Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/00/c4fb00-39c5-48a5-903b-252fd967bfcc/1/U3XfISulmO4KW_aAsh9QxPx9aOE.mft
File: U3XfISulmO4KW_aAsh9QxPx9aOE.mft (raw, json)
Hash identifier: tVlM/DFFUvB0yaE1XLw6lOu7vYOmF5N0RnIcvq8fIYg=
Subject key identifier: 49:51:E3:BC:E3:BE:61:EC:58:67:D8:FD:1D:06:27:18:37:91:68:E0
Authority key identifier: 53:75:DF:21:2B:A5:98:EE:0A:5B:F6:80:B2:1F:50:C4:FC:7D:68:E1
Certificate issuer: /CN=5375df212ba598ee0a5bf680b21f50c4fc7d68e1
Certificate serial: 0197B8FD95644C5C77D906CDEDA56479906F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/U3XfISulmO4KW_aAsh9QxPx9aOE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/00/c4fb00-39c5-48a5-903b-252fd967bfcc/1/U3XfISulmO4KW_aAsh9QxPx9aOE.mft
Manifest number: 0D50
Signing time: Sun 29 Jun 2025 00:01:55 +0000
Manifest this update: Sun 29 Jun 2025 00:01:55 +0000
Manifest next update: Mon 30 Jun 2025 00:01:55 +0000
Files and hashes: 1: U3XfISulmO4KW_aAsh9QxPx9aOE.crl (hash: eKLjPck9df42b1XAhtHrLL/75LFAJ/kayGEICgV/2xc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/00/c4fb00-39c5-48a5-903b-252fd967bfcc/1/U3XfISulmO4KW_aAsh9QxPx9aOE.crl
rsync://rpki.ripe.net/repository/DEFAULT/00/c4fb00-39c5-48a5-903b-252fd967bfcc/1/U3XfISulmO4KW_aAsh9QxPx9aOE.mft
rsync://rpki.ripe.net/repository/DEFAULT/U3XfISulmO4KW_aAsh9QxPx9aOE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Jun 2025 00:01:55 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b8:fd:95:64:4c:5c:77:d9:06:cd:ed:a5:64:79:90:6f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5375df212ba598ee0a5bf680b21f50c4fc7d68e1
Validity
Not Before: Jun 29 00:01:55 2025 GMT
Not After : Jun 30 00:01:55 2025 GMT
Subject: CN=4951e3bce3be61ec5867d8fd1d062718379168e0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e7:5a:6c:ab:44:6b:c2:eb:53:3f:dc:c0:fa:59:
66:cf:a5:16:e9:78:35:b8:7c:b6:36:0e:22:a9:31:
92:44:b2:c0:b5:77:6f:0d:6a:a4:65:3a:1c:ca:f6:
cf:a3:a9:0c:1b:e3:c8:17:2b:a0:14:3c:8c:89:5f:
15:26:4a:0e:49:00:ea:1a:2e:79:8d:f2:81:fa:95:
d1:d4:62:7e:68:85:9e:56:ec:fd:81:c6:9c:f4:76:
cf:82:6f:aa:ad:9d:7f:4b:1c:2b:49:b1:ed:27:b5:
26:8f:d8:6b:05:36:a6:90:47:40:85:ba:06:fe:b8:
2b:3a:ad:1e:bd:b6:7b:72:47:17:52:7c:d8:be:9a:
4f:9c:87:e7:2e:dd:1d:e0:fc:9f:4e:ea:f4:97:3b:
24:bc:df:94:11:f8:c9:a9:2f:8d:ae:d7:5c:75:ac:
50:cf:a7:20:ea:3d:f8:0e:f1:10:8c:b7:92:ea:df:
ea:93:4c:6e:8c:2c:bf:7b:46:db:97:4f:25:ec:61:
b8:9e:19:51:f5:9d:1d:fc:4d:93:18:50:27:d4:36:
51:c7:8e:4d:69:87:e0:20:00:8e:87:1b:66:4c:25:
8c:60:31:ba:84:47:57:2a:61:dc:3b:eb:e6:bf:de:
7b:ad:ce:1d:f6:a1:24:93:dd:48:18:6f:ac:95:96:
4d:33
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
49:51:E3:BC:E3:BE:61:EC:58:67:D8:FD:1D:06:27:18:37:91:68:E0
X509v3 Authority Key Identifier:
keyid:53:75:DF:21:2B:A5:98:EE:0A:5B:F6:80:B2:1F:50:C4:FC:7D:68:E1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/U3XfISulmO4KW_aAsh9QxPx9aOE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/00/c4fb00-39c5-48a5-903b-252fd967bfcc/1/U3XfISulmO4KW_aAsh9QxPx9aOE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/00/c4fb00-39c5-48a5-903b-252fd967bfcc/1/U3XfISulmO4KW_aAsh9QxPx9aOE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
2e:e2:0c:02:6e:a5:2f:56:1d:c0:53:bc:6c:6e:25:78:c2:f5:
a4:e5:34:4f:fc:03:7d:75:5a:d1:d9:3e:a6:d1:6e:04:f1:cb:
39:04:d0:07:50:20:f9:16:ea:ee:95:f6:20:84:28:03:a4:22:
fc:12:f9:28:c0:90:79:ef:14:ae:be:fb:cc:8b:5d:92:35:0e:
24:81:3a:8c:24:ab:cb:32:ac:39:c7:02:85:f2:c1:8c:e5:59:
45:d9:ab:08:b7:77:d5:53:b3:ce:b7:02:40:73:e8:86:dd:17:
e5:2a:20:d9:15:cb:a5:ad:0e:16:22:1a:b0:45:73:51:6e:9b:
bf:4e:49:c4:e6:e4:7b:97:e4:95:4b:97:1d:3f:10:7a:58:2c:
02:66:04:fe:41:a0:90:dc:87:c0:07:cb:58:d0:d4:d5:e6:2b:
a5:32:ad:d8:b4:a3:8f:d6:0e:7f:38:12:9e:a8:f3:54:2a:23:
26:8c:85:93:6b:31:b1:15:c9:91:1f:f1:a1:f9:fc:63:25:61:
09:1f:06:c3:26:2e:11:08:62:fe:b4:bd:5d:02:aa:b9:ab:d8:
0b:61:22:6b:62:73:62:1d:4e:c9:cc:ed:f5:f1:09:fc:af:fc:
8e:52:0e:70:6b:4c:e2:d2:f4:78:36:ab:36:df:52:45:ee:12:
b6:cb:fc:50
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 29 08:53:09 2025 by rpki-client