Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ce/a9f0bb-86f6-4ca3-a53f-2e9721d86c3d/1/UIJpb7xB2QYWimDOCUlJAiz2Keg.mft
File: UIJpb7xB2QYWimDOCUlJAiz2Keg.mft (raw, json)
Hash identifier: NC0DsI0JoJ4fCpAhXGUIN/0vn1V1H0qrJYLC/imfNLU=
Subject key identifier: 55:27:5E:D5:CD:E1:CA:9D:1D:87:2B:85:06:40:0E:64:08:F0:6C:AE
Authority key identifier: 50:82:69:6F:BC:41:D9:06:16:8A:60:CE:09:49:49:02:2C:F6:29:E8
Certificate issuer: /CN=5082696fbc41d906168a60ce094949022cf629e8
Certificate serial: 0197B820CADD2B23A7590D6E15A6B44B27BC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UIJpb7xB2QYWimDOCUlJAiz2Keg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ce/a9f0bb-86f6-4ca3-a53f-2e9721d86c3d/1/UIJpb7xB2QYWimDOCUlJAiz2Keg.mft
Manifest number: 033D
Signing time: Sat 28 Jun 2025 20:00:46 +0000
Manifest this update: Sat 28 Jun 2025 20:00:46 +0000
Manifest next update: Sun 29 Jun 2025 20:00:46 +0000
Files and hashes: 1: UIJpb7xB2QYWimDOCUlJAiz2Keg.crl (hash: wD+Cw+FsTpLcX+0pJ/Qs/F25cEFMuh6+taW65ikjf/4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ce/a9f0bb-86f6-4ca3-a53f-2e9721d86c3d/1/UIJpb7xB2QYWimDOCUlJAiz2Keg.crl
rsync://rpki.ripe.net/repository/DEFAULT/ce/a9f0bb-86f6-4ca3-a53f-2e9721d86c3d/1/UIJpb7xB2QYWimDOCUlJAiz2Keg.mft
rsync://rpki.ripe.net/repository/DEFAULT/UIJpb7xB2QYWimDOCUlJAiz2Keg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 15:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b8:20:ca:dd:2b:23:a7:59:0d:6e:15:a6:b4:4b:27:bc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5082696fbc41d906168a60ce094949022cf629e8
Validity
Not Before: Jun 28 20:00:46 2025 GMT
Not After : Jun 29 20:00:46 2025 GMT
Subject: CN=55275ed5cde1ca9d1d872b8506400e6408f06cae
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d6:7f:62:e1:1f:bd:15:99:91:4b:c1:75:e9:2e:
5c:48:c5:af:87:97:57:e0:4b:55:44:f9:92:92:9d:
81:8d:5c:04:91:36:05:e8:08:2f:03:f8:98:dc:e2:
9c:39:f6:a6:3b:83:e1:9d:a3:15:ce:f1:fa:72:43:
17:8c:1b:e8:32:2e:88:d5:37:ac:10:19:f9:04:68:
23:9c:04:fe:de:a5:a3:fe:bb:a7:87:9c:a2:a3:90:
79:43:f5:4a:50:99:07:a3:75:27:57:4a:a5:b9:68:
40:7f:f7:aa:b0:f7:4b:99:b7:00:e3:c4:6f:1b:e7:
fd:ed:5c:25:64:9d:6d:9c:f9:49:46:4f:ba:9f:48:
4f:c5:9c:64:40:58:5b:4a:5f:45:6f:7d:39:05:e4:
ef:68:5a:a1:5e:39:f9:e2:8a:95:de:d9:b6:78:4d:
fc:db:6b:e4:8a:c3:2d:44:71:8d:58:82:f0:03:b1:
d4:8c:8e:6f:22:2a:3a:3d:03:3b:13:5a:dc:d5:21:
2e:b5:75:c0:c5:5b:17:87:ff:3a:77:92:4d:cf:5d:
dc:df:58:9d:5b:45:a6:67:a6:e6:db:0e:ff:69:27:
2f:d8:db:6f:38:61:14:55:21:2d:04:da:37:95:32:
7b:ea:45:4d:5c:5d:bd:91:d4:6e:fc:70:05:20:50:
d5:23
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
55:27:5E:D5:CD:E1:CA:9D:1D:87:2B:85:06:40:0E:64:08:F0:6C:AE
X509v3 Authority Key Identifier:
keyid:50:82:69:6F:BC:41:D9:06:16:8A:60:CE:09:49:49:02:2C:F6:29:E8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UIJpb7xB2QYWimDOCUlJAiz2Keg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ce/a9f0bb-86f6-4ca3-a53f-2e9721d86c3d/1/UIJpb7xB2QYWimDOCUlJAiz2Keg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ce/a9f0bb-86f6-4ca3-a53f-2e9721d86c3d/1/UIJpb7xB2QYWimDOCUlJAiz2Keg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
a0:ba:bb:0a:46:43:52:ee:da:04:e8:d6:45:a3:89:90:68:68:
4e:5f:07:43:dc:7d:0a:70:e3:c9:e9:91:15:a9:8b:53:6d:af:
6f:b3:eb:0c:f1:0e:2e:6a:4d:fc:28:6a:97:f7:39:6a:96:b5:
24:80:a7:63:b5:8e:d3:5f:ef:08:a2:57:7b:30:76:4b:40:c3:
b0:a1:3d:98:9c:7b:3f:ad:77:5c:78:9c:ee:95:d4:b2:be:99:
eb:46:17:84:45:24:3d:03:5e:57:4f:d1:42:c4:a6:7b:99:c9:
d9:8c:39:2b:0e:fc:ad:b6:9a:c7:5b:ba:b6:4c:29:09:17:d9:
50:76:5c:6e:ac:dc:9c:40:c0:3e:93:6a:db:51:03:17:2d:4a:
9d:49:a8:5b:46:9d:de:eb:ff:33:3b:55:93:56:0d:03:b4:2c:
12:a0:1a:a6:71:d0:59:96:97:ba:5d:96:66:b0:f2:2e:02:59:
ca:bb:30:ec:ae:d0:60:e7:cd:2b:14:5a:ac:09:a6:79:77:b8:
c8:1c:ca:ca:6e:ef:a4:2a:25:31:8f:87:a3:c6:d4:f2:3e:ac:
2e:3c:4e:94:ba:9c:52:32:3d:1e:c2:b9:87:99:50:90:b0:3d:
84:12:b6:99:f2:57:35:da:c1:6e:b4:c9:59:1d:40:9b:fc:a9:
58:80:71:69
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZe4IMrdKyOnWQ1uFaa0Sye8MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDUwODI2OTZmYmM0MWQ5MDYxNjhhNjBjZTA5NDk0OTAyMmNm
NjI5ZTgwHhcNMjUwNjI4MjAwMDQ2WhcNMjUwNjI5MjAwMDQ2WjAzMTEwLwYDVQQD
Eyg1NTI3NWVkNWNkZTFjYTlkMWQ4NzJiODUwNjQwMGU2NDA4ZjA2Y2FlMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA1n9i4R+9FZmRS8F16S5cSMWvh5dX
4EtVRPmSkp2BjVwEkTYF6AgvA/iY3OKcOfamO4PhnaMVzvH6ckMXjBvoMi6I1Tes
EBn5BGgjnAT+3qWj/runh5yio5B5Q/VKUJkHo3UnV0qluWhAf/eqsPdLmbcA48Rv
G+f97VwlZJ1tnPlJRk+6n0hPxZxkQFhbSl9Fb305BeTvaFqhXjn54oqV3tm2eE38
22vkisMtRHGNWILwA7HUjI5vIio6PQM7E1rc1SEutXXAxVsXh/86d5JNz13c31id
W0WmZ6bm2w7/aScv2NtvOGEUVSEtBNo3lTJ76kVNXF29kdRu/HAFIFDVIwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFFUnXtXN4cqdHYcrhQZADmQI8GyuMB8GA1UdIwQY
MBaAFFCCaW+8QdkGFopgzglJSQIs9inoMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvVUlKcGI3eEIyUVlXaW1ET0NVbEpBaXoyS2VnLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jZS9hOWYwYmItODZmNi00Y2EzLWE1M2Yt
MmU5NzIxZDg2YzNkLzEvVUlKcGI3eEIyUVlXaW1ET0NVbEpBaXoyS2VnLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9jZS9hOWYwYmItODZmNi00Y2EzLWE1M2YtMmU5NzIxZDg2YzNk
LzEvVUlKcGI3eEIyUVlXaW1ET0NVbEpBaXoyS2VnLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAoLq7CkZD
Uu7aBOjWRaOJkGhoTl8HQ9x9CnDjyemRFamLU22vb7PrDPEOLmpN/Chql/c5apa1
JICnY7WO01/vCKJXezB2S0DDsKE9mJx7P613XHic7pXUsr6Z60YXhEUkPQNeV0/R
QsSme5nJ2Yw5Kw78rbaax1u6tkwpCRfZUHZcbqzcnEDAPpNq21EDFy1KnUmoW0ad
3uv/MztVk1YNA7QsEqAapnHQWZaXul2WZrDyLgJZyrsw7K7QYOfNKxRarAmmeXe4
yBzKym7vpColMY+Ho8bU8j6sLjxOlLqcUjI9HsK5h5lQkLA9hBK2mfJXNdrBbrTJ
WR1Am/ypWIBxaQ==
-----END CERTIFICATE-----
Generated at Sun Jun 29 00:09:20 2025 by rpki-client