Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c9/01f736-af83-456c-8b45-5146ab7ea015/1/U1glzov1RBcCgvcgokhBQVaLDn0.mft
File: U1glzov1RBcCgvcgokhBQVaLDn0.mft (raw, json)
Hash identifier: lK4k9cD1MTPcLWdc5G3Xwtw0hwJNJ9P9yBUFZ58JGLg=
Subject key identifier: 88:9E:EA:FA:26:26:6A:B8:69:89:C4:8C:3A:56:86:BB:02:42:53:D4
Authority key identifier: 53:58:25:CE:8B:F5:44:17:02:82:F7:20:A2:48:41:41:56:8B:0E:7D
Certificate issuer: /CN=535825ce8bf544170282f720a2484141568b0e7d
Certificate serial: 0197B74526831D44C1593B35D152C4163E1F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/U1glzov1RBcCgvcgokhBQVaLDn0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c9/01f736-af83-456c-8b45-5146ab7ea015/1/U1glzov1RBcCgvcgokhBQVaLDn0.mft
Manifest number: 15B8
Signing time: Sat 28 Jun 2025 16:00:51 +0000
Manifest this update: Sat 28 Jun 2025 16:00:51 +0000
Manifest next update: Sun 29 Jun 2025 16:00:51 +0000
Files and hashes: 1: U1glzov1RBcCgvcgokhBQVaLDn0.crl (hash: cAypfrhx7mxXxky7AV8w13HclWz9MKFUf+Q5dmh9/RY=)
2: WX6sNrF92l686KdkTXPFkLfxe3U.roa (hash: Abr+DHAKxIPDGR7zdXI5jJnVVIXCf9i5JeUWk/vC2vA=)
3: WcSAU3UG3fbCDubUuAbDmN9BNXw.roa (hash: lUiGwZsu8aUjDmUrAqfxfzum4CcP/EsvidCuJT28td0=)
4: YsUzeXuKor8g8xJ2qQAIbZwuLdA.roa (hash: b8Dg+ptVU/0cD+fmDjz15R9Y3ThIrc8W4BKhqUm2GSI=)
5: tKMYskPULHrcExm9t_zqsBHITcI.roa (hash: R31NKmso4WbL0fd7lkKVeCkSUgER4Iw5rjhqu8nTNvA=)
6: vdc8LHeirosn85jHF2y6k4tZWpE.roa (hash: bWLLd9BGuNkbp8DQiZZnq80FzJLO4Q8aaegMFqU4oPI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c9/01f736-af83-456c-8b45-5146ab7ea015/1/U1glzov1RBcCgvcgokhBQVaLDn0.crl
rsync://rpki.ripe.net/repository/DEFAULT/c9/01f736-af83-456c-8b45-5146ab7ea015/1/U1glzov1RBcCgvcgokhBQVaLDn0.mft
rsync://rpki.ripe.net/repository/DEFAULT/U1glzov1RBcCgvcgokhBQVaLDn0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 10:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b7:45:26:83:1d:44:c1:59:3b:35:d1:52:c4:16:3e:1f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=535825ce8bf544170282f720a2484141568b0e7d
Validity
Not Before: Jun 28 16:00:51 2025 GMT
Not After : Jun 29 16:00:51 2025 GMT
Subject: CN=889eeafa26266ab86989c48c3a5686bb024253d4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d7:61:e9:b5:20:49:a3:60:c7:b1:81:d9:61:6b:
24:53:cf:68:cb:1d:cf:27:6c:1b:cc:dd:44:6f:38:
fb:22:28:06:b6:b5:f7:ef:75:bc:15:85:9c:fc:21:
9f:76:f6:4e:b8:0e:a5:a6:5f:ab:5a:0b:24:d1:f6:
1b:de:01:27:a3:37:b6:5f:86:09:b8:84:8a:71:6b:
19:f6:83:42:9c:a8:1f:99:89:dd:50:cc:9f:cd:96:
8f:6d:9c:ac:0d:3a:1b:da:43:4e:69:b7:0c:76:c2:
a2:e2:49:74:47:d3:29:b4:68:7a:21:11:36:77:8a:
22:27:14:e7:bd:08:d6:62:04:77:12:79:6b:14:22:
e2:f4:65:b4:a4:58:80:f2:a1:44:7c:b3:de:86:c4:
ad:d5:87:64:fd:59:e6:88:16:e6:ac:96:6e:1f:2c:
e7:d1:cb:0b:7b:a3:7b:52:64:22:b7:80:d1:b9:31:
b1:d8:5c:ad:d3:2b:88:45:37:aa:67:d2:2b:2e:13:
7e:3c:e2:75:dd:11:3c:22:a0:35:7f:39:82:5d:bf:
83:54:33:2f:a2:98:ce:e1:0a:f4:2f:40:c8:e0:71:
ff:06:a7:49:a0:8c:4e:c6:f9:2c:89:20:df:b8:32:
2e:71:df:8d:3f:90:91:4c:b6:bc:71:09:4a:38:27:
3c:59
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
88:9E:EA:FA:26:26:6A:B8:69:89:C4:8C:3A:56:86:BB:02:42:53:D4
X509v3 Authority Key Identifier:
keyid:53:58:25:CE:8B:F5:44:17:02:82:F7:20:A2:48:41:41:56:8B:0E:7D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/U1glzov1RBcCgvcgokhBQVaLDn0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c9/01f736-af83-456c-8b45-5146ab7ea015/1/U1glzov1RBcCgvcgokhBQVaLDn0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c9/01f736-af83-456c-8b45-5146ab7ea015/1/U1glzov1RBcCgvcgokhBQVaLDn0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
1e:eb:6d:de:01:4f:d4:89:9e:98:00:3a:79:b5:05:fc:27:14:
ad:ec:75:54:08:c9:b4:84:79:3c:de:fa:ea:00:ea:1c:e8:bb:
76:c8:71:1d:ad:c5:8e:49:9c:8c:85:70:34:7b:43:af:9a:82:
ca:79:b7:59:55:7f:dc:80:57:4e:9b:c5:89:db:2c:bc:a9:2d:
2e:2b:f6:c1:6d:71:95:d7:5c:0e:32:39:ea:03:c6:9c:d2:7e:
8c:32:a4:40:00:cb:6f:3a:fa:30:4e:e0:4a:c9:24:99:df:24:
97:38:ca:84:43:69:00:37:00:8c:1c:bf:69:1c:35:27:bd:b6:
e5:99:7c:12:24:7e:60:eb:19:03:c6:6b:9a:47:60:0f:9a:0d:
4e:a4:3c:41:66:21:00:6f:aa:43:ce:3d:e4:7a:3a:a2:24:90:
0c:f9:dd:cd:3c:7e:73:2f:2b:9c:4c:80:76:75:80:a2:49:6e:
6e:a2:d1:43:e1:75:02:af:8f:07:bd:39:ed:ac:ac:d9:e3:ea:
b3:07:89:49:fc:a1:ff:6c:d5:1d:df:d9:e5:b5:5a:73:cc:9a:
24:68:77:ad:f0:30:8b:c9:ff:e6:2b:a4:78:ae:97:3e:71:51:
62:ac:26:87:38:6a:06:95:b2:c7:94:fa:51:cf:09:5c:7a:1e:
fd:12:7f:53
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 28 19:21:54 2025 by rpki-client