Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5b/27c6a1-1c94-4a49-8e3d-9fd503970ff0/1/rUZjafOSfaDIn7X0s-qeMk-SioQ.mft
File: rUZjafOSfaDIn7X0s-qeMk-SioQ.mft (raw, json)
Hash identifier: xGxzlLr6sIhjWy5Y4Nft1h39GeO444+neNEtMSAy508=
Subject key identifier: E1:2F:34:B6:6C:3C:0F:35:26:01:AF:89:3D:73:2E:8F:E8:BF:73:AD
Authority key identifier: AD:46:63:69:F3:92:7D:A0:C8:9F:B5:F4:B3:EA:9E:32:4F:92:8A:84
Certificate issuer: /CN=ad466369f3927da0c89fb5f4b3ea9e324f928a84
Certificate serial: 0198D5F1B6C4DEB4040BA36A23B66F25A662
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/rUZjafOSfaDIn7X0s-qeMk-SioQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5b/27c6a1-1c94-4a49-8e3d-9fd503970ff0/1/rUZjafOSfaDIn7X0s-qeMk-SioQ.mft
Manifest number: 0660
Signing time: Sat 23 Aug 2025 08:00:44 +0000
Manifest this update: Sat 23 Aug 2025 08:00:44 +0000
Manifest next update: Sun 24 Aug 2025 08:00:44 +0000
Files and hashes: 1: e2krXZzkR-AkHScvd476IUHzrz0.roa (hash: KJC7yZeLdAZIJXLO5En/1DBnqhI+LO45sglWIneobpg=)
2: rUZjafOSfaDIn7X0s-qeMk-SioQ.crl (hash: nyLopcin19GO0fN0dLBupywu8dNdqPdEd3Ql9iPUbVg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5b/27c6a1-1c94-4a49-8e3d-9fd503970ff0/1/rUZjafOSfaDIn7X0s-qeMk-SioQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/5b/27c6a1-1c94-4a49-8e3d-9fd503970ff0/1/rUZjafOSfaDIn7X0s-qeMk-SioQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/rUZjafOSfaDIn7X0s-qeMk-SioQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 05:01:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d5:f1:b6:c4:de:b4:04:0b:a3:6a:23:b6:6f:25:a6:62
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ad466369f3927da0c89fb5f4b3ea9e324f928a84
Validity
Not Before: Aug 23 08:00:44 2025 GMT
Not After : Aug 24 08:00:44 2025 GMT
Subject: CN=e12f34b66c3c0f352601af893d732e8fe8bf73ad
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:f4:6c:5a:b1:f6:be:8f:d1:de:4d:46:8a:c1:
ea:26:37:fa:30:0f:5b:0f:cc:2f:cc:f1:f9:7a:a3:
6d:68:1c:45:f6:73:7b:08:9f:94:be:21:fc:9e:25:
60:e2:50:9e:b5:e8:6d:32:99:ef:38:b9:a1:48:3e:
f6:db:f9:d5:4e:d0:4f:db:79:d4:3f:f3:ff:70:fa:
2c:c8:64:9f:3c:c5:63:e3:1d:2e:01:a9:48:14:a2:
75:4e:9e:ef:0b:bb:89:57:7e:40:a4:4f:62:bb:84:
51:04:3d:74:14:0e:e1:4a:80:0a:b3:88:88:47:52:
97:09:18:55:22:3f:54:98:c7:4b:6f:b2:5a:52:e6:
d1:bc:7b:46:95:22:19:ce:05:4c:32:8d:42:7d:8f:
9a:36:8a:d0:6a:96:65:67:b7:42:49:3d:a6:b8:4d:
05:be:53:5d:7b:ab:43:76:8a:02:fa:2d:ce:15:9a:
d7:87:be:79:ed:58:be:79:47:14:e3:3c:22:9b:00:
6c:fa:aa:f3:00:75:67:66:27:e8:ef:ac:f3:c2:9a:
24:05:b1:f1:b8:75:c7:57:80:c6:43:91:21:01:52:
fe:16:ff:aa:88:c7:f8:1b:b3:72:f5:e3:eb:94:66:
57:15:4a:de:26:7a:e9:1b:74:60:3b:82:1e:ac:4d:
45:01
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E1:2F:34:B6:6C:3C:0F:35:26:01:AF:89:3D:73:2E:8F:E8:BF:73:AD
X509v3 Authority Key Identifier:
keyid:AD:46:63:69:F3:92:7D:A0:C8:9F:B5:F4:B3:EA:9E:32:4F:92:8A:84
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rUZjafOSfaDIn7X0s-qeMk-SioQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5b/27c6a1-1c94-4a49-8e3d-9fd503970ff0/1/rUZjafOSfaDIn7X0s-qeMk-SioQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5b/27c6a1-1c94-4a49-8e3d-9fd503970ff0/1/rUZjafOSfaDIn7X0s-qeMk-SioQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
31:1f:6c:0a:db:72:35:2f:01:c1:96:ef:95:6d:05:42:c3:36:
34:ce:e4:59:d4:22:ba:06:5f:6e:b0:fe:41:99:4d:78:b1:f1:
28:04:66:7a:67:30:1c:51:b0:98:91:38:ed:39:52:d0:c5:9d:
d9:3c:c9:88:e8:dc:4a:dd:53:a9:61:b3:d6:3e:59:46:e1:0a:
2a:a4:96:a6:65:8a:1f:05:0f:63:a8:10:7b:7f:e6:62:27:14:
7c:76:0a:8f:ab:44:02:2a:cd:ca:94:62:a2:e0:8d:8f:73:c4:
dd:e9:7b:37:5a:5a:86:41:9a:5b:b2:32:7b:a5:c2:43:57:02:
92:70:d1:0a:22:b1:aa:45:41:a9:5a:fb:87:b7:6b:df:1d:3e:
31:9d:8d:22:21:32:47:bb:f4:b5:ff:91:94:d7:4f:9b:c1:c5:
ec:6d:d5:6b:ec:7f:a5:a3:f2:d9:a7:f8:98:6c:c8:1c:74:81:
01:f8:70:fd:dc:8f:88:bd:d9:ee:04:c4:d3:88:91:81:bd:62:
d7:66:5f:70:8b:ab:33:99:28:e6:9e:0b:4e:a5:54:87:92:61:
66:3a:82:e7:cd:dd:0d:5e:78:0c:da:70:4c:fb:d4:ff:88:5e:
4c:5d:77:63:0f:f6:f1:4e:46:29:14:80:5f:1b:fa:7f:79:2f:
62:a5:c5:19
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 10:51:02 2025 by rpki-client