Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b2/d71269-4b56-4572-a711-d84ecb2505c4/1/5UGkwVK194bWI9hcQUZSmc3aM4k.mft
File: 5UGkwVK194bWI9hcQUZSmc3aM4k.mft (raw, json)
Hash identifier: yeCzqMSHk8so1Pn8IZVq1wz7USu3Y7hoFV43LPcFngU=
Subject key identifier: E0:85:B2:4A:79:8C:CE:E8:2C:E6:43:EA:F6:D3:8D:E8:05:53:D9:5B
Authority key identifier: E5:41:A4:C1:52:B5:F7:86:D6:23:D8:5C:41:46:52:99:CD:DA:33:89
Certificate issuer: /CN=e541a4c152b5f786d623d85c41465299cdda3389
Certificate serial: 0197B7EA378E82F8D414A2DA08D10435DD53
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/5UGkwVK194bWI9hcQUZSmc3aM4k.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b2/d71269-4b56-4572-a711-d84ecb2505c4/1/5UGkwVK194bWI9hcQUZSmc3aM4k.mft
Manifest number: 15B8
Signing time: Sat 28 Jun 2025 19:01:09 +0000
Manifest this update: Sat 28 Jun 2025 19:01:09 +0000
Manifest next update: Sun 29 Jun 2025 19:01:09 +0000
Files and hashes: 1: 5UGkwVK194bWI9hcQUZSmc3aM4k.crl (hash: 85bSwfnylvrRfK7MNPBqAaTbPHZBT0p1YYCKItzqRao=)
2: kenow9ooVwL0t4IuHSVvvQIsN8M.roa (hash: tJkXtVd1TBPTWkBnhiKcyLiHlQeoQgvy5+UbWV83vUY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b2/d71269-4b56-4572-a711-d84ecb2505c4/1/5UGkwVK194bWI9hcQUZSmc3aM4k.crl
rsync://rpki.ripe.net/repository/DEFAULT/b2/d71269-4b56-4572-a711-d84ecb2505c4/1/5UGkwVK194bWI9hcQUZSmc3aM4k.mft
rsync://rpki.ripe.net/repository/DEFAULT/5UGkwVK194bWI9hcQUZSmc3aM4k.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 15:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b7:ea:37:8e:82:f8:d4:14:a2:da:08:d1:04:35:dd:53
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e541a4c152b5f786d623d85c41465299cdda3389
Validity
Not Before: Jun 28 19:01:09 2025 GMT
Not After : Jun 29 19:01:09 2025 GMT
Subject: CN=e085b24a798ccee82ce643eaf6d38de80553d95b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cf:27:df:e1:39:ce:b9:56:05:9f:32:08:60:57:
e4:a8:2a:8d:b6:2d:aa:53:a7:62:a7:f1:72:23:8f:
0c:78:a9:95:16:28:5b:e5:79:fc:4c:0f:ca:9a:dd:
6b:44:a0:fb:fb:bb:25:c0:a4:46:96:09:f0:80:5d:
a9:02:42:25:5e:ca:f6:90:fe:20:c9:8c:58:7c:d1:
d1:85:ed:de:b6:52:0b:79:da:7d:30:39:88:76:7b:
a8:5a:13:0a:30:cc:48:c4:a6:7d:46:cf:f5:ab:7a:
3b:c9:c1:18:11:39:3e:64:37:c8:c3:30:92:27:5b:
82:c5:45:6f:90:74:46:4b:3c:c8:9f:96:8c:2c:94:
d7:94:56:a5:3c:1d:fb:54:5f:7f:21:fe:3d:f1:1c:
aa:60:b0:80:9a:15:e0:45:44:29:9e:35:51:9f:21:
e0:6f:f6:d0:bd:85:68:0e:fe:74:2f:76:64:97:79:
12:e7:d8:e9:d2:6f:4b:35:ee:f4:65:73:ac:42:9d:
83:9a:c7:3f:95:20:0c:30:d9:53:55:a1:6b:51:27:
36:05:60:56:4e:5e:e7:19:83:49:2f:54:29:1f:39:
cf:02:ec:22:1d:17:58:ca:1b:16:56:e5:80:23:4b:
1d:57:80:d5:d1:db:89:ad:6d:2b:79:1b:cf:70:db:
59:0d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E0:85:B2:4A:79:8C:CE:E8:2C:E6:43:EA:F6:D3:8D:E8:05:53:D9:5B
X509v3 Authority Key Identifier:
keyid:E5:41:A4:C1:52:B5:F7:86:D6:23:D8:5C:41:46:52:99:CD:DA:33:89
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/5UGkwVK194bWI9hcQUZSmc3aM4k.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b2/d71269-4b56-4572-a711-d84ecb2505c4/1/5UGkwVK194bWI9hcQUZSmc3aM4k.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b2/d71269-4b56-4572-a711-d84ecb2505c4/1/5UGkwVK194bWI9hcQUZSmc3aM4k.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
82:b7:0d:51:c0:26:8d:16:9c:7d:0d:a6:72:c0:43:cb:57:62:
73:31:ca:e8:75:bc:36:19:03:00:ad:3c:9c:8e:86:3d:79:ef:
8e:77:b0:85:12:c4:98:d5:b8:eb:73:20:84:5d:55:78:f5:a9:
bd:cb:65:74:e4:ce:97:6d:68:a3:a1:15:a0:5b:ea:62:c4:ac:
53:38:9c:79:b9:45:50:78:c1:67:66:cc:d9:95:e7:fb:98:19:
19:e9:ff:47:bc:89:e2:cd:c3:63:e4:8e:47:f3:1e:42:61:fc:
98:22:24:75:34:4f:e7:78:c2:b6:a5:f3:f6:03:7b:24:22:90:
51:86:c9:84:9a:e0:5e:d2:d3:43:c7:9c:8d:3f:16:03:bf:3d:
46:be:6e:0d:7e:c2:af:53:31:6c:71:91:43:9f:31:27:a9:63:
bd:2a:f0:e1:bb:ef:76:66:4a:f7:b0:09:02:34:9e:cd:34:38:
5d:87:ee:e8:8e:8e:e0:71:ab:dd:6f:e7:e6:63:6b:27:ad:5f:
e5:0f:91:dc:80:e3:8d:09:78:26:f8:d5:31:72:be:8e:f2:c7:
cb:5c:07:29:03:60:78:a5:20:31:a5:10:39:dc:2c:e9:af:19:
6c:b3:39:81:94:ef:7c:72:0f:2a:99:27:d1:b4:a5:2b:15:b8:
df:a7:91:3b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 28 20:27:48 2025 by rpki-client