Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/dc/24a0bd-0838-4c95-9ccd-30f608ade48d/1/ufdKR6bRoL9MIW5fq02R-xKd89Y.mft
File: ufdKR6bRoL9MIW5fq02R-xKd89Y.mft (raw, json)
Hash identifier: yPaB8eCzDhCK5YhCD1a8LC/A5wdQPNdI1DSugqSN0eg=
Subject key identifier: 1F:8F:44:9A:46:0C:C4:80:68:55:22:CA:72:AD:EF:B1:A3:22:43:89
Authority key identifier: B9:F7:4A:47:A6:D1:A0:BF:4C:21:6E:5F:AB:4D:91:FB:12:9D:F3:D6
Certificate issuer: /CN=b9f74a47a6d1a0bf4c216e5fab4d91fb129df3d6
Certificate serial: 0198D65F06CC1DD5B52E4A7703CBDE53604A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ufdKR6bRoL9MIW5fq02R-xKd89Y.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/dc/24a0bd-0838-4c95-9ccd-30f608ade48d/1/ufdKR6bRoL9MIW5fq02R-xKd89Y.mft
Manifest number: 0B80
Signing time: Sat 23 Aug 2025 10:00:08 +0000
Manifest this update: Sat 23 Aug 2025 10:00:08 +0000
Manifest next update: Sun 24 Aug 2025 10:00:08 +0000
Files and hashes: 1: 5AZ3tR0kmtggSX8GQL0nk_9vkNM.roa (hash: o7jn9b/bWLBA/ntIWwkYzFbMhpkdc8Mhco9rAn9gsO0=)
2: ufdKR6bRoL9MIW5fq02R-xKd89Y.crl (hash: 6GXXODEBQlRrYInXp48wP6HgPXjuEhGVVbJ03zEhNMQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/dc/24a0bd-0838-4c95-9ccd-30f608ade48d/1/ufdKR6bRoL9MIW5fq02R-xKd89Y.crl
rsync://rpki.ripe.net/repository/DEFAULT/dc/24a0bd-0838-4c95-9ccd-30f608ade48d/1/ufdKR6bRoL9MIW5fq02R-xKd89Y.mft
rsync://rpki.ripe.net/repository/DEFAULT/ufdKR6bRoL9MIW5fq02R-xKd89Y.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 05:01:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d6:5f:06:cc:1d:d5:b5:2e:4a:77:03:cb:de:53:60:4a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b9f74a47a6d1a0bf4c216e5fab4d91fb129df3d6
Validity
Not Before: Aug 23 10:00:08 2025 GMT
Not After : Aug 24 10:00:08 2025 GMT
Subject: CN=1f8f449a460cc480685522ca72adefb1a3224389
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d0:11:dd:9e:14:52:93:9e:7c:93:71:39:0b:4e:
a0:f6:4b:ff:c2:78:d0:36:23:81:95:c1:f1:61:e2:
47:95:ca:d9:30:e5:7a:32:db:40:ed:4d:dc:52:45:
a7:61:be:c8:cf:e5:f4:42:f9:22:8c:ca:20:e3:33:
98:81:71:1f:e3:05:75:3f:ef:7a:5d:59:a2:c9:61:
43:c2:33:ea:73:86:86:bd:6e:e1:90:d4:a5:c9:f9:
43:ef:f1:c4:39:44:38:7e:14:3d:80:2f:34:b9:75:
ed:5d:34:23:94:3e:42:ab:b5:39:3c:e7:65:a7:66:
89:59:0d:21:5f:46:4b:b6:f2:e4:02:1d:61:aa:fe:
fe:c7:33:03:7a:f5:1f:b1:4a:7f:18:53:8a:2a:6d:
32:d7:4d:65:a0:b3:30:33:9c:6d:37:28:47:51:5c:
f0:5f:12:9a:6a:9b:26:27:01:16:9e:6a:2a:87:e1:
31:40:17:90:46:01:ac:99:50:66:9d:96:76:57:08:
bd:fb:87:37:94:df:cf:9e:de:51:73:f7:e4:4d:cd:
e9:57:a9:b6:36:b1:0e:ce:26:e4:32:c5:24:e7:b6:
82:4b:dd:ba:7c:2f:7b:5f:48:08:1e:6b:83:d7:07:
36:6f:99:c8:11:63:a7:7d:fc:6b:3e:e2:01:2c:6b:
24:01
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1F:8F:44:9A:46:0C:C4:80:68:55:22:CA:72:AD:EF:B1:A3:22:43:89
X509v3 Authority Key Identifier:
keyid:B9:F7:4A:47:A6:D1:A0:BF:4C:21:6E:5F:AB:4D:91:FB:12:9D:F3:D6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ufdKR6bRoL9MIW5fq02R-xKd89Y.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/dc/24a0bd-0838-4c95-9ccd-30f608ade48d/1/ufdKR6bRoL9MIW5fq02R-xKd89Y.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/dc/24a0bd-0838-4c95-9ccd-30f608ade48d/1/ufdKR6bRoL9MIW5fq02R-xKd89Y.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
32:be:18:e9:5f:0e:e0:3c:a4:ef:14:cf:5d:0c:1e:ba:78:48:
b6:e9:3a:ab:5e:4f:24:15:43:5b:b8:47:55:73:07:6f:85:ad:
36:e2:d8:ac:d6:d2:7d:6a:9a:4a:e0:df:08:fa:d6:6f:f8:2a:
93:e5:d1:fb:4e:e1:74:22:56:5d:87:3e:56:cb:90:73:39:74:
fb:56:38:d0:dc:b6:43:b8:7a:5e:7e:b4:e7:68:19:2d:60:12:
07:4f:1c:13:5c:52:eb:c3:fb:90:5a:df:a5:7d:13:44:e8:65:
60:7a:53:52:82:8a:d7:27:0e:e7:67:a5:f6:88:27:f3:8f:6a:
ae:f7:90:9c:83:bc:4f:47:79:50:09:c7:d1:37:50:e9:92:56:
2e:15:51:8f:ef:ba:69:3d:15:a5:e5:1b:dc:e5:f7:d4:99:a9:
93:5b:61:6b:35:f2:e4:7d:00:e5:b5:4b:77:0b:38:1a:a9:d2:
fb:b1:97:61:06:a3:42:48:11:36:51:73:42:9f:03:6e:e3:4f:
6b:30:0d:86:98:b3:08:41:ab:5d:90:fa:1d:56:ef:f2:b7:a9:
09:1b:08:9b:d0:4d:ed:2d:b5:68:34:6d:5c:5a:8c:a0:82:55:
bf:24:3d:df:d3:08:43:ac:24:4a:a7:8a:0d:47:86:92:a2:04:
bb:b1:7c:87
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 13:50:52 2025 by rpki-client