Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bd/8819e2-c4e3-4bce-a61c-305d41d53a65/1/uFsMinWJOk-OHvDZpNQUeNizMng.mft
File: uFsMinWJOk-OHvDZpNQUeNizMng.mft (raw, json)
Hash identifier: IH9HpRKgPsElmAfo7Jj3gHgopry2I7z2OVl5X6n58qw=
Subject key identifier: C4:6A:1E:35:57:4B:6E:7B:EF:87:E5:9A:56:40:50:DD:9A:3B:C7:75
Authority key identifier: B8:5B:0C:8A:75:89:3A:4F:8E:1E:F0:D9:A4:D4:14:78:D8:B3:32:78
Certificate issuer: /CN=b85b0c8a75893a4f8e1ef0d9a4d41478d8b33278
Certificate serial: 0198D4A7F27460AB8D6E2B64C3CBCCA4D301
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/uFsMinWJOk-OHvDZpNQUeNizMng.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bd/8819e2-c4e3-4bce-a61c-305d41d53a65/1/uFsMinWJOk-OHvDZpNQUeNizMng.mft
Manifest number: 159F
Signing time: Sat 23 Aug 2025 02:00:32 +0000
Manifest this update: Sat 23 Aug 2025 02:00:32 +0000
Manifest next update: Sun 24 Aug 2025 02:00:32 +0000
Files and hashes: 1: FAbnnF69oHTmqk-_EL74zctuaA4.roa (hash: fltdyHSTKiTHvNl3z1Whswl3hhYadpjXzd/kAG+oHEc=)
2: aJV7GbLDrd2CQzyoG7J6OnTP5DY.roa (hash: RYvSIhl4EMxqFZiyrQ0zAL7ZWanzg67h6dO8KAffWY0=)
3: uFsMinWJOk-OHvDZpNQUeNizMng.crl (hash: H/8qVUIo3KC6834JcRoVJDfB8CgIYRR7bEpoVqEL9wQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/bd/8819e2-c4e3-4bce-a61c-305d41d53a65/1/uFsMinWJOk-OHvDZpNQUeNizMng.crl
rsync://rpki.ripe.net/repository/DEFAULT/bd/8819e2-c4e3-4bce-a61c-305d41d53a65/1/uFsMinWJOk-OHvDZpNQUeNizMng.mft
rsync://rpki.ripe.net/repository/DEFAULT/uFsMinWJOk-OHvDZpNQUeNizMng.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 02:00:32 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d4:a7:f2:74:60:ab:8d:6e:2b:64:c3:cb:cc:a4:d3:01
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b85b0c8a75893a4f8e1ef0d9a4d41478d8b33278
Validity
Not Before: Aug 23 02:00:32 2025 GMT
Not After : Aug 24 02:00:32 2025 GMT
Subject: CN=c46a1e35574b6e7bef87e59a564050dd9a3bc775
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cf:86:b9:b3:82:7d:b0:fc:4c:c8:45:e4:e5:25:
2c:9f:4e:4f:cc:04:8e:e2:a0:c8:9c:0d:2d:21:5c:
b9:87:ed:7f:cc:b9:66:7a:98:77:cb:8b:79:c5:c9:
85:ae:da:ab:0a:c5:41:95:ba:78:7e:7b:08:2e:5b:
5b:24:98:11:b8:1f:81:be:f3:b8:0e:67:60:8d:a0:
f0:c9:5d:8f:4e:93:5f:5d:8e:63:8f:a4:e0:b0:9d:
be:94:4b:5e:2f:cf:4d:36:73:e7:b2:62:ee:f2:77:
f7:9e:29:03:7e:d6:06:61:6c:81:7b:40:e8:fd:10:
b3:26:a0:b7:90:3b:fd:7f:17:ce:eb:cc:9c:00:46:
b0:d1:c1:a0:f5:a9:33:9c:a2:fc:28:9c:e2:f1:37:
77:73:e9:d6:9b:ed:0d:9b:b8:a5:4f:71:4b:0b:9f:
91:72:97:e8:8b:bb:17:3e:25:e9:d8:1f:25:ce:6f:
85:1a:fd:4f:12:31:9a:0b:ee:8a:49:d4:7a:d6:79:
d9:64:bb:cd:c8:a8:84:f5:5e:08:31:3f:e5:25:90:
e4:05:f1:75:81:90:64:a6:26:5b:7b:f9:79:6d:d2:
45:fc:bf:f7:d1:fe:1a:a7:98:8b:ad:c7:67:e3:4b:
4a:fd:6f:65:50:dc:e8:ff:41:98:96:99:96:85:14:
db:5d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C4:6A:1E:35:57:4B:6E:7B:EF:87:E5:9A:56:40:50:DD:9A:3B:C7:75
X509v3 Authority Key Identifier:
keyid:B8:5B:0C:8A:75:89:3A:4F:8E:1E:F0:D9:A4:D4:14:78:D8:B3:32:78
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/uFsMinWJOk-OHvDZpNQUeNizMng.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bd/8819e2-c4e3-4bce-a61c-305d41d53a65/1/uFsMinWJOk-OHvDZpNQUeNizMng.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bd/8819e2-c4e3-4bce-a61c-305d41d53a65/1/uFsMinWJOk-OHvDZpNQUeNizMng.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
6d:42:3f:76:af:a0:0c:d3:b4:e3:04:30:90:41:cc:1a:4f:15:
d7:97:93:13:14:01:31:5b:e9:b2:2e:2d:e8:a1:89:1c:62:b7:
84:e5:64:3a:12:5b:27:ac:94:0c:ec:18:20:3f:bd:a6:e7:53:
ac:57:39:f2:98:e9:0f:6a:c2:49:b4:62:3c:73:2b:8f:c2:4f:
17:4f:a0:11:0b:64:3d:86:c4:35:6f:ae:05:68:76:a8:b2:84:
e1:ca:1a:d4:82:34:48:b3:ab:68:c7:82:8d:30:0d:03:ae:34:
1b:32:20:8a:2f:89:b5:fe:64:41:85:ab:2e:69:25:8b:19:1b:
ac:ac:6c:cb:72:4e:c0:fb:d8:38:81:0f:d4:ac:bc:4f:62:18:
5b:cc:26:9d:2a:7d:d9:b3:c8:97:c7:1c:4f:16:59:31:44:69:
f8:c6:fa:19:0a:fc:f5:7d:78:29:6e:64:5b:d1:a0:98:8d:ef:
9e:e2:ee:cd:0b:d6:d7:90:a6:18:ec:0d:02:e9:44:33:bb:e1:
e7:27:67:75:05:eb:f3:0f:27:d3:15:ad:79:2d:d0:6b:61:e3:
a3:60:91:f7:f5:46:d0:56:fc:f1:ea:b8:04:2f:b2:92:a3:d5:
bc:e5:ba:11:52:75:9a:a5:f4:73:c7:73:4b:b7:4d:e5:9f:af:
54:6a:15:3b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 12:23:11 2025 by rpki-client