Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/34/3b2bb3-fdb6-46af-b3d2-be11c14db6e0/1/uxBfoysrF18Y3VkI3ScZFbv0444.mft
File: uxBfoysrF18Y3VkI3ScZFbv0444.mft (raw, json)
Hash identifier: 3QbVeFcaJSYYDE5XP1bMwnKLF1fkiZTAa+0r7i1+Erw=
Subject key identifier: 34:A6:8D:7A:22:33:EA:1F:4C:1E:2E:7C:1E:38:73:B2:F3:D6:4A:7B
Authority key identifier: BB:10:5F:A3:2B:2B:17:5F:18:DD:59:08:DD:27:19:15:BB:F4:E3:8E
Certificate issuer: /CN=bb105fa32b2b175f18dd5908dd271915bbf4e38e
Certificate serial: 0198D515646A8E7442AEA5856420D4730AC0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/uxBfoysrF18Y3VkI3ScZFbv0444.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/34/3b2bb3-fdb6-46af-b3d2-be11c14db6e0/1/uxBfoysrF18Y3VkI3ScZFbv0444.mft
Manifest number: 54
Signing time: Sat 23 Aug 2025 04:00:05 +0000
Manifest this update: Sat 23 Aug 2025 04:00:05 +0000
Manifest next update: Sun 24 Aug 2025 04:00:05 +0000
Files and hashes: 1: DH5lWnRu4VKIIyGckr7F-ImJh8g.roa (hash: h8GN1vDvRKFfkC5MTFTkZWf2BqZtBn12n/5FdI8mvIA=)
2: uxBfoysrF18Y3VkI3ScZFbv0444.crl (hash: smlzSeB7vQ4BgeBQhcBhmOL5SG51+RhR/5OAnOPoHJQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/34/3b2bb3-fdb6-46af-b3d2-be11c14db6e0/1/uxBfoysrF18Y3VkI3ScZFbv0444.crl
rsync://rpki.ripe.net/repository/DEFAULT/34/3b2bb3-fdb6-46af-b3d2-be11c14db6e0/1/uxBfoysrF18Y3VkI3ScZFbv0444.mft
rsync://rpki.ripe.net/repository/DEFAULT/uxBfoysrF18Y3VkI3ScZFbv0444.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 04:00:05 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d5:15:64:6a:8e:74:42:ae:a5:85:64:20:d4:73:0a:c0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=bb105fa32b2b175f18dd5908dd271915bbf4e38e
Validity
Not Before: Aug 23 04:00:05 2025 GMT
Not After : Aug 24 04:00:05 2025 GMT
Subject: CN=34a68d7a2233ea1f4c1e2e7c1e3873b2f3d64a7b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:df:db:e9:bc:a8:4d:94:db:de:ff:39:19:cb:8a:
43:e6:c1:23:47:5b:9f:52:57:2a:56:78:2d:f9:f3:
09:a0:1e:e6:54:7d:e0:a2:84:2d:4a:aa:3e:15:e7:
ef:bc:95:4e:23:8d:ab:dd:09:ea:ec:a8:dc:fe:1a:
2b:66:07:9d:af:66:82:e9:17:87:f4:e8:e9:10:97:
46:c7:9c:f5:ee:e3:5a:4e:0a:35:c3:cf:a2:d9:e8:
9b:2f:1c:c9:a0:d8:7f:4d:c7:46:ea:db:4a:43:c1:
20:b4:8c:1f:2d:63:1a:dc:bf:13:6b:a3:23:cd:07:
9f:c6:a2:41:a9:6c:b3:2d:d6:3f:f5:81:af:9a:66:
18:52:9d:bf:19:e5:31:9a:80:e7:30:1e:94:22:71:
8c:83:5d:3c:02:b1:20:d1:b7:82:86:7d:e2:e9:50:
16:ba:f0:e9:b5:13:d5:0b:1f:33:41:8f:4d:24:6b:
a3:49:77:d1:d3:e4:97:d8:2c:ce:27:6e:ee:ca:c6:
d7:e7:d1:60:ed:54:f9:9f:89:96:b2:c5:82:ba:e1:
18:5a:ae:e1:10:f5:77:84:e1:11:eb:57:6c:b9:b3:
00:80:d0:2f:3e:35:af:a5:76:02:49:d8:59:eb:92:
ff:fb:aa:b3:b6:51:28:86:86:25:d8:04:54:ce:3c:
d4:67
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
34:A6:8D:7A:22:33:EA:1F:4C:1E:2E:7C:1E:38:73:B2:F3:D6:4A:7B
X509v3 Authority Key Identifier:
keyid:BB:10:5F:A3:2B:2B:17:5F:18:DD:59:08:DD:27:19:15:BB:F4:E3:8E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/uxBfoysrF18Y3VkI3ScZFbv0444.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/34/3b2bb3-fdb6-46af-b3d2-be11c14db6e0/1/uxBfoysrF18Y3VkI3ScZFbv0444.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/34/3b2bb3-fdb6-46af-b3d2-be11c14db6e0/1/uxBfoysrF18Y3VkI3ScZFbv0444.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
a2:6e:d0:03:00:31:b6:90:38:d6:cd:4a:2e:f7:be:9c:3e:a1:
cb:9a:46:4e:b9:4f:59:c3:a1:9c:07:ac:f3:e2:e7:83:73:49:
e4:18:6e:b7:9a:12:19:ff:10:54:48:18:a1:1c:ee:52:e0:87:
2e:ad:f6:3d:7b:f9:15:9a:40:39:18:43:71:9c:97:b0:db:ba:
cf:fa:a8:1c:cb:d5:b3:6c:ff:1b:47:96:b0:73:97:2e:7e:74:
18:5f:0c:db:72:0b:35:31:c8:6d:a5:92:37:62:23:34:7d:04:
bc:ac:2f:ca:9b:df:72:d6:e9:90:c0:31:98:21:99:e3:a6:f7:
8a:40:3b:88:ae:e5:6f:3e:16:f6:37:27:08:87:3d:5c:eb:df:
ff:4c:21:db:c5:cc:d4:93:55:7f:54:3c:10:d2:8c:19:4a:e2:
f4:ab:cf:82:0c:8f:ed:58:20:32:a3:69:99:30:93:da:5a:10:
d4:20:ce:40:bf:b3:f3:0f:8d:f4:55:52:a2:fb:e9:fa:25:dd:
73:8b:44:5d:0f:48:ed:e2:fc:c3:e4:a4:9e:3a:b4:1a:d3:61:
ae:8a:a6:fa:8d:38:f4:7d:bb:39:be:67:d2:b9:bb:a0:20:07:
73:5c:06:d0:a1:c4:e5:5d:10:3c:68:8d:bf:64:cb:2b:a8:f8:
4a:8d:27:06
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 14:33:47 2025 by rpki-client