Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1d/e6ccc7-d1e5-4f07-8dab-506a4934cad5/1/UNlf0yarPwj3bczGVrs-Hia03Fc.mft
File: UNlf0yarPwj3bczGVrs-Hia03Fc.mft (raw, json)
Hash identifier: x8TNeH1Uy6X1pg2vYI7+ba75hUpQFOhxewCqM/U26oo=
Subject key identifier: 2F:4B:30:E8:E3:23:EF:EB:97:D2:A5:E9:5C:9C:AC:88:96:06:14:A4
Authority key identifier: 50:D9:5F:D3:26:AB:3F:08:F7:6D:CC:C6:56:BB:3E:1E:26:B4:DC:57
Certificate issuer: /CN=50d95fd326ab3f08f76dccc656bb3e1e26b4dc57
Certificate serial: 0199FA6A83BEDA0B2F207BEC16F08D569278
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UNlf0yarPwj3bczGVrs-Hia03Fc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1d/e6ccc7-d1e5-4f07-8dab-506a4934cad5/1/UNlf0yarPwj3bczGVrs-Hia03Fc.mft
Manifest number: 0288
Signing time: Sun 19 Oct 2025 03:01:48 +0000
Manifest this update: Sun 19 Oct 2025 03:01:48 +0000
Manifest next update: Mon 20 Oct 2025 03:01:48 +0000
Files and hashes: 1: UNlf0yarPwj3bczGVrs-Hia03Fc.crl (hash: ct99Wy3b1Xq8zGZUfppJ6bI5iBeZkDWeCWKz/eDWxcM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/1d/e6ccc7-d1e5-4f07-8dab-506a4934cad5/1/UNlf0yarPwj3bczGVrs-Hia03Fc.crl
rsync://rpki.ripe.net/repository/DEFAULT/1d/e6ccc7-d1e5-4f07-8dab-506a4934cad5/1/UNlf0yarPwj3bczGVrs-Hia03Fc.mft
rsync://rpki.ripe.net/repository/DEFAULT/UNlf0yarPwj3bczGVrs-Hia03Fc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 03:01:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fa:6a:83:be:da:0b:2f:20:7b:ec:16:f0:8d:56:92:78
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=50d95fd326ab3f08f76dccc656bb3e1e26b4dc57
Validity
Not Before: Oct 19 03:01:48 2025 GMT
Not After : Oct 20 03:01:48 2025 GMT
Subject: CN=2f4b30e8e323efeb97d2a5e95c9cac88960614a4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:c3:fd:01:74:81:bc:0c:f4:ef:32:47:cd:b5:
d4:d7:71:a8:7c:0d:ee:15:cc:92:1d:40:2e:86:55:
84:7b:4a:3b:1f:b4:dc:cb:97:ce:b4:34:6b:1b:de:
4d:cf:d1:13:da:52:e8:f4:c4:de:48:b8:d1:8e:34:
88:73:93:e1:0e:8b:f4:6e:ea:50:13:12:30:6f:6a:
97:d4:37:1f:e3:8b:21:c9:2a:3b:b0:81:ec:c7:20:
0e:1e:59:7a:b4:f1:d8:3c:e4:b3:93:73:71:33:94:
21:7a:47:83:90:c5:a7:2d:d6:56:e3:5c:7c:92:7a:
fb:aa:8d:50:f7:b1:21:49:d2:4b:2b:1c:5e:8c:43:
39:cb:1f:a0:5e:00:ad:72:12:2d:17:47:05:29:56:
24:50:61:d3:e1:b7:10:68:65:d4:82:0e:ad:9a:b8:
07:cd:49:ac:2e:2d:35:ad:c7:7f:ef:ff:18:c0:b8:
81:d5:f6:19:38:9a:17:98:5c:a8:1b:a5:82:70:bf:
95:62:51:2e:7d:e2:16:f4:cb:3c:1a:52:91:bc:86:
60:b8:99:57:d5:4d:bd:5a:13:b7:57:a8:df:79:bf:
a0:e5:ab:71:1b:23:fc:ad:de:16:07:18:14:5b:a4:
91:36:4e:5a:64:94:2d:e5:79:d3:7f:d6:e2:0b:62:
a3:b7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2F:4B:30:E8:E3:23:EF:EB:97:D2:A5:E9:5C:9C:AC:88:96:06:14:A4
X509v3 Authority Key Identifier:
keyid:50:D9:5F:D3:26:AB:3F:08:F7:6D:CC:C6:56:BB:3E:1E:26:B4:DC:57
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UNlf0yarPwj3bczGVrs-Hia03Fc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1d/e6ccc7-d1e5-4f07-8dab-506a4934cad5/1/UNlf0yarPwj3bczGVrs-Hia03Fc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1d/e6ccc7-d1e5-4f07-8dab-506a4934cad5/1/UNlf0yarPwj3bczGVrs-Hia03Fc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
62:fd:81:6b:5f:41:1d:68:54:fe:ec:4b:25:d2:34:6d:92:8d:
8f:01:ac:c0:05:6a:36:b5:da:43:5c:6e:9b:21:7e:f6:57:49:
a2:15:f5:7e:83:b0:e7:b1:2a:4b:6f:57:dc:0c:b2:21:1b:3b:
d2:f8:8c:fc:3e:b6:2b:c6:d8:4a:03:0e:7b:c2:4d:77:e4:c1:
df:f2:7a:7d:62:08:6a:6c:25:b3:51:cb:28:50:a6:8d:0b:6d:
ff:fd:ab:2a:a6:01:59:12:5a:91:79:af:e4:ab:cb:c7:3e:65:
7a:e9:e6:f8:0c:cc:64:ff:78:85:9e:01:a3:26:ba:bf:fe:28:
dd:56:6b:d3:57:91:11:9c:9b:d8:cd:28:54:c1:5c:b0:f2:1c:
04:ea:a5:6c:ef:b6:29:65:ff:2a:6b:d4:4a:bf:1b:5b:a1:09:
11:dc:95:d5:86:66:3d:4f:9f:15:7a:0e:c9:7e:58:c3:56:32:
12:86:d9:7e:68:2d:50:ba:f8:32:ed:c0:31:bd:d3:96:68:ce:
c2:82:00:f1:bf:c1:0e:85:1c:59:ab:16:87:28:e7:7b:37:a3:
cb:93:d7:7a:96:14:6a:d0:6f:ef:52:fd:00:d1:e7:c2:c3:87:
db:aa:13:ad:a8:fc:41:c7:ca:f6:e2:0a:88:28:c3:63:3e:4c:
61:0a:21:19
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 19 12:52:24 2025 by rpki-client