Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e8/af5657-c8b2-4855-82a7-1dd57e3f3d97/1/U1UECuknhr8XJ7a07MEJO4p0Aes.mft
File: U1UECuknhr8XJ7a07MEJO4p0Aes.mft (raw, json)
Hash identifier: jTBn381nG+b7JGrfkurEUAOnwFsXAgfItjodIt0gDUQ=
Subject key identifier: 15:DC:36:FC:F8:09:53:33:A2:C2:FD:B8:B4:1D:6A:EE:A6:64:26:B6
Authority key identifier: 53:55:04:0A:E9:27:86:BF:17:27:B6:B4:EC:C1:09:3B:8A:74:01:EB
Certificate issuer: /CN=5355040ae92786bf1727b6b4ecc1093b8a7401eb
Certificate serial: 0197B745B04666B1E7636AC2C4BB96E191C5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/U1UECuknhr8XJ7a07MEJO4p0Aes.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e8/af5657-c8b2-4855-82a7-1dd57e3f3d97/1/U1UECuknhr8XJ7a07MEJO4p0Aes.mft
Manifest number: 0A18
Signing time: Sat 28 Jun 2025 16:01:27 +0000
Manifest this update: Sat 28 Jun 2025 16:01:27 +0000
Manifest next update: Sun 29 Jun 2025 16:01:27 +0000
Files and hashes: 1: GBm75ZmZioJB2ocCMhAt7gwcAjo.roa (hash: gsh5fLNtNPH78sBeeVxRzXrv6jA9hVTz/xvnQZtNCkc=)
2: U1UECuknhr8XJ7a07MEJO4p0Aes.crl (hash: CZ8BbRQB/e64zC7/Puz5H+CgpbnBEBDcgO9mAP+WEv8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e8/af5657-c8b2-4855-82a7-1dd57e3f3d97/1/U1UECuknhr8XJ7a07MEJO4p0Aes.crl
rsync://rpki.ripe.net/repository/DEFAULT/e8/af5657-c8b2-4855-82a7-1dd57e3f3d97/1/U1UECuknhr8XJ7a07MEJO4p0Aes.mft
rsync://rpki.ripe.net/repository/DEFAULT/U1UECuknhr8XJ7a07MEJO4p0Aes.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 15:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b7:45:b0:46:66:b1:e7:63:6a:c2:c4:bb:96:e1:91:c5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5355040ae92786bf1727b6b4ecc1093b8a7401eb
Validity
Not Before: Jun 28 16:01:27 2025 GMT
Not After : Jun 29 16:01:27 2025 GMT
Subject: CN=15dc36fcf8095333a2c2fdb8b41d6aeea66426b6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:83:cf:1f:c4:24:2c:1a:05:23:1b:87:d0:37:14:
2a:77:4c:6d:dd:6d:60:a7:34:0a:a9:a8:dd:d1:27:
00:13:35:d7:02:9b:32:52:31:cb:ea:2c:01:74:cc:
fa:2f:d7:29:d5:c9:f4:f6:e1:b8:d4:73:ec:01:64:
14:3a:80:e5:6f:31:56:cd:25:8f:19:0c:e5:4d:00:
df:e1:50:91:3f:ba:11:52:af:a0:9a:a3:60:b7:12:
28:76:fd:79:ae:06:1a:07:71:85:74:0d:23:22:41:
bd:96:60:d8:30:75:9a:5c:10:d6:ad:ab:2d:ec:cb:
06:72:b2:cf:ce:01:08:46:ca:51:76:fa:a6:7c:4e:
1f:7f:db:31:c4:bc:80:08:0a:fc:ef:65:af:4a:df:
a7:af:42:be:98:0f:cf:5a:6a:e5:c0:cd:9f:8c:d0:
a4:a3:9f:3b:e4:af:3b:cc:33:ed:b0:ee:9b:4d:2e:
7f:3d:42:d1:7b:ea:fe:90:81:b8:d7:f2:7d:ec:3a:
1d:90:2a:5c:4d:1b:f9:33:51:6c:3d:76:e5:6a:c8:
91:a6:d7:88:60:c5:57:76:af:0f:8e:ac:af:58:7c:
e6:f4:87:a6:6e:db:18:16:5c:ef:ba:31:6e:65:fe:
9d:f0:a7:ca:0a:d4:3c:75:11:1d:ab:2c:10:84:68:
77:19
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
15:DC:36:FC:F8:09:53:33:A2:C2:FD:B8:B4:1D:6A:EE:A6:64:26:B6
X509v3 Authority Key Identifier:
keyid:53:55:04:0A:E9:27:86:BF:17:27:B6:B4:EC:C1:09:3B:8A:74:01:EB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/U1UECuknhr8XJ7a07MEJO4p0Aes.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e8/af5657-c8b2-4855-82a7-1dd57e3f3d97/1/U1UECuknhr8XJ7a07MEJO4p0Aes.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e8/af5657-c8b2-4855-82a7-1dd57e3f3d97/1/U1UECuknhr8XJ7a07MEJO4p0Aes.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
99:66:31:02:2a:93:af:57:16:0d:79:a9:04:56:b9:45:45:97:
11:e6:af:5d:b9:15:1b:92:b7:18:4d:d9:92:72:b4:6d:89:7b:
11:48:5b:8b:35:9a:d9:1b:31:89:ef:e6:fb:06:76:fa:55:d9:
ac:a3:3a:bd:60:e4:03:8e:54:2c:d4:f7:af:45:ca:1c:90:72:
55:5a:e4:6c:66:a0:df:98:6d:6c:3d:05:5b:91:96:f4:fd:eb:
56:b7:44:ff:db:e6:af:71:91:07:3b:9d:eb:03:f9:3e:a5:eb:
19:b2:d4:68:30:b5:59:5c:c7:0a:e7:cf:df:2f:24:35:3c:33:
6a:7e:54:44:0c:5e:5d:ac:28:a3:dc:69:19:d7:be:cf:e0:86:
41:f1:f0:9a:aa:80:db:e6:f3:e7:ad:21:78:e4:e0:8a:da:fd:
83:d4:e7:02:bd:63:8f:5d:cf:c8:50:2c:84:91:db:e2:cc:34:
1d:e2:5a:a5:23:b5:bd:ce:23:b1:a7:5c:29:f5:f5:3f:e2:c3:
3f:d8:78:b3:d9:b2:51:ec:7a:2c:1f:58:8d:8e:8a:fe:b2:96:
62:7a:55:62:75:a0:27:ec:7b:ae:48:cc:73:7e:2a:e4:37:ee:
42:31:0a:5a:0d:9d:75:0f:f4:91:13:54:8c:50:e6:61:ff:c9:
63:e3:44:d1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 28 22:41:23 2025 by rpki-client