Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d1/caf5ea-626e-455a-8708-f5ca8fa7270d/1/ufHVsG9XAVVf9YiBVN0UG0iJYRc.mft
File: ufHVsG9XAVVf9YiBVN0UG0iJYRc.mft (raw, json)
Hash identifier: g5t9zvnP4kZaCktWHc3WkqPqPcL8K0QtlHz6JpWVH04=
Subject key identifier: 8A:A5:BA:D2:E7:49:55:C2:13:A4:EA:AA:4D:A4:08:3C:98:64:98:BE
Authority key identifier: B9:F1:D5:B0:6F:57:01:55:5F:F5:88:81:54:DD:14:1B:48:89:61:17
Certificate issuer: /CN=b9f1d5b06f5701555ff5888154dd141b48896117
Certificate serial: 0198D4724D4D79B46A53CC89450999888C60
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ufHVsG9XAVVf9YiBVN0UG0iJYRc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d1/caf5ea-626e-455a-8708-f5ca8fa7270d/1/ufHVsG9XAVVf9YiBVN0UG0iJYRc.mft
Manifest number: 1660
Signing time: Sat 23 Aug 2025 01:01:57 +0000
Manifest this update: Sat 23 Aug 2025 01:01:57 +0000
Manifest next update: Sun 24 Aug 2025 01:01:57 +0000
Files and hashes: 1: ufHVsG9XAVVf9YiBVN0UG0iJYRc.crl (hash: bqzmYU8sHLf/mBWMdq2XuYV5wJMGa/Mu/FLOx6YK7a0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d1/caf5ea-626e-455a-8708-f5ca8fa7270d/1/ufHVsG9XAVVf9YiBVN0UG0iJYRc.crl
rsync://rpki.ripe.net/repository/DEFAULT/d1/caf5ea-626e-455a-8708-f5ca8fa7270d/1/ufHVsG9XAVVf9YiBVN0UG0iJYRc.mft
rsync://rpki.ripe.net/repository/DEFAULT/ufHVsG9XAVVf9YiBVN0UG0iJYRc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 01:01:57 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d4:72:4d:4d:79:b4:6a:53:cc:89:45:09:99:88:8c:60
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b9f1d5b06f5701555ff5888154dd141b48896117
Validity
Not Before: Aug 23 01:01:57 2025 GMT
Not After : Aug 24 01:01:57 2025 GMT
Subject: CN=8aa5bad2e74955c213a4eaaa4da4083c986498be
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9a:5b:eb:f8:89:18:c0:ae:2d:fc:df:ab:2d:e4:
2c:20:18:52:8f:17:38:34:db:e8:dd:a1:83:a1:45:
45:1f:b2:72:16:f7:11:b1:12:1c:0d:00:8b:1a:0d:
ec:2a:22:1a:ef:ab:49:56:49:c1:f2:6b:42:60:57:
8d:fb:1a:89:5d:d5:f4:46:c6:76:8a:6f:6a:8d:46:
be:a1:92:9c:7f:a1:f0:98:4c:f0:01:25:71:69:74:
6d:c3:03:09:6b:de:e6:6e:b8:9f:ef:e4:67:fe:16:
a1:e1:cc:ff:52:bf:b0:d5:0f:dc:73:17:07:44:d6:
88:12:5a:1c:94:44:ae:19:fa:49:e1:2f:06:13:dd:
4f:50:6d:0f:e8:fa:48:56:ce:34:13:3b:75:b4:b4:
58:8d:5b:b7:71:f6:64:cb:f1:8f:f5:56:3b:ae:90:
db:14:b6:36:e4:d6:c8:7c:43:ab:35:0a:87:8a:c6:
e6:73:36:60:6a:aa:e7:3e:8c:ab:d5:dc:2e:83:5f:
de:8b:b5:6c:3a:8b:7d:49:9e:68:07:23:3d:9f:8f:
58:69:3f:4a:b8:d1:de:31:a1:63:11:b7:34:f9:47:
a5:05:c7:60:4c:69:8c:f3:41:a8:8f:7f:e1:71:3f:
b4:af:e8:af:6b:8f:72:54:d8:68:1e:64:3c:cc:df:
3d:37
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8A:A5:BA:D2:E7:49:55:C2:13:A4:EA:AA:4D:A4:08:3C:98:64:98:BE
X509v3 Authority Key Identifier:
keyid:B9:F1:D5:B0:6F:57:01:55:5F:F5:88:81:54:DD:14:1B:48:89:61:17
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ufHVsG9XAVVf9YiBVN0UG0iJYRc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d1/caf5ea-626e-455a-8708-f5ca8fa7270d/1/ufHVsG9XAVVf9YiBVN0UG0iJYRc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d1/caf5ea-626e-455a-8708-f5ca8fa7270d/1/ufHVsG9XAVVf9YiBVN0UG0iJYRc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
ad:37:31:04:3e:08:58:48:74:d5:58:55:bd:c0:b8:c0:a7:17:
b9:45:ac:9c:68:e9:c1:e3:1c:6a:ba:c2:55:af:5a:27:77:9b:
a1:0c:cf:6c:3a:96:cb:62:46:f4:2c:18:29:eb:11:29:c0:c6:
4e:19:b6:1b:8d:e2:7c:19:b5:ca:48:04:64:10:ce:7c:13:c2:
56:76:c0:7f:a4:4c:ae:9d:c8:58:82:6a:c2:3c:60:52:f9:b6:
37:a9:38:ea:75:1d:28:88:c3:31:cf:0a:2e:cf:9d:9a:8b:f6:
36:35:bf:9f:2e:af:c2:7f:ee:dd:4b:37:0f:55:4f:cd:08:a1:
d2:33:45:87:43:6c:0c:b6:c2:e0:cb:11:fc:1b:79:8d:47:8c:
67:80:5b:b5:86:1a:81:af:b2:89:ce:84:98:b5:17:07:58:6b:
c8:a1:63:be:db:16:49:8d:a6:7a:45:af:12:ef:2d:95:66:2d:
80:61:90:a6:15:46:34:e4:fc:35:e9:9d:03:b4:eb:87:9e:56:
f6:f6:d3:89:f5:f8:43:01:f2:6d:9a:22:c7:44:99:d6:62:96:
ce:44:f2:da:bc:77:ca:1a:a1:38:4d:ae:51:e5:2b:e7:4b:b0:
96:79:b7:83:63:03:10:ca:bb:ff:2a:ec:f7:df:37:48:6d:5d:
40:d1:ca:ba
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 10:50:39 2025 by rpki-client