Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/db/3b59d5-602d-4351-96bc-a108649d51e2/1/UGF1T3aJFp9qFQZQlUcmcrorRYk.mft
File: UGF1T3aJFp9qFQZQlUcmcrorRYk.mft (raw, json)
Hash identifier: MDO2vM21dnYn3yNoTLH+MJRGq9ZKdMIvcejvJ/EYVOw=
Subject key identifier: FC:57:75:74:78:45:E4:F0:27:E6:6D:00:83:07:FC:D3:57:8D:DF:37
Authority key identifier: 50:61:75:4F:76:89:16:9F:6A:15:06:50:95:47:26:72:BA:2B:45:89
Certificate issuer: /CN=5061754f7689169f6a15065095472672ba2b4589
Certificate serial: 0197B70E70EBD5D908EB51D86B94AC73DA16
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UGF1T3aJFp9qFQZQlUcmcrorRYk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/db/3b59d5-602d-4351-96bc-a108649d51e2/1/UGF1T3aJFp9qFQZQlUcmcrorRYk.mft
Manifest number: 0D29
Signing time: Sat 28 Jun 2025 15:01:06 +0000
Manifest this update: Sat 28 Jun 2025 15:01:06 +0000
Manifest next update: Sun 29 Jun 2025 15:01:06 +0000
Files and hashes: 1: UGF1T3aJFp9qFQZQlUcmcrorRYk.crl (hash: baXtFTICSIK1BKXsWLFcRHyDOS1yzgQHTZeF24wwceo=)
2: yiSfs72_nEyzYSAodCILSS2FNUg.roa (hash: S9gHpNvUCJD2H4bcxuT5WWB4Uck7rHXNRIxCLUlb2hE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/db/3b59d5-602d-4351-96bc-a108649d51e2/1/UGF1T3aJFp9qFQZQlUcmcrorRYk.crl
rsync://rpki.ripe.net/repository/DEFAULT/db/3b59d5-602d-4351-96bc-a108649d51e2/1/UGF1T3aJFp9qFQZQlUcmcrorRYk.mft
rsync://rpki.ripe.net/repository/DEFAULT/UGF1T3aJFp9qFQZQlUcmcrorRYk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 15:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b7:0e:70:eb:d5:d9:08:eb:51:d8:6b:94:ac:73:da:16
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5061754f7689169f6a15065095472672ba2b4589
Validity
Not Before: Jun 28 15:01:06 2025 GMT
Not After : Jun 29 15:01:06 2025 GMT
Subject: CN=fc5775747845e4f027e66d008307fcd3578ddf37
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:88:8b:5b:8b:32:c7:7a:2e:51:00:4f:89:db:
0b:f3:24:34:c8:b3:4f:3c:bc:6a:9b:26:ba:af:9e:
55:59:4c:05:31:6b:5f:a3:8f:58:8e:31:c3:0a:9a:
5b:e2:fb:8d:e0:dc:95:cc:02:b4:be:d2:a7:1c:57:
97:2f:07:83:7c:37:0b:2e:96:3c:d0:e7:6e:0a:6c:
1b:44:f2:42:4c:20:60:a6:08:28:61:78:09:d6:6c:
c0:02:c6:b6:91:0b:2c:2f:03:07:09:30:18:96:61:
97:d4:df:18:08:6d:23:8b:f3:55:0c:e7:09:79:7a:
48:a6:cb:7a:f7:96:b0:32:05:63:8e:51:18:07:14:
9e:3f:49:e1:33:fd:5c:1c:35:6a:3d:84:4d:78:21:
06:70:46:d4:ae:1d:60:4e:4b:be:25:3e:0b:c1:8f:
cf:a6:c1:74:ed:87:28:dd:92:4e:bb:78:36:a8:d7:
b4:3b:34:fa:25:b5:c5:4d:18:a3:74:a7:b0:22:05:
27:2a:ea:58:a3:35:29:96:2d:91:85:46:cf:f7:66:
8f:da:e5:42:25:35:74:e5:df:fc:83:01:59:24:1f:
a8:76:f2:c8:95:ec:6e:c6:6f:9a:a3:81:5e:d7:0d:
a4:48:b0:01:aa:b8:04:aa:46:4b:d4:f3:16:31:fa:
8f:c5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FC:57:75:74:78:45:E4:F0:27:E6:6D:00:83:07:FC:D3:57:8D:DF:37
X509v3 Authority Key Identifier:
keyid:50:61:75:4F:76:89:16:9F:6A:15:06:50:95:47:26:72:BA:2B:45:89
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UGF1T3aJFp9qFQZQlUcmcrorRYk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/db/3b59d5-602d-4351-96bc-a108649d51e2/1/UGF1T3aJFp9qFQZQlUcmcrorRYk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/db/3b59d5-602d-4351-96bc-a108649d51e2/1/UGF1T3aJFp9qFQZQlUcmcrorRYk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
48:b7:e6:d5:f0:61:45:47:cf:be:a1:1d:6a:18:61:69:6b:d8:
c7:af:50:7f:d8:8a:32:6f:f1:dc:87:f7:ef:f5:99:63:34:63:
ce:be:ae:b9:a0:e9:5b:1e:da:1b:ed:0a:87:f8:58:43:76:9d:
df:2e:96:4d:bf:48:12:8e:1b:2b:a7:56:ab:80:a7:7e:3a:1c:
e2:72:33:34:ec:dd:ec:73:40:f3:2e:a5:69:35:6e:5f:48:f3:
3c:7d:1f:8c:a6:b7:60:a7:0e:4b:08:2c:55:9d:89:22:68:c3:
58:e0:2e:2a:a4:d1:dc:95:ff:28:c9:27:f9:23:19:80:87:4c:
ef:c6:a4:b8:b1:f4:cc:22:6d:01:b1:6d:c8:65:f6:44:ca:5c:
cd:35:22:39:13:27:36:7e:09:ac:5c:81:9c:68:a5:77:b9:dd:
88:42:37:d6:5b:7e:02:d8:ea:99:6c:94:e7:7c:ad:4a:39:f4:
d5:c8:50:34:0d:93:c1:da:0c:e3:36:b4:58:32:56:30:a3:4e:
b4:94:80:79:c8:8a:3e:d7:2c:27:fd:e1:f0:4c:84:ba:14:f9:
d0:f1:bf:f9:6c:76:23:ce:d2:52:10:51:e5:a1:d4:9a:fc:78:
ab:33:c7:98:3c:ac:ec:30:cd:ac:da:6d:44:77:32:3b:9a:68:
5c:77:42:5d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 28 23:08:18 2025 by rpki-client