Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6d/303a43-a185-4973-86ab-7a3720d3cffc/1/Uo017K6KUozuxk3jvWO3P6QtX0o.mft
File: Uo017K6KUozuxk3jvWO3P6QtX0o.mft (raw, json)
Hash identifier: VB0LiLxr/4q8JiUAMjxJTRolK0Xppw/wfIXNILd1be0=
Subject key identifier: DA:39:FF:97:6A:74:46:AB:E4:35:ED:21:D8:04:28:2E:F8:F1:0A:B4
Authority key identifier: 52:8D:35:EC:AE:8A:52:8C:EE:C6:4D:E3:BD:63:B7:3F:A4:2D:5F:4A
Certificate issuer: /CN=528d35ecae8a528ceec64de3bd63b73fa42d5f4a
Certificate serial: 0197C2A5433854A5715CA7ECEB15EC56801E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Uo017K6KUozuxk3jvWO3P6QtX0o.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6d/303a43-a185-4973-86ab-7a3720d3cffc/1/Uo017K6KUozuxk3jvWO3P6QtX0o.mft
Manifest number: 09E7
Signing time: Mon 30 Jun 2025 21:01:39 +0000
Manifest this update: Mon 30 Jun 2025 21:01:39 +0000
Manifest next update: Tue 01 Jul 2025 21:01:39 +0000
Files and hashes: 1: R2wMoqdkLDHB1BCsXc7koujD71w.roa (hash: FmALC+nsf+pUttlOP2g4qVc5yZKYgI7dAbntzXZ0Nqk=)
2: Uo017K6KUozuxk3jvWO3P6QtX0o.crl (hash: ORRCi4nWEUGFKfraK9fa6G+JvSV9CGecJ3tdHS5NCuY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/6d/303a43-a185-4973-86ab-7a3720d3cffc/1/Uo017K6KUozuxk3jvWO3P6QtX0o.crl
rsync://rpki.ripe.net/repository/DEFAULT/6d/303a43-a185-4973-86ab-7a3720d3cffc/1/Uo017K6KUozuxk3jvWO3P6QtX0o.mft
rsync://rpki.ripe.net/repository/DEFAULT/Uo017K6KUozuxk3jvWO3P6QtX0o.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 01 Jul 2025 21:01:39 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:c2:a5:43:38:54:a5:71:5c:a7:ec:eb:15:ec:56:80:1e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=528d35ecae8a528ceec64de3bd63b73fa42d5f4a
Validity
Not Before: Jun 30 21:01:39 2025 GMT
Not After : Jul 1 21:01:39 2025 GMT
Subject: CN=da39ff976a7446abe435ed21d804282ef8f10ab4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:e2:88:b1:19:5c:be:4f:81:cd:c6:c2:0d:f2:
f9:6a:d2:05:4e:c8:3a:ea:87:1b:b1:d2:76:4b:f6:
47:71:31:ed:7d:59:b2:26:a8:54:a7:25:78:5b:be:
55:bd:bd:f5:eb:11:da:1f:ec:fa:d6:fb:be:40:09:
e6:f8:d1:3c:65:7e:6a:25:e2:32:ac:31:d9:70:dd:
bc:5c:a0:02:f1:44:b4:de:a5:23:82:e2:a6:d8:d6:
93:ea:6c:0e:e4:be:a4:54:5b:7d:86:71:1b:e9:00:
c7:a1:ba:d8:bf:5c:81:66:59:70:fb:f5:04:0f:73:
c2:5e:75:19:fd:28:1a:4a:98:f9:f6:3d:74:65:19:
5a:b7:40:ca:70:11:a8:60:69:f3:41:80:c6:fc:32:
04:92:91:06:05:45:c1:ef:d5:a1:bf:2d:c3:85:03:
09:a2:53:11:7c:ec:2e:1b:16:a3:93:be:c1:be:f0:
04:91:a1:1a:dd:50:a6:fb:12:96:ad:e7:6e:3c:95:
22:fb:50:cf:14:a0:28:f8:01:11:06:f4:09:17:a2:
26:b4:76:05:ea:d0:d7:87:2b:5e:0c:fa:29:fd:9e:
ac:c9:3f:96:b7:01:6e:d2:99:01:59:d2:73:8c:f1:
2b:bb:3f:54:de:ff:33:8a:e6:6b:e6:7c:ab:8a:2c:
31:19
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DA:39:FF:97:6A:74:46:AB:E4:35:ED:21:D8:04:28:2E:F8:F1:0A:B4
X509v3 Authority Key Identifier:
keyid:52:8D:35:EC:AE:8A:52:8C:EE:C6:4D:E3:BD:63:B7:3F:A4:2D:5F:4A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Uo017K6KUozuxk3jvWO3P6QtX0o.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6d/303a43-a185-4973-86ab-7a3720d3cffc/1/Uo017K6KUozuxk3jvWO3P6QtX0o.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6d/303a43-a185-4973-86ab-7a3720d3cffc/1/Uo017K6KUozuxk3jvWO3P6QtX0o.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
ae:be:6b:f2:d9:6b:44:4a:ec:0e:2f:e1:f2:ea:8f:8b:52:45:
eb:de:46:16:2a:04:96:a1:cd:e6:be:a7:a7:74:63:4d:e1:52:
28:6e:59:ea:53:f0:f7:bc:09:8b:9c:4c:2b:42:ed:a7:3a:31:
89:e7:cc:07:aa:1e:f8:10:3d:a2:3f:3d:5f:fb:18:9d:52:f8:
18:d0:d2:f2:95:12:d2:6f:cd:61:58:40:90:1f:98:8e:e7:86:
39:97:ad:85:25:a6:29:29:fd:bf:c4:8a:6a:fb:9e:91:c3:8b:
9a:01:a7:20:1e:ea:20:68:2b:e9:1e:73:3f:17:e5:07:0f:25:
30:a4:9b:4b:fa:c6:aa:86:d8:3d:29:36:11:45:e3:9c:99:21:
54:6f:e5:71:6f:52:10:df:3a:04:33:9d:d0:a0:08:01:7a:6c:
09:69:7c:9b:96:f4:a6:bb:4d:24:94:65:89:cd:5b:cb:63:66:
ee:f8:4e:30:6b:db:63:98:c1:bb:46:5d:f8:9b:01:2b:be:5f:
9b:15:20:26:c7:3c:6a:2f:9a:0c:a9:1f:19:ce:a4:24:5d:71:
16:5b:7f:94:51:96:cd:dd:a5:d6:29:ad:78:fe:3a:a5:05:e2:
6d:f0:30:41:ae:03:10:4e:86:24:1b:f3:58:e8:88:fa:e4:ce:
48:f6:d7:47
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jul 1 03:48:11 2025 by rpki-client