Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d8/e674fb-2683-4cf4-967b-b7c67eacc3a5/1/uEWIWKHL3onJKQYPQvKw35JNTik.mft
File: uEWIWKHL3onJKQYPQvKw35JNTik.mft (raw, json)
Hash identifier: G+U0ANO7/k3atBeSdL0/PdDEbtVKnCXiWgTudYZbLvk=
Subject key identifier: 4B:3F:16:0C:04:69:01:6A:1B:AD:3B:A1:CA:84:3A:DB:25:CE:E6:C3
Authority key identifier: B8:45:88:58:A1:CB:DE:89:C9:29:06:0F:42:F2:B0:DF:92:4D:4E:29
Certificate issuer: /CN=b8458858a1cbde89c929060f42f2b0df924d4e29
Certificate serial: 0197B8C5E313D2A8CAA92E7FB5BEADBA7CE7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/uEWIWKHL3onJKQYPQvKw35JNTik.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d8/e674fb-2683-4cf4-967b-b7c67eacc3a5/1/uEWIWKHL3onJKQYPQvKw35JNTik.mft
Manifest number: 0A36
Signing time: Sat 28 Jun 2025 23:01:05 +0000
Manifest this update: Sat 28 Jun 2025 23:01:05 +0000
Manifest next update: Sun 29 Jun 2025 23:01:05 +0000
Files and hashes: 1: TGrXflCdfRfW3fIuk1M0sun1vvs.roa (hash: alNQcjpWXoWXc70x5wuOV0VaoVsG9NOJ3xbbbXJM7RE=)
2: uEWIWKHL3onJKQYPQvKw35JNTik.crl (hash: fD3GYo4sOkrha5EB1BOoiw29L07O+dz7VzV9hqTTTp4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d8/e674fb-2683-4cf4-967b-b7c67eacc3a5/1/uEWIWKHL3onJKQYPQvKw35JNTik.crl
rsync://rpki.ripe.net/repository/DEFAULT/d8/e674fb-2683-4cf4-967b-b7c67eacc3a5/1/uEWIWKHL3onJKQYPQvKw35JNTik.mft
rsync://rpki.ripe.net/repository/DEFAULT/uEWIWKHL3onJKQYPQvKw35JNTik.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 19:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b8:c5:e3:13:d2:a8:ca:a9:2e:7f:b5:be:ad:ba:7c:e7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b8458858a1cbde89c929060f42f2b0df924d4e29
Validity
Not Before: Jun 28 23:01:05 2025 GMT
Not After : Jun 29 23:01:05 2025 GMT
Subject: CN=4b3f160c0469016a1bad3ba1ca843adb25cee6c3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:53:9b:07:be:8f:57:7c:7e:52:16:14:40:ae:
92:09:c2:32:59:e3:50:99:cb:61:ca:f7:32:0a:43:
2e:37:0a:90:a8:78:bf:fd:50:d2:59:c0:2f:36:40:
2e:38:f7:0e:fa:f8:7c:83:ff:da:8a:4c:9d:45:7c:
19:e1:a0:cc:65:81:59:85:fb:93:42:d4:ce:26:94:
72:24:73:b5:aa:6a:56:ac:57:50:6c:66:89:f3:a6:
4d:f1:6d:26:6a:68:ee:64:88:68:a1:ce:c1:23:95:
a3:1e:32:9a:ea:b9:c1:5e:8c:16:3d:d4:1a:e4:94:
fd:77:90:50:c8:85:13:1b:06:f6:13:46:6c:93:4b:
fe:87:e8:90:c7:f7:1b:c7:cb:c6:1b:cb:98:c9:47:
48:32:86:d2:54:3c:13:78:e8:13:9f:f8:31:ed:7c:
64:31:1b:42:ea:cd:76:94:bb:21:c4:b7:e0:a2:94:
30:5e:7f:49:42:5f:7b:79:ab:a1:6c:24:a4:4d:d5:
f0:73:50:df:ac:0c:18:73:cb:47:7f:1c:4b:91:59:
c6:d9:50:70:42:dc:9a:79:10:09:19:0e:ca:b4:84:
3b:ba:98:20:c2:00:92:2e:0d:7d:13:c8:5b:93:7d:
fe:a3:3b:ef:b0:37:01:2f:58:8a:e5:aa:f3:1d:4c:
27:6b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4B:3F:16:0C:04:69:01:6A:1B:AD:3B:A1:CA:84:3A:DB:25:CE:E6:C3
X509v3 Authority Key Identifier:
keyid:B8:45:88:58:A1:CB:DE:89:C9:29:06:0F:42:F2:B0:DF:92:4D:4E:29
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/uEWIWKHL3onJKQYPQvKw35JNTik.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d8/e674fb-2683-4cf4-967b-b7c67eacc3a5/1/uEWIWKHL3onJKQYPQvKw35JNTik.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d8/e674fb-2683-4cf4-967b-b7c67eacc3a5/1/uEWIWKHL3onJKQYPQvKw35JNTik.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
03:23:39:f7:0e:99:67:f0:65:5e:ca:be:5d:ff:c5:e5:35:b6:
9d:e0:3a:e8:9b:51:79:ba:91:6e:fe:8a:a3:92:3a:cb:2a:dc:
60:4e:2b:f4:fa:43:16:d9:67:b3:54:de:de:8d:9e:40:57:9c:
4b:5e:71:c6:34:d5:93:43:ed:0b:e8:ab:2d:c6:fb:da:12:04:
1b:a0:b2:1d:71:76:3c:7c:a9:80:dc:39:f5:64:94:b9:8a:9d:
e3:25:96:4b:e6:8e:71:1f:33:1a:3a:4e:6e:56:79:b5:e1:a5:
44:51:9f:19:48:44:49:80:29:be:e1:cd:bf:89:56:37:b1:73:
a1:4f:e4:09:fc:ce:34:75:6c:17:8c:a2:66:7d:1a:79:0c:64:
93:0f:b0:86:c8:9a:6f:7a:f7:56:b3:2e:88:d9:d5:af:1a:bf:
52:fd:d4:eb:7f:01:8d:63:85:0b:25:9e:8c:f8:af:2c:c5:c7:
fc:44:0a:ac:2b:9e:02:a5:0d:7a:54:5e:48:1a:0b:d5:cc:5a:
39:54:29:a5:9f:44:5a:0b:35:50:6d:ec:4f:63:34:b2:f5:19:
de:df:13:6e:78:70:eb:db:88:06:b1:e6:0d:92:11:d7:b7:10:
bb:1c:cf:44:9c:be:d7:3c:5d:a4:73:60:44:38:18:7e:f5:58:
09:e0:51:3a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 29 01:29:36 2025 by rpki-client