Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/46/fbbf8d-2c43-429d-b5cd-fcc220644558/1/UpNDI1WBz0EEGQ2noMoXS5wNC9U.mft
File: UpNDI1WBz0EEGQ2noMoXS5wNC9U.mft (raw, json)
Hash identifier: 0WRUBLjiBeoZkbPcfoAfUyzLV1T0OKZNAk9i5ET7F1w=
Subject key identifier: B0:28:32:44:B9:CD:05:76:B3:DA:66:A7:C5:3A:A7:58:79:9A:08:B8
Authority key identifier: 52:93:43:23:55:81:CF:41:04:19:0D:A7:A0:CA:17:4B:9C:0D:0B:D5
Certificate issuer: /CN=529343235581cf4104190da7a0ca174b9c0d0bd5
Certificate serial: 0198D4DFE8EA3245DA5A9E145489F5BBC435
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UpNDI1WBz0EEGQ2noMoXS5wNC9U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/46/fbbf8d-2c43-429d-b5cd-fcc220644558/1/UpNDI1WBz0EEGQ2noMoXS5wNC9U.mft
Manifest number: 0EA9
Signing time: Sat 23 Aug 2025 03:01:40 +0000
Manifest this update: Sat 23 Aug 2025 03:01:40 +0000
Manifest next update: Sun 24 Aug 2025 03:01:40 +0000
Files and hashes: 1: 6O-rdAPfJL5ja0fsAq0cDrxpBv4.roa (hash: 6xTcUx7aYzPFSdoIn+1iA2U6ilYMmAiW4t3gwfarhms=)
2: UpNDI1WBz0EEGQ2noMoXS5wNC9U.crl (hash: Iwfl9nFZDSCbRiqq9RlNLrhXxjlM9YjRnEtcRgoekyg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/46/fbbf8d-2c43-429d-b5cd-fcc220644558/1/UpNDI1WBz0EEGQ2noMoXS5wNC9U.crl
rsync://rpki.ripe.net/repository/DEFAULT/46/fbbf8d-2c43-429d-b5cd-fcc220644558/1/UpNDI1WBz0EEGQ2noMoXS5wNC9U.mft
rsync://rpki.ripe.net/repository/DEFAULT/UpNDI1WBz0EEGQ2noMoXS5wNC9U.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 03:01:40 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d4:df:e8:ea:32:45:da:5a:9e:14:54:89:f5:bb:c4:35
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=529343235581cf4104190da7a0ca174b9c0d0bd5
Validity
Not Before: Aug 23 03:01:40 2025 GMT
Not After : Aug 24 03:01:40 2025 GMT
Subject: CN=b0283244b9cd0576b3da66a7c53aa758799a08b8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:3c:b7:c9:69:31:57:7b:f4:8f:a1:03:21:30:
54:6d:e0:2c:2f:b7:53:8b:e4:20:f1:7f:78:e7:45:
80:41:b1:6e:a5:a8:49:a9:46:fe:78:16:d6:5e:64:
1e:9b:7e:91:a9:e8:35:a1:35:4b:5a:76:75:8d:a0:
24:c3:0c:ff:d1:88:c7:89:25:0e:b9:53:57:3c:ac:
be:45:7b:5e:88:51:69:7e:99:7f:f0:aa:e1:e3:0b:
1e:33:b4:9e:71:10:4a:3c:39:4f:35:0f:be:0e:3a:
23:9f:e1:87:db:01:c1:7d:2f:77:c4:f7:2c:cf:dc:
56:30:d2:14:04:0c:e3:90:36:88:c3:27:dc:80:58:
20:b9:12:1e:b5:1d:a0:90:ae:04:73:3c:44:91:e0:
24:9a:97:bb:5b:28:d0:24:36:a4:9f:35:07:98:4d:
56:4d:77:48:34:cf:3e:ff:da:b2:c8:a3:54:dd:ee:
fa:c1:06:80:61:50:65:f7:1b:08:b8:06:66:eb:43:
24:08:0d:3b:b6:ca:ec:6c:8e:e2:37:1d:e8:df:f0:
d5:e2:23:35:7e:b7:7d:82:31:b7:a9:26:21:f4:99:
df:9f:0c:6c:c8:87:97:29:e2:18:cb:37:8e:24:ac:
4f:0e:16:e4:89:43:07:7c:f8:73:af:9e:80:c4:85:
f3:67
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B0:28:32:44:B9:CD:05:76:B3:DA:66:A7:C5:3A:A7:58:79:9A:08:B8
X509v3 Authority Key Identifier:
keyid:52:93:43:23:55:81:CF:41:04:19:0D:A7:A0:CA:17:4B:9C:0D:0B:D5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UpNDI1WBz0EEGQ2noMoXS5wNC9U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/46/fbbf8d-2c43-429d-b5cd-fcc220644558/1/UpNDI1WBz0EEGQ2noMoXS5wNC9U.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/46/fbbf8d-2c43-429d-b5cd-fcc220644558/1/UpNDI1WBz0EEGQ2noMoXS5wNC9U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
6e:18:50:97:6c:04:92:f9:aa:7f:7b:c7:5c:1c:5d:d1:2a:45:
aa:ab:cc:cd:9b:39:2b:7d:66:e3:3d:07:7a:d4:43:69:b8:fa:
dc:65:b9:49:c8:8b:a7:20:b1:dd:6a:ef:fb:df:4e:89:17:33:
5b:b9:50:60:c6:69:2f:52:71:21:57:ed:a2:56:dc:dc:ff:17:
73:53:03:c1:37:6f:35:1b:f8:e1:66:d7:4a:4e:fa:c7:9c:5c:
16:0e:67:5f:79:6b:ad:78:43:6d:8f:e5:ef:2d:40:8c:46:bb:
53:cc:09:78:65:fc:31:10:0b:69:dd:81:7e:e1:96:2d:b8:8c:
da:9c:61:73:ba:d9:ed:47:4c:f9:63:c2:7c:f6:31:a5:74:cc:
49:53:8b:bc:b3:45:43:9e:3d:c1:65:61:5b:93:2f:8c:b5:b7:
16:ac:b6:78:3c:61:f1:78:c9:8a:ea:d4:e7:4f:f4:60:6f:5e:
ca:8d:73:f4:17:70:e5:34:d9:2e:f5:64:9b:88:54:60:80:c0:
15:8b:2b:ec:61:f3:da:69:11:9e:07:a1:27:e7:9e:54:f3:fc:
f6:c7:1e:7a:db:f6:74:c5:8c:ab:35:1b:61:f2:58:83:0b:0e:
b7:2c:95:d1:56:a1:b1:0f:d1:ed:e4:70:15:16:df:2b:21:53:
e4:81:39:f4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 14:25:32 2025 by rpki-client