Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/64/deca0e-dd4c-44ef-bf77-05dbe3df98f6/1/UIqaCKvvdNzFEAT0-uAmbWIDleM.mft
File: UIqaCKvvdNzFEAT0-uAmbWIDleM.mft (raw, json)
Hash identifier: eKOCO9dTvO1j5g2VrDJSjU9KJBfOl+SEs5t+YaVQXk8=
Subject key identifier: D5:E9:3A:17:7C:ED:B0:AA:74:90:FA:05:CE:18:44:DD:28:A5:AE:49
Authority key identifier: 50:8A:9A:08:AB:EF:74:DC:C5:10:04:F4:FA:E0:26:6D:62:03:95:E3
Certificate issuer: /CN=508a9a08abef74dcc51004f4fae0266d620395e3
Certificate serial: 0197B70F49953DA5E2947EF984571432D73F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UIqaCKvvdNzFEAT0-uAmbWIDleM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/64/deca0e-dd4c-44ef-bf77-05dbe3df98f6/1/UIqaCKvvdNzFEAT0-uAmbWIDleM.mft
Manifest number: 0DA9
Signing time: Sat 28 Jun 2025 15:02:01 +0000
Manifest this update: Sat 28 Jun 2025 15:02:01 +0000
Manifest next update: Sun 29 Jun 2025 15:02:01 +0000
Files and hashes: 1: 8CmFhnWxaCeDeglOctNQZC1ZN84.roa (hash: mRPJMJZCvcTnlYvn8UFVdthp3gWoolEvhKxuWOWcGDk=)
2: UIqaCKvvdNzFEAT0-uAmbWIDleM.crl (hash: xUQSCRyWBlWaEuZW/KURLmT6JK5TVHg3e1vIIo4GHHM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/64/deca0e-dd4c-44ef-bf77-05dbe3df98f6/1/UIqaCKvvdNzFEAT0-uAmbWIDleM.crl
rsync://rpki.ripe.net/repository/DEFAULT/64/deca0e-dd4c-44ef-bf77-05dbe3df98f6/1/UIqaCKvvdNzFEAT0-uAmbWIDleM.mft
rsync://rpki.ripe.net/repository/DEFAULT/UIqaCKvvdNzFEAT0-uAmbWIDleM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 10:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b7:0f:49:95:3d:a5:e2:94:7e:f9:84:57:14:32:d7:3f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=508a9a08abef74dcc51004f4fae0266d620395e3
Validity
Not Before: Jun 28 15:02:01 2025 GMT
Not After : Jun 29 15:02:01 2025 GMT
Subject: CN=d5e93a177cedb0aa7490fa05ce1844dd28a5ae49
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d8:03:41:50:33:07:19:49:de:5e:74:af:09:e0:
9c:15:5d:ee:16:3b:63:b0:0e:76:1e:d6:d6:bc:8d:
3e:69:5c:67:11:5c:19:30:54:89:33:bf:fb:2f:d3:
e4:7d:fc:4f:e8:33:98:e0:6a:79:db:4a:03:53:f7:
1a:d8:b6:78:a7:1a:f7:14:74:49:ed:48:26:9e:55:
b8:25:d1:83:53:0f:db:b3:f3:f2:14:4d:bd:91:e8:
18:40:28:a6:cd:d2:4f:87:8e:74:97:db:01:cc:db:
90:e0:82:0a:d3:a1:61:4d:b9:48:3e:b3:f6:d3:2d:
59:3f:4d:ba:79:4b:e5:d3:6e:6d:e0:f5:b7:05:5b:
50:fc:f5:fb:0d:f9:40:95:d7:3b:20:22:ee:6a:4a:
c8:61:b6:21:5b:b4:85:4c:ec:87:a4:7b:24:de:64:
aa:f4:4b:32:c3:72:95:8d:f2:66:cb:e4:52:d6:27:
51:89:58:f7:de:30:77:3a:ba:89:93:88:af:ae:53:
c3:0b:6e:76:98:9a:65:6e:b1:00:3b:e1:83:3b:eb:
20:f6:a8:e1:18:a3:65:ec:34:69:35:33:b4:4c:40:
37:0f:e3:e5:de:35:c5:2c:ce:50:38:12:16:90:41:
9e:4a:bd:e0:fd:f0:71:82:dc:dd:1c:0b:c6:09:63:
12:19
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D5:E9:3A:17:7C:ED:B0:AA:74:90:FA:05:CE:18:44:DD:28:A5:AE:49
X509v3 Authority Key Identifier:
keyid:50:8A:9A:08:AB:EF:74:DC:C5:10:04:F4:FA:E0:26:6D:62:03:95:E3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UIqaCKvvdNzFEAT0-uAmbWIDleM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/64/deca0e-dd4c-44ef-bf77-05dbe3df98f6/1/UIqaCKvvdNzFEAT0-uAmbWIDleM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/64/deca0e-dd4c-44ef-bf77-05dbe3df98f6/1/UIqaCKvvdNzFEAT0-uAmbWIDleM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
72:c7:b9:7a:8c:10:fc:68:b3:66:4d:69:34:d5:57:1a:e0:c2:
c6:79:55:08:a7:92:87:2a:96:24:14:ea:ce:d4:a1:27:2b:bf:
b4:55:2b:b8:81:b5:e4:6e:45:05:d3:96:b6:3a:8c:23:ef:56:
99:57:1f:70:c2:c0:64:eb:18:55:40:d0:e3:4c:15:cc:a1:f4:
c9:d1:d5:00:2e:e9:ce:5b:34:66:1a:a9:c4:00:1c:b8:db:9b:
e3:66:9c:cb:2f:f3:8a:ee:00:e3:a1:31:48:7a:9b:be:c0:eb:
ba:bf:45:94:05:fd:e4:58:8d:1f:18:d7:70:28:d1:6c:49:e0:
76:41:9e:c3:6e:74:00:3e:ef:97:a6:52:db:3d:ca:08:e2:e5:
c2:68:d1:c0:78:d2:66:4e:72:ab:44:d7:7c:d6:c7:b4:cb:19:
97:99:cc:54:0f:61:8b:29:d0:11:f0:b4:07:76:df:66:44:b5:
d1:6c:6d:ec:8e:28:72:ff:7c:fd:21:16:78:00:a2:a7:87:85:
4b:4d:f4:a3:ad:75:6e:2f:48:2f:82:f0:3f:33:67:cf:f8:a9:
6b:3e:ea:58:d5:92:f0:c3:42:d0:19:fa:10:78:bf:91:cf:fe:
44:fb:5f:65:44:dc:38:97:7f:6a:be:c0:c6:73:1c:b7:40:08:
4d:d2:ca:2b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 28 19:09:39 2025 by rpki-client