Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/11/a621a8-e079-4a14-98ba-e36a9793ea6d/1/unnFAIApfLnMDMk07jifUMPnPUo.mft
File: unnFAIApfLnMDMk07jifUMPnPUo.mft (raw, json)
Hash identifier: SzySxI9B7kQF5ba8QbqDMNE+JmOkCCPCFypGwisu5Us=
Subject key identifier: E9:DE:B1:BB:1C:1A:E1:AD:8E:62:E7:64:03:2D:87:AD:01:FA:76:25
Authority key identifier: BA:79:C5:00:80:29:7C:B9:CC:0C:C9:34:EE:38:9F:50:C3:E7:3D:4A
Certificate issuer: /CN=ba79c50080297cb9cc0cc934ee389f50c3e73d4a
Certificate serial: 0198D473725ADBAC949E8D664FB9DB99D981
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/unnFAIApfLnMDMk07jifUMPnPUo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/11/a621a8-e079-4a14-98ba-e36a9793ea6d/1/unnFAIApfLnMDMk07jifUMPnPUo.mft
Manifest number: 0517
Signing time: Sat 23 Aug 2025 01:03:12 +0000
Manifest this update: Sat 23 Aug 2025 01:03:12 +0000
Manifest next update: Sun 24 Aug 2025 01:03:12 +0000
Files and hashes: 1: CpPRk_TNW4CH4jbImpFoaI2OcL4.roa (hash: eYYsy6V5aRdmdwv40uWtw/bgoED55t23eDlp8kMf818=)
2: unnFAIApfLnMDMk07jifUMPnPUo.crl (hash: frNokP7o9uysQ/oV67+0GjwPZmS0hWrQMJUlso8jO4M=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/11/a621a8-e079-4a14-98ba-e36a9793ea6d/1/unnFAIApfLnMDMk07jifUMPnPUo.crl
rsync://rpki.ripe.net/repository/DEFAULT/11/a621a8-e079-4a14-98ba-e36a9793ea6d/1/unnFAIApfLnMDMk07jifUMPnPUo.mft
rsync://rpki.ripe.net/repository/DEFAULT/unnFAIApfLnMDMk07jifUMPnPUo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 00:37:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d4:73:72:5a:db:ac:94:9e:8d:66:4f:b9:db:99:d9:81
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ba79c50080297cb9cc0cc934ee389f50c3e73d4a
Validity
Not Before: Aug 23 01:03:12 2025 GMT
Not After : Aug 24 01:03:12 2025 GMT
Subject: CN=e9deb1bb1c1ae1ad8e62e764032d87ad01fa7625
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:6c:43:98:81:a5:f4:90:6c:e8:4f:c2:d3:f6:
66:95:10:00:ed:75:8e:a6:ae:4e:c4:41:7e:5a:ff:
f9:40:d7:0e:29:27:89:98:0c:67:38:66:84:a6:ae:
de:6a:43:2e:08:5b:78:01:5b:7e:2a:0f:6b:ae:8e:
e7:8e:62:8f:b1:a8:ed:c9:e2:5a:ff:e6:c3:6c:f1:
7a:f0:1a:7c:f1:40:84:95:32:5a:e7:4b:bd:b0:16:
22:7a:ab:42:97:a1:c3:4b:f1:1b:76:6a:9b:b7:65:
62:26:5c:eb:6e:ef:74:e8:1f:92:4a:37:e8:07:a1:
66:58:25:51:82:2a:14:f6:98:df:86:57:82:57:45:
01:34:99:32:93:d5:8a:6e:59:b8:db:19:a1:df:8c:
f6:ec:7d:83:0b:9e:05:09:ca:c0:7b:5e:a2:33:3d:
95:e4:f8:00:76:46:fb:dc:db:56:bd:ca:eb:63:a8:
99:f5:3d:55:62:c9:5a:fe:15:46:90:79:b2:3e:78:
7f:ba:86:1d:dd:9c:c8:6f:5a:50:95:0c:bb:38:4f:
9f:25:b3:6e:ec:c2:d0:85:08:ef:2f:58:7a:21:25:
b8:18:86:db:94:75:f5:b1:7e:eb:ab:d3:ec:29:87:
b5:d4:e1:82:e3:b8:80:35:fb:ad:99:e9:0d:8b:d9:
4a:bd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E9:DE:B1:BB:1C:1A:E1:AD:8E:62:E7:64:03:2D:87:AD:01:FA:76:25
X509v3 Authority Key Identifier:
keyid:BA:79:C5:00:80:29:7C:B9:CC:0C:C9:34:EE:38:9F:50:C3:E7:3D:4A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/unnFAIApfLnMDMk07jifUMPnPUo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/11/a621a8-e079-4a14-98ba-e36a9793ea6d/1/unnFAIApfLnMDMk07jifUMPnPUo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/11/a621a8-e079-4a14-98ba-e36a9793ea6d/1/unnFAIApfLnMDMk07jifUMPnPUo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
ad:23:7e:3f:86:be:a7:d4:aa:9b:77:6c:bd:73:96:b7:66:ec:
c5:b3:6f:8a:d4:2c:f6:32:bd:0b:b5:4a:e4:9b:64:d7:0f:c8:
4c:1f:fd:40:52:29:8b:a4:f0:a3:17:19:9b:07:ff:be:e9:f6:
5c:db:0a:d3:90:88:90:2f:cc:2c:e7:4d:62:89:51:32:77:82:
89:07:85:e2:e6:12:9c:38:49:b0:23:8f:e0:2c:40:f9:59:96:
50:0d:51:52:ba:40:b8:18:0c:b8:55:52:6a:31:bd:4b:f0:aa:
d4:b3:c3:b0:6f:13:9b:da:3e:e3:13:f8:ed:a7:7a:4c:c0:11:
08:b2:3d:44:ed:bb:54:01:8c:10:25:90:39:0a:8b:a5:20:0b:
23:c5:79:7d:06:df:91:ad:1a:12:ee:49:d0:3b:c0:92:d9:01:
aa:89:14:40:de:52:10:71:34:d5:1a:a6:1d:c5:50:d2:ea:68:
69:63:fb:26:78:0d:68:d7:83:15:d8:09:bd:52:9d:ab:00:30:
d3:65:58:b3:25:69:92:98:39:bd:1b:b6:6c:85:a1:38:ae:7b:
90:a2:28:30:08:11:4b:ea:03:45:05:d7:59:55:c0:43:33:37:
29:8f:dd:e2:f9:64:6e:e4:5f:91:a3:87:d1:be:9c:f4:46:fd:
51:63:7e:70
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 10:18:00 2025 by rpki-client