Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5a/df5670-96ab-4eee-b0d2-85d332604aaf/1/uUiJEgxOC_9Ozpoqu4YtTAzYox8.mft
File: uUiJEgxOC_9Ozpoqu4YtTAzYox8.mft (raw, json)
Hash identifier: WcgNqQGXxtQ2nKbssQvLxjIaaai++0P+C/hphHLtQdw=
Subject key identifier: C2:C7:08:A9:57:95:04:3B:24:7C:17:0E:8E:E8:F1:FB:81:0F:F6:06
Authority key identifier: B9:48:89:12:0C:4E:0B:FF:4E:CE:9A:2A:BB:86:2D:4C:0C:D8:A3:1F
Certificate issuer: /CN=b94889120c4e0bff4ece9a2abb862d4c0cd8a31f
Certificate serial: 0198D5F16D88717C4C641CAFF03170A7C50A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/uUiJEgxOC_9Ozpoqu4YtTAzYox8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5a/df5670-96ab-4eee-b0d2-85d332604aaf/1/uUiJEgxOC_9Ozpoqu4YtTAzYox8.mft
Manifest number: 0FB7
Signing time: Sat 23 Aug 2025 08:00:25 +0000
Manifest this update: Sat 23 Aug 2025 08:00:25 +0000
Manifest next update: Sun 24 Aug 2025 08:00:25 +0000
Files and hashes: 1: Ez8s9qEUUht2JDDEnDzdcLhPgtI.roa (hash: JIMzy59RHLraK6rhor2VUFRVzGxoje0mc5nW26VOt9E=)
2: uUiJEgxOC_9Ozpoqu4YtTAzYox8.crl (hash: l1U+vQP4zr2K6iE3P/JKkhNLQtUTzrCKncvMw6OAB48=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5a/df5670-96ab-4eee-b0d2-85d332604aaf/1/uUiJEgxOC_9Ozpoqu4YtTAzYox8.crl
rsync://rpki.ripe.net/repository/DEFAULT/5a/df5670-96ab-4eee-b0d2-85d332604aaf/1/uUiJEgxOC_9Ozpoqu4YtTAzYox8.mft
rsync://rpki.ripe.net/repository/DEFAULT/uUiJEgxOC_9Ozpoqu4YtTAzYox8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 08:00:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d5:f1:6d:88:71:7c:4c:64:1c:af:f0:31:70:a7:c5:0a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b94889120c4e0bff4ece9a2abb862d4c0cd8a31f
Validity
Not Before: Aug 23 08:00:25 2025 GMT
Not After : Aug 24 08:00:25 2025 GMT
Subject: CN=c2c708a95795043b247c170e8ee8f1fb810ff606
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8a:14:6f:6e:25:86:86:7f:ab:c5:37:26:fe:51:
77:5c:6e:ca:2b:8d:9f:4e:c9:a0:64:dc:53:c5:55:
25:05:b1:06:7d:1b:89:4a:6b:60:3b:5c:3a:c0:f7:
f1:b9:c0:80:d8:f5:9b:9a:d2:8a:9c:26:bd:bb:89:
de:f6:14:94:96:a1:9e:25:32:be:c3:54:fc:78:7e:
c5:57:4a:5e:81:62:f4:7a:6d:e7:89:c9:43:b8:9b:
c0:2f:d7:c7:f8:59:67:8d:e9:aa:d3:e2:60:65:4f:
20:e6:17:b7:96:53:ea:22:e0:67:ee:e6:0a:a8:c9:
89:82:8c:bd:80:96:f8:66:be:9e:66:88:c2:09:a8:
dd:57:7d:81:1b:ef:01:2e:30:56:e7:64:d1:06:bf:
85:d1:42:ac:5b:88:fc:4f:ca:08:82:18:93:78:c0:
65:d3:dd:9b:52:3f:61:ff:f5:3c:b4:b8:dc:c4:40:
1d:a3:c3:60:d4:7f:ea:db:67:ca:b2:7e:be:77:fe:
06:92:c1:f8:b8:68:a1:ff:13:a1:8f:fa:73:ed:ab:
52:f6:e6:bc:5d:5b:a9:cb:4b:de:9c:b7:38:41:9e:
8a:1a:71:c1:32:c0:89:39:32:35:e7:8f:ad:fa:13:
c1:04:27:74:dc:af:0b:0f:8c:06:9e:af:27:1c:d2:
6d:97
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C2:C7:08:A9:57:95:04:3B:24:7C:17:0E:8E:E8:F1:FB:81:0F:F6:06
X509v3 Authority Key Identifier:
keyid:B9:48:89:12:0C:4E:0B:FF:4E:CE:9A:2A:BB:86:2D:4C:0C:D8:A3:1F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/uUiJEgxOC_9Ozpoqu4YtTAzYox8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/df5670-96ab-4eee-b0d2-85d332604aaf/1/uUiJEgxOC_9Ozpoqu4YtTAzYox8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/df5670-96ab-4eee-b0d2-85d332604aaf/1/uUiJEgxOC_9Ozpoqu4YtTAzYox8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
8e:fa:37:0c:ef:a0:c9:b6:22:64:43:04:c9:94:13:10:98:44:
60:f9:7c:f6:4e:b4:1e:f6:2b:a3:07:aa:93:42:f0:82:b6:35:
74:0f:25:2a:c4:28:65:f4:b3:ec:0f:4f:46:cc:91:06:74:7f:
70:a1:40:47:d6:34:fd:32:3b:32:83:64:59:15:84:b5:72:22:
99:e9:19:e6:21:3c:d2:01:ae:11:17:f5:e9:c4:42:ea:26:14:
49:ef:c5:9e:d5:87:90:11:db:b2:ad:6b:08:48:a6:5d:f5:b7:
a0:7c:a0:16:7a:ae:38:4e:b0:f1:9a:47:b7:67:d1:fd:ac:46:
8f:8a:51:f1:39:a5:80:a6:2c:14:c5:42:92:1b:e1:4f:e0:bb:
ab:54:4f:b0:51:a5:33:9d:38:67:e5:80:30:46:62:03:71:2b:
07:cf:dd:0b:aa:e7:fe:62:6b:ef:e9:d1:1f:1a:99:f1:e3:89:
ab:9c:85:e1:db:e1:44:28:6a:b0:a5:e0:d8:a4:03:8d:66:ce:
6d:6b:1c:f4:02:6b:c2:cb:67:17:d9:39:20:2e:f0:52:09:05:
a0:cc:b7:75:87:15:dc:2f:d9:90:39:a9:81:5f:f6:62:39:2e:
8d:c3:7b:1f:b6:df:64:fe:f6:10:e1:11:69:9d:a5:4d:80:ed:
9f:37:37:c6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 18:22:14 2025 by rpki-client