Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/97/03f9ee-53e3-4f69-b8b0-c138e5c27c2b/1/UhqgJHWNjRBOEXnFUDmBZjav4pg.mft
File: UhqgJHWNjRBOEXnFUDmBZjav4pg.mft (raw, json)
Hash identifier: rLfD8efh0JCXJbhM5lemV3c12P8U8IjagaNN0eDHLnc=
Subject key identifier: 0E:FC:6B:2D:7D:B9:B2:F6:7E:4C:75:65:27:09:B9:E2:20:09:CF:86
Authority key identifier: 52:1A:A0:24:75:8D:8D:10:4E:11:79:C5:50:39:81:66:36:AF:E2:98
Certificate issuer: /CN=521aa024758d8d104e1179c55039816636afe298
Certificate serial: 0197B6A116AB5C12839A8E74CA765BB41D44
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UhqgJHWNjRBOEXnFUDmBZjav4pg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/97/03f9ee-53e3-4f69-b8b0-c138e5c27c2b/1/UhqgJHWNjRBOEXnFUDmBZjav4pg.mft
Manifest number: 15B3
Signing time: Sat 28 Jun 2025 13:01:39 +0000
Manifest this update: Sat 28 Jun 2025 13:01:39 +0000
Manifest next update: Sun 29 Jun 2025 13:01:39 +0000
Files and hashes: 1: UhqgJHWNjRBOEXnFUDmBZjav4pg.crl (hash: 4x57BZC1yzkfwRKuDAN9KOCdqIHQlOyCgEI5Of+aahY=)
2: wzHTUEDPSJ9fu6Go3MzUkAR9gVE.roa (hash: HH9rFvWwfqcHjpbJnsKsdwBfEEqoBLNu0bOt5Pi9+gU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/97/03f9ee-53e3-4f69-b8b0-c138e5c27c2b/1/UhqgJHWNjRBOEXnFUDmBZjav4pg.crl
rsync://rpki.ripe.net/repository/DEFAULT/97/03f9ee-53e3-4f69-b8b0-c138e5c27c2b/1/UhqgJHWNjRBOEXnFUDmBZjav4pg.mft
rsync://rpki.ripe.net/repository/DEFAULT/UhqgJHWNjRBOEXnFUDmBZjav4pg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 10:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b6:a1:16:ab:5c:12:83:9a:8e:74:ca:76:5b:b4:1d:44
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=521aa024758d8d104e1179c55039816636afe298
Validity
Not Before: Jun 28 13:01:39 2025 GMT
Not After : Jun 29 13:01:39 2025 GMT
Subject: CN=0efc6b2d7db9b2f67e4c75652709b9e22009cf86
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:5d:4a:c6:5f:d6:d2:b3:5c:84:a7:84:d5:1c:
e3:b1:04:0f:1e:1d:bb:5a:c1:55:1d:b0:88:1a:1c:
d8:1b:e7:2a:07:52:41:10:0e:b5:a2:a3:a6:4a:3a:
79:d5:fa:36:43:e0:a4:af:37:7c:6b:33:d9:b7:54:
45:9b:26:d1:a2:4b:b5:c4:2b:db:ac:92:ef:25:7e:
dd:8c:7f:10:d5:f1:73:8b:a0:26:b8:f6:10:ae:1c:
b5:2e:01:e2:e6:c7:46:61:9f:69:d0:f7:61:65:da:
12:5a:21:8c:00:57:ad:67:f6:a1:61:29:10:8c:a5:
9c:b4:8b:4d:fd:b3:17:95:c1:44:0b:cf:fd:c6:a7:
00:09:59:c2:cd:72:85:11:b2:83:b3:38:e5:be:59:
ac:bc:93:d2:34:21:20:3f:50:64:cc:24:5e:da:ce:
cb:f2:90:b8:ea:11:6e:70:aa:5a:16:d0:a4:ec:ba:
14:09:5e:26:db:23:81:4d:62:56:5d:6b:d2:49:c1:
bb:26:f9:a5:9c:f2:5b:c4:97:93:90:64:af:ec:81:
89:49:b2:4f:b8:84:f4:a0:2e:88:49:5a:52:9d:b3:
a0:ee:05:07:34:5b:cd:b2:47:0e:4a:fa:5b:3d:9a:
4c:40:16:35:d7:ad:85:da:d1:58:fa:5d:93:23:d6:
a8:79
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0E:FC:6B:2D:7D:B9:B2:F6:7E:4C:75:65:27:09:B9:E2:20:09:CF:86
X509v3 Authority Key Identifier:
keyid:52:1A:A0:24:75:8D:8D:10:4E:11:79:C5:50:39:81:66:36:AF:E2:98
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UhqgJHWNjRBOEXnFUDmBZjav4pg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/97/03f9ee-53e3-4f69-b8b0-c138e5c27c2b/1/UhqgJHWNjRBOEXnFUDmBZjav4pg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/97/03f9ee-53e3-4f69-b8b0-c138e5c27c2b/1/UhqgJHWNjRBOEXnFUDmBZjav4pg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
4c:2a:d0:03:87:d1:f7:f1:94:52:56:6f:d8:be:1f:ed:d5:58:
c4:03:05:9f:e8:04:22:27:e7:83:a1:95:4e:c1:35:81:e2:9c:
f8:fc:ce:ef:3b:04:bf:d3:d4:b9:51:ef:63:2f:df:24:60:80:
68:2c:51:4e:c8:5c:7a:c0:a4:8a:77:97:16:f2:ac:fb:de:11:
cf:ae:9d:eb:1f:94:30:55:37:f5:de:df:cb:09:14:b2:55:77:
83:d2:95:cf:9b:52:22:28:02:0c:45:3e:30:71:f9:22:4b:bc:
b5:02:30:ab:ad:7e:a8:c2:11:38:e2:76:94:3d:7b:25:0d:06:
a0:c1:3b:0d:32:f2:1d:cb:ee:cf:31:b8:8a:52:e7:52:ab:ad:
bb:00:b6:72:cf:d5:8a:da:00:83:ec:aa:07:ab:e8:94:b4:98:
93:b9:7d:b0:0d:62:6a:d7:b2:db:c5:ac:0d:f0:90:80:1b:05:
65:14:06:25:8b:0b:fa:18:d9:89:60:b0:e9:a0:39:bf:4d:9b:
19:ae:f6:9b:0a:e7:66:9e:ee:d6:96:24:a0:e1:19:70:c9:87:
b3:22:6e:c2:d6:cd:29:33:ec:e3:10:22:35:7e:06:01:f1:ae:
1d:ad:a2:08:10:d7:40:43:70:8c:44:79:8c:8f:4c:ef:95:7a:
65:8e:e6:e7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 28 19:21:02 2025 by rpki-client