Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/90/76a60e-0d81-4c41-b889-91fc0f51ea07/1/UUtNPv-4vQsTNu68uCe3fhKeD28.mft
File: UUtNPv-4vQsTNu68uCe3fhKeD28.mft (raw, json)
Hash identifier: dZIMCNkpRq74Ogp9pxIZP2AnEFHuPrqi2pezRcWxOlw=
Subject key identifier: 78:B6:18:BB:7D:1D:6D:3B:01:BB:14:F5:6A:7E:22:81:2C:6D:E1:0D
Authority key identifier: 51:4B:4D:3E:FF:B8:BD:0B:13:36:EE:BC:B8:27:B7:7E:12:9E:0F:6F
Certificate issuer: /CN=514b4d3effb8bd0b1336eebcb827b77e129e0f6f
Certificate serial: 0197B632EDD1DC283B23A736392C6C7250CB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UUtNPv-4vQsTNu68uCe3fhKeD28.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/90/76a60e-0d81-4c41-b889-91fc0f51ea07/1/UUtNPv-4vQsTNu68uCe3fhKeD28.mft
Manifest number: 0A20
Signing time: Sat 28 Jun 2025 11:01:20 +0000
Manifest this update: Sat 28 Jun 2025 11:01:20 +0000
Manifest next update: Sun 29 Jun 2025 11:01:20 +0000
Files and hashes: 1: DkmUUaZoynIEdlR9hMmyYSS3NfA.roa (hash: JaWDKrMwIijsWs6TG8arC0MUQjJ3dz0V76FJO19Gqec=)
2: UUtNPv-4vQsTNu68uCe3fhKeD28.crl (hash: hGEQtXu/ApWC4EKfyCyC5ZtbzCxNEKNmq8F0tGLShOc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/90/76a60e-0d81-4c41-b889-91fc0f51ea07/1/UUtNPv-4vQsTNu68uCe3fhKeD28.crl
rsync://rpki.ripe.net/repository/DEFAULT/90/76a60e-0d81-4c41-b889-91fc0f51ea07/1/UUtNPv-4vQsTNu68uCe3fhKeD28.mft
rsync://rpki.ripe.net/repository/DEFAULT/UUtNPv-4vQsTNu68uCe3fhKeD28.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 11:01:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b6:32:ed:d1:dc:28:3b:23:a7:36:39:2c:6c:72:50:cb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=514b4d3effb8bd0b1336eebcb827b77e129e0f6f
Validity
Not Before: Jun 28 11:01:20 2025 GMT
Not After : Jun 29 11:01:20 2025 GMT
Subject: CN=78b618bb7d1d6d3b01bb14f56a7e22812c6de10d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d2:60:b4:27:38:66:09:df:dc:e9:c7:d2:ca:bc:
d0:bf:35:a9:bf:52:4d:1c:d6:42:aa:8b:ac:c4:5d:
ea:2d:49:da:69:86:91:72:7b:c2:c3:2a:3e:f9:50:
3a:ed:53:07:7f:55:ce:8d:ee:f8:55:23:1f:87:0f:
38:d8:20:3d:4e:33:a6:04:3c:b0:c3:08:b1:ea:78:
f4:69:fa:57:83:f9:0f:c7:36:70:f4:00:e6:c6:80:
3a:e4:65:63:81:00:23:ff:72:55:90:ae:b7:5b:91:
d2:84:5c:50:f0:19:70:7c:4a:d2:82:75:72:b4:1d:
38:65:bf:13:7c:28:7a:dc:e0:50:54:50:2d:11:4c:
60:4b:3a:a8:d0:14:98:a5:49:d0:c2:7a:36:26:51:
8e:ea:95:a9:74:19:ca:54:f2:e0:cb:5d:dd:f3:73:
3c:02:95:e4:fe:e6:fc:63:46:b8:3d:35:32:b0:6d:
9d:15:c3:52:71:54:50:7b:be:77:83:af:d1:7e:f4:
f6:f0:2b:43:44:a2:ed:fe:bd:34:93:9a:73:c9:f4:
8c:97:0c:d7:e8:39:c7:2e:19:da:61:d8:5c:0b:99:
e0:e8:8c:aa:15:8a:a1:66:c1:de:8e:6b:ac:35:09:
65:84:b8:5a:5b:ab:00:35:06:50:27:a8:25:ff:09:
61:79
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
78:B6:18:BB:7D:1D:6D:3B:01:BB:14:F5:6A:7E:22:81:2C:6D:E1:0D
X509v3 Authority Key Identifier:
keyid:51:4B:4D:3E:FF:B8:BD:0B:13:36:EE:BC:B8:27:B7:7E:12:9E:0F:6F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UUtNPv-4vQsTNu68uCe3fhKeD28.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/90/76a60e-0d81-4c41-b889-91fc0f51ea07/1/UUtNPv-4vQsTNu68uCe3fhKeD28.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/90/76a60e-0d81-4c41-b889-91fc0f51ea07/1/UUtNPv-4vQsTNu68uCe3fhKeD28.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
3a:d5:18:83:e0:40:b9:4d:9c:a6:3f:72:4c:00:2a:3b:c3:fc:
36:88:58:d2:38:3d:34:d6:93:cf:4a:5e:e3:e3:98:4e:05:f8:
24:86:7b:76:2d:fa:ac:a9:23:53:b6:bc:27:bc:77:ab:31:3e:
88:72:da:a7:f8:fd:56:e0:14:b5:3a:a9:f8:7f:8d:28:bd:b1:
b1:d2:92:fd:9b:d2:54:91:f9:a0:8d:dd:9e:ae:5a:93:f9:04:
23:9f:fc:62:07:52:cf:9d:f2:09:d0:20:d4:5a:49:69:80:ce:
b7:d7:c2:ff:04:13:0a:fb:60:af:cb:ab:85:32:0a:ae:8a:dc:
fc:ff:9a:91:87:83:39:b9:a6:d0:da:6e:4d:28:7a:51:c8:69:
bc:b0:0a:8c:d5:da:93:37:eb:82:35:92:05:7b:b4:d3:92:52:
20:e5:91:ea:2d:89:23:01:9c:90:73:da:0f:78:19:a1:77:c4:
70:fa:59:da:a7:d8:61:ec:31:33:d9:0f:0b:62:fe:f3:1d:2f:
ac:31:13:ac:35:5f:a4:85:21:b1:7c:d9:bf:4f:54:84:4f:af:
8c:6e:45:55:92:8f:63:ed:26:ef:84:68:a8:f2:23:50:f4:56:
1c:92:3a:fb:6e:50:63:c5:ae:aa:4b:bf:de:9f:83:d4:06:06:
21:42:54:c6
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZe2Mu3R3Cg7I6c2OSxsclDLMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDUxNGI0ZDNlZmZiOGJkMGIxMzM2ZWViY2I4MjdiNzdlMTI5
ZTBmNmYwHhcNMjUwNjI4MTEwMTIwWhcNMjUwNjI5MTEwMTIwWjAzMTEwLwYDVQQD
Eyg3OGI2MThiYjdkMWQ2ZDNiMDFiYjE0ZjU2YTdlMjI4MTJjNmRlMTBkMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA0mC0JzhmCd/c6cfSyrzQvzWpv1JN
HNZCqousxF3qLUnaaYaRcnvCwyo++VA67VMHf1XOje74VSMfhw842CA9TjOmBDyw
wwix6nj0afpXg/kPxzZw9ADmxoA65GVjgQAj/3JVkK63W5HShFxQ8BlwfErSgnVy
tB04Zb8TfCh63OBQVFAtEUxgSzqo0BSYpUnQwno2JlGO6pWpdBnKVPLgy13d83M8
ApXk/ub8Y0a4PTUysG2dFcNScVRQe753g6/RfvT28CtDRKLt/r00k5pzyfSMlwzX
6DnHLhnaYdhcC5ng6IyqFYqhZsHejmusNQllhLhaW6sANQZQJ6gl/wlheQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFHi2GLt9HW07AbsU9Wp+IoEsbeENMB8GA1UdIwQY
MBaAFFFLTT7/uL0LEzbuvLgnt34Sng9vMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvVVV0TlB2LTR2UXNUTnU2OHVDZTNmaEtlRDI4LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC85MC83NmE2MGUtMGQ4MS00YzQxLWI4ODkt
OTFmYzBmNTFlYTA3LzEvVVV0TlB2LTR2UXNUTnU2OHVDZTNmaEtlRDI4Lm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC85MC83NmE2MGUtMGQ4MS00YzQxLWI4ODktOTFmYzBmNTFlYTA3
LzEvVVV0TlB2LTR2UXNUTnU2OHVDZTNmaEtlRDI4LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAOtUYg+BA
uU2cpj9yTAAqO8P8NohY0jg9NNaTz0pe4+OYTgX4JIZ7di36rKkjU7a8J7x3qzE+
iHLap/j9VuAUtTqp+H+NKL2xsdKS/ZvSVJH5oI3dnq5ak/kEI5/8YgdSz53yCdAg
1FpJaYDOt9fC/wQTCvtgr8urhTIKrorc/P+akYeDObmm0NpuTSh6UchpvLAKjNXa
kzfrgjWSBXu005JSIOWR6i2JIwGckHPaD3gZoXfEcPpZ2qfYYewxM9kPC2L+8x0v
rDETrDVfpIUhsXzZv09UhE+vjG5FVZKPY+0m74RoqPIjUPRWHJI6+25QY8Wuqku/
3p+D1AYGIUJUxg==
-----END CERTIFICATE-----
Generated at Sat Jun 28 20:28:33 2025 by rpki-client