Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d8/e674fb-2683-4cf4-967b-b7c67eacc3a5/1/uEWIWKHL3onJKQYPQvKw35JNTik.mft
File: uEWIWKHL3onJKQYPQvKw35JNTik.mft (raw, json)
Hash identifier: PBUfdfz33IzQhVFtNNIfJdWoPMhb9CCG5JqaLEHN5Mk=
Subject key identifier: 51:4F:50:65:6A:FB:A3:F9:CB:BA:0C:3E:27:5D:42:E1:2B:3B:1B:7D
Authority key identifier: B8:45:88:58:A1:CB:DE:89:C9:29:06:0F:42:F2:B0:DF:92:4D:4E:29
Certificate issuer: /CN=b8458858a1cbde89c929060f42f2b0df924d4e29
Certificate serial: 0198D4A7FA4A696011CE5CF4D4A4715361E9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/uEWIWKHL3onJKQYPQvKw35JNTik.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d8/e674fb-2683-4cf4-967b-b7c67eacc3a5/1/uEWIWKHL3onJKQYPQvKw35JNTik.mft
Manifest number: 0AC9
Signing time: Sat 23 Aug 2025 02:00:34 +0000
Manifest this update: Sat 23 Aug 2025 02:00:34 +0000
Manifest next update: Sun 24 Aug 2025 02:00:34 +0000
Files and hashes: 1: TGrXflCdfRfW3fIuk1M0sun1vvs.roa (hash: alNQcjpWXoWXc70x5wuOV0VaoVsG9NOJ3xbbbXJM7RE=)
2: uEWIWKHL3onJKQYPQvKw35JNTik.crl (hash: C5cepBLp2krkUyFbcid1fF7/Qdy4aLi18PEwsBEVj0s=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d8/e674fb-2683-4cf4-967b-b7c67eacc3a5/1/uEWIWKHL3onJKQYPQvKw35JNTik.crl
rsync://rpki.ripe.net/repository/DEFAULT/d8/e674fb-2683-4cf4-967b-b7c67eacc3a5/1/uEWIWKHL3onJKQYPQvKw35JNTik.mft
rsync://rpki.ripe.net/repository/DEFAULT/uEWIWKHL3onJKQYPQvKw35JNTik.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 02:00:34 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d4:a7:fa:4a:69:60:11:ce:5c:f4:d4:a4:71:53:61:e9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b8458858a1cbde89c929060f42f2b0df924d4e29
Validity
Not Before: Aug 23 02:00:34 2025 GMT
Not After : Aug 24 02:00:34 2025 GMT
Subject: CN=514f50656afba3f9cbba0c3e275d42e12b3b1b7d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d8:08:62:de:17:1d:fe:4d:ea:2c:02:89:df:20:
eb:ad:7a:1d:9b:31:4e:13:6b:de:44:e1:9a:24:ab:
49:0f:0f:4a:9f:31:4c:10:c5:64:e0:d6:95:f5:dd:
68:d3:ed:75:66:16:00:9f:a8:d6:8a:d9:26:55:28:
e5:33:88:08:e0:88:e8:21:5b:9f:0c:85:c6:67:ef:
eb:18:bb:8b:59:fd:ef:c6:40:83:9a:c1:62:c3:e6:
b8:41:ef:f4:a8:6f:59:b8:ca:46:e5:a6:67:09:e3:
56:a7:0a:8f:e9:a3:8e:c4:d4:f0:98:bc:32:e2:4c:
93:dc:fd:1c:0e:34:44:fa:ca:98:2f:83:7e:4b:b1:
54:7b:b8:6d:0a:f0:e2:bd:8e:25:b3:22:cc:9a:5c:
84:46:ec:d7:38:f9:e1:ca:82:2b:ca:fd:f1:b7:cf:
9c:c8:88:98:ae:21:63:1b:95:9f:2c:62:a9:15:be:
61:04:db:62:84:9c:e9:50:d9:53:90:f9:5c:02:57:
4a:58:58:ed:be:bd:56:d5:f2:78:b1:c4:1b:43:39:
13:45:18:dd:17:35:c4:a1:a0:7d:34:86:42:bb:a7:
ec:c2:46:3b:42:7d:58:07:ce:dc:b3:7d:99:7e:7a:
78:e3:3e:c6:93:7b:20:70:fb:fb:0d:5b:4e:84:7a:
61:d5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
51:4F:50:65:6A:FB:A3:F9:CB:BA:0C:3E:27:5D:42:E1:2B:3B:1B:7D
X509v3 Authority Key Identifier:
keyid:B8:45:88:58:A1:CB:DE:89:C9:29:06:0F:42:F2:B0:DF:92:4D:4E:29
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/uEWIWKHL3onJKQYPQvKw35JNTik.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d8/e674fb-2683-4cf4-967b-b7c67eacc3a5/1/uEWIWKHL3onJKQYPQvKw35JNTik.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d8/e674fb-2683-4cf4-967b-b7c67eacc3a5/1/uEWIWKHL3onJKQYPQvKw35JNTik.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
95:fd:5f:ac:4f:7e:79:90:8e:2f:2c:0c:83:48:c2:60:28:81:
48:f1:79:ac:92:47:da:64:e8:0d:4e:b0:da:6c:3c:ae:65:bf:
46:e1:7a:39:73:24:1f:eb:0d:4c:4f:75:7e:72:84:7b:f1:bb:
f8:95:52:63:57:3c:bd:25:c6:02:be:fc:44:9d:8b:7c:50:f0:
8d:c4:b2:7e:85:4c:11:b0:c8:de:0e:1f:1b:67:40:d6:a8:cc:
2a:b3:c3:6a:dc:a0:2d:9a:ef:4b:af:4c:ae:4c:ba:92:83:93:
7c:41:1b:a3:25:ad:28:83:2a:4e:1b:8b:1e:f8:48:ce:6f:40:
49:4a:4c:9a:71:20:09:84:1d:35:53:52:41:01:2a:5b:78:db:
bb:55:56:06:34:de:7c:26:a5:4f:6c:77:37:70:b8:96:45:d1:
34:d0:2e:ae:5e:e0:14:38:c8:1d:f2:c0:8a:73:1a:53:36:7f:
12:b9:a2:30:6a:a4:da:65:4d:61:c1:0c:82:ba:5f:33:7b:45:
49:2e:76:00:f2:c2:86:ec:c3:93:45:7a:4a:8c:30:8b:49:de:
7b:93:99:e6:12:3f:99:99:5e:b3:56:18:a8:00:ec:5d:21:30:
3e:dc:51:69:12:42:bc:25:c6:a6:bb:bd:22:0c:5d:35:35:0a:
2a:a1:5f:60
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 12:13:02 2025 by rpki-client