Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5a/23c0a9-68b1-40fd-a1e7-eb0885b9003e/1/uIF3qaNGnbOs8QqY9sA5MeNVFfo.mft
File: uIF3qaNGnbOs8QqY9sA5MeNVFfo.mft (raw, json)
Hash identifier: 36Z/PrRvtDuZXM0Ri9g5QeFv8tjPFUpt8lBBoK6b35w=
Subject key identifier: 10:38:7F:D9:FC:E5:25:F9:E8:2E:FD:0F:1B:C6:9F:9B:AD:D8:41:67
Authority key identifier: B8:81:77:A9:A3:46:9D:B3:AC:F1:0A:98:F6:C0:39:31:E3:55:15:FA
Certificate issuer: /CN=b88177a9a3469db3acf10a98f6c03931e35515fa
Certificate serial: 0198D4E0432559811E3536129DD8E2DEC2EF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/uIF3qaNGnbOs8QqY9sA5MeNVFfo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5a/23c0a9-68b1-40fd-a1e7-eb0885b9003e/1/uIF3qaNGnbOs8QqY9sA5MeNVFfo.mft
Manifest number: 05E2
Signing time: Sat 23 Aug 2025 03:02:03 +0000
Manifest this update: Sat 23 Aug 2025 03:02:03 +0000
Manifest next update: Sun 24 Aug 2025 03:02:03 +0000
Files and hashes: 1: uIF3qaNGnbOs8QqY9sA5MeNVFfo.crl (hash: Ay4+CcLiGzix+i4MBdSQNKw8R5f8Vyp5WUaSdVcXWk4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5a/23c0a9-68b1-40fd-a1e7-eb0885b9003e/1/uIF3qaNGnbOs8QqY9sA5MeNVFfo.crl
rsync://rpki.ripe.net/repository/DEFAULT/5a/23c0a9-68b1-40fd-a1e7-eb0885b9003e/1/uIF3qaNGnbOs8QqY9sA5MeNVFfo.mft
rsync://rpki.ripe.net/repository/DEFAULT/uIF3qaNGnbOs8QqY9sA5MeNVFfo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 03:02:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d4:e0:43:25:59:81:1e:35:36:12:9d:d8:e2:de:c2:ef
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b88177a9a3469db3acf10a98f6c03931e35515fa
Validity
Not Before: Aug 23 03:02:03 2025 GMT
Not After : Aug 24 03:02:03 2025 GMT
Subject: CN=10387fd9fce525f9e82efd0f1bc69f9badd84167
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ce:72:32:0f:46:65:99:c5:b5:ea:f0:91:47:2a:
e9:61:b0:da:4b:7f:6d:5b:0c:e7:f2:17:c4:c3:a8:
ed:58:0e:11:0d:0e:81:71:a8:26:84:84:29:32:53:
be:9e:27:29:24:d8:1a:bb:e6:ef:17:72:4a:48:72:
a0:16:21:cd:15:03:b7:a5:ff:ea:c2:53:a6:58:f1:
91:d4:c3:ce:1c:ca:4d:8f:bf:65:65:4a:81:6f:7a:
a4:97:04:fb:11:50:f2:3a:0d:f2:cd:57:8e:69:39:
79:aa:e1:bf:f6:64:44:e3:20:dc:f1:15:c4:da:ab:
20:00:1c:91:9e:28:7b:31:fe:d1:42:94:21:25:fd:
c0:0d:5c:33:4e:df:85:0f:9d:8f:c9:00:81:42:aa:
a7:56:ed:57:03:72:f0:c1:af:a0:b7:fc:f6:9c:85:
57:dd:fe:92:b2:77:bc:d5:c5:25:0a:fd:c9:ce:3e:
6a:3b:bb:c0:53:ba:6b:e0:61:a5:91:dd:b7:6a:32:
c7:24:50:09:18:5a:96:6a:c3:50:61:5d:58:b1:31:
af:86:0a:b2:6b:e0:aa:d4:ec:a8:d9:47:3c:c0:bb:
76:52:3a:5f:c5:c8:52:18:35:d4:94:f5:87:a4:4e:
ff:6c:bf:89:5d:a6:e7:eb:41:48:be:92:36:08:63:
e9:a5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
10:38:7F:D9:FC:E5:25:F9:E8:2E:FD:0F:1B:C6:9F:9B:AD:D8:41:67
X509v3 Authority Key Identifier:
keyid:B8:81:77:A9:A3:46:9D:B3:AC:F1:0A:98:F6:C0:39:31:E3:55:15:FA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/uIF3qaNGnbOs8QqY9sA5MeNVFfo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/23c0a9-68b1-40fd-a1e7-eb0885b9003e/1/uIF3qaNGnbOs8QqY9sA5MeNVFfo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/23c0a9-68b1-40fd-a1e7-eb0885b9003e/1/uIF3qaNGnbOs8QqY9sA5MeNVFfo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
04:73:f0:4f:3f:86:ba:ef:80:fb:49:84:bd:2c:fc:46:9a:f1:
66:02:b3:8e:b7:93:ee:4a:99:73:34:14:44:dc:b0:74:05:aa:
e6:00:ad:3d:b4:ac:ab:b0:85:33:4b:59:f1:ed:23:7d:03:ce:
bd:b4:4f:c7:f4:e4:26:c8:77:c7:da:11:02:55:a2:27:9c:84:
c3:57:c5:6b:4c:b9:45:b2:71:74:f5:32:38:be:9e:9a:99:63:
11:6a:d7:23:8e:68:a9:39:60:69:ff:06:86:f9:05:4d:f0:37:
d0:b3:ff:9a:c1:73:e9:25:28:54:13:b3:24:1a:fe:c0:e2:3b:
9d:99:a7:aa:8d:75:00:46:5b:c6:e5:34:5e:9b:b9:12:32:50:
15:d8:c0:f3:93:c2:ce:1c:07:45:62:14:f9:67:a7:bc:c8:6f:
ac:b6:a5:ca:a0:a3:66:cf:ea:f8:ef:9b:ef:f5:b8:9b:a6:79:
61:7a:be:6a:a3:cd:a6:de:c5:ae:02:19:99:61:81:38:8f:4a:
4d:ec:97:40:db:86:3b:9b:8a:81:46:00:04:16:97:55:de:52:
af:17:7e:8b:01:98:66:cd:44:55:e9:6e:35:87:90:00:23:03:
50:61:37:39:98:6d:d1:d9:60:84:df:65:a6:60:39:2a:3e:9d:
80:1b:af:70
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 14:14:04 2025 by rpki-client