Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/35/04e8b2-c76f-4629-95ad-a7d945af14e5/1/U-Ou3ZG-gkUTQtzRyYKDRdtmGl8.mft
File: U-Ou3ZG-gkUTQtzRyYKDRdtmGl8.mft (raw, json)
Hash identifier: bTNVPIBwUc7f8m0M/WCq4xf3Yz+5czCQ5NovAzplHNI=
Subject key identifier: 57:8A:53:F2:AE:AC:4F:31:C6:AD:67:15:B3:5D:E7:CA:20:18:10:D5
Authority key identifier: 53:E3:AE:DD:91:BE:82:45:13:42:DC:D1:C9:82:83:45:DB:66:1A:5F
Certificate issuer: /CN=53e3aedd91be82451342dcd1c9828345db661a5f
Certificate serial: 0197BA0F8CCA44C472B101B099A1C528ABCA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/U-Ou3ZG-gkUTQtzRyYKDRdtmGl8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/35/04e8b2-c76f-4629-95ad-a7d945af14e5/1/U-Ou3ZG-gkUTQtzRyYKDRdtmGl8.mft
Manifest number: 0842
Signing time: Sun 29 Jun 2025 05:01:10 +0000
Manifest this update: Sun 29 Jun 2025 05:01:10 +0000
Manifest next update: Mon 30 Jun 2025 05:01:10 +0000
Files and hashes: 1: If5j4KjsWFg3kwDUxrHpbFCCjpg.roa (hash: iGbVOgQjxfoZ4tZTHfIMlZvCv27war8Yd/ywUcGl39o=)
2: U-Ou3ZG-gkUTQtzRyYKDRdtmGl8.crl (hash: gu+iWuHSt3r1viQmeDhV2qoYTq75Z63tTJOyUG/9m48=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/35/04e8b2-c76f-4629-95ad-a7d945af14e5/1/U-Ou3ZG-gkUTQtzRyYKDRdtmGl8.crl
rsync://rpki.ripe.net/repository/DEFAULT/35/04e8b2-c76f-4629-95ad-a7d945af14e5/1/U-Ou3ZG-gkUTQtzRyYKDRdtmGl8.mft
rsync://rpki.ripe.net/repository/DEFAULT/U-Ou3ZG-gkUTQtzRyYKDRdtmGl8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Jun 2025 04:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:ba:0f:8c:ca:44:c4:72:b1:01:b0:99:a1:c5:28:ab:ca
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=53e3aedd91be82451342dcd1c9828345db661a5f
Validity
Not Before: Jun 29 05:01:10 2025 GMT
Not After : Jun 30 05:01:10 2025 GMT
Subject: CN=578a53f2aeac4f31c6ad6715b35de7ca201810d5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:af:6c:3c:40:2f:b8:8b:b4:3d:30:5f:ff:e8:
aa:7b:33:34:c3:94:d6:a5:65:ba:f3:0e:e4:da:e1:
30:0b:aa:23:85:1a:67:b2:cb:68:de:ef:3e:18:53:
6d:88:09:50:69:e4:69:62:6d:7e:bb:99:ac:b3:f5:
75:dc:06:2e:56:0b:57:da:ff:fd:4f:47:ce:1e:52:
56:de:f1:df:59:d6:29:26:8b:ac:2a:09:bf:52:fa:
94:6d:83:59:8b:29:63:1a:84:dd:2c:2c:f9:a6:61:
11:77:7a:de:ae:28:7b:6a:a9:06:ec:a7:07:7c:bc:
8d:87:e1:e9:54:ef:f7:ee:91:fc:f5:b8:b7:ef:df:
44:eb:d6:00:7a:5a:38:94:31:ae:c3:2c:40:10:86:
6b:d1:45:2f:e9:ab:65:7b:c4:40:83:21:65:6a:a3:
e9:d1:f9:76:c1:2e:98:0d:ed:fa:bf:83:62:a2:46:
96:81:bb:89:77:bd:ac:08:07:40:61:a7:62:22:6d:
0d:a9:f4:41:de:fb:4a:4f:5e:71:2a:ae:80:d0:3c:
c6:7d:a7:b4:5b:83:e8:e1:f1:76:20:3d:ce:e1:b8:
5d:65:5c:5b:c8:f5:20:bc:0f:95:ad:10:79:a5:5c:
20:06:73:10:af:e5:98:3b:bc:74:b5:ca:e6:fa:f9:
cd:0b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
57:8A:53:F2:AE:AC:4F:31:C6:AD:67:15:B3:5D:E7:CA:20:18:10:D5
X509v3 Authority Key Identifier:
keyid:53:E3:AE:DD:91:BE:82:45:13:42:DC:D1:C9:82:83:45:DB:66:1A:5F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/U-Ou3ZG-gkUTQtzRyYKDRdtmGl8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/35/04e8b2-c76f-4629-95ad-a7d945af14e5/1/U-Ou3ZG-gkUTQtzRyYKDRdtmGl8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/35/04e8b2-c76f-4629-95ad-a7d945af14e5/1/U-Ou3ZG-gkUTQtzRyYKDRdtmGl8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
ab:b7:cc:de:8e:b9:87:62:9c:16:05:82:df:7e:88:6c:45:0b:
cd:c9:b8:45:c3:b1:33:5d:a5:9a:3f:1d:94:93:13:02:53:18:
f0:c2:6b:01:95:9c:6a:50:dc:45:e0:97:5f:10:5e:5c:db:6d:
a5:ad:63:22:97:d4:09:c1:a8:97:7a:f1:2c:e6:1a:45:bf:12:
4f:25:c9:a8:72:93:da:f6:d5:43:78:ee:61:ea:ba:08:f9:e1:
4f:bb:76:8d:cb:16:57:8f:9c:cc:4a:91:c5:ac:0d:88:a8:5b:
8d:d0:b9:37:79:da:4f:c8:84:59:68:f5:ae:7e:e9:6f:78:06:
d9:bf:aa:26:62:63:95:3b:87:c4:d4:e1:d8:d2:df:82:f4:b9:
43:4a:40:e5:56:36:c8:63:cf:1c:25:ec:ae:76:91:57:4c:de:
8a:14:98:53:fe:3c:4a:c2:de:02:a1:27:43:6f:88:cd:35:95:
84:11:1e:9c:31:4a:a3:c6:ff:76:e3:90:f4:53:b2:33:b2:a9:
36:b2:09:bb:0f:fd:79:49:22:80:4f:bb:d8:e9:88:0a:45:fe:
26:a9:9d:87:8e:36:d9:61:71:2e:ed:bc:f1:f3:80:e0:fa:6c:
ec:1c:c7:2c:f3:ce:60:c9:12:0a:4a:36:6a:0e:fb:45:9e:3e:
03:f8:4b:60
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 29 14:42:43 2025 by rpki-client