Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2b/2cbde9-8480-440d-abcf-6d755052bb24/1/ui1f0wndbMbPeIYEHl6cLBomzqs.mft
File: ui1f0wndbMbPeIYEHl6cLBomzqs.mft (raw, json)
Hash identifier: rm0AUUIQeIJ8hzvuzLrSBfxgv+SR+pLxwdQ+sa8Z984=
Subject key identifier: 6E:1C:52:A1:E3:11:5A:2D:A5:4F:4C:D4:84:1F:96:C5:A5:61:E6:59
Authority key identifier: BA:2D:5F:D3:09:DD:6C:C6:CF:78:86:04:1E:5E:9C:2C:1A:26:CE:AB
Certificate issuer: /CN=ba2d5fd309dd6cc6cf7886041e5e9c2c1a26ceab
Certificate serial: 0197B8212E504C3F7F0BEA67729403199B25
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ui1f0wndbMbPeIYEHl6cLBomzqs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2b/2cbde9-8480-440d-abcf-6d755052bb24/1/ui1f0wndbMbPeIYEHl6cLBomzqs.mft
Manifest number: 1549
Signing time: Sat 28 Jun 2025 20:01:11 +0000
Manifest this update: Sat 28 Jun 2025 20:01:11 +0000
Manifest next update: Sun 29 Jun 2025 20:01:11 +0000
Files and hashes: 1: Kp9T4yQ0BWzmIgTW27o6VMb8qh4.roa (hash: 8tmSpbSEt6oRRtmXjjT27qxLy0bdW3q5K1nXAwi0cxU=)
2: ui1f0wndbMbPeIYEHl6cLBomzqs.crl (hash: SQ+s9h9jdLjDa8IOGu/4gxP1ska+m4nlk6rryH/CJus=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2b/2cbde9-8480-440d-abcf-6d755052bb24/1/ui1f0wndbMbPeIYEHl6cLBomzqs.crl
rsync://rpki.ripe.net/repository/DEFAULT/2b/2cbde9-8480-440d-abcf-6d755052bb24/1/ui1f0wndbMbPeIYEHl6cLBomzqs.mft
rsync://rpki.ripe.net/repository/DEFAULT/ui1f0wndbMbPeIYEHl6cLBomzqs.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 15:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b8:21:2e:50:4c:3f:7f:0b:ea:67:72:94:03:19:9b:25
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ba2d5fd309dd6cc6cf7886041e5e9c2c1a26ceab
Validity
Not Before: Jun 28 20:01:11 2025 GMT
Not After : Jun 29 20:01:11 2025 GMT
Subject: CN=6e1c52a1e3115a2da54f4cd4841f96c5a561e659
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:48:d1:90:5a:04:eb:b2:3b:c6:7a:64:97:0a:
91:9c:ff:34:66:e9:ef:b3:51:16:1c:01:ad:c5:cc:
13:e5:c7:2f:d4:de:0e:55:a0:1a:1a:d7:16:48:6a:
89:5e:77:79:e4:a9:c7:da:08:be:46:46:9f:02:12:
63:6a:41:31:70:c6:c9:09:dd:c1:36:36:3f:7e:61:
e4:e4:50:e3:dd:ab:b2:e0:1d:25:2c:3d:fa:0c:d1:
61:a8:da:c4:e5:a2:a7:bf:05:58:71:c7:a8:d4:06:
93:87:ef:17:e0:59:65:a9:c4:2e:05:3f:34:1e:01:
85:dc:6d:a5:73:09:15:a8:49:52:10:90:93:8a:15:
b4:dd:53:16:f3:c7:76:c7:ad:ed:dc:b8:16:88:fd:
66:63:8b:39:f5:d9:30:77:87:47:27:12:89:cd:89:
a6:64:fa:aa:80:78:39:9b:8c:30:74:71:c9:8d:d8:
d8:ff:39:4b:b2:45:10:5f:28:7b:dc:da:1b:e5:f0:
86:75:f9:2e:29:43:42:23:e0:71:8c:60:cf:b5:99:
31:80:1e:be:fa:5f:0f:4d:9d:3f:a5:8a:c2:dd:19:
fb:40:3c:b3:ca:ae:9e:7b:3f:54:62:e9:04:b9:57:
de:70:32:ce:f8:37:90:db:49:00:60:24:b3:26:b8:
20:01
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6E:1C:52:A1:E3:11:5A:2D:A5:4F:4C:D4:84:1F:96:C5:A5:61:E6:59
X509v3 Authority Key Identifier:
keyid:BA:2D:5F:D3:09:DD:6C:C6:CF:78:86:04:1E:5E:9C:2C:1A:26:CE:AB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ui1f0wndbMbPeIYEHl6cLBomzqs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2b/2cbde9-8480-440d-abcf-6d755052bb24/1/ui1f0wndbMbPeIYEHl6cLBomzqs.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2b/2cbde9-8480-440d-abcf-6d755052bb24/1/ui1f0wndbMbPeIYEHl6cLBomzqs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
98:a7:d4:e8:53:a3:a5:4e:07:67:79:1d:51:18:ee:53:89:ec:
b2:e9:bf:31:75:c2:c9:2d:7b:3d:a3:24:16:91:f9:90:aa:8b:
82:ee:d0:72:8b:1f:f1:74:18:12:5a:bc:b9:08:59:1e:07:b2:
f0:68:e3:f0:11:3b:30:89:61:3c:7b:4d:2b:61:16:b6:9b:3c:
e9:25:d4:b6:4c:cc:b7:19:bb:1a:65:0b:c5:de:fe:65:e0:2b:
0d:e0:76:cb:63:8a:01:77:a0:cd:d7:71:43:af:e3:34:82:4f:
7f:d6:4f:d4:1c:ec:6b:33:c5:c4:31:2b:d6:b9:e8:24:9d:4d:
97:86:c3:6e:4f:07:64:50:62:d6:8f:28:a1:7b:4f:24:7c:d4:
e6:39:0e:a5:90:3e:8b:5d:66:2a:b1:0d:7b:a1:18:4d:0c:55:
28:25:37:c3:dc:80:75:5c:a1:73:17:50:ee:34:46:50:be:97:
cd:3e:d7:fa:04:c7:6b:23:ee:d3:ea:e2:db:9a:fe:5b:17:31:
42:01:15:63:67:d3:40:c7:76:16:6b:8f:29:06:b1:1f:9d:c4:
96:55:e1:55:89:41:ae:08:35:b5:29:cc:ec:67:9d:fe:15:89:
62:d1:7f:d1:41:23:75:f1:31:fa:e5:9b:68:6c:3e:a0:fc:62:
f1:35:eb:52
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 28 21:41:50 2025 by rpki-client