Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/18/c46d1e-987d-4f65-b11b-2e2cd6435106/1/upfBVFbrYAQD7PuxbCDggWCUT48.mft
File: upfBVFbrYAQD7PuxbCDggWCUT48.mft (raw, json)
Hash identifier: tAf1L2MF6zwt7OMDfvdBbvYjr68y9yYsxucXdikvh1Q=
Subject key identifier: D7:F1:A3:7D:CA:7D:F6:D8:14:EF:8D:6F:E7:F3:E6:2D:CC:FD:A5:51
Authority key identifier: BA:97:C1:54:56:EB:60:04:03:EC:FB:B1:6C:20:E0:81:60:94:4F:8F
Certificate issuer: /CN=ba97c15456eb600403ecfbb16c20e08160944f8f
Certificate serial: 0198D6980B1C3729D562856848A195CB5267
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/upfBVFbrYAQD7PuxbCDggWCUT48.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/18/c46d1e-987d-4f65-b11b-2e2cd6435106/1/upfBVFbrYAQD7PuxbCDggWCUT48.mft
Manifest number: 12D3
Signing time: Sat 23 Aug 2025 11:02:25 +0000
Manifest this update: Sat 23 Aug 2025 11:02:25 +0000
Manifest next update: Sun 24 Aug 2025 11:02:25 +0000
Files and hashes: 1: SIndVbkKUXy4BUQozeoniwpZDAY.roa (hash: w+S8wcJNHWfC84514ZDYZ2EFFwmdH9ulSWKDE7QHbmQ=)
2: upfBVFbrYAQD7PuxbCDggWCUT48.crl (hash: qlQuw66zGmY5HBKhnegVSWGPJyAA7RIe5kbIZuxZ11A=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/18/c46d1e-987d-4f65-b11b-2e2cd6435106/1/upfBVFbrYAQD7PuxbCDggWCUT48.crl
rsync://rpki.ripe.net/repository/DEFAULT/18/c46d1e-987d-4f65-b11b-2e2cd6435106/1/upfBVFbrYAQD7PuxbCDggWCUT48.mft
rsync://rpki.ripe.net/repository/DEFAULT/upfBVFbrYAQD7PuxbCDggWCUT48.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 11:02:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d6:98:0b:1c:37:29:d5:62:85:68:48:a1:95:cb:52:67
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ba97c15456eb600403ecfbb16c20e08160944f8f
Validity
Not Before: Aug 23 11:02:25 2025 GMT
Not After : Aug 24 11:02:25 2025 GMT
Subject: CN=d7f1a37dca7df6d814ef8d6fe7f3e62dccfda551
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:4b:a5:d5:ef:49:7f:6a:96:b3:6f:34:14:7a:
82:c4:2b:b2:e1:43:dc:9e:61:bd:cb:1e:b5:8f:82:
23:b8:ac:6a:21:96:79:66:69:e9:cc:17:da:4f:66:
76:2e:90:ac:67:a6:8f:74:57:47:59:e1:be:e9:1a:
4a:7e:66:12:43:75:5c:c7:85:69:85:b6:ef:1f:58:
47:b4:36:b3:72:56:f1:bd:09:47:79:73:a5:b3:64:
97:aa:a5:06:b4:84:6f:0c:90:a1:70:24:4f:eb:4d:
9b:7f:0b:77:a0:e1:24:4c:6b:7f:03:00:b8:bb:fe:
80:42:a4:6f:6c:89:0e:2b:09:0c:95:cb:7a:80:d1:
5c:c3:e7:8b:16:1e:57:32:57:12:80:82:b3:59:3e:
7a:9d:04:b5:d2:3c:67:96:d8:32:ce:4d:af:c2:e1:
a0:dc:4c:ed:8e:cc:40:4b:df:64:e8:ec:6e:14:17:
cd:4d:21:ed:d2:34:75:2e:eb:37:af:13:05:d5:9b:
91:bf:1f:00:af:66:7f:f6:bd:85:65:a8:cc:b5:ee:
49:d7:dd:64:b3:32:c3:7a:ce:84:b6:90:5a:d0:05:
4a:21:76:5e:7a:6a:7b:fe:fb:d1:b2:81:26:21:8d:
14:53:2b:e6:9e:2e:4e:6d:36:82:89:6a:fb:84:d8:
92:0f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D7:F1:A3:7D:CA:7D:F6:D8:14:EF:8D:6F:E7:F3:E6:2D:CC:FD:A5:51
X509v3 Authority Key Identifier:
keyid:BA:97:C1:54:56:EB:60:04:03:EC:FB:B1:6C:20:E0:81:60:94:4F:8F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/upfBVFbrYAQD7PuxbCDggWCUT48.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/18/c46d1e-987d-4f65-b11b-2e2cd6435106/1/upfBVFbrYAQD7PuxbCDggWCUT48.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/18/c46d1e-987d-4f65-b11b-2e2cd6435106/1/upfBVFbrYAQD7PuxbCDggWCUT48.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
11:57:4f:93:e9:9c:8c:b3:d4:05:50:73:74:75:64:00:0f:e3:
e5:a7:69:4c:98:a0:f6:f7:2c:c5:ac:03:2f:5c:0f:33:d5:82:
ca:1d:02:43:6e:57:d8:31:f9:79:36:23:ee:25:3e:c8:d6:1f:
92:70:2f:b7:20:f3:52:0c:51:44:96:ab:88:e3:97:92:14:19:
f7:9c:a8:1c:7f:eb:33:db:b5:06:ee:8e:9d:89:a0:91:14:be:
0f:44:44:0c:8b:22:c4:73:6c:6d:f7:90:ff:55:0c:ff:23:cf:
e2:23:a6:59:ab:ca:df:08:d7:39:86:39:c7:ff:96:72:4f:eb:
13:43:e3:bb:a5:b1:c0:b4:c4:96:d9:95:e1:4e:2d:e5:71:68:
ef:df:9b:e0:df:b2:a0:9e:68:47:4b:96:8e:f2:b3:b0:16:3b:
ed:ec:f1:cf:59:4a:fe:cf:27:9f:f3:7b:27:eb:72:71:ce:2f:
a6:02:ce:4f:72:4e:f3:60:9d:22:5f:12:28:34:d4:c6:88:6a:
1c:8b:9b:a4:45:8c:58:bf:73:a6:69:08:f8:4b:c9:80:76:3e:
ae:c7:1b:ff:90:c1:e7:75:15:8d:a7:b1:88:79:d0:41:88:81:
54:06:df:73:3b:1e:d1:a2:4d:7a:9c:6c:d1:d6:56:e7:38:20:
23:5f:5e:11
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 20:22:05 2025 by rpki-client