Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d2/4a12c2-9bed-45dd-863c-0b9fb97e529d/1/UAFR5GSyl5E3bAxXvrQMWE71oc8.mft
File: UAFR5GSyl5E3bAxXvrQMWE71oc8.mft (raw, json)
Hash identifier: 1ElHotZTtZ+6Dtk4IsKRuIFvFoM+U4ElC08wDz0TiiY=
Subject key identifier: 2D:01:06:FC:81:5B:41:E6:A0:9E:A6:AA:35:87:06:B3:92:7F:59:C4
Authority key identifier: 50:01:51:E4:64:B2:97:91:37:6C:0C:57:BE:B4:0C:58:4E:F5:A1:CF
Certificate issuer: /CN=500151e464b29791376c0c57beb40c584ef5a1cf
Certificate serial: 0197B6A18495F96996C6C7FB45998F865147
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UAFR5GSyl5E3bAxXvrQMWE71oc8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d2/4a12c2-9bed-45dd-863c-0b9fb97e529d/1/UAFR5GSyl5E3bAxXvrQMWE71oc8.mft
Manifest number: 0EDA
Signing time: Sat 28 Jun 2025 13:02:07 +0000
Manifest this update: Sat 28 Jun 2025 13:02:07 +0000
Manifest next update: Sun 29 Jun 2025 13:02:07 +0000
Files and hashes: 1: UAFR5GSyl5E3bAxXvrQMWE71oc8.crl (hash: evDE6yaPGPbyQnf3xkUFzSgHFoYrfotBeDHhQs9xYPo=)
2: bo7KO9XdD_Urskdk1n4Bj-fW4fs.roa (hash: ubQY2gOF+3dPO6O676JWntfiT2uJ103t4smlNmiKGh4=)
3: w9MEWUoUc8xZKY1er3NSZNyKi7U.roa (hash: POwTU/L0ZyJ5NYemVS0exc18aJZvc21A0g3ouxix4G8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d2/4a12c2-9bed-45dd-863c-0b9fb97e529d/1/UAFR5GSyl5E3bAxXvrQMWE71oc8.crl
rsync://rpki.ripe.net/repository/DEFAULT/d2/4a12c2-9bed-45dd-863c-0b9fb97e529d/1/UAFR5GSyl5E3bAxXvrQMWE71oc8.mft
rsync://rpki.ripe.net/repository/DEFAULT/UAFR5GSyl5E3bAxXvrQMWE71oc8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 10:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b6:a1:84:95:f9:69:96:c6:c7:fb:45:99:8f:86:51:47
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=500151e464b29791376c0c57beb40c584ef5a1cf
Validity
Not Before: Jun 28 13:02:07 2025 GMT
Not After : Jun 29 13:02:07 2025 GMT
Subject: CN=2d0106fc815b41e6a09ea6aa358706b3927f59c4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:d5:78:fc:49:9d:5e:c2:91:49:0a:a3:1b:24:
3d:56:b8:91:a7:c9:cc:f4:49:e8:ce:43:6c:37:5a:
36:a6:7b:51:ee:0c:70:70:ec:6e:55:fb:db:ef:76:
7d:c3:b6:35:e0:e1:7e:a0:d5:aa:a2:c5:ce:84:28:
8c:fa:3e:5f:8f:d4:81:a2:2e:1f:84:59:68:0b:48:
90:8e:7c:0a:8c:3c:84:c6:b2:ec:b3:d6:e0:61:be:
39:df:eb:d2:97:35:9e:32:ec:db:7f:7e:23:53:9a:
74:8f:c3:fc:ee:c4:69:1e:1f:b8:67:3c:5c:c5:a2:
68:99:db:95:43:01:80:ba:82:4d:0e:9d:b2:5c:bf:
29:38:dd:65:01:73:95:50:79:20:d8:fa:f7:c5:31:
85:4c:9f:9e:53:42:7c:83:cd:54:54:fb:f8:b7:ef:
dc:ed:59:3f:e8:9e:cf:a8:a1:c8:bb:d2:ec:25:cc:
9a:63:91:99:4e:93:ba:94:74:c3:61:21:6d:6f:58:
03:0a:64:bd:33:26:0c:11:98:44:2f:8b:80:20:44:
15:69:3d:09:89:37:4d:e8:11:41:36:7a:fb:d0:3c:
3b:66:b5:25:05:69:64:a1:61:9c:fa:79:6a:41:89:
a3:bd:97:78:a7:0d:da:8c:aa:18:4e:fb:f2:41:47:
ad:ad
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2D:01:06:FC:81:5B:41:E6:A0:9E:A6:AA:35:87:06:B3:92:7F:59:C4
X509v3 Authority Key Identifier:
keyid:50:01:51:E4:64:B2:97:91:37:6C:0C:57:BE:B4:0C:58:4E:F5:A1:CF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UAFR5GSyl5E3bAxXvrQMWE71oc8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d2/4a12c2-9bed-45dd-863c-0b9fb97e529d/1/UAFR5GSyl5E3bAxXvrQMWE71oc8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d2/4a12c2-9bed-45dd-863c-0b9fb97e529d/1/UAFR5GSyl5E3bAxXvrQMWE71oc8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
40:7e:f4:24:b5:80:a1:fb:2a:da:0c:d9:03:e4:68:c5:cc:c8:
1b:62:a0:be:2d:55:bb:fd:c9:ae:b7:cd:45:04:75:e7:7d:e4:
51:65:ba:3d:01:c0:65:90:c3:4a:63:c0:35:39:4d:00:5b:ae:
83:96:be:ec:73:d2:23:80:74:39:bb:5e:15:4f:7e:7c:53:f7:
cb:f5:fa:e5:75:6d:45:13:e3:de:b0:1a:04:a8:ee:52:6e:d4:
6c:5e:da:3a:44:88:44:06:f2:09:c7:62:47:b6:b9:cf:89:a7:
c8:e9:52:49:87:41:65:42:c7:0a:aa:03:5d:25:f3:0e:41:5a:
80:aa:84:e1:e4:74:4c:d4:e5:a0:1d:80:2c:7e:0b:6c:bf:61:
59:c2:f4:02:ac:54:06:32:24:5d:d3:5a:52:31:a8:34:f2:75:
cd:16:14:eb:d7:9b:03:32:31:57:ed:ec:36:63:0f:3a:51:0b:
76:c6:c7:24:1d:80:11:92:61:16:6f:06:83:04:f4:ca:fe:25:
fb:51:f9:5f:87:ce:c8:0d:a8:52:e5:65:b7:57:66:c3:e2:87:
43:c9:c2:51:78:ec:09:fd:e1:66:c7:f3:7d:6f:ec:d2:d0:17:
5a:43:59:16:5f:71:a6:c8:70:bf:36:06:f6:fe:55:f5:f8:b7:
96:5e:56:c1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 28 18:52:57 2025 by rpki-client