Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c7/3d921b-9da6-4a79-a264-fc1303de6d49/1/ufurlhxKPhbNdhvC_tuaKBd8tHM.mft
File: ufurlhxKPhbNdhvC_tuaKBd8tHM.mft (raw, json)
Hash identifier: latavJ0yhFVd7yS5BbHXVpTdoq8PhpBamuJRuSpO5oI=
Subject key identifier: 6A:55:4D:7E:75:87:C5:C8:34:94:63:A1:CE:82:16:1F:91:C3:4E:67
Authority key identifier: B9:FB:AB:96:1C:4A:3E:16:CD:76:1B:C2:FE:DB:9A:28:17:7C:B4:73
Certificate issuer: /CN=b9fbab961c4a3e16cd761bc2fedb9a28177cb473
Certificate serial: 0197B820FA45870D646DBABC213851848F10
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ufurlhxKPhbNdhvC_tuaKBd8tHM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c7/3d921b-9da6-4a79-a264-fc1303de6d49/1/ufurlhxKPhbNdhvC_tuaKBd8tHM.mft
Manifest number: 3B
Signing time: Sat 28 Jun 2025 20:00:58 +0000
Manifest this update: Sat 28 Jun 2025 20:00:58 +0000
Manifest next update: Sun 29 Jun 2025 20:00:58 +0000
Files and hashes: 1: h4uw6ufwFOQi4mDrtcZ6XaqmPV0.roa (hash: h3p/LWTg/DWcs8xgDXGpmbcqHQbGvNr+C69wyUtdibA=)
2: ufurlhxKPhbNdhvC_tuaKBd8tHM.crl (hash: YGS+mklbXUCc43uO60vAvxxvzag8r/NDDszuQZCmaZg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c7/3d921b-9da6-4a79-a264-fc1303de6d49/1/ufurlhxKPhbNdhvC_tuaKBd8tHM.crl
rsync://rpki.ripe.net/repository/DEFAULT/c7/3d921b-9da6-4a79-a264-fc1303de6d49/1/ufurlhxKPhbNdhvC_tuaKBd8tHM.mft
rsync://rpki.ripe.net/repository/DEFAULT/ufurlhxKPhbNdhvC_tuaKBd8tHM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 15:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b8:20:fa:45:87:0d:64:6d:ba:bc:21:38:51:84:8f:10
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b9fbab961c4a3e16cd761bc2fedb9a28177cb473
Validity
Not Before: Jun 28 20:00:58 2025 GMT
Not After : Jun 29 20:00:58 2025 GMT
Subject: CN=6a554d7e7587c5c8349463a1ce82161f91c34e67
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ee:4c:e6:4d:24:30:07:30:e4:b9:b9:c5:20:7b:
a5:02:fa:91:8e:f7:35:1e:be:4b:64:f5:ac:5b:cb:
8a:f8:93:81:e4:65:a2:54:ff:ef:1e:e4:a4:ce:7e:
dc:e2:31:8c:2d:a8:95:0a:7e:db:6e:80:f9:99:58:
52:58:9a:bb:a4:6d:67:a0:d0:59:90:39:e4:1c:e5:
24:f3:8c:c8:e7:5e:c8:60:e6:44:97:d6:09:94:3f:
38:01:f7:1f:1d:34:f9:c0:99:8f:89:70:ab:7f:da:
85:0e:88:17:74:81:f8:74:1b:04:87:eb:fa:6b:ac:
58:19:3a:22:cf:9b:03:56:bf:bd:4d:df:89:39:a0:
c0:b4:f4:27:e8:ba:15:3f:34:14:4f:9d:46:15:7a:
24:17:c7:b0:57:b1:3b:73:77:5a:fc:08:94:11:84:
5f:bf:56:84:58:a6:8e:a9:55:c6:97:71:cc:65:0f:
66:e9:d0:8f:75:99:2c:f6:45:63:5b:5b:04:83:dd:
4d:d0:3c:98:9c:77:db:4c:b4:71:56:54:be:de:df:
a8:cb:e3:48:a9:ce:43:57:32:4c:42:78:ff:c9:dd:
57:c0:b5:77:33:2e:e3:5e:93:c5:12:ab:42:ff:0c:
67:0e:a2:67:19:5a:82:a7:90:6c:4b:31:89:ec:1e:
31:4f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6A:55:4D:7E:75:87:C5:C8:34:94:63:A1:CE:82:16:1F:91:C3:4E:67
X509v3 Authority Key Identifier:
keyid:B9:FB:AB:96:1C:4A:3E:16:CD:76:1B:C2:FE:DB:9A:28:17:7C:B4:73
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ufurlhxKPhbNdhvC_tuaKBd8tHM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c7/3d921b-9da6-4a79-a264-fc1303de6d49/1/ufurlhxKPhbNdhvC_tuaKBd8tHM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c7/3d921b-9da6-4a79-a264-fc1303de6d49/1/ufurlhxKPhbNdhvC_tuaKBd8tHM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
3d:50:2c:4a:07:ef:93:84:ff:18:ee:29:52:e7:7d:79:47:5a:
e3:09:7a:6c:6b:64:0a:d3:0e:a8:9d:6c:45:cf:74:32:28:93:
57:16:12:00:aa:b0:6d:3a:1d:9f:ec:fc:02:e2:15:4c:d5:48:
17:2e:f6:df:07:d5:70:0b:89:b5:3a:61:ae:c5:13:bd:fd:d6:
5b:a1:84:25:a1:b0:9c:67:58:b9:5e:93:ca:cb:c0:cd:42:bb:
64:84:f4:85:10:ee:5a:33:40:a3:18:25:2f:ad:85:ec:cb:cc:
da:ec:f3:2c:1c:48:f4:a4:37:22:4c:5b:fb:e9:ad:fa:df:78:
bc:0a:a7:5d:15:dc:fb:21:b2:39:e6:53:fd:ff:40:87:9f:84:
15:19:b6:0b:7d:35:7a:f0:fb:dd:c3:0f:12:c0:67:70:1f:f7:
c0:5d:94:f1:1f:7e:11:37:30:6f:4a:aa:9f:c2:6e:80:b0:77:
91:4c:fc:65:e6:4b:be:1a:bc:c5:8f:e8:5c:82:bd:d5:7f:8a:
bf:09:c4:49:58:80:10:9f:bb:7c:36:f2:8c:7d:1c:e1:bf:bf:
40:af:8a:0d:01:83:92:5d:4b:61:2d:4c:0c:4a:49:44:17:34:
80:98:44:62:e0:72:86:53:b3:13:18:37:4b:2e:6e:be:ce:46:
58:7b:12:a1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 28 22:28:46 2025 by rpki-client