Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a0/12c66d-ac63-43fc-8894-ab087f43b595/1/u4rmO3V9oa95DyD1nGNIEe7rG8w.mft
File: u4rmO3V9oa95DyD1nGNIEe7rG8w.mft (raw, json)
Hash identifier: rNPX6D3TkoAJ2LRmZTlMFgOwiTcmHbTATNPQim8i/pI=
Subject key identifier: 86:47:5E:E3:19:0E:05:AC:E8:2A:1B:3B:33:28:33:86:4F:A8:BB:C8
Authority key identifier: BB:8A:E6:3B:75:7D:A1:AF:79:0F:20:F5:9C:63:48:11:EE:EB:1B:CC
Certificate issuer: /CN=bb8ae63b757da1af790f20f59c634811eeeb1bcc
Certificate serial: 0197B6A05FF5EB454F056E35D06B037A90E1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/u4rmO3V9oa95DyD1nGNIEe7rG8w.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a0/12c66d-ac63-43fc-8894-ab087f43b595/1/u4rmO3V9oa95DyD1nGNIEe7rG8w.mft
Manifest number: 0A56
Signing time: Sat 28 Jun 2025 13:00:52 +0000
Manifest this update: Sat 28 Jun 2025 13:00:52 +0000
Manifest next update: Sun 29 Jun 2025 13:00:52 +0000
Files and hashes: 1: DIYIrtOVCh0oZUgoHnsBzDVYRgk.roa (hash: 9ygbw2KxTYEdLBVrIZpBTqLv2Fu0lBk+DuBHrlgf8dM=)
2: u4rmO3V9oa95DyD1nGNIEe7rG8w.crl (hash: ApFX+0h6iyYW6AO7M1ROkZMCg74J1BHk/LgWrGPYyt4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a0/12c66d-ac63-43fc-8894-ab087f43b595/1/u4rmO3V9oa95DyD1nGNIEe7rG8w.crl
rsync://rpki.ripe.net/repository/DEFAULT/a0/12c66d-ac63-43fc-8894-ab087f43b595/1/u4rmO3V9oa95DyD1nGNIEe7rG8w.mft
rsync://rpki.ripe.net/repository/DEFAULT/u4rmO3V9oa95DyD1nGNIEe7rG8w.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 13:00:52 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b6:a0:5f:f5:eb:45:4f:05:6e:35:d0:6b:03:7a:90:e1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=bb8ae63b757da1af790f20f59c634811eeeb1bcc
Validity
Not Before: Jun 28 13:00:52 2025 GMT
Not After : Jun 29 13:00:52 2025 GMT
Subject: CN=86475ee3190e05ace82a1b3b332833864fa8bbc8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:57:27:b3:4b:80:08:93:4e:25:9b:4b:4f:0e:
92:cd:4d:b6:c0:27:81:54:b0:c0:84:76:f8:a9:37:
ab:9d:c1:87:b1:46:23:ce:ea:1a:4b:6f:4a:84:1b:
b2:7a:4b:cd:2a:0e:6b:4f:8a:c6:d0:25:2c:31:80:
be:e9:bb:a8:da:28:3c:f8:a4:f5:3b:69:56:e4:a4:
df:5f:84:08:9c:9d:0f:1a:2b:50:de:c7:52:99:5c:
12:8a:2f:b6:bd:87:2b:41:a5:13:bd:26:3e:79:f1:
9e:ec:d4:96:f1:2a:b4:27:f4:b1:1a:96:01:f6:09:
1a:65:4a:1a:df:cc:e7:46:1a:5d:21:a6:a7:34:2b:
29:f8:1f:87:c3:91:4b:b3:e8:20:de:2e:cd:56:38:
20:ff:44:a3:5d:48:19:ed:f3:92:43:5f:ab:1d:8b:
f9:cd:1f:3a:d3:60:58:29:1a:5c:16:12:ba:67:f2:
f5:dc:72:ff:0e:0a:77:77:ad:36:d3:36:f5:df:c3:
b0:f4:c0:db:e8:a4:0f:49:fd:28:4a:77:62:ff:7c:
a4:c8:d1:82:71:eb:ce:1a:8e:d9:d0:1e:5e:9a:de:
3d:b0:01:3f:2b:3a:f7:8e:74:8f:1b:5c:7b:bd:0d:
90:73:95:71:fc:ee:ab:a8:4b:0d:26:d4:60:15:50:
5b:15
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
86:47:5E:E3:19:0E:05:AC:E8:2A:1B:3B:33:28:33:86:4F:A8:BB:C8
X509v3 Authority Key Identifier:
keyid:BB:8A:E6:3B:75:7D:A1:AF:79:0F:20:F5:9C:63:48:11:EE:EB:1B:CC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/u4rmO3V9oa95DyD1nGNIEe7rG8w.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a0/12c66d-ac63-43fc-8894-ab087f43b595/1/u4rmO3V9oa95DyD1nGNIEe7rG8w.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a0/12c66d-ac63-43fc-8894-ab087f43b595/1/u4rmO3V9oa95DyD1nGNIEe7rG8w.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
57:e1:79:0f:3b:ee:35:b2:01:a4:4e:b0:8f:e4:da:49:cd:ed:
8a:2e:ad:97:83:0d:1d:5d:3e:0c:7a:47:08:98:1a:8b:b0:a4:
bf:4a:39:10:3e:24:ce:ad:0f:2b:77:9c:df:80:5a:8f:53:af:
ef:c5:57:df:fd:c7:d4:e4:e4:20:ec:01:6a:84:61:23:52:26:
71:0b:25:29:b0:32:4a:df:fb:45:e1:00:ac:da:1b:39:34:7a:
1d:4e:c0:2b:51:02:73:5d:23:57:4f:65:cf:37:80:75:8b:f1:
58:17:2c:8b:79:6e:24:2f:8a:84:51:0f:4b:bd:b4:4c:0c:3a:
68:ca:a6:46:e6:e7:81:fc:f2:dd:f7:02:cb:cf:65:f3:12:5d:
b4:8d:be:59:42:65:54:ed:4f:8c:1b:ac:4c:20:bd:ce:98:4f:
65:b7:d0:61:ff:4e:ac:a9:fa:7f:12:61:0b:1c:c2:d2:4b:85:
64:a0:15:fd:67:2e:3b:0d:d6:33:88:de:a2:c5:b9:3e:06:2a:
19:7e:31:32:fe:e1:69:97:9a:98:a6:ee:19:19:86:35:37:a7:
ab:4e:66:2e:41:da:6b:0b:b3:e1:61:f6:7b:3c:bb:5d:69:30:
e6:05:04:63:78:9b:f9:ee:0b:f3:f6:7f:47:1e:e4:f6:68:e0:
5d:7b:d5:5f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 28 22:01:53 2025 by rpki-client