Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8b/a28b5c-88d7-4ad4-9e1d-8ac17e9c40db/1/UHDcUgTez3q-pQcNdfoFjIrAE9U.mft
File: UHDcUgTez3q-pQcNdfoFjIrAE9U.mft (raw, json)
Hash identifier: 8sdYSSlXBU315FE6vQCwAff5OlAOr/GaPgUAGkzODk4=
Subject key identifier: 49:8F:FA:76:89:10:2A:C7:A8:D7:14:3E:7B:F8:17:B1:6B:B8:8C:B9
Authority key identifier: 50:70:DC:52:04:DE:CF:7A:BE:A5:07:0D:75:FA:05:8C:8A:C0:13:D5
Certificate issuer: /CN=5070dc5204decf7abea5070d75fa058c8ac013d5
Certificate serial: 0197B6A1831971D96A67191E9A790D3C4D73
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UHDcUgTez3q-pQcNdfoFjIrAE9U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8b/a28b5c-88d7-4ad4-9e1d-8ac17e9c40db/1/UHDcUgTez3q-pQcNdfoFjIrAE9U.mft
Manifest number: 12D6
Signing time: Sat 28 Jun 2025 13:02:07 +0000
Manifest this update: Sat 28 Jun 2025 13:02:07 +0000
Manifest next update: Sun 29 Jun 2025 13:02:07 +0000
Files and hashes: 1: 1qF2qpZ4KDEQgCHi8Zz6Mofp1Bw.roa (hash: ZUGdPkmwhsuvGIfhBFvpGPh0RIr8NwcoDU94MyjHlG0=)
2: UHDcUgTez3q-pQcNdfoFjIrAE9U.crl (hash: WnLh1n2i8FcvMdfA/fFdGrMjyah10BoYSrewjRv6EwQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/8b/a28b5c-88d7-4ad4-9e1d-8ac17e9c40db/1/UHDcUgTez3q-pQcNdfoFjIrAE9U.crl
rsync://rpki.ripe.net/repository/DEFAULT/8b/a28b5c-88d7-4ad4-9e1d-8ac17e9c40db/1/UHDcUgTez3q-pQcNdfoFjIrAE9U.mft
rsync://rpki.ripe.net/repository/DEFAULT/UHDcUgTez3q-pQcNdfoFjIrAE9U.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 13:02:07 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b6:a1:83:19:71:d9:6a:67:19:1e:9a:79:0d:3c:4d:73
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5070dc5204decf7abea5070d75fa058c8ac013d5
Validity
Not Before: Jun 28 13:02:07 2025 GMT
Not After : Jun 29 13:02:07 2025 GMT
Subject: CN=498ffa7689102ac7a8d7143e7bf817b16bb88cb9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:96:68:a6:2b:82:dd:47:ef:08:e3:ad:84:c2:
e6:bd:4a:0d:b9:01:7b:3d:33:68:ce:87:62:1e:69:
c5:19:85:66:51:7c:34:3a:03:5a:6c:50:89:09:03:
50:84:ed:8d:99:0e:76:f5:92:59:2e:68:4a:b8:0c:
3f:59:02:76:ca:d4:48:f9:c1:68:43:56:e0:98:85:
1e:10:4e:58:6e:9c:fc:b6:92:0f:0e:e8:cf:04:b5:
c3:05:d2:4d:93:d1:10:36:54:5d:f9:14:65:02:63:
7d:8d:7f:ca:29:c0:a6:a7:0a:a1:c4:9e:12:b1:9b:
b6:00:12:03:8f:86:03:31:3a:66:ab:d4:41:12:a0:
e8:66:5a:38:d6:96:8b:0d:29:e9:80:45:69:20:65:
f9:44:6e:75:92:eb:9f:ef:52:c2:2d:72:78:ef:83:
64:37:ec:6d:5d:14:6b:09:6f:19:86:95:98:2c:0d:
0f:8c:ee:e7:b7:d9:5a:98:2f:ab:68:59:e5:cc:8e:
ce:05:f9:45:0b:c3:0c:d9:f9:fa:6c:bc:5b:8f:80:
24:70:4d:25:fc:e3:be:f2:aa:83:79:14:56:60:9f:
36:ba:e3:05:51:70:e4:2f:00:bd:22:36:01:b1:10:
5b:79:e5:1d:47:72:59:26:a8:74:1f:46:1e:6c:42:
fc:f1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
49:8F:FA:76:89:10:2A:C7:A8:D7:14:3E:7B:F8:17:B1:6B:B8:8C:B9
X509v3 Authority Key Identifier:
keyid:50:70:DC:52:04:DE:CF:7A:BE:A5:07:0D:75:FA:05:8C:8A:C0:13:D5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UHDcUgTez3q-pQcNdfoFjIrAE9U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8b/a28b5c-88d7-4ad4-9e1d-8ac17e9c40db/1/UHDcUgTez3q-pQcNdfoFjIrAE9U.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8b/a28b5c-88d7-4ad4-9e1d-8ac17e9c40db/1/UHDcUgTez3q-pQcNdfoFjIrAE9U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
4e:b1:04:c3:c1:9a:ab:21:ad:1c:74:ac:c3:f4:3c:e0:2a:25:
04:d9:90:cb:d5:e9:86:82:02:39:fa:55:37:ee:47:49:55:f7:
d0:f8:47:97:17:5c:3e:ca:7d:37:e7:99:48:50:98:aa:1d:3a:
91:2f:f2:ee:16:47:4a:57:ea:2a:bb:e1:90:5e:66:74:fb:8d:
05:49:33:92:89:4f:7d:31:04:af:dc:fc:8d:7c:5a:84:e7:d4:
61:17:c7:b4:f6:7b:39:e6:99:b7:a6:01:f9:95:f7:7c:32:a4:
71:4e:b7:c9:9b:54:7b:1c:9e:da:93:fc:a1:97:b0:3c:64:f7:
80:a5:25:f7:b1:44:28:61:57:b6:b8:16:48:0a:11:28:56:3a:
38:f3:c4:88:13:0e:72:d3:ed:de:9a:8e:a7:30:45:56:1a:e2:
7f:e5:91:61:83:70:b4:23:31:31:dc:3a:b3:76:25:b1:b5:a8:
bd:f4:2f:1d:50:0c:5e:11:28:19:11:12:b2:a9:8c:d3:2a:3b:
ac:e8:93:59:70:83:f0:6a:41:44:f9:33:0c:08:34:c5:e8:b0:
57:5e:58:70:4b:95:d7:18:1f:49:94:3a:65:49:16:b7:6b:47:
e1:67:f8:aa:03:c0:35:4d:f7:50:79:6c:c8:79:58:d4:11:2c:
3f:97:2b:e9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 28 22:15:18 2025 by rpki-client