Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/64/7a53ec-56d7-45cd-bab8-b32adf61ab47/1/ucN059N57ajbliAKTu_lvBwok58.mft
File: ucN059N57ajbliAKTu_lvBwok58.mft (raw, json)
Hash identifier: zhTKIQrtiT8QgJ+R123MBBuZ5Zo8YW2iBqcnr5GRccQ=
Subject key identifier: 73:22:32:7D:62:01:19:BB:F9:B6:CD:C5:6B:E4:9E:8F:F2:C8:F4:4F
Authority key identifier: B9:C3:74:E7:D3:79:ED:A8:DB:96:20:0A:4E:EF:E5:BC:1C:28:93:9F
Certificate issuer: /CN=b9c374e7d379eda8db96200a4eefe5bc1c28939f
Certificate serial: 0198D6606F58C45463DA2BBC0E590E621A1D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ucN059N57ajbliAKTu_lvBwok58.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/64/7a53ec-56d7-45cd-bab8-b32adf61ab47/1/ucN059N57ajbliAKTu_lvBwok58.mft
Manifest number: 0D01
Signing time: Sat 23 Aug 2025 10:01:40 +0000
Manifest this update: Sat 23 Aug 2025 10:01:40 +0000
Manifest next update: Sun 24 Aug 2025 10:01:40 +0000
Files and hashes: 1: ucN059N57ajbliAKTu_lvBwok58.crl (hash: 1J4Q/zwVbBGEpEOQ8lOQkERNMWmMk9+krBkMt3y+nbs=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/64/7a53ec-56d7-45cd-bab8-b32adf61ab47/1/ucN059N57ajbliAKTu_lvBwok58.crl
rsync://rpki.ripe.net/repository/DEFAULT/64/7a53ec-56d7-45cd-bab8-b32adf61ab47/1/ucN059N57ajbliAKTu_lvBwok58.mft
rsync://rpki.ripe.net/repository/DEFAULT/ucN059N57ajbliAKTu_lvBwok58.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 05:01:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d6:60:6f:58:c4:54:63:da:2b:bc:0e:59:0e:62:1a:1d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b9c374e7d379eda8db96200a4eefe5bc1c28939f
Validity
Not Before: Aug 23 10:01:40 2025 GMT
Not After : Aug 24 10:01:40 2025 GMT
Subject: CN=7322327d620119bbf9b6cdc56be49e8ff2c8f44f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:72:f7:08:b1:fc:28:33:e0:fc:8f:c9:76:32:
6d:97:e8:d4:de:41:89:e6:ac:92:51:58:f8:8f:52:
22:03:63:7b:eb:33:94:39:56:50:0f:9a:47:f8:1b:
df:ed:c3:e7:9b:9d:15:32:bb:1d:46:7c:87:88:3c:
e5:f3:4a:ee:80:1b:f3:2f:b5:f2:14:29:00:5a:3b:
73:75:85:07:76:4a:84:31:0e:00:56:7d:13:49:d9:
59:6d:75:80:d0:4b:c4:ac:22:df:a7:aa:7c:a2:5e:
ac:e9:53:01:2e:06:a4:70:2d:ed:8a:5c:2a:3b:3b:
92:35:aa:50:d0:2d:cf:69:1d:96:1c:4d:04:e2:3f:
1f:b6:ee:53:ac:70:ab:5c:cf:8c:c6:5e:67:f5:89:
d9:f4:c3:b6:5e:9e:64:26:eb:dc:b4:47:86:d6:39:
ba:af:f6:e7:a2:79:37:8e:4d:09:11:89:8c:24:c4:
c7:21:b4:ff:c0:c1:f8:7e:f5:49:b7:5f:8e:d1:12:
33:6e:fe:9b:f7:53:16:ac:17:0f:17:15:56:20:ee:
3d:c2:b0:18:f5:7a:26:2d:6b:eb:85:02:c6:84:c5:
fb:de:91:13:59:2d:f2:96:5e:e1:da:60:9d:43:e5:
2f:4e:dc:92:96:fd:db:a9:17:e2:7f:7e:e4:e0:83:
14:55
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
73:22:32:7D:62:01:19:BB:F9:B6:CD:C5:6B:E4:9E:8F:F2:C8:F4:4F
X509v3 Authority Key Identifier:
keyid:B9:C3:74:E7:D3:79:ED:A8:DB:96:20:0A:4E:EF:E5:BC:1C:28:93:9F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ucN059N57ajbliAKTu_lvBwok58.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/64/7a53ec-56d7-45cd-bab8-b32adf61ab47/1/ucN059N57ajbliAKTu_lvBwok58.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/64/7a53ec-56d7-45cd-bab8-b32adf61ab47/1/ucN059N57ajbliAKTu_lvBwok58.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
8f:da:1f:7b:22:ba:94:4c:dd:6c:57:6f:bc:88:41:4b:f8:0b:
5f:75:7e:98:b2:67:4d:5c:79:ce:a4:32:98:0c:ac:89:59:5b:
7a:2c:b2:89:77:44:e8:cf:59:97:2a:5c:dc:5f:08:57:e4:5a:
92:26:d3:cd:cd:3c:94:79:d8:12:d7:dc:0d:4d:09:c8:04:54:
84:0e:51:12:8e:05:86:a0:49:c7:f5:64:44:94:c3:1b:9a:79:
aa:8b:49:55:e3:78:e2:37:78:fa:9a:3e:68:da:f2:ca:6b:d4:
a0:bf:9f:ef:c4:23:b0:c2:6b:3f:35:84:25:9b:1c:38:63:7c:
f5:71:4e:c0:4f:0c:e0:13:0a:02:dd:36:fe:9d:b5:23:d2:5d:
2c:3d:2a:f2:0b:3c:77:fa:03:99:81:d7:65:b0:5d:c2:a3:9c:
4b:2b:ba:cb:91:a1:15:72:b7:54:be:5b:22:75:5f:d6:5a:0d:
09:4c:f6:83:fd:12:27:68:7b:96:b7:76:89:7f:c0:70:ee:76:
8b:b2:a7:ab:f1:24:96:59:de:a2:76:dc:26:c3:0b:5c:10:e3:
57:b2:9e:e0:ba:70:38:35:1f:a5:50:d3:a1:b5:0e:91:16:0f:
9c:2a:3e:d3:e8:db:6d:d9:06:56:b2:6c:d0:15:26:9d:32:1e:
9f:61:dd:af
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZjWYG9YxFRj2iu8DlkOYhodMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGI5YzM3NGU3ZDM3OWVkYThkYjk2MjAwYTRlZWZlNWJjMWMy
ODkzOWYwHhcNMjUwODIzMTAwMTQwWhcNMjUwODI0MTAwMTQwWjAzMTEwLwYDVQQD
Eyg3MzIyMzI3ZDYyMDExOWJiZjliNmNkYzU2YmU0OWU4ZmYyYzhmNDRmMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApnL3CLH8KDPg/I/JdjJtl+jU3kGJ
5qySUVj4j1IiA2N76zOUOVZQD5pH+Bvf7cPnm50VMrsdRnyHiDzl80rugBvzL7Xy
FCkAWjtzdYUHdkqEMQ4AVn0TSdlZbXWA0EvErCLfp6p8ol6s6VMBLgakcC3tilwq
OzuSNapQ0C3PaR2WHE0E4j8ftu5TrHCrXM+Mxl5n9YnZ9MO2Xp5kJuvctEeG1jm6
r/bnonk3jk0JEYmMJMTHIbT/wMH4fvVJt1+O0RIzbv6b91MWrBcPFxVWIO49wrAY
9XomLWvrhQLGhMX73pETWS3yll7h2mCdQ+UvTtySlv3bqRfif37k4IMUVQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFHMiMn1iARm7+bbNxWvkno/yyPRPMB8GA1UdIwQY
MBaAFLnDdOfTee2o25YgCk7v5bwcKJOfMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvdWNOMDU5TjU3YWpibGlBS1R1X2x2QndvazU4LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82NC83YTUzZWMtNTZkNy00NWNkLWJhYjgt
YjMyYWRmNjFhYjQ3LzEvdWNOMDU5TjU3YWpibGlBS1R1X2x2QndvazU4Lm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC82NC83YTUzZWMtNTZkNy00NWNkLWJhYjgtYjMyYWRmNjFhYjQ3
LzEvdWNOMDU5TjU3YWpibGlBS1R1X2x2QndvazU4LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAj9ofeyK6
lEzdbFdvvIhBS/gLX3V+mLJnTVx5zqQymAysiVlbeiyyiXdE6M9Zlypc3F8IV+Ra
kibTzc08lHnYEtfcDU0JyARUhA5REo4FhqBJx/VkRJTDG5p5qotJVeN44jd4+po+
aNryymvUoL+f78QjsMJrPzWEJZscOGN89XFOwE8M4BMKAt02/p21I9JdLD0q8gs8
d/oDmYHXZbBdwqOcSyu6y5GhFXK3VL5bInVf1loNCUz2g/0SJ2h7lrd2iX/AcO52
i7Knq/EkllneonbcJsMLXBDjV7Ke4LpwODUfpVDTobUOkRYPnCo+0+jbbdkGVrJs
0BUmnTIen2Hdrw==
-----END CERTIFICATE-----
Generated at Sat Aug 23 12:32:47 2025 by rpki-client