Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c7/3d921b-9da6-4a79-a264-fc1303de6d49/1/ufurlhxKPhbNdhvC_tuaKBd8tHM.mft
File: ufurlhxKPhbNdhvC_tuaKBd8tHM.mft (raw, json)
Hash identifier: OLhTgCno4OmUaBupQHTcPM4F2JbyBMlOuKKOBHQe5p0=
Subject key identifier: EB:56:E7:65:4F:38:C1:E7:67:4B:30:D8:49:F0:49:4D:E1:16:79:28
Authority key identifier: B9:FB:AB:96:1C:4A:3E:16:CD:76:1B:C2:FE:DB:9A:28:17:7C:B4:73
Certificate issuer: /CN=b9fbab961c4a3e16cd761bc2fedb9a28177cb473
Certificate serial: 0198D5F13325A5CC32C90D3199E6230AC60A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ufurlhxKPhbNdhvC_tuaKBd8tHM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c7/3d921b-9da6-4a79-a264-fc1303de6d49/1/ufurlhxKPhbNdhvC_tuaKBd8tHM.mft
Manifest number: CF
Signing time: Sat 23 Aug 2025 08:00:10 +0000
Manifest this update: Sat 23 Aug 2025 08:00:10 +0000
Manifest next update: Sun 24 Aug 2025 08:00:10 +0000
Files and hashes: 1: h4uw6ufwFOQi4mDrtcZ6XaqmPV0.roa (hash: h3p/LWTg/DWcs8xgDXGpmbcqHQbGvNr+C69wyUtdibA=)
2: ufurlhxKPhbNdhvC_tuaKBd8tHM.crl (hash: W7db3CfyId/GtuUd3bwzpSDbCLZ5r7k1wHwOVaTFhlY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c7/3d921b-9da6-4a79-a264-fc1303de6d49/1/ufurlhxKPhbNdhvC_tuaKBd8tHM.crl
rsync://rpki.ripe.net/repository/DEFAULT/c7/3d921b-9da6-4a79-a264-fc1303de6d49/1/ufurlhxKPhbNdhvC_tuaKBd8tHM.mft
rsync://rpki.ripe.net/repository/DEFAULT/ufurlhxKPhbNdhvC_tuaKBd8tHM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 05:01:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d5:f1:33:25:a5:cc:32:c9:0d:31:99:e6:23:0a:c6:0a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b9fbab961c4a3e16cd761bc2fedb9a28177cb473
Validity
Not Before: Aug 23 08:00:10 2025 GMT
Not After : Aug 24 08:00:10 2025 GMT
Subject: CN=eb56e7654f38c1e7674b30d849f0494de1167928
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d8:dc:2a:9a:36:33:74:8f:ef:13:6c:e4:ea:cb:
9f:5c:0f:d7:75:be:82:b1:d6:d1:3d:e0:64:42:34:
9b:af:b9:c1:ab:e0:99:08:e8:85:c7:6e:ed:81:8e:
72:dd:b0:aa:c5:4f:3e:02:ea:79:3d:12:4d:25:4a:
ed:83:d3:0d:fb:f6:c9:a5:86:69:ac:15:e7:01:79:
24:04:de:72:02:ff:f6:80:a2:24:14:3e:23:86:a2:
5c:56:9c:d2:e2:b4:10:73:1f:ca:46:ec:27:56:d8:
46:df:e3:1c:b5:5f:57:84:fd:7d:15:52:69:7b:25:
54:60:28:68:2d:a9:8c:d2:ed:64:04:e8:96:37:81:
78:fa:e2:9b:77:21:da:3f:2b:47:30:2a:78:5f:26:
99:80:d5:27:08:74:08:96:69:4e:9e:c2:ea:9b:dc:
e4:c0:ca:92:76:9e:bb:69:89:70:26:94:e3:b0:b6:
ed:d8:7a:4c:48:e1:d3:b9:d3:31:51:87:cf:0e:e0:
00:1c:df:32:ec:90:11:b3:47:17:e0:a8:20:1c:b2:
7b:b6:97:5d:a2:e9:36:89:61:cd:b6:ee:35:1e:21:
2b:6e:98:86:1a:ec:93:be:85:30:6e:4f:39:e2:1b:
44:f2:7b:27:22:a0:95:68:0c:25:25:09:9a:6b:49:
82:47
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EB:56:E7:65:4F:38:C1:E7:67:4B:30:D8:49:F0:49:4D:E1:16:79:28
X509v3 Authority Key Identifier:
keyid:B9:FB:AB:96:1C:4A:3E:16:CD:76:1B:C2:FE:DB:9A:28:17:7C:B4:73
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ufurlhxKPhbNdhvC_tuaKBd8tHM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c7/3d921b-9da6-4a79-a264-fc1303de6d49/1/ufurlhxKPhbNdhvC_tuaKBd8tHM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c7/3d921b-9da6-4a79-a264-fc1303de6d49/1/ufurlhxKPhbNdhvC_tuaKBd8tHM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
41:01:5d:a1:3d:a3:eb:56:0b:29:1d:f6:28:dc:5a:83:f6:58:
12:c0:b7:86:9c:4d:10:82:49:65:9b:3d:a6:68:a5:51:79:e7:
38:e0:9d:74:01:f0:ce:c3:3a:fb:82:71:8b:ea:1c:c6:ae:f5:
84:fd:5f:a9:3d:af:74:9f:74:94:de:4f:a8:ed:9b:ba:ae:88:
2c:5a:c8:c8:28:b8:33:2c:ff:57:72:95:de:27:d5:44:8c:73:
40:d2:dc:cb:ec:56:33:78:b4:39:f6:6a:c5:48:ad:d2:a1:41:
71:57:b2:bf:3f:eb:e5:18:81:a8:41:63:16:bc:50:a2:35:07:
ac:95:72:ce:ed:13:a2:0f:f5:1d:95:40:61:bc:78:4b:7b:02:
4a:6d:28:ec:ba:c9:6c:26:a8:12:ee:9b:65:1f:c7:79:c7:a7:
d2:48:4b:7a:72:c9:ea:ba:28:e2:c3:6e:3b:bb:1d:19:7d:0e:
84:d0:58:96:e5:f7:06:9f:88:35:f7:e6:ba:46:33:1a:fc:ef:
e1:c3:db:8a:72:d2:35:c8:67:82:19:70:e1:83:4e:9b:3c:bf:
08:c7:e6:46:e7:1f:f8:d1:78:76:2e:e0:f3:a1:28:ff:72:6a:
30:09:07:d6:b0:ca:9e:27:f0:a1:74:80:57:6c:d2:9f:06:9f:
4e:12:69:c7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 11:31:55 2025 by rpki-client