Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/28/bc5e2f-a4ab-4bdc-9a07-6fb10eeaf627/1/u0OX5un46iWRVggDysuzI5Ytn64.mft
File: u0OX5un46iWRVggDysuzI5Ytn64.mft (raw, json)
Hash identifier: 4VjSZdQNwj55InZCQ2ac3OOBEUDmIgUN5tIOMIruYd4=
Subject key identifier: 64:9D:17:50:D7:C0:25:4B:37:77:97:FD:70:31:69:41:F9:F1:6F:6C
Authority key identifier: BB:43:97:E6:E9:F8:EA:25:91:56:08:03:CA:CB:B3:23:96:2D:9F:AE
Certificate issuer: /CN=bb4397e6e9f8ea2591560803cacbb323962d9fae
Certificate serial: 0198D65FBFBEC780F1F8CA8D8558A85950E4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/u0OX5un46iWRVggDysuzI5Ytn64.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/28/bc5e2f-a4ab-4bdc-9a07-6fb10eeaf627/1/u0OX5un46iWRVggDysuzI5Ytn64.mft
Manifest number: 108A
Signing time: Sat 23 Aug 2025 10:00:55 +0000
Manifest this update: Sat 23 Aug 2025 10:00:55 +0000
Manifest next update: Sun 24 Aug 2025 10:00:55 +0000
Files and hashes: 1: u0OX5un46iWRVggDysuzI5Ytn64.crl (hash: cOm7M1MVOce18xOhc7yHNeYiZD6/12zgf7qmCZ4JYuM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/28/bc5e2f-a4ab-4bdc-9a07-6fb10eeaf627/1/u0OX5un46iWRVggDysuzI5Ytn64.crl
rsync://rpki.ripe.net/repository/DEFAULT/28/bc5e2f-a4ab-4bdc-9a07-6fb10eeaf627/1/u0OX5un46iWRVggDysuzI5Ytn64.mft
rsync://rpki.ripe.net/repository/DEFAULT/u0OX5un46iWRVggDysuzI5Ytn64.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 05:01:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d6:5f:bf:be:c7:80:f1:f8:ca:8d:85:58:a8:59:50:e4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=bb4397e6e9f8ea2591560803cacbb323962d9fae
Validity
Not Before: Aug 23 10:00:55 2025 GMT
Not After : Aug 24 10:00:55 2025 GMT
Subject: CN=649d1750d7c0254b377797fd70316941f9f16f6c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:95:b7:d1:b2:52:d1:37:dd:7b:8a:5b:29:0f:a0:
46:b6:e2:d5:a3:ac:6d:d5:64:4e:72:b8:4e:1a:d7:
14:f1:ac:3e:41:85:68:3f:79:6b:96:2a:b6:04:e2:
2f:34:b2:72:19:75:44:48:eb:5c:0d:52:7f:b2:3d:
1e:02:b4:3e:6f:ff:03:2d:15:3c:17:38:cf:26:84:
b3:42:bc:df:a6:01:80:99:ad:45:ea:ca:86:0b:ba:
76:10:ef:7d:d8:05:33:a2:cb:58:fd:69:cd:b7:81:
84:f2:26:7f:ad:0f:c4:b4:dc:b4:c5:42:19:7c:f9:
fb:69:8f:56:3b:dd:3a:13:fd:7f:5c:eb:e6:b7:c9:
1d:7e:a2:ec:23:6a:e6:89:8b:c2:b2:52:15:f4:79:
8e:b4:5a:df:83:0e:0f:32:69:01:93:a7:de:f4:68:
8b:de:49:27:68:43:a0:96:c1:f6:7d:85:1f:69:c4:
d4:f5:b6:fa:41:3b:21:73:51:51:1f:61:ca:0c:35:
41:1b:fc:ee:77:10:76:d5:2a:a8:81:4b:93:1c:11:
4b:64:e7:29:9d:ef:6d:ac:d2:24:cc:db:b0:46:04:
e6:e3:7d:f4:4d:70:bc:03:b5:4c:45:2d:db:ca:39:
8e:51:47:11:ea:6c:a5:b8:81:f1:ca:93:42:90:f2:
bb:7f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
64:9D:17:50:D7:C0:25:4B:37:77:97:FD:70:31:69:41:F9:F1:6F:6C
X509v3 Authority Key Identifier:
keyid:BB:43:97:E6:E9:F8:EA:25:91:56:08:03:CA:CB:B3:23:96:2D:9F:AE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/u0OX5un46iWRVggDysuzI5Ytn64.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/28/bc5e2f-a4ab-4bdc-9a07-6fb10eeaf627/1/u0OX5un46iWRVggDysuzI5Ytn64.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/28/bc5e2f-a4ab-4bdc-9a07-6fb10eeaf627/1/u0OX5un46iWRVggDysuzI5Ytn64.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
17:83:36:6d:7d:6b:f6:ea:eb:e4:e3:10:eb:95:70:62:a2:a3:
ab:ec:fa:2e:79:d3:f7:36:a2:ee:70:8e:33:62:b2:c1:e3:90:
31:ce:33:e9:77:33:01:0c:26:b3:59:c4:de:9f:34:01:e8:f3:
28:bd:b9:4e:f9:b3:86:5f:ea:0c:11:37:94:49:97:a5:91:39:
24:10:e6:17:c1:8b:15:67:56:8e:8f:8c:b7:57:c4:79:25:59:
96:2c:cb:9f:e4:08:45:1c:f7:68:dc:b1:9f:f8:ab:52:19:7e:
fd:cb:b7:7f:54:79:61:ff:f8:d1:5b:de:c4:47:12:7d:08:bd:
97:13:10:31:83:56:34:1f:f1:ad:c2:db:50:b3:0e:d7:3d:3d:
98:6a:2d:cc:c6:2b:48:90:c1:c9:f5:04:31:24:17:3e:10:a3:
46:ed:6a:9f:72:c9:4d:fe:cb:35:50:22:ac:80:38:8e:ee:12:
38:d6:98:96:11:38:a9:22:e2:6e:7e:10:71:9c:07:2b:62:4d:
21:d3:36:26:ec:0e:d8:a6:08:ad:b1:a3:d3:a0:35:7a:cd:43:
fa:80:92:7c:7b:d6:7d:01:ec:28:c8:52:ab:a4:4c:0d:89:a1:
fc:5a:b1:b3:ed:05:ed:b9:e2:74:69:39:2c:b9:7e:de:aa:2c:
06:c1:fc:73
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 12:25:10 2025 by rpki-client