Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f5/b24786-e777-4b2f-9d81-5a7bfb3cd08b/1/uaoBqzUmuOu4r7F7mKcSfw9UykU.mft
File: uaoBqzUmuOu4r7F7mKcSfw9UykU.mft (raw, json)
Hash identifier: rK//Yjokziy+SjOkAwzsfuXtWYw7ggXXhJXKc2EjfQE=
Subject key identifier: 85:06:EE:05:F4:01:D6:CA:E1:02:3C:0B:D9:1E:A9:CD:25:1F:DC:5F
Authority key identifier: B9:AA:01:AB:35:26:B8:EB:B8:AF:B1:7B:98:A7:12:7F:0F:54:CA:45
Certificate issuer: /CN=b9aa01ab3526b8ebb8afb17b98a7127f0f54ca45
Certificate serial: 0197D105699537B111CB9739C2A6A1DFB6ED
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/uaoBqzUmuOu4r7F7mKcSfw9UykU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f5/b24786-e777-4b2f-9d81-5a7bfb3cd08b/1/uaoBqzUmuOu4r7F7mKcSfw9UykU.mft
Manifest number: 13A5
Signing time: Thu 03 Jul 2025 16:01:22 +0000
Manifest this update: Thu 03 Jul 2025 16:01:22 +0000
Manifest next update: Fri 04 Jul 2025 16:01:22 +0000
Files and hashes: 1: uaoBqzUmuOu4r7F7mKcSfw9UykU.crl (hash: 2acLPzxwjTpBFWFZ2c0viAo2K4RnFGAJuwvGf2+Fg4k=)
2: xqGa5yw14tF9pw6-eYINusEUh7E.roa (hash: nPIWqnbBc116jdUxehjaWv0eljgHrlqFtoj1OKZjVNQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f5/b24786-e777-4b2f-9d81-5a7bfb3cd08b/1/uaoBqzUmuOu4r7F7mKcSfw9UykU.crl
rsync://rpki.ripe.net/repository/DEFAULT/f5/b24786-e777-4b2f-9d81-5a7bfb3cd08b/1/uaoBqzUmuOu4r7F7mKcSfw9UykU.mft
rsync://rpki.ripe.net/repository/DEFAULT/uaoBqzUmuOu4r7F7mKcSfw9UykU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 04 Jul 2025 14:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:d1:05:69:95:37:b1:11:cb:97:39:c2:a6:a1:df:b6:ed
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b9aa01ab3526b8ebb8afb17b98a7127f0f54ca45
Validity
Not Before: Jul 3 16:01:22 2025 GMT
Not After : Jul 4 16:01:22 2025 GMT
Subject: CN=8506ee05f401d6cae1023c0bd91ea9cd251fdc5f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:2b:19:68:21:2d:2c:5e:e6:62:a9:6a:d6:a0:
a9:73:ba:4b:ad:ed:68:c1:49:41:6f:2b:bc:7b:bc:
2b:6b:17:db:51:c7:02:3a:82:e9:42:2a:67:48:f8:
ad:8a:cd:3c:a2:db:40:24:c0:99:a5:96:8c:07:9a:
ec:f7:c5:8c:82:8e:6f:7e:f8:b9:ff:7d:02:3f:8b:
5c:87:b7:79:fe:b0:16:be:81:b1:83:68:f5:a8:ae:
5e:79:05:c6:31:d9:99:6f:b6:63:98:8d:14:43:5d:
67:00:9e:86:a1:5b:f5:a4:b6:4d:92:78:3c:c9:27:
99:9a:3f:0c:26:dd:f0:b1:43:b2:c7:57:7b:32:aa:
63:4c:e1:ec:33:c0:62:de:25:c7:44:db:f7:eb:8d:
93:8e:de:6a:d8:80:3a:04:61:43:1b:e5:3a:4e:2d:
dd:8b:40:58:0c:90:93:8a:12:8c:7d:9e:1d:bd:18:
80:86:98:31:35:57:c9:67:bd:cc:43:94:ed:3d:3e:
ca:ba:e3:15:05:29:fd:0e:5a:9e:94:05:43:0b:69:
3a:c2:0a:ac:15:14:ac:cf:ec:1e:4b:4d:ca:95:00:
e0:b0:f7:99:8a:39:23:96:5f:8d:51:0a:c3:be:67:
1a:be:ff:aa:97:54:cc:59:07:a1:99:dc:f1:72:54:
c4:89
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
85:06:EE:05:F4:01:D6:CA:E1:02:3C:0B:D9:1E:A9:CD:25:1F:DC:5F
X509v3 Authority Key Identifier:
keyid:B9:AA:01:AB:35:26:B8:EB:B8:AF:B1:7B:98:A7:12:7F:0F:54:CA:45
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/uaoBqzUmuOu4r7F7mKcSfw9UykU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f5/b24786-e777-4b2f-9d81-5a7bfb3cd08b/1/uaoBqzUmuOu4r7F7mKcSfw9UykU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f5/b24786-e777-4b2f-9d81-5a7bfb3cd08b/1/uaoBqzUmuOu4r7F7mKcSfw9UykU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
8b:07:da:ee:5e:57:06:e6:bf:23:70:eb:5a:a3:80:e4:af:12:
15:c6:0e:e2:d2:0b:0a:8e:6a:51:05:7d:f6:62:88:20:9c:59:
54:91:de:07:58:83:95:cf:c2:46:a0:10:42:13:f5:6c:1f:73:
bf:ba:91:f1:cc:24:bb:02:07:37:0a:31:c2:78:80:ad:af:b0:
b9:a3:93:b1:52:2c:fc:bc:dc:40:94:98:50:79:5f:97:71:04:
85:fd:80:b1:d3:00:63:f3:cb:be:25:61:5f:98:2a:47:57:63:
82:3d:42:ed:5b:b3:1d:84:58:99:c0:25:96:18:4d:47:95:15:
51:22:13:b4:12:33:db:5f:7c:28:a4:3d:ea:59:8b:7d:ef:c6:
d5:55:bb:b0:d7:e3:98:5b:2b:91:36:c0:ff:fb:da:85:22:c0:
2d:64:b3:1b:11:3f:c7:c3:94:30:27:fe:ef:d2:bc:eb:19:be:
8d:28:61:6a:c3:2b:73:bf:5c:df:4a:02:d7:6e:0d:b0:d9:46:
69:ac:eb:f3:71:bd:fb:41:3a:63:d4:0a:2f:d1:b8:af:37:44:
bc:35:9d:44:24:77:ae:c1:99:42:29:0f:33:92:fc:ae:c1:6f:
a6:42:5d:9b:94:ae:b3:12:77:d4:b0:de:b8:c6:a2:0f:af:22:
de:af:8c:78
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 3 23:34:56 2025 by rpki-client