Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/36/063b1b-7bde-48cc-b1ac-fad707d9c4f6/1/U7-Y1TUiqpVwgf3sKLFyCEOU8RI.mft
File: U7-Y1TUiqpVwgf3sKLFyCEOU8RI.mft (raw, json)
Hash identifier: Yda3eH6nzDhAYgwz1EyYojgJrB6VlLYcHBOFZDp/FFU=
Subject key identifier: 44:5F:A3:3F:D1:BC:F7:9B:57:B5:18:89:2B:EE:F4:0E:03:A7:46:73
Authority key identifier: 53:BF:98:D5:35:22:AA:95:70:81:FD:EC:28:B1:72:08:43:94:F1:12
Certificate issuer: /CN=53bf98d53522aa957081fdec28b172084394f112
Certificate serial: 0196C15DA99AB1D9261D43A966DA31287998
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/U7-Y1TUiqpVwgf3sKLFyCEOU8RI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/36/063b1b-7bde-48cc-b1ac-fad707d9c4f6/1/U7-Y1TUiqpVwgf3sKLFyCEOU8RI.mft
Manifest number: 0D4A
Signing time: Sun 11 May 2025 22:01:03 +0000
Manifest this update: Sun 11 May 2025 22:01:03 +0000
Manifest next update: Mon 12 May 2025 22:01:03 +0000
Files and hashes: 1: U7-Y1TUiqpVwgf3sKLFyCEOU8RI.crl (hash: VTBT4lukzYFERPcdRRmYibftjzOVkGE6ogLBcUzad5k=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/36/063b1b-7bde-48cc-b1ac-fad707d9c4f6/1/U7-Y1TUiqpVwgf3sKLFyCEOU8RI.crl
rsync://rpki.ripe.net/repository/DEFAULT/36/063b1b-7bde-48cc-b1ac-fad707d9c4f6/1/U7-Y1TUiqpVwgf3sKLFyCEOU8RI.mft
rsync://rpki.ripe.net/repository/DEFAULT/U7-Y1TUiqpVwgf3sKLFyCEOU8RI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 12 May 2025 22:01:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:c1:5d:a9:9a:b1:d9:26:1d:43:a9:66:da:31:28:79:98
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=53bf98d53522aa957081fdec28b172084394f112
Validity
Not Before: May 11 22:01:03 2025 GMT
Not After : May 12 22:01:03 2025 GMT
Subject: CN=445fa33fd1bcf79b57b518892beef40e03a74673
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d7:9c:14:bf:80:f5:90:a8:69:80:ce:ef:6d:e6:
03:a5:4c:07:62:26:4f:33:c7:ed:65:58:4e:61:97:
2b:f2:03:a9:95:a2:14:3d:a5:6b:fd:88:bc:94:75:
c2:41:16:f7:c1:db:42:61:72:1e:2a:6e:1d:45:1f:
cb:ab:16:4a:d4:28:c4:5d:9c:d0:11:17:9e:3b:aa:
c0:08:35:3e:91:f2:0e:7c:b5:5b:b5:d0:c0:ab:0d:
7d:2b:29:e9:ed:ab:61:a1:de:34:c4:ae:f1:fc:30:
34:f4:38:3f:27:e3:02:69:7d:5b:b5:4d:52:61:6c:
3b:18:d0:eb:64:f9:4b:af:db:84:44:83:4a:93:a6:
cd:32:e3:c2:2f:e7:63:d1:8e:61:85:80:03:73:33:
8e:ff:68:eb:67:1b:c5:b5:58:3a:f7:51:be:8a:56:
fa:38:ef:f4:32:b2:ba:8e:bd:97:17:cd:cc:ac:2b:
58:98:34:9b:e3:88:38:b8:09:d1:2d:9c:c5:82:86:
ea:73:d1:61:65:06:5b:f4:ec:2f:ad:96:81:93:4d:
58:f3:4e:64:a7:38:3f:29:d5:7c:04:5b:08:f3:3f:
be:37:a6:8a:50:02:76:67:f1:a3:33:47:ae:d2:ed:
0a:21:71:17:cd:b5:31:41:e5:f8:b6:a8:a4:3e:f1:
dd:6d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
44:5F:A3:3F:D1:BC:F7:9B:57:B5:18:89:2B:EE:F4:0E:03:A7:46:73
X509v3 Authority Key Identifier:
keyid:53:BF:98:D5:35:22:AA:95:70:81:FD:EC:28:B1:72:08:43:94:F1:12
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/U7-Y1TUiqpVwgf3sKLFyCEOU8RI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/36/063b1b-7bde-48cc-b1ac-fad707d9c4f6/1/U7-Y1TUiqpVwgf3sKLFyCEOU8RI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/36/063b1b-7bde-48cc-b1ac-fad707d9c4f6/1/U7-Y1TUiqpVwgf3sKLFyCEOU8RI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
76:89:94:c8:36:c3:01:c5:d4:25:8a:66:ef:03:52:94:1d:95:
ad:70:f5:4b:d6:1b:82:44:38:2e:a6:ac:10:e6:ca:45:aa:ca:
c1:ed:14:3b:15:6b:66:f9:02:0d:7b:0f:31:f8:ce:f8:71:61:
95:46:77:ad:12:20:8c:fc:7b:6f:3a:6f:4d:4c:b4:cd:a8:f5:
09:f6:40:07:f6:c7:b4:e6:16:22:88:76:09:82:67:0e:c7:90:
ad:29:32:87:48:14:7b:7e:67:22:35:06:50:dc:6b:21:2d:d2:
ac:97:38:c4:bb:93:80:51:ec:a3:61:fb:2f:3f:a7:f2:eb:8f:
29:c4:d0:6c:81:e0:28:da:f4:56:90:48:e8:cc:65:16:13:71:
f3:83:0a:c4:7f:1a:5b:20:1a:c5:be:f9:09:15:6f:91:dd:33:
31:f5:15:d5:84:8c:68:96:ba:76:5e:6e:65:88:f0:72:f5:59:
88:3a:87:cc:8e:88:3b:40:ec:2b:d8:ab:8e:bf:cf:c0:d8:c2:
49:96:69:99:95:33:00:2a:f4:74:af:d6:72:2c:90:95:18:0f:
a5:9b:d5:a6:d2:7a:03:64:72:f8:19:4e:ac:4e:47:87:62:ef:
27:42:7d:54:fa:f1:5f:73:94:46:83:17:4d:c4:13:81:01:ce:
6a:a1:91:30
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon May 12 05:42:39 2025 by rpki-client