Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bd/8819e2-c4e3-4bce-a61c-305d41d53a65/1/uFsMinWJOk-OHvDZpNQUeNizMng.mft
File: uFsMinWJOk-OHvDZpNQUeNizMng.mft (raw, json)
Hash identifier: yyxDiRc999AfhnAhdHH1pAvqFgXQLgqqvvnlxFIprzA=
Subject key identifier: 18:81:4C:95:37:D9:8F:E8:FE:24:7F:EF:D1:F5:13:78:D3:FC:ED:96
Authority key identifier: B8:5B:0C:8A:75:89:3A:4F:8E:1E:F0:D9:A4:D4:14:78:D8:B3:32:78
Certificate issuer: /CN=b85b0c8a75893a4f8e1ef0d9a4d41478d8b33278
Certificate serial: 0197B8C60E57BB9FE519C38B8DB1DE019B3A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/uFsMinWJOk-OHvDZpNQUeNizMng.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bd/8819e2-c4e3-4bce-a61c-305d41d53a65/1/uFsMinWJOk-OHvDZpNQUeNizMng.mft
Manifest number: 150C
Signing time: Sat 28 Jun 2025 23:01:16 +0000
Manifest this update: Sat 28 Jun 2025 23:01:16 +0000
Manifest next update: Sun 29 Jun 2025 23:01:16 +0000
Files and hashes: 1: FAbnnF69oHTmqk-_EL74zctuaA4.roa (hash: fltdyHSTKiTHvNl3z1Whswl3hhYadpjXzd/kAG+oHEc=)
2: aJV7GbLDrd2CQzyoG7J6OnTP5DY.roa (hash: RYvSIhl4EMxqFZiyrQ0zAL7ZWanzg67h6dO8KAffWY0=)
3: uFsMinWJOk-OHvDZpNQUeNizMng.crl (hash: UQyrG2NYxRIHFrBb2PAEh7H8OJy+jVuLWOMqWDbfiSY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/bd/8819e2-c4e3-4bce-a61c-305d41d53a65/1/uFsMinWJOk-OHvDZpNQUeNizMng.crl
rsync://rpki.ripe.net/repository/DEFAULT/bd/8819e2-c4e3-4bce-a61c-305d41d53a65/1/uFsMinWJOk-OHvDZpNQUeNizMng.mft
rsync://rpki.ripe.net/repository/DEFAULT/uFsMinWJOk-OHvDZpNQUeNizMng.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 23:01:16 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b8:c6:0e:57:bb:9f:e5:19:c3:8b:8d:b1:de:01:9b:3a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b85b0c8a75893a4f8e1ef0d9a4d41478d8b33278
Validity
Not Before: Jun 28 23:01:16 2025 GMT
Not After : Jun 29 23:01:16 2025 GMT
Subject: CN=18814c9537d98fe8fe247fefd1f51378d3fced96
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:e0:c9:95:aa:f6:79:e9:4b:04:a3:e8:69:ef:
59:38:e6:23:00:00:94:46:ec:81:c5:a0:92:63:bd:
9f:0a:c2:e7:5c:7c:2b:3a:7e:f4:65:5f:7b:1c:02:
d4:f9:f9:d6:37:8b:11:ab:dd:be:b7:07:0f:94:f4:
1b:a1:d2:3f:32:ce:05:92:07:a1:94:84:54:39:b0:
53:de:a2:f4:c6:de:e9:f8:dc:4b:c9:b6:8a:cf:dd:
9b:5c:65:25:ac:74:21:4a:bb:81:8b:c3:12:62:2a:
08:c4:e0:e9:ed:1e:2b:02:7d:4e:ce:4c:0e:a6:07:
14:2c:ec:f1:c0:3b:59:ac:1d:6b:ae:2e:3c:7b:a2:
3f:75:55:9e:21:61:a7:74:c9:50:7e:51:67:7a:66:
55:6f:39:21:6a:23:a3:19:03:cc:b8:23:83:e5:9a:
df:8d:3a:d2:e7:c8:c3:87:1d:69:03:13:77:de:0f:
1e:dd:f5:70:27:d3:d5:fb:2a:90:50:8a:d0:ae:cf:
da:45:22:e1:ef:b2:84:ed:94:29:86:82:e7:e8:74:
25:43:88:c5:78:9c:9b:6d:ed:da:23:58:a7:81:fa:
ee:76:af:36:7e:0d:b5:53:3b:76:44:8d:0e:84:3f:
8b:f8:9b:a0:11:1c:06:14:4a:f4:8b:40:3f:a5:87:
54:71
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
18:81:4C:95:37:D9:8F:E8:FE:24:7F:EF:D1:F5:13:78:D3:FC:ED:96
X509v3 Authority Key Identifier:
keyid:B8:5B:0C:8A:75:89:3A:4F:8E:1E:F0:D9:A4:D4:14:78:D8:B3:32:78
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/uFsMinWJOk-OHvDZpNQUeNizMng.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bd/8819e2-c4e3-4bce-a61c-305d41d53a65/1/uFsMinWJOk-OHvDZpNQUeNizMng.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bd/8819e2-c4e3-4bce-a61c-305d41d53a65/1/uFsMinWJOk-OHvDZpNQUeNizMng.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
ae:c2:1c:28:49:e6:04:0c:da:0b:f4:41:95:1c:08:d0:7a:ae:
80:05:f8:e0:ef:ae:d3:9d:bf:09:ea:94:2d:df:84:55:32:f7:
c9:5e:29:0c:ec:61:c5:37:40:19:d0:97:b4:f9:19:c2:47:81:
bf:36:da:48:3f:2c:7b:bd:5b:c4:0d:27:02:b0:9e:c4:ed:8e:
94:7f:0c:37:48:2f:57:41:20:7d:12:3c:e9:fc:47:b5:f1:56:
d5:ae:17:2b:3c:fa:d0:c5:b6:e0:69:8c:83:d7:73:4f:53:66:
9f:fd:d8:63:60:ba:0f:af:18:27:83:b5:44:fa:6e:6f:1e:11:
0c:2e:58:d3:ff:4a:18:bd:4d:08:9c:74:f5:4c:41:41:df:ee:
5c:ff:69:60:38:19:18:84:15:25:de:3e:6d:78:e0:05:19:73:
25:8d:b0:b1:bb:b9:e9:41:b5:c6:2a:3f:eb:bd:91:67:2f:c0:
ce:d5:d1:60:5a:a1:8c:69:63:c1:76:50:3a:7b:ac:b5:17:3e:
01:6b:d9:41:9a:2f:90:d2:fd:88:5a:84:ac:36:68:a5:a3:83:
fe:18:1a:96:ea:9d:b2:a8:9c:1c:a4:fb:d0:f8:ff:79:f9:fe:
b4:f0:a4:3b:4c:8f:fc:66:59:d6:e3:bb:8a:15:4a:4c:ae:85:
49:1d:20:b3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 29 09:22:54 2025 by rpki-client