Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/52/f8b381-692a-4830-8d7d-21bf708f3cad/1/Uylu4zFT725pONV6KhMsHlJtxDA.mft
File: Uylu4zFT725pONV6KhMsHlJtxDA.mft (raw, json)
Hash identifier: kOHpK5vs58qP689KuAxBJWQPmwMAY0rli3Ohh2zR/Qc=
Subject key identifier: 93:84:24:EB:15:9B:05:E6:40:CA:AF:56:45:80:6D:02:4D:E6:F1:32
Authority key identifier: 53:29:6E:E3:31:53:EF:6E:69:38:D5:7A:2A:13:2C:1E:52:6D:C4:30
Certificate issuer: /CN=53296ee33153ef6e6938d57a2a132c1e526dc430
Certificate serial: 0197B7EA1905CA2105118BDC0D58C1D298D8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Uylu4zFT725pONV6KhMsHlJtxDA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/52/f8b381-692a-4830-8d7d-21bf708f3cad/1/Uylu4zFT725pONV6KhMsHlJtxDA.mft
Manifest number: 148B
Signing time: Sat 28 Jun 2025 19:01:01 +0000
Manifest this update: Sat 28 Jun 2025 19:01:01 +0000
Manifest next update: Sun 29 Jun 2025 19:01:01 +0000
Files and hashes: 1: Uylu4zFT725pONV6KhMsHlJtxDA.crl (hash: jEpIEFXuDCGuJSJ9KwwzJd1YkIblintBTDwFdHfCcuo=)
2: kWgx2Wjql2LYt0QNUa7UD3E-ZNs.roa (hash: NPB7ZX6Td6/rM0WpZJID5mJD7qpTT41mPi5DDVNwg5U=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/52/f8b381-692a-4830-8d7d-21bf708f3cad/1/Uylu4zFT725pONV6KhMsHlJtxDA.crl
rsync://rpki.ripe.net/repository/DEFAULT/52/f8b381-692a-4830-8d7d-21bf708f3cad/1/Uylu4zFT725pONV6KhMsHlJtxDA.mft
rsync://rpki.ripe.net/repository/DEFAULT/Uylu4zFT725pONV6KhMsHlJtxDA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 15:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b7:ea:19:05:ca:21:05:11:8b:dc:0d:58:c1:d2:98:d8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=53296ee33153ef6e6938d57a2a132c1e526dc430
Validity
Not Before: Jun 28 19:01:01 2025 GMT
Not After : Jun 29 19:01:01 2025 GMT
Subject: CN=938424eb159b05e640caaf5645806d024de6f132
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f3:df:fe:7f:70:90:8a:d9:20:ba:51:e3:e2:43:
57:69:f0:48:91:2d:1e:27:ae:96:69:6f:17:8e:a6:
cd:64:d4:18:e9:8d:6f:32:19:d5:8a:61:6e:ee:b8:
3b:ff:bc:99:4c:f7:ee:5c:8b:49:3e:53:18:dd:09:
52:eb:3a:cc:04:4d:a0:98:c1:db:9e:f3:31:26:ea:
cc:a4:d7:a7:1d:47:0b:95:79:fe:93:fe:5a:55:7a:
32:68:66:e5:a4:17:cf:22:60:0d:19:9d:d5:1c:cf:
b2:b9:c1:99:65:e0:bc:21:d2:df:62:52:76:b6:66:
f0:32:5a:25:9c:8d:53:58:cb:f6:9b:9e:85:b7:dd:
0a:29:ba:75:6e:74:c3:d8:e8:c1:a3:af:b2:fe:95:
10:83:a9:60:6c:c3:ac:f2:4b:7d:e3:18:01:5f:30:
09:89:7e:5f:38:b6:90:ff:c2:9a:9d:03:e1:fa:b8:
f8:4f:3d:58:49:41:01:3b:e4:fa:bf:79:d5:76:6e:
48:08:a8:9c:0c:b0:85:9a:b3:9e:04:3d:62:8a:de:
b5:b0:d7:52:3e:d6:b4:ed:c5:b7:00:4d:42:46:51:
60:95:40:9d:75:c1:7a:6a:44:b3:ab:20:7d:67:49:
5f:d6:3a:35:13:13:0a:6c:45:23:e7:5d:ee:56:90:
e1:15
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
93:84:24:EB:15:9B:05:E6:40:CA:AF:56:45:80:6D:02:4D:E6:F1:32
X509v3 Authority Key Identifier:
keyid:53:29:6E:E3:31:53:EF:6E:69:38:D5:7A:2A:13:2C:1E:52:6D:C4:30
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Uylu4zFT725pONV6KhMsHlJtxDA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/52/f8b381-692a-4830-8d7d-21bf708f3cad/1/Uylu4zFT725pONV6KhMsHlJtxDA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/52/f8b381-692a-4830-8d7d-21bf708f3cad/1/Uylu4zFT725pONV6KhMsHlJtxDA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
87:26:63:56:8d:e6:ee:be:bd:05:98:d6:44:ff:ca:45:dc:fc:
fd:67:1c:38:c7:90:cc:39:7f:99:d6:31:74:42:0e:ce:ff:22:
e0:59:0b:c6:55:e7:17:57:2d:ce:23:f8:0a:b2:09:25:64:0c:
0e:72:a6:9c:c3:8e:84:21:f8:a3:3b:dd:2a:4a:01:2a:e4:b1:
e2:a6:17:ad:51:17:40:33:0b:fc:76:8f:5a:a3:69:48:1c:b2:
e7:7d:af:f2:93:0a:2b:df:0d:6a:91:88:74:5c:f1:9e:c7:ba:
0d:9a:3d:4c:39:69:8e:65:6f:f0:75:f1:50:28:ff:bf:f1:71:
fd:bd:cb:03:f8:ff:24:07:40:37:4b:42:cd:c7:93:e2:62:3c:
2e:ff:de:22:5a:87:c8:b4:7d:de:4b:03:e0:cb:17:e2:48:85:
be:2a:e2:04:df:3a:48:50:48:db:e7:db:fa:4b:19:be:3f:e7:
57:fd:eb:4f:29:ee:d7:11:cb:6f:b2:02:e0:d8:45:9a:c3:a6:
13:9a:df:2e:6f:c4:d9:f6:a0:d7:5f:69:42:cb:1a:21:1a:51:
76:5e:2b:f8:da:81:cd:44:89:b5:2a:42:49:ab:57:50:47:0c:
7f:b4:0f:7b:a0:3a:f2:6d:d7:ef:7a:71:5b:23:47:40:5a:c3:
2d:66:16:93
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 28 22:35:46 2025 by rpki-client