Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/64/af72e8-f0d2-4d66-b520-3aba595b58a8/1/upcN4SazoLVI2tdvXvqIhVxvH_I.mft
File: upcN4SazoLVI2tdvXvqIhVxvH_I.mft (raw, json)
Hash identifier: MgW61b9aNenXF/oNk8sL0hQPaV6mJBvxoNsipODDfWg=
Subject key identifier: 45:84:2E:E4:41:F3:BA:E3:84:26:0B:40:4C:BD:C6:1E:55:E3:C9:5E
Authority key identifier: BA:97:0D:E1:26:B3:A0:B5:48:DA:D7:6F:5E:FA:88:85:5C:6F:1F:F2
Certificate issuer: /CN=ba970de126b3a0b548dad76f5efa88855c6f1ff2
Certificate serial: 0198D47244BB6DE0D76CBC54A58022BB2E01
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/upcN4SazoLVI2tdvXvqIhVxvH_I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/64/af72e8-f0d2-4d66-b520-3aba595b58a8/1/upcN4SazoLVI2tdvXvqIhVxvH_I.mft
Manifest number: 09CF
Signing time: Sat 23 Aug 2025 01:01:55 +0000
Manifest this update: Sat 23 Aug 2025 01:01:55 +0000
Manifest next update: Sun 24 Aug 2025 01:01:55 +0000
Files and hashes: 1: iB0nh2pqz5-ySXR-fF2YCAS68X8.roa (hash: Y94jSzgT6noKQkiYTVT17vXi3fN7I6D0Bkm1xKFYYKk=)
2: upcN4SazoLVI2tdvXvqIhVxvH_I.crl (hash: lOoSiLrbu5Yt1gJywthjAebvGpRLwDPGrQ4K09AlyLA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/64/af72e8-f0d2-4d66-b520-3aba595b58a8/1/upcN4SazoLVI2tdvXvqIhVxvH_I.crl
rsync://rpki.ripe.net/repository/DEFAULT/64/af72e8-f0d2-4d66-b520-3aba595b58a8/1/upcN4SazoLVI2tdvXvqIhVxvH_I.mft
rsync://rpki.ripe.net/repository/DEFAULT/upcN4SazoLVI2tdvXvqIhVxvH_I.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 01:01:55 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d4:72:44:bb:6d:e0:d7:6c:bc:54:a5:80:22:bb:2e:01
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ba970de126b3a0b548dad76f5efa88855c6f1ff2
Validity
Not Before: Aug 23 01:01:55 2025 GMT
Not After : Aug 24 01:01:55 2025 GMT
Subject: CN=45842ee441f3bae384260b404cbdc61e55e3c95e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:eb:fd:e4:55:5b:6f:cd:b0:ce:22:65:88:84:
ab:e5:e8:90:21:8c:a0:75:7f:b0:91:d7:28:9d:cc:
93:a4:8e:00:a5:ed:f4:48:b2:bc:60:e7:07:96:b0:
2e:23:65:92:2e:68:9e:45:62:96:5c:4d:d6:3a:41:
90:1d:15:22:d4:99:23:e4:2f:2d:c9:49:ad:09:79:
42:b7:e8:b0:89:32:60:5e:07:b5:f9:06:25:b2:88:
29:23:74:6e:97:20:86:90:da:aa:b3:36:d4:58:ab:
bc:76:d4:33:a1:af:7f:50:29:f1:87:c9:02:c1:e9:
63:dc:96:71:86:85:11:bd:bd:d3:14:f2:40:20:3f:
65:43:d1:3e:f8:df:41:ba:bb:7d:16:82:9c:c0:d2:
d0:74:e0:f5:cb:21:7c:06:ab:d7:dc:52:11:74:11:
d8:70:b9:bd:9c:e8:19:ed:04:73:38:99:f1:12:b2:
eb:81:ac:3b:1a:4e:9e:59:4e:96:f9:29:dd:4d:be:
42:0c:57:9d:5d:b2:a8:e6:58:e9:d9:91:13:15:42:
b0:e0:9a:da:37:7b:41:b9:8d:48:c6:27:24:62:89:
02:6a:7d:f8:78:d1:2b:e4:47:c7:d2:c3:6f:48:76:
da:85:ac:54:af:74:29:0c:aa:c0:25:54:f0:64:41:
cf:97
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
45:84:2E:E4:41:F3:BA:E3:84:26:0B:40:4C:BD:C6:1E:55:E3:C9:5E
X509v3 Authority Key Identifier:
keyid:BA:97:0D:E1:26:B3:A0:B5:48:DA:D7:6F:5E:FA:88:85:5C:6F:1F:F2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/upcN4SazoLVI2tdvXvqIhVxvH_I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/64/af72e8-f0d2-4d66-b520-3aba595b58a8/1/upcN4SazoLVI2tdvXvqIhVxvH_I.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/64/af72e8-f0d2-4d66-b520-3aba595b58a8/1/upcN4SazoLVI2tdvXvqIhVxvH_I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
7e:e9:b0:ea:af:1b:b1:c0:32:88:45:e8:23:97:10:d5:4e:8b:
9c:c4:18:95:b2:fc:cd:ae:a4:8a:32:b6:5c:fb:2f:34:8b:9b:
18:26:18:06:02:db:d6:ad:b9:22:af:5b:46:45:cd:67:14:59:
69:e9:e7:73:47:d6:ab:b7:a1:00:ab:55:10:02:45:8e:37:e2:
45:e0:af:68:a0:0a:ab:33:2e:86:32:df:68:70:7a:92:1f:e6:
03:15:5a:ba:2b:d7:bd:a2:7d:db:dc:c8:14:3e:f0:a8:4f:81:
5a:22:7d:80:b4:ee:a9:80:93:2e:bc:3f:50:15:5d:e5:3b:4a:
a5:9f:5f:f9:20:0f:e7:34:96:e6:88:b9:b3:ea:57:03:68:44:
ef:94:af:77:ad:08:1a:50:e0:79:c2:cf:28:5f:f7:36:63:8a:
c5:67:e1:16:29:cb:5e:e7:ca:5a:ca:f8:15:e5:82:46:4e:9b:
98:13:26:cd:53:4a:bf:3e:78:54:c5:c3:c7:03:b4:a6:36:c3:
d8:b1:b0:d1:c5:0d:a7:d4:f0:9a:3c:5b:11:20:7e:7b:dc:16:
cc:6c:d6:e4:3f:3b:75:fc:45:0e:de:9a:50:29:87:b9:61:2a:
82:f7:f4:51:cd:ef:38:20:e4:c4:41:ac:f2:ae:0f:ae:71:85:
6a:dd:b2:d8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 11:30:50 2025 by rpki-client