Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/18/c46d1e-987d-4f65-b11b-2e2cd6435106/1/upfBVFbrYAQD7PuxbCDggWCUT48.mft
File: upfBVFbrYAQD7PuxbCDggWCUT48.mft (raw, json)
Hash identifier: hEJXiwW+f9+tZzQjSrlyk578kKOD07r+n1y9TE8QONM=
Subject key identifier: DF:2C:E0:2F:64:67:05:BB:CE:9C:38:27:14:F5:C0:8E:82:BD:A3:3D
Authority key identifier: BA:97:C1:54:56:EB:60:04:03:EC:FB:B1:6C:20:E0:81:60:94:4F:8F
Certificate issuer: /CN=ba97c15456eb600403ecfbb16c20e08160944f8f
Certificate serial: 0197B6D7B92EBAB0E3F05EA672C65EBE00DC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/upfBVFbrYAQD7PuxbCDggWCUT48.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/18/c46d1e-987d-4f65-b11b-2e2cd6435106/1/upfBVFbrYAQD7PuxbCDggWCUT48.mft
Manifest number: 123E
Signing time: Sat 28 Jun 2025 14:01:20 +0000
Manifest this update: Sat 28 Jun 2025 14:01:20 +0000
Manifest next update: Sun 29 Jun 2025 14:01:20 +0000
Files and hashes: 1: SIndVbkKUXy4BUQozeoniwpZDAY.roa (hash: w+S8wcJNHWfC84514ZDYZ2EFFwmdH9ulSWKDE7QHbmQ=)
2: upfBVFbrYAQD7PuxbCDggWCUT48.crl (hash: vAmTmrhxZ7Xp/D8D7M1RFsJCghk5kd5X1xR+rJc/5TQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/18/c46d1e-987d-4f65-b11b-2e2cd6435106/1/upfBVFbrYAQD7PuxbCDggWCUT48.crl
rsync://rpki.ripe.net/repository/DEFAULT/18/c46d1e-987d-4f65-b11b-2e2cd6435106/1/upfBVFbrYAQD7PuxbCDggWCUT48.mft
rsync://rpki.ripe.net/repository/DEFAULT/upfBVFbrYAQD7PuxbCDggWCUT48.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 14:01:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b6:d7:b9:2e:ba:b0:e3:f0:5e:a6:72:c6:5e:be:00:dc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ba97c15456eb600403ecfbb16c20e08160944f8f
Validity
Not Before: Jun 28 14:01:20 2025 GMT
Not After : Jun 29 14:01:20 2025 GMT
Subject: CN=df2ce02f646705bbce9c382714f5c08e82bda33d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9a:8a:fd:b2:8d:09:f4:08:5e:34:48:f2:8c:4d:
ce:51:51:42:7f:52:0b:3e:35:2e:1e:72:73:5e:22:
a1:fe:19:70:06:9c:ac:66:de:03:c2:43:6b:75:a5:
a2:13:a8:06:47:64:68:f7:e2:e7:dc:6c:8c:f6:74:
0d:16:22:55:20:4c:f1:6d:27:ab:9f:c0:10:67:ee:
3a:49:de:0e:73:4b:dc:bd:59:a3:e2:bf:8d:37:91:
14:98:48:dc:64:ab:e0:b6:ed:0a:2a:6d:c6:04:5b:
67:6d:a9:e5:18:2d:22:e3:16:f4:42:57:31:99:99:
55:1d:ac:08:37:bf:95:21:dc:87:7a:49:b3:c2:7e:
b5:71:c2:09:33:e4:f0:f8:17:9f:b1:e8:70:7d:75:
21:e1:3c:41:a0:7d:9f:97:1c:63:0b:69:dc:8c:2f:
9c:b1:3f:2c:6a:cc:7a:44:07:d9:f7:18:ba:d3:a3:
96:2a:05:34:bb:e5:aa:e2:cb:5c:a0:f5:8b:f6:7d:
1a:b4:9b:7e:1d:1b:03:eb:94:e9:20:3c:e2:b5:9c:
d0:51:08:98:0c:cc:1b:23:40:6e:83:d8:97:c6:f9:
20:23:42:0f:d3:b6:2d:d3:b2:1f:24:46:45:09:79:
44:ee:38:17:08:09:c0:f3:06:c8:62:9b:4a:92:bf:
9e:f3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DF:2C:E0:2F:64:67:05:BB:CE:9C:38:27:14:F5:C0:8E:82:BD:A3:3D
X509v3 Authority Key Identifier:
keyid:BA:97:C1:54:56:EB:60:04:03:EC:FB:B1:6C:20:E0:81:60:94:4F:8F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/upfBVFbrYAQD7PuxbCDggWCUT48.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/18/c46d1e-987d-4f65-b11b-2e2cd6435106/1/upfBVFbrYAQD7PuxbCDggWCUT48.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/18/c46d1e-987d-4f65-b11b-2e2cd6435106/1/upfBVFbrYAQD7PuxbCDggWCUT48.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
76:4c:c0:85:f6:e8:1e:35:4c:f3:1c:13:9b:24:0c:dc:36:6d:
21:d9:da:49:24:f0:c9:a1:4a:98:af:73:0a:99:97:7e:f3:31:
6e:87:87:a6:a9:9f:19:69:3d:57:6d:8a:a0:da:20:3d:63:84:
3a:cb:87:ab:bd:65:e7:53:b4:fd:4b:73:ff:7e:f9:1a:08:c5:
f3:6f:24:fb:9d:8e:07:73:86:3e:f0:7b:1d:af:74:b4:c4:ab:
76:ef:d1:90:6b:16:27:7b:37:b0:f6:3e:c4:5d:e8:22:eb:cb:
3f:57:46:b3:4d:73:e5:4c:b3:1e:7f:46:74:02:59:b3:79:c2:
ab:6b:8e:7d:82:ba:68:6a:4a:01:d6:36:ac:14:31:30:c6:33:
4d:1f:8e:37:65:8b:87:09:cc:7e:8c:d3:fb:a0:17:84:64:6a:
46:43:bf:7a:a8:06:01:b2:9b:be:71:cb:2d:96:e1:cb:1b:68:
74:d1:00:77:2f:d6:7d:b6:bd:5d:f8:90:a1:b7:0a:b5:00:44:
c1:3e:90:2c:8b:00:94:11:6a:ad:57:51:c9:9d:12:d7:0c:44:
cc:40:db:ee:da:04:0f:2b:c1:d7:e7:82:2b:a6:10:a8:c4:b4:
9e:52:fc:a5:56:80:ba:90:53:64:60:e4:7a:04:ae:74:da:8d:
d1:1f:f5:3a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 28 22:04:30 2025 by rpki-client