Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/90/63622f-b464-407d-bcfd-c9491b4dfd76/1/U1wJpqvN8dobR6tK8_-O_KWBRF0.mft
File: U1wJpqvN8dobR6tK8_-O_KWBRF0.mft (raw, json)
Hash identifier: 9dGY3X2fL2qkpju8130hiLoIdEQgrSpxhvy1LCTEmbE=
Subject key identifier: 11:A6:E7:DD:D2:F9:E6:11:3B:56:D0:DA:75:66:6E:40:67:62:D6:8D
Authority key identifier: 53:5C:09:A6:AB:CD:F1:DA:1B:47:AB:4A:F3:FF:8E:FC:A5:81:44:5D
Certificate issuer: /CN=535c09a6abcdf1da1b47ab4af3ff8efca581445d
Certificate serial: 0197B89052993F160ABA79EF928B333884B6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/U1wJpqvN8dobR6tK8_-O_KWBRF0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/90/63622f-b464-407d-bcfd-c9491b4dfd76/1/U1wJpqvN8dobR6tK8_-O_KWBRF0.mft
Manifest number: 051A
Signing time: Sat 28 Jun 2025 22:02:35 +0000
Manifest this update: Sat 28 Jun 2025 22:02:35 +0000
Manifest next update: Sun 29 Jun 2025 22:02:35 +0000
Files and hashes: 1: U1wJpqvN8dobR6tK8_-O_KWBRF0.crl (hash: ysDiNryN8bPiYuKmDIsD4RdcuvD072ndqQn9Q2EoCp0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/90/63622f-b464-407d-bcfd-c9491b4dfd76/1/U1wJpqvN8dobR6tK8_-O_KWBRF0.crl
rsync://rpki.ripe.net/repository/DEFAULT/90/63622f-b464-407d-bcfd-c9491b4dfd76/1/U1wJpqvN8dobR6tK8_-O_KWBRF0.mft
rsync://rpki.ripe.net/repository/DEFAULT/U1wJpqvN8dobR6tK8_-O_KWBRF0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 15:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b8:90:52:99:3f:16:0a:ba:79:ef:92:8b:33:38:84:b6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=535c09a6abcdf1da1b47ab4af3ff8efca581445d
Validity
Not Before: Jun 28 22:02:35 2025 GMT
Not After : Jun 29 22:02:35 2025 GMT
Subject: CN=11a6e7ddd2f9e6113b56d0da75666e406762d68d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:a3:ce:b5:e9:73:74:56:26:65:af:f8:0f:2c:
b5:6d:03:97:c3:c2:8d:01:6f:b2:e7:2b:27:18:c1:
16:98:d6:28:1b:6f:0c:6d:14:95:30:14:6b:5b:59:
9b:69:ab:dc:49:b2:d4:7c:b6:ca:ed:49:bc:ef:f9:
26:79:b6:fd:b0:b0:ed:97:d9:bd:e2:19:5a:fe:01:
64:64:2c:82:d5:85:61:c5:33:5c:c9:54:40:7f:66:
40:8b:34:bf:88:bd:ac:4b:a6:62:5f:47:fd:53:30:
a6:8d:5e:80:87:97:33:a3:e5:5c:ee:4b:7b:0d:6f:
52:a8:88:16:95:0b:3a:70:23:36:b3:30:68:62:05:
2b:04:e6:13:59:7d:79:9f:6c:0a:2e:a6:48:ee:e4:
8e:10:13:41:aa:ec:66:6e:1c:ad:2f:2d:77:cb:2a:
9c:67:82:6d:75:09:56:af:20:24:b1:48:64:0b:50:
3f:d8:1f:3a:9c:ff:7d:1c:35:f8:ec:d8:ca:a3:0e:
99:c2:3e:99:3c:12:49:f9:bf:56:8d:cd:1c:50:23:
c8:1f:64:78:94:48:c6:b5:a0:d6:a3:76:04:36:74:
62:9b:46:2d:2d:0e:2e:25:c9:27:35:43:32:d5:b9:
e5:d9:bd:b3:02:41:4b:6f:69:2e:7b:c9:5d:83:8a:
27:79
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
11:A6:E7:DD:D2:F9:E6:11:3B:56:D0:DA:75:66:6E:40:67:62:D6:8D
X509v3 Authority Key Identifier:
keyid:53:5C:09:A6:AB:CD:F1:DA:1B:47:AB:4A:F3:FF:8E:FC:A5:81:44:5D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/U1wJpqvN8dobR6tK8_-O_KWBRF0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/90/63622f-b464-407d-bcfd-c9491b4dfd76/1/U1wJpqvN8dobR6tK8_-O_KWBRF0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/90/63622f-b464-407d-bcfd-c9491b4dfd76/1/U1wJpqvN8dobR6tK8_-O_KWBRF0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
9f:6b:71:b1:1b:22:99:98:7a:81:c7:68:c4:bf:0d:e3:a8:0a:
c2:a1:ee:27:2e:4f:e6:4b:3e:91:30:c2:ab:60:7f:1e:ff:82:
f3:79:89:c3:ed:c4:be:b0:56:06:a1:f7:15:2d:07:cf:83:a6:
42:dc:78:fb:7d:0c:6a:dc:75:f0:68:2a:1b:4c:7b:f4:d6:c8:
9e:fc:1a:c6:91:a4:37:2f:84:89:63:22:12:17:85:77:51:dd:
1c:f8:9b:4c:e3:9f:0b:60:c2:ab:37:f6:a9:a2:7a:29:67:1b:
e6:69:a9:17:26:d3:ed:ef:81:d6:f3:42:3b:56:b8:43:dc:9e:
d3:fc:d5:bc:f9:30:77:c4:f6:16:82:aa:74:61:ca:59:bf:4a:
72:ca:92:7c:0f:58:13:62:f7:62:20:ae:24:3c:82:d9:a7:a7:
b2:71:af:96:92:95:77:ec:83:bb:36:9b:9c:65:ce:f5:ce:1d:
89:36:19:d3:f5:1e:d3:2d:bd:0b:19:53:e7:06:3e:ce:01:c3:
31:19:2f:1e:83:d0:b5:0a:cd:a9:4f:a0:4f:b3:3a:a7:5b:9f:
d2:96:8d:96:a9:87:dd:37:be:0a:68:e0:6a:4a:49:1a:cf:13:
28:cd:cc:10:a0:01:a6:57:74:7f:7f:54:76:4d:00:c8:99:98:
da:99:c6:ea
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 28 23:15:35 2025 by rpki-client