Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/00/c4fb00-39c5-48a5-903b-252fd967bfcc/1/U3XfISulmO4KW_aAsh9QxPx9aOE.mft
File: U3XfISulmO4KW_aAsh9QxPx9aOE.mft (raw, json)
Hash identifier: dy/FOmR6WB2kf4s+sFLEWHfeo50IXBnIAU+KuxEOvsA=
Subject key identifier: A9:BB:13:E6:D8:9E:49:35:93:83:5A:3D:28:49:7E:25:FE:D2:C2:95
Authority key identifier: 53:75:DF:21:2B:A5:98:EE:0A:5B:F6:80:B2:1F:50:C4:FC:7D:68:E1
Certificate issuer: /CN=5375df212ba598ee0a5bf680b21f50c4fc7d68e1
Certificate serial: 0198D4E0B2B0C9DBE07C6521AD7A9207C118
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/U3XfISulmO4KW_aAsh9QxPx9aOE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/00/c4fb00-39c5-48a5-903b-252fd967bfcc/1/U3XfISulmO4KW_aAsh9QxPx9aOE.mft
Manifest number: 0DE3
Signing time: Sat 23 Aug 2025 03:02:32 +0000
Manifest this update: Sat 23 Aug 2025 03:02:32 +0000
Manifest next update: Sun 24 Aug 2025 03:02:32 +0000
Files and hashes: 1: U3XfISulmO4KW_aAsh9QxPx9aOE.crl (hash: JoaFIXhGIP+ARzgDoPBklgQXu6uJy7w9ez6BuG1Bjw4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/00/c4fb00-39c5-48a5-903b-252fd967bfcc/1/U3XfISulmO4KW_aAsh9QxPx9aOE.crl
rsync://rpki.ripe.net/repository/DEFAULT/00/c4fb00-39c5-48a5-903b-252fd967bfcc/1/U3XfISulmO4KW_aAsh9QxPx9aOE.mft
rsync://rpki.ripe.net/repository/DEFAULT/U3XfISulmO4KW_aAsh9QxPx9aOE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 03:02:32 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d4:e0:b2:b0:c9:db:e0:7c:65:21:ad:7a:92:07:c1:18
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5375df212ba598ee0a5bf680b21f50c4fc7d68e1
Validity
Not Before: Aug 23 03:02:32 2025 GMT
Not After : Aug 24 03:02:32 2025 GMT
Subject: CN=a9bb13e6d89e493593835a3d28497e25fed2c295
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cf:55:aa:ac:5d:a7:a5:f9:eb:d1:07:5c:fa:eb:
7b:02:db:d9:8b:5f:23:9c:61:92:59:e0:2b:13:90:
5a:f0:bb:1b:f0:4c:6d:b6:cd:4e:b9:80:8f:99:fb:
1e:f2:3f:98:aa:8a:1e:a1:70:e1:9d:e6:3e:f6:1d:
f2:00:97:e5:98:3f:a3:18:28:55:be:47:9a:3e:a1:
be:e4:9c:19:0c:fb:a0:dc:95:ae:9d:1d:54:c7:db:
39:e9:c3:b6:08:6f:4d:65:14:ba:d6:2d:b6:57:cd:
76:0b:87:b2:d3:42:1a:c6:d3:65:80:a8:5f:98:26:
0c:6d:09:64:55:9d:f2:df:b5:c5:5f:c9:28:74:98:
df:ac:8c:2a:ab:e8:76:fd:40:f8:a9:75:63:22:6d:
e0:e8:fb:13:11:9a:79:4a:95:44:7b:86:8a:7d:36:
8b:05:23:39:67:2c:cf:cc:fc:a5:91:db:1d:75:22:
a5:57:99:0f:a6:6b:c2:00:78:9a:6e:c4:73:74:29:
e1:78:a8:9c:8d:ab:d5:c5:9e:94:29:dd:aa:e6:3f:
16:3a:72:a7:6b:a6:55:c5:46:09:2b:df:c4:03:df:
d1:79:d2:9a:b8:eb:25:f3:39:7c:e9:2c:af:32:30:
51:c3:5b:ed:bf:8c:ae:7f:04:07:79:d5:aa:31:0d:
90:c3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A9:BB:13:E6:D8:9E:49:35:93:83:5A:3D:28:49:7E:25:FE:D2:C2:95
X509v3 Authority Key Identifier:
keyid:53:75:DF:21:2B:A5:98:EE:0A:5B:F6:80:B2:1F:50:C4:FC:7D:68:E1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/U3XfISulmO4KW_aAsh9QxPx9aOE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/00/c4fb00-39c5-48a5-903b-252fd967bfcc/1/U3XfISulmO4KW_aAsh9QxPx9aOE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/00/c4fb00-39c5-48a5-903b-252fd967bfcc/1/U3XfISulmO4KW_aAsh9QxPx9aOE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
9c:37:3a:69:fd:7c:85:8f:90:d8:6b:d6:84:81:54:7e:a8:6d:
f6:f4:48:35:97:0e:3d:a3:35:99:66:91:fb:34:7b:94:5f:b1:
5d:6c:ad:71:c6:a9:55:2b:10:85:70:d1:cd:14:f2:5a:35:79:
b4:0f:cd:58:49:95:00:e4:43:b5:21:0a:2d:aa:d6:23:0d:50:
02:f2:e8:29:73:d8:70:c2:2a:42:15:23:b2:d9:43:d2:5c:a8:
25:70:4c:fd:c6:b9:39:8e:88:ad:6b:82:f0:3f:dc:02:7b:ab:
13:5c:ca:e1:53:72:a4:a9:59:56:cb:a6:a9:68:83:3d:bf:ff:
5a:be:80:d9:5f:53:72:00:2a:81:62:9e:37:e5:87:f3:05:1b:
c8:ac:93:32:1b:97:8c:ec:ac:de:a2:01:0d:19:ce:6d:75:6c:
78:36:8f:71:67:2b:f6:c8:11:1d:a8:6f:f4:53:76:0a:df:22:
53:64:96:22:0b:86:74:32:63:68:51:05:9b:af:53:f6:64:9d:
7a:51:10:15:b1:59:3c:79:dd:ce:f9:1d:e1:33:35:db:7e:bd:
81:e0:ad:22:e3:e6:3e:44:ab:7a:e6:1b:18:32:8d:db:35:6e:
66:37:2c:fc:e0:e1:af:c0:57:fc:aa:c9:0e:c1:6d:7c:2e:f9:
8d:95:90:36
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 11:35:02 2025 by rpki-client