45:57:c2:
e2:2c:c5:ea:b5:11:39:62:8f:da:72:18:5c:18:13:
01:9a:59:db:1d:0b:e2:3f:7f:c9:dd:c0:af:dd:ba:
28:af:75:6b:b4:5c:9c:21:94:89:9e:6f:e3:c1:78:
1e:a2:b6:73:45:07:3d:26:a5:99:88:78:08:c6:36:
83:f9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A4:2F:85:56:A9:DD:6F:D3:17:7B:4F:26:38:D9:52:23:DD:86:D9:17
X509v3 Authority Key Identifier:
keyid:BA:8D:AD:2C:4A:0E:11:7A:68:68:C8:D6:7B:E1:03:08:A6:49:74:AD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/uo2tLEoOEXpoaMjWe-EDCKZJdK0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0b/f3c5d8-5ea5-482e-931f-29c023f94781/1/uo2tLEoOEXpoaMjWe-EDCKZJdK0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0b/f3c5d8-5ea5-482e-931f-29c023f94781/1/uo2tLEoOEXpoaMjWe-EDCKZJdK0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
82:78:06:f8:a5:ff:1a:87:79:94:85:5a:e5:18:f3:ee:9d:34:
b8:5a:5f:96:07:14:d7:80:fd:c5:21:ae:5d:56:59:ed:69:22:
27:34:48:c0:d7:cf:59:56:b1:d1:05:51:62:60:de:9c:9a:89:
2b:9b:57:52:a3:c5:99:41:ed:62:cd:30:d4:43:5d:d3:79:4e:
97:98:57:b6:eb:d9:98:3c:bb:06:75:12:02:f6:d1:52:3a:0d:
ab:4f:89:59:ae:32:3f:98:92:7e:57:e2:39:77:cc:a5:4d:f8:
99:28:d8:60:14:c6:c2:f4:f9:91:b9:f0:c7:4c:9c:9e:2b:b8:
a2:23:54:68:41:ce:b0:bb:7a:eb:e5:72:d4:cd:68:53:49:ad:
f4:c6:e8:26:44:2c:1c:46:77:91:0c:a8:55:ec:59:4c:ee:fc:
7f:47:b3:85:9d:9f:a5:7e:18:5c:41:0b:4f:c5:80:ce:ca:ff:
4a:0e:f0:48:6f:37:af:49:b3:e9:24:a8:45:29:da:11:3e:1d:
c1:3c:e1:1e:a3:99:72:84:a0:df:e4:df:dc:3e:f4:63:2f:3e:
e0:cb:f4:85:94:d9:1f:ae:9c:58:71:b9:d9:b7:dd:6b:9c:bd:
08:7a:47:bf:29:97:30:2c:f3:d3:bd:4f:28:cc:78:db:0f:a7:
f5:2d:d4:18
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 28 22:57:05 2025 by rpki-client