Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d1/caf5ea-626e-455a-8708-f5ca8fa7270d/1/ufHVsG9XAVVf9YiBVN0UG0iJYRc.mft
File: ufHVsG9XAVVf9YiBVN0UG0iJYRc.mft (raw, json)
Hash identifier: 25jIPS1QslDZZteVDA1hD/u/VkfbDnDJ9IrdCiZMMrg=
Subject key identifier: DB:49:EE:E0:8A:5F:0D:E7:E3:8C:96:F8:C1:86:A4:67:79:B3:4F:1D
Authority key identifier: B9:F1:D5:B0:6F:57:01:55:5F:F5:88:81:54:DD:14:1B:48:89:61:17
Certificate issuer: /CN=b9f1d5b06f5701555ff5888154dd141b48896117
Certificate serial: 0197B6A19A8C12B410D5F1C61A9E8876D9F4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ufHVsG9XAVVf9YiBVN0UG0iJYRc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d1/caf5ea-626e-455a-8708-f5ca8fa7270d/1/ufHVsG9XAVVf9YiBVN0UG0iJYRc.mft
Manifest number: 15CC
Signing time: Sat 28 Jun 2025 13:02:13 +0000
Manifest this update: Sat 28 Jun 2025 13:02:13 +0000
Manifest next update: Sun 29 Jun 2025 13:02:13 +0000
Files and hashes: 1: ufHVsG9XAVVf9YiBVN0UG0iJYRc.crl (hash: xYLxezYJJLmiSqFFXcujK2lj4+6TpESbfuU/iXNKvRs=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d1/caf5ea-626e-455a-8708-f5ca8fa7270d/1/ufHVsG9XAVVf9YiBVN0UG0iJYRc.crl
rsync://rpki.ripe.net/repository/DEFAULT/d1/caf5ea-626e-455a-8708-f5ca8fa7270d/1/ufHVsG9XAVVf9YiBVN0UG0iJYRc.mft
rsync://rpki.ripe.net/repository/DEFAULT/ufHVsG9XAVVf9YiBVN0UG0iJYRc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 13:02:13 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b6:a1:9a:8c:12:b4:10:d5:f1:c6:1a:9e:88:76:d9:f4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b9f1d5b06f5701555ff5888154dd141b48896117
Validity
Not Before: Jun 28 13:02:13 2025 GMT
Not After : Jun 29 13:02:13 2025 GMT
Subject: CN=db49eee08a5f0de7e38c96f8c186a46779b34f1d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:07:aa:60:d8:96:9a:81:8e:4c:4f:60:18:f7:
6c:f5:99:d5:8e:99:b9:a7:97:76:9b:5c:aa:12:c7:
3b:17:42:b6:80:24:ce:57:69:d0:ff:05:93:57:c2:
0a:e9:2a:b1:24:3a:70:e7:0f:35:f2:39:5c:d2:9d:
32:1f:25:89:5e:13:fc:ac:2c:0c:5b:72:d8:01:81:
de:6c:85:dc:84:b2:ac:9d:61:ac:f2:b1:e2:17:bc:
4a:79:21:8e:1d:ae:14:67:26:65:5a:ed:7c:16:14:
c6:14:c8:42:48:15:b9:b0:fa:bb:12:3c:fc:78:92:
f9:58:e6:3b:fd:87:dd:5e:8d:72:bf:cd:0b:81:d1:
fa:8b:36:8f:08:3f:e8:7a:ee:bb:79:36:23:d7:a9:
56:c2:5d:7b:91:d2:18:e0:47:6c:ee:63:e0:5d:0f:
0d:51:d5:5b:b8:54:28:70:12:25:36:b2:52:35:17:
5f:d2:ab:ad:b8:05:65:73:22:0e:29:da:ec:0f:34:
e1:87:a8:e7:a4:6a:cd:52:ba:02:bf:f0:6d:c2:da:
63:3a:fd:c8:4a:65:6f:38:6e:8d:27:d1:af:87:7a:
90:20:31:b9:69:c3:2b:e6:f9:d8:d0:87:e9:08:0f:
ed:33:c4:f1:cc:5f:3c:2f:4d:a1:d2:a0:22:23:37:
ca:31
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DB:49:EE:E0:8A:5F:0D:E7:E3:8C:96:F8:C1:86:A4:67:79:B3:4F:1D
X509v3 Authority Key Identifier:
keyid:B9:F1:D5:B0:6F:57:01:55:5F:F5:88:81:54:DD:14:1B:48:89:61:17
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ufHVsG9XAVVf9YiBVN0UG0iJYRc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d1/caf5ea-626e-455a-8708-f5ca8fa7270d/1/ufHVsG9XAVVf9YiBVN0UG0iJYRc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d1/caf5ea-626e-455a-8708-f5ca8fa7270d/1/ufHVsG9XAVVf9YiBVN0UG0iJYRc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
6a:a0:1e:1a:b6:78:5c:66:fe:6a:11:aa:ea:6f:11:f4:88:f3:
3f:12:1f:36:c0:6a:15:4e:f9:7c:eb:fb:8a:b2:74:c6:05:55:
52:bb:8a:43:df:de:e8:b7:37:b8:f6:fa:4a:c5:83:3d:b0:5c:
5f:c6:0f:ee:88:5a:fd:60:fc:41:93:67:6f:49:87:b8:74:66:
fe:b9:d3:28:1f:9a:8a:f7:52:9d:d8:93:88:bd:55:5a:b1:97:
98:17:d1:94:0b:f6:5c:50:8d:05:1f:11:0a:a6:a7:e8:44:bc:
e8:d7:f5:f4:5e:e3:88:06:76:03:5e:2c:a3:48:b0:72:fb:6d:
85:c9:32:b4:75:28:16:26:d3:e0:56:9d:92:aa:36:63:0d:1f:
bf:33:48:62:fb:14:0d:32:a2:af:bf:25:46:0e:f7:9d:81:2e:
a6:b4:32:ca:25:a8:c7:a8:e3:7c:8f:cd:56:2b:2b:0c:3c:d6:
f6:a8:91:ff:23:1d:60:a5:eb:d8:f6:2f:26:e7:1e:81:ad:ea:
35:b1:bb:74:aa:df:1c:a9:07:a1:40:12:1b:74:d8:46:9b:ae:
f5:4a:38:56:fc:0d:be:50:20:32:3c:8c:79:a8:e9:1a:b2:3c:
4c:c4:15:bd:be:f9:cc:f7:6f:2c:1f:67:38:64:cf:86:3e:91:
8d:dc:f1:a7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 28 21:42:57 2025 by rpki-client