Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/46/fbbf8d-2c43-429d-b5cd-fcc220644558/1/UpNDI1WBz0EEGQ2noMoXS5wNC9U.mft
File: UpNDI1WBz0EEGQ2noMoXS5wNC9U.mft (raw, json)
Hash identifier: 7guIctB43kk10ttWwrqtFn6fcEaAXw+4irpTcY3eoMA=
Subject key identifier: 0E:C2:26:A6:C4:62:14:57:0C:06:49:43:F7:75:4E:22:97:14:65:B4
Authority key identifier: 52:93:43:23:55:81:CF:41:04:19:0D:A7:A0:CA:17:4B:9C:0D:0B:D5
Certificate issuer: /CN=529343235581cf4104190da7a0ca174b9c0d0bd5
Certificate serial: 0197B70EF771674DF0CCB7841CDCDD1B18FD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UpNDI1WBz0EEGQ2noMoXS5wNC9U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/46/fbbf8d-2c43-429d-b5cd-fcc220644558/1/UpNDI1WBz0EEGQ2noMoXS5wNC9U.mft
Manifest number: 0E15
Signing time: Sat 28 Jun 2025 15:01:40 +0000
Manifest this update: Sat 28 Jun 2025 15:01:40 +0000
Manifest next update: Sun 29 Jun 2025 15:01:40 +0000
Files and hashes: 1: 6O-rdAPfJL5ja0fsAq0cDrxpBv4.roa (hash: 6xTcUx7aYzPFSdoIn+1iA2U6ilYMmAiW4t3gwfarhms=)
2: UpNDI1WBz0EEGQ2noMoXS5wNC9U.crl (hash: SE9IZvCpIEDQM8r+U6Jqzmj69gSpsU67bDIXJ6Z5XfE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/46/fbbf8d-2c43-429d-b5cd-fcc220644558/1/UpNDI1WBz0EEGQ2noMoXS5wNC9U.crl
rsync://rpki.ripe.net/repository/DEFAULT/46/fbbf8d-2c43-429d-b5cd-fcc220644558/1/UpNDI1WBz0EEGQ2noMoXS5wNC9U.mft
rsync://rpki.ripe.net/repository/DEFAULT/UpNDI1WBz0EEGQ2noMoXS5wNC9U.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 15:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b7:0e:f7:71:67:4d:f0:cc:b7:84:1c:dc:dd:1b:18:fd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=529343235581cf4104190da7a0ca174b9c0d0bd5
Validity
Not Before: Jun 28 15:01:40 2025 GMT
Not After : Jun 29 15:01:40 2025 GMT
Subject: CN=0ec226a6c46214570c064943f7754e22971465b4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9c:fb:2e:7e:9b:0a:42:68:5d:84:ee:94:89:b9:
19:4c:49:9e:88:22:c8:1b:f8:fc:6e:9c:63:35:01:
fe:66:70:70:34:ed:1c:50:d5:4a:4b:a3:aa:c7:81:
ed:6c:b6:8f:2e:c7:0d:fe:05:c2:e9:37:4d:67:5d:
d0:68:72:7e:ad:28:95:c6:1f:03:52:f8:3e:ab:4e:
d8:28:33:85:22:0b:02:df:a0:47:09:90:06:6e:69:
26:fd:90:ca:4a:e3:78:6e:ab:ec:b5:9f:b3:e3:ed:
ef:fe:6f:1e:f9:cc:c4:d0:6c:57:c8:4e:bd:19:03:
c4:56:fc:23:fe:08:35:71:77:1e:b4:74:10:25:5d:
a5:05:8f:de:bd:9e:64:0d:5f:23:74:26:68:9b:ce:
1d:6f:d0:bd:bb:e7:9d:e0:40:03:e4:7e:ea:85:47:
37:ed:a9:86:c3:52:f3:a8:4d:88:03:2f:d8:f7:b7:
ed:cd:62:a9:16:e4:ca:29:ab:98:0f:77:71:d0:aa:
d8:f2:b0:f4:1e:bd:c9:51:38:71:13:e4:4c:26:fc:
f9:b8:93:a8:1e:cf:5a:77:45:b2:8f:4c:2f:68:13:
99:45:44:29:58:e3:e2:92:4a:44:11:95:e9:68:8f:
f2:80:0d:f0:a0:3b:99:28:ce:0e:7c:f2:cf:41:d2:
b6:55
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0E:C2:26:A6:C4:62:14:57:0C:06:49:43:F7:75:4E:22:97:14:65:B4
X509v3 Authority Key Identifier:
keyid:52:93:43:23:55:81:CF:41:04:19:0D:A7:A0:CA:17:4B:9C:0D:0B:D5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UpNDI1WBz0EEGQ2noMoXS5wNC9U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/46/fbbf8d-2c43-429d-b5cd-fcc220644558/1/UpNDI1WBz0EEGQ2noMoXS5wNC9U.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/46/fbbf8d-2c43-429d-b5cd-fcc220644558/1/UpNDI1WBz0EEGQ2noMoXS5wNC9U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
7a:f8:f2:bf:1b:a9:17:06:e1:33:c9:66:b6:a3:5b:bf:d1:24:
9e:b6:05:ab:fd:e7:54:77:03:36:9b:56:88:eb:56:f1:95:1d:
67:1c:22:f6:3d:ac:16:0e:c1:85:94:bc:15:f7:36:9c:3a:4a:
b4:f7:3f:a1:3e:a5:c6:39:17:ec:1c:8a:37:eb:e3:f6:14:ea:
01:ad:e9:58:99:60:8e:5a:12:29:12:2f:70:0f:a4:ac:88:ca:
7a:b6:9a:f1:37:eb:eb:e0:97:d7:23:b5:70:e6:3a:fc:1e:48:
69:de:62:99:75:53:38:79:85:61:ff:9b:ab:15:b3:75:aa:74:
50:80:d0:28:cf:16:5e:9d:13:1c:ba:b5:0a:94:61:4a:c4:36:
ee:97:ba:2e:9d:64:07:21:ea:e4:bd:d2:5b:64:ce:25:6b:80:
4e:38:9b:b9:cd:5d:89:29:13:bc:1b:41:a1:9c:ef:24:6b:7f:
22:16:20:d4:d4:7b:9e:f0:e7:f9:00:4c:ec:0e:22:98:07:26:
43:52:3b:10:59:64:c2:e3:7e:5d:88:1a:09:ba:78:33:86:b2:
14:06:73:df:e0:0f:88:b1:43:1f:21:19:43:ff:d0:7f:84:ff:
19:65:c1:28:a9:cb:cc:b0:e5:01:03:be:ea:5b:3c:2d:0f:5a:
04:a7:5c:2d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 28 20:52:33 2025 by rpki-client