
Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/90/a5ca0b-9425-4c1e-8ef6-a6fcad19aef2/1/U9L19sohYsiL85oPnekm9CPlMQQ.mft
File: U9L19sohYsiL85oPnekm9CPlMQQ.mft (raw, json)
Hash identifier: cSXHG3UKLbQ1dM+epR9FiyO4FjFSJoL1I6HOVMdgZnk=
Subject key identifier: 00:38:10:21:06:C1:97:52:4E:5F:58:54:AB:2C:0A:89:44:63:69:B4
Authority key identifier: 53:D2:F5:F6:CA:21:62:C8:8B:F3:9A:0F:9D:E9:26:F4:23:E5:31:04
Certificate issuer: /CN=53d2f5f6ca2162c88bf39a0f9de926f423e53104
Certificate serial: 0198D660714E7EA224E8CCE755EF60EF5D6D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/U9L19sohYsiL85oPnekm9CPlMQQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/90/a5ca0b-9425-4c1e-8ef6-a6fcad19aef2/1/U9L19sohYsiL85oPnekm9CPlMQQ.mft
Manifest number: 0FB1
Signing time: Sat 23 Aug 2025 10:01:41 +0000
Manifest this update: Sat 23 Aug 2025 10:01:41 +0000
Manifest next update: Sun 24 Aug 2025 10:01:41 +0000
Files and hashes: 1: U9L19sohYsiL85oPnekm9CPlMQQ.crl (hash: v+pf4yRzWjNUbZz0u+nqPloJK2/K0usujYAR9pqAe10=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/90/a5ca0b-9425-4c1e-8ef6-a6fcad19aef2/1/U9L19sohYsiL85oPnekm9CPlMQQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/90/a5ca0b-9425-4c1e-8ef6-a6fcad19aef2/1/U9L19sohYsiL85oPnekm9CPlMQQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/U9L19sohYsiL85oPnekm9CPlMQQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 05:01:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d6:60:71:4e:7e:a2:24:e8:cc:e7:55:ef:60:ef:5d:6d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=53d2f5f6ca2162c88bf39a0f9de926f423e53104
Validity
Not Before: Aug 23 10:01:41 2025 GMT
Not After : Aug 24 10:01:41 2025 GMT
Subject: CN=0038102106c197524e5f5854ab2c0a89446369b4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:7c:b5:1c:74:0c:59:38:17:46:81:3b:ae:8c:
e3:07:62:4d:af:81:2a:58:ea:21:92:87:92:8d:6f:
61:e6:79:03:31:6d:e6:ac:37:aa:48:85:f8:94:c7:
25:29:fc:e1:26:0d:20:c8:34:5a:e7:b3:43:54:da:
c3:e7:5f:b2:57:2d:16:2b:7d:18:b2:ad:9e:89:b8:
82:37:b9:5e:e3:e3:8b:22:44:ca:3f:8c:85:4b:27:
30:91:3b:48:3d:c0:35:6d:29:d7:56:bc:e7:b8:a4:
18:08:62:83:44:9d:c0:02:09:20:71:d8:3b:ac:98:
ce:6e:ac:5f:e5:aa:7c:9d:ad:cd:55:0b:56:f1:53:
ff:de:ee:bc:1c:10:c7:0f:f5:b5:44:8c:b4:3a:82:
74:5d:ce:4d:9b:0a:19:69:e8:28:d8:42:60:9b:3b:
ef:c6:9b:30:50:a8:4f:04:f5:1d:97:1c:31:8b:b7:
7a:19:97:c9:7b:62:d7:8a:33:6a:16:30:09:30:64:
c3:84:59:47:ef:c9:0a:db:39:9f:88:70:ec:bd:33:
33:a2:a1:54:02:cb:66:8c:0f:6a:6a:be:3d:8d:52:
08:d2:1f:dd:f0:28:d0:63:92:59:f7:a1:a1:41:3b:
90:21:ea:bf:f8:15:47:23:8d:6f:0d:d4:90:28:09:
83:4b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
00:38:10:21:06:C1:97:52:4E:5F:58:54:AB:2C:0A:89:44:63:69:B4
X509v3 Authority Key Identifier:
keyid:53:D2:F5:F6:CA:21:62:C8:8B:F3:9A:0F:9D:E9:26:F4:23:E5:31:04
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/U9L19sohYsiL85oPnekm9CPlMQQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/90/a5ca0b-9425-4c1e-8ef6-a6fcad19aef2/1/U9L19sohYsiL85oPnekm9CPlMQQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/90/a5ca0b-9425-4c1e-8ef6-a6fcad19aef2/1/U9L19sohYsiL85oPnekm9CPlMQQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
24:23:cd:5d:34:34:31:ec:35:f0:91:47:e6:46:b2:b5:2d:5d:
7d:ce:97:13:84:e3:ca:d5:b9:40:dd:fe:40:4f:75:50:b8:78:
e5:42:c2:09:81:7d:21:51:08:4c:65:28:72:ce:cf:6b:35:6b:
6e:0e:cd:ad:ac:5e:a9:67:13:b9:17:4d:b3:06:69:17:eb:3b:
04:43:da:77:94:35:4d:cf:68:f2:eb:28:69:4b:25:6c:b7:02:
be:06:4f:b5:24:45:df:11:50:c7:29:56:a1:84:60:86:42:71:
41:3d:38:d6:a7:44:04:75:9b:0e:e1:67:8d:d7:09:03:56:c8:
90:11:17:a2:04:ba:96:22:cb:e0:00:25:96:c8:52:ad:ea:ba:
a2:0d:3d:07:17:74:96:6e:af:af:2a:2b:7e:cb:50:8d:44:35:
44:ba:26:27:3c:9a:17:57:f9:04:95:9f:5e:b9:ec:3f:17:b1:
23:5e:7f:1c:dc:44:7f:83:ea:64:20:7c:c3:a8:e4:9d:a7:6f:
58:8d:c3:b6:75:13:71:12:23:02:e0:57:0a:54:ae:ca:dc:b3:
89:7d:de:8b:46:8a:f0:0a:77:84:87:57:58:cb:c9:2b:2c:99:
22:70:e9:3b:bd:2e:9e:7e:34:16:b7:45:2c:85:68:93:0a:2f:
c8:92:99:9d
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZjWYHFOfqIk6MznVe9g711tMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDUzZDJmNWY2Y2EyMTYyYzg4YmYzOWEwZjlkZTkyNmY0MjNl
NTMxMDQwHhcNMjUwODIzMTAwMTQxWhcNMjUwODI0MTAwMTQxWjAzMTEwLwYDVQQD
EygwMDM4MTAyMTA2YzE5NzUyNGU1ZjU4NTRhYjJjMGE4OTQ0NjM2OWI0MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAu3y1HHQMWTgXRoE7rozjB2JNr4Eq
WOohkoeSjW9h5nkDMW3mrDeqSIX4lMclKfzhJg0gyDRa57NDVNrD51+yVy0WK30Y
sq2eibiCN7le4+OLIkTKP4yFSycwkTtIPcA1bSnXVrznuKQYCGKDRJ3AAgkgcdg7
rJjObqxf5ap8na3NVQtW8VP/3u68HBDHD/W1RIy0OoJ0Xc5NmwoZaego2EJgmzvv
xpswUKhPBPUdlxwxi7d6GZfJe2LXijNqFjAJMGTDhFlH78kK2zmfiHDsvTMzoqFU
AstmjA9qar49jVII0h/d8CjQY5JZ96GhQTuQIeq/+BVHI41vDdSQKAmDSwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFAA4ECEGwZdSTl9YVKssColEY2m0MB8GA1UdIwQY
MBaAFFPS9fbKIWLIi/OaD53pJvQj5TEEMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvVTlMMTlzb2hZc2lMODVvUG5la205Q1BsTVFRLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC85MC9hNWNhMGItOTQyNS00YzFlLThlZjYt
YTZmY2FkMTlhZWYyLzEvVTlMMTlzb2hZc2lMODVvUG5la205Q1BsTVFRLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC85MC9hNWNhMGItOTQyNS00YzFlLThlZjYtYTZmY2FkMTlhZWYy
LzEvVTlMMTlzb2hZc2lMODVvUG5la205Q1BsTVFRLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAJCPNXTQ0
Mew18JFH5kaytS1dfc6XE4TjytW5QN3+QE91ULh45ULCCYF9IVEITGUocs7PazVr
bg7NraxeqWcTuRdNswZpF+s7BEPad5Q1Tc9o8usoaUslbLcCvgZPtSRF3xFQxylW
oYRghkJxQT041qdEBHWbDuFnjdcJA1bIkBEXogS6liLL4AAllshSreq6og09Bxd0
lm6vryorfstQjUQ1RLomJzyaF1f5BJWfXrnsPxexI15/HNxEf4PqZCB8w6jknadv
WI3DtnUTcRIjAuBXClSuytyziX3ei0aK8Ap3hIdXWMvJKyyZInDpO70unn40FrdF
LIVokwovyJKZnQ==
-----END CERTIFICATE-----
Generated at Sat Aug 23 14:03:27 2025 by rpki-client