Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fe/472a4d-fcae-4454-9967-02ded9b2e0c9/1/umhZWZeQDe0wDpklcJ2mJ-k_Njo.mft
File: umhZWZeQDe0wDpklcJ2mJ-k_Njo.mft (raw, json)
Hash identifier: TwKKNrLcbFhtKiMOQ4F/wuBWRdJk1T3iXqsiN5AnYbI=
Subject key identifier: 0B:8D:D2:42:E9:6C:F4:EC:89:2A:83:DD:54:FC:3A:AC:1A:FC:75:C7
Authority key identifier: BA:68:59:59:97:90:0D:ED:30:0E:99:25:70:9D:A6:27:E9:3F:36:3A
Certificate issuer: /CN=ba68595997900ded300e9925709da627e93f363a
Certificate serial: 0197B8C5BF36CB1952324556B6A92DAF1D60
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/umhZWZeQDe0wDpklcJ2mJ-k_Njo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fe/472a4d-fcae-4454-9967-02ded9b2e0c9/1/umhZWZeQDe0wDpklcJ2mJ-k_Njo.mft
Manifest number: 0E53
Signing time: Sat 28 Jun 2025 23:00:56 +0000
Manifest this update: Sat 28 Jun 2025 23:00:56 +0000
Manifest next update: Sun 29 Jun 2025 23:00:56 +0000
Files and hashes: 1: Vevc9vrQGyVF5o4NzN0QFHnZAiA.roa (hash: AOWcNE88wNCBWfSzm2+MmaRV4c7usJ5kQGrhyE8Gj6M=)
2: umhZWZeQDe0wDpklcJ2mJ-k_Njo.crl (hash: SEFtxTdl+o1gKmSpcDLaRHK+ZDMZofqWvN6PaunJQig=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/fe/472a4d-fcae-4454-9967-02ded9b2e0c9/1/umhZWZeQDe0wDpklcJ2mJ-k_Njo.crl
rsync://rpki.ripe.net/repository/DEFAULT/fe/472a4d-fcae-4454-9967-02ded9b2e0c9/1/umhZWZeQDe0wDpklcJ2mJ-k_Njo.mft
rsync://rpki.ripe.net/repository/DEFAULT/umhZWZeQDe0wDpklcJ2mJ-k_Njo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 23:00:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b8:c5:bf:36:cb:19:52:32:45:56:b6:a9:2d:af:1d:60
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ba68595997900ded300e9925709da627e93f363a
Validity
Not Before: Jun 28 23:00:56 2025 GMT
Not After : Jun 29 23:00:56 2025 GMT
Subject: CN=0b8dd242e96cf4ec892a83dd54fc3aac1afc75c7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:c3:76:f0:8f:a4:b7:1f:bf:2f:cb:16:96:23:
a6:d1:75:4e:50:d2:54:8e:62:bb:4d:8b:13:c6:a2:
a3:7e:75:81:a1:dd:cb:4f:24:74:8c:1f:c6:32:7b:
f6:0c:56:4f:72:1c:bf:9a:42:65:b8:e9:dd:69:8d:
ae:20:32:0b:9e:58:f6:38:a7:84:ff:25:90:cc:bb:
a0:66:23:2c:30:55:59:73:02:79:c3:da:ea:ea:69:
a3:4c:93:71:5a:cf:a6:62:26:08:4a:6e:78:7c:7d:
63:7f:eb:b2:45:33:5b:4d:ec:4b:99:5f:09:57:0c:
5e:44:1d:e9:10:19:dc:8f:3e:ac:c3:12:de:7c:7d:
c7:6a:0e:1b:93:ea:dd:ca:a5:7b:6a:be:80:03:7a:
ff:fe:d5:5f:f3:c8:b8:de:2a:9b:e6:4c:b1:bd:c7:
86:a6:71:e1:84:af:7f:41:af:84:43:2e:90:96:25:
ec:12:cc:40:2c:2f:11:35:51:ac:a6:c1:e5:03:e0:
7d:ef:5d:4f:a5:0b:c7:a6:7d:bc:a3:16:2d:d4:3b:
72:1e:11:6f:aa:f2:57:48:34:06:b1:51:34:24:74:
be:16:f4:0d:51:69:3e:24:d9:21:61:75:e8:90:a3:
97:bf:25:d0:e3:61:6c:69:65:d8:f2:34:34:0f:6e:
31:27
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0B:8D:D2:42:E9:6C:F4:EC:89:2A:83:DD:54:FC:3A:AC:1A:FC:75:C7
X509v3 Authority Key Identifier:
keyid:BA:68:59:59:97:90:0D:ED:30:0E:99:25:70:9D:A6:27:E9:3F:36:3A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/umhZWZeQDe0wDpklcJ2mJ-k_Njo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fe/472a4d-fcae-4454-9967-02ded9b2e0c9/1/umhZWZeQDe0wDpklcJ2mJ-k_Njo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fe/472a4d-fcae-4454-9967-02ded9b2e0c9/1/umhZWZeQDe0wDpklcJ2mJ-k_Njo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
5a:81:17:01:32:dd:a6:ce:34:6f:32:51:80:84:82:63:e1:e3:
95:81:48:d8:8e:30:b1:99:27:7a:f7:c9:ed:49:89:bc:3d:47:
71:49:d0:c1:4c:98:8e:56:1c:7e:2e:01:c4:b7:b1:ad:6a:12:
2b:d8:5c:6a:2c:8b:0f:5c:fe:91:db:30:6b:99:49:5d:21:d7:
46:8d:0f:de:a5:6a:69:49:c1:46:16:d1:89:21:fb:f2:c4:21:
28:fa:e5:fa:f0:8a:32:26:6d:46:3d:1f:e7:0a:6e:74:dc:88:
53:d5:c3:93:36:e5:89:b2:31:78:aa:eb:ac:45:6b:d5:54:98:
5b:d7:71:1e:b0:b3:d8:74:d1:72:f0:67:63:f9:3e:99:b8:de:
5a:19:d2:1d:b7:48:2a:8d:98:27:83:bf:0f:af:62:60:13:8a:
2a:05:ae:fb:27:1b:d2:40:dc:6c:2d:d1:e8:7c:14:3c:21:2e:
04:5d:ed:8d:ff:6e:2f:c8:29:b3:47:0f:9b:c4:8a:91:09:e0:
19:63:43:28:3b:df:f5:74:e6:b8:08:4b:24:55:a0:f2:ce:ac:
05:94:6f:14:13:c4:d7:2c:d3:8c:24:f7:f0:c7:d4:32:ea:9d:
42:f1:e6:ac:d9:f2:58:72:38:62:2d:7b:c7:f2:24:b6:3a:af:
6f:bc:f4:09
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 29 06:56:22 2025 by rpki-client