Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/69/ab3219-c64b-470e-8341-3a12027400e6/1/ukQzhlmFp7teJpw3lK5vFkz8Lds.mft
File: ukQzhlmFp7teJpw3lK5vFkz8Lds.mft (raw, json)
Hash identifier: kP5psfHuGTmHy8E7z+tdK4iQHHOAvRnxh0cRntGGTuM=
Subject key identifier: 45:61:74:8B:7D:43:EB:48:5E:0A:A9:99:07:2C:75:CA:98:FC:A3:76
Authority key identifier: BA:44:33:86:59:85:A7:BB:5E:26:9C:37:94:AE:6F:16:4C:FC:2D:DB
Certificate issuer: /CN=ba4433865985a7bb5e269c3794ae6f164cfc2ddb
Certificate serial: 0197B7B2F1434ED5E7C01D3C64D0785BCAE0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ukQzhlmFp7teJpw3lK5vFkz8Lds.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/69/ab3219-c64b-470e-8341-3a12027400e6/1/ukQzhlmFp7teJpw3lK5vFkz8Lds.mft
Manifest number: 0595
Signing time: Sat 28 Jun 2025 18:00:47 +0000
Manifest this update: Sat 28 Jun 2025 18:00:47 +0000
Manifest next update: Sun 29 Jun 2025 18:00:47 +0000
Files and hashes: 1: AlkZJ5y5SgK5NicIMpQu5G4y-kk.roa (hash: 6pDsa6TgLwnLkjOOWWhXhHFWrv8bvlopmayBUNqycZY=)
2: ukQzhlmFp7teJpw3lK5vFkz8Lds.crl (hash: pRncohK8fv/1soekgrnlF+mOfauu/RbSv/Ez46yBw34=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/69/ab3219-c64b-470e-8341-3a12027400e6/1/ukQzhlmFp7teJpw3lK5vFkz8Lds.crl
rsync://rpki.ripe.net/repository/DEFAULT/69/ab3219-c64b-470e-8341-3a12027400e6/1/ukQzhlmFp7teJpw3lK5vFkz8Lds.mft
rsync://rpki.ripe.net/repository/DEFAULT/ukQzhlmFp7teJpw3lK5vFkz8Lds.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 15:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b7:b2:f1:43:4e:d5:e7:c0:1d:3c:64:d0:78:5b:ca:e0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ba4433865985a7bb5e269c3794ae6f164cfc2ddb
Validity
Not Before: Jun 28 18:00:47 2025 GMT
Not After : Jun 29 18:00:47 2025 GMT
Subject: CN=4561748b7d43eb485e0aa999072c75ca98fca376
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:0d:8c:8a:25:6f:12:6b:3e:0f:44:bc:92:1a:
9d:7c:ae:9e:e9:96:2a:ec:e3:b7:35:16:40:10:0f:
b3:92:39:69:86:28:88:43:57:8c:a0:d4:d0:47:0a:
3c:94:2a:3a:25:5a:56:6e:13:88:ff:e4:93:d1:3a:
a4:60:ff:b9:33:60:a1:8b:2c:ff:52:7f:1b:97:66:
de:86:ec:87:5b:b8:37:5f:d7:56:0c:0a:63:06:19:
4b:0c:fe:65:44:e6:39:71:98:cc:42:b0:8e:25:51:
a8:49:3c:69:41:95:e9:65:80:f1:b8:dc:97:b1:de:
ee:38:ea:42:1f:4e:f0:8b:90:12:c5:b1:db:cb:bf:
2b:3a:67:13:b4:a2:18:34:09:15:4c:d3:9e:58:d0:
ae:43:06:3f:80:0c:f3:cc:d9:39:75:ef:af:e9:fe:
a0:74:c0:9e:6c:7c:d9:23:28:8d:f5:97:0a:15:a3:
ab:94:5a:87:48:fe:e6:59:cf:1d:a8:20:1a:e7:11:
30:9e:80:62:4d:72:32:8e:dd:db:aa:ec:0e:56:ab:
0d:fd:e6:05:83:7a:54:f6:8e:f7:6a:6b:63:96:6c:
ce:09:07:18:99:b4:5a:de:98:f5:dc:f6:59:94:c3:
ed:7b:8d:13:6f:f7:d4:6a:c6:13:43:b6:cb:ad:9e:
41:ff
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
45:61:74:8B:7D:43:EB:48:5E:0A:A9:99:07:2C:75:CA:98:FC:A3:76
X509v3 Authority Key Identifier:
keyid:BA:44:33:86:59:85:A7:BB:5E:26:9C:37:94:AE:6F:16:4C:FC:2D:DB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ukQzhlmFp7teJpw3lK5vFkz8Lds.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/69/ab3219-c64b-470e-8341-3a12027400e6/1/ukQzhlmFp7teJpw3lK5vFkz8Lds.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/69/ab3219-c64b-470e-8341-3a12027400e6/1/ukQzhlmFp7teJpw3lK5vFkz8Lds.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
1c:38:b7:32:07:ab:89:73:49:c5:67:e7:2a:98:ef:d8:37:1b:
bc:c8:41:8a:49:4d:e3:01:0d:9c:37:40:a0:e0:16:84:e3:b4:
24:a2:60:9f:d6:62:7c:42:0c:1d:96:7d:d5:18:f3:78:c6:97:
ff:e7:8f:50:53:40:5d:74:4f:99:db:f5:46:60:fb:2e:d2:b4:
69:27:8f:f2:c3:31:ed:19:8d:b4:55:ec:7c:cf:ae:3c:a7:75:
21:0e:95:56:76:ad:5d:51:1d:1b:1d:4d:24:2c:0d:a6:af:76:
6f:34:72:96:df:ed:48:d9:ad:9c:89:fc:bd:f7:db:2f:58:c9:
a4:76:53:52:b3:d6:8a:bc:11:70:27:a4:b8:16:88:7f:aa:a7:
8d:31:35:ce:13:d2:49:e0:dc:cc:b8:8c:af:34:99:bb:6f:41:
02:59:20:af:eb:81:89:fa:8d:f0:41:b0:9e:25:45:da:17:e4:
92:ce:73:76:ab:1f:0b:d7:f6:c6:4b:f4:51:98:78:da:d1:5c:
15:ef:3c:63:f5:b8:12:e5:b0:6e:33:c5:7a:ce:30:c0:a2:8d:
01:ba:15:74:e7:f8:c3:3c:c0:e1:3f:e0:54:6c:20:ac:9a:bd:
92:a9:a1:6f:27:26:df:8c:aa:3e:da:3e:30:71:ed:f8:c0:85:
bd:f3:e1:cd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 28 23:12:50 2025 by rpki-client