Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/74/d13526-c1ac-45e4-bebc-66f4167f83b2/1/u03_X665REU6fISwl-V8ccBPEfw.mft
File: u03_X665REU6fISwl-V8ccBPEfw.mft (raw, json)
Hash identifier: bv1PnoYb90UIskigwCC3iLj3bIL5HCwW7X04W4tTNpE=
Subject key identifier: C4:BE:8E:E7:2D:0A:F1:27:84:81:98:3E:FC:C5:05:05:A9:28:3D:8B
Authority key identifier: BB:4D:FF:5F:AE:B9:44:45:3A:7C:84:B0:97:E5:7C:71:C0:4F:11:FC
Certificate issuer: /CN=bb4dff5faeb944453a7c84b097e57c71c04f11fc
Certificate serial: 0197C424ED14CC5129998F613C904D64604D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/u03_X665REU6fISwl-V8ccBPEfw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/74/d13526-c1ac-45e4-bebc-66f4167f83b2/1/u03_X665REU6fISwl-V8ccBPEfw.mft
Manifest number: 08FA
Signing time: Tue 01 Jul 2025 04:00:43 +0000
Manifest this update: Tue 01 Jul 2025 04:00:43 +0000
Manifest next update: Wed 02 Jul 2025 04:00:43 +0000
Files and hashes: 1: u03_X665REU6fISwl-V8ccBPEfw.crl (hash: lwyWmUAJwNDbjhfdIrvy7LVCScK2FmKssx+RopERXJA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/74/d13526-c1ac-45e4-bebc-66f4167f83b2/1/u03_X665REU6fISwl-V8ccBPEfw.crl
rsync://rpki.ripe.net/repository/DEFAULT/74/d13526-c1ac-45e4-bebc-66f4167f83b2/1/u03_X665REU6fISwl-V8ccBPEfw.mft
rsync://rpki.ripe.net/repository/DEFAULT/u03_X665REU6fISwl-V8ccBPEfw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 01 Jul 2025 23:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:c4:24:ed:14:cc:51:29:99:8f:61:3c:90:4d:64:60:4d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=bb4dff5faeb944453a7c84b097e57c71c04f11fc
Validity
Not Before: Jul 1 04:00:43 2025 GMT
Not After : Jul 2 04:00:43 2025 GMT
Subject: CN=c4be8ee72d0af1278481983efcc50505a9283d8b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:f0:65:80:5e:1c:dc:e7:02:88:23:b8:29:1b:
2b:8d:0f:74:f5:83:df:f3:67:b2:83:a9:fb:fc:86:
df:df:96:eb:e1:83:9c:0b:b9:4a:76:3a:b4:a5:2d:
33:63:19:76:ed:f5:f9:21:f9:43:3c:ec:b2:6b:60:
4c:eb:ca:62:e9:16:63:a9:1f:c8:a3:b1:58:39:cf:
e7:51:96:58:df:15:dd:ef:42:02:4c:ca:4a:a1:7b:
f4:8c:34:9e:34:55:0d:b4:fc:96:3f:d6:c3:68:0d:
a8:a4:ea:2e:0a:40:61:6c:d5:e9:03:3c:ed:62:5e:
76:9e:23:72:a9:19:04:96:d0:a7:bd:f4:3b:87:bc:
24:62:bc:29:b2:9f:77:13:8b:59:45:cc:9b:84:33:
eb:13:3a:7d:14:68:e4:d3:f0:a5:71:5e:a9:67:e4:
f8:12:d1:7d:ff:85:f2:0b:ed:02:df:c2:6f:2b:be:
a1:2f:3f:b8:de:04:0a:42:cd:a4:4b:ec:29:9a:4b:
c6:18:7b:e7:f4:a3:4e:28:ec:4b:42:b8:54:21:38:
b0:f8:6e:dc:4a:a7:51:2a:7d:eb:55:5b:e0:35:18:
e2:8c:6f:01:77:26:db:d6:84:36:ff:2a:bc:fa:51:
9b:5c:6b:f3:be:a9:e0:97:ea:3b:3d:2d:74:83:49:
ee:37
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C4:BE:8E:E7:2D:0A:F1:27:84:81:98:3E:FC:C5:05:05:A9:28:3D:8B
X509v3 Authority Key Identifier:
keyid:BB:4D:FF:5F:AE:B9:44:45:3A:7C:84:B0:97:E5:7C:71:C0:4F:11:FC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/u03_X665REU6fISwl-V8ccBPEfw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/74/d13526-c1ac-45e4-bebc-66f4167f83b2/1/u03_X665REU6fISwl-V8ccBPEfw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/74/d13526-c1ac-45e4-bebc-66f4167f83b2/1/u03_X665REU6fISwl-V8ccBPEfw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
b6:c9:eb:34:23:ff:fa:77:c4:1c:94:f0:0b:99:c0:13:da:ba:
d7:1b:1c:4a:e6:1f:08:bb:fe:f7:a2:2e:dc:15:eb:e0:d5:d1:
ce:7f:07:49:9c:c8:8b:74:b0:f3:2c:6f:a4:10:24:72:70:4b:
07:5a:1c:21:b8:de:0a:38:68:7d:7d:25:8a:1f:66:bf:59:c7:
c4:ac:1f:38:47:0b:19:1f:3b:25:84:d0:af:26:62:2d:fd:58:
54:00:e0:1f:a4:37:31:39:26:77:bf:11:46:73:76:83:02:02:
54:16:b8:00:7b:05:e6:ed:f9:32:2a:fc:6b:a5:81:32:32:c0:
90:03:76:d0:1b:67:4f:c5:d5:dd:27:60:fb:cd:b7:03:a8:7a:
dc:77:ee:15:5c:d0:c8:0e:0d:1b:fb:0b:59:95:ec:62:59:0e:
4d:88:90:99:f6:dc:cd:79:e8:c8:9f:f0:21:35:86:4f:48:30:
ea:4e:85:da:fc:f7:4b:07:71:9f:79:ae:ae:e9:a8:72:d3:47:
c4:e2:ad:b9:59:7f:af:1b:c2:e5:22:6f:3c:bd:35:32:52:8a:
8d:a3:a0:3a:1c:ce:49:9a:7e:46:22:90:24:1c:c3:f4:db:5f:
39:b0:69:50:ef:31:a1:10:ff:f5:b4:9c:81:db:19:54:18:a9:
5d:b9:63:c3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jul 1 06:50:49 2025 by rpki-client