Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/df/98ed86-fe7d-4011-afd3-0f2573eca2e4/1/UgX1htgmO7BtZAUPj0hMFOgDxLI.mft
File: UgX1htgmO7BtZAUPj0hMFOgDxLI.mft (raw, json)
Hash identifier: a9dQEiDdkumaGOcNSPtZptgOT77RtrcZeC4rIFhIsRo=
Subject key identifier: 0A:71:C1:40:E7:74:E7:A9:0B:86:09:D8:5D:D0:01:4C:55:AA:1C:47
Authority key identifier: 52:05:F5:86:D8:26:3B:B0:6D:64:05:0F:8F:48:4C:14:E8:03:C4:B2
Certificate issuer: /CN=5205f586d8263bb06d64050f8f484c14e803c4b2
Certificate serial: 0197B88F6CEC9E7ECBB69989E709962C99EC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UgX1htgmO7BtZAUPj0hMFOgDxLI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/df/98ed86-fe7d-4011-afd3-0f2573eca2e4/1/UgX1htgmO7BtZAUPj0hMFOgDxLI.mft
Manifest number: 0BF4
Signing time: Sat 28 Jun 2025 22:01:36 +0000
Manifest this update: Sat 28 Jun 2025 22:01:36 +0000
Manifest next update: Sun 29 Jun 2025 22:01:36 +0000
Files and hashes: 1: UgX1htgmO7BtZAUPj0hMFOgDxLI.crl (hash: bMe3R4KsJJrFwWe4VRdPS4onfcYE9UZtcWdlfqBz5FY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/df/98ed86-fe7d-4011-afd3-0f2573eca2e4/1/UgX1htgmO7BtZAUPj0hMFOgDxLI.crl
rsync://rpki.ripe.net/repository/DEFAULT/df/98ed86-fe7d-4011-afd3-0f2573eca2e4/1/UgX1htgmO7BtZAUPj0hMFOgDxLI.mft
rsync://rpki.ripe.net/repository/DEFAULT/UgX1htgmO7BtZAUPj0hMFOgDxLI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 15:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b8:8f:6c:ec:9e:7e:cb:b6:99:89:e7:09:96:2c:99:ec
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5205f586d8263bb06d64050f8f484c14e803c4b2
Validity
Not Before: Jun 28 22:01:36 2025 GMT
Not After : Jun 29 22:01:36 2025 GMT
Subject: CN=0a71c140e774e7a90b8609d85dd0014c55aa1c47
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:de:8b:3a:16:f5:d7:2d:5b:2c:97:8a:df:b8:
e8:3c:1d:18:7c:eb:41:d3:16:13:9a:1c:3b:fb:d4:
f3:43:a8:44:14:72:02:cd:4c:b3:56:2b:3f:da:52:
39:c4:b6:96:54:24:73:42:c6:5d:ef:be:91:2a:66:
0e:42:de:eb:5d:58:81:2b:af:00:14:21:59:4e:db:
20:85:5e:02:ea:2c:f1:ec:c6:7e:0e:b3:bd:f4:46:
28:af:28:7a:39:e5:e9:2e:d3:ea:5c:35:0e:9d:83:
3d:cb:73:22:60:4d:63:fe:98:0d:e1:28:d4:2f:b6:
13:97:e1:4a:9c:82:0b:c8:c7:fc:91:96:1b:0f:59:
15:5f:80:ea:5b:4e:e5:94:eb:be:3e:0a:80:f5:08:
42:3f:9a:63:c6:d5:66:96:20:b4:05:c2:04:e8:34:
1f:4d:6e:9c:fa:d1:74:17:ba:fb:2b:bb:42:37:a0:
72:18:5a:92:80:cf:28:1d:71:0e:07:03:86:eb:63:
87:ed:c4:8a:db:8f:0a:fd:c3:f6:57:53:29:43:ea:
35:4d:21:a3:79:db:bf:d2:ac:4c:6b:0e:9f:3c:f3:
e3:7b:1a:20:57:f8:bb:cd:c1:7c:d4:5b:94:ce:6b:
08:3c:55:62:7a:aa:46:26:78:d8:38:5f:10:0a:87:
cc:a7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0A:71:C1:40:E7:74:E7:A9:0B:86:09:D8:5D:D0:01:4C:55:AA:1C:47
X509v3 Authority Key Identifier:
keyid:52:05:F5:86:D8:26:3B:B0:6D:64:05:0F:8F:48:4C:14:E8:03:C4:B2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UgX1htgmO7BtZAUPj0hMFOgDxLI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/df/98ed86-fe7d-4011-afd3-0f2573eca2e4/1/UgX1htgmO7BtZAUPj0hMFOgDxLI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/df/98ed86-fe7d-4011-afd3-0f2573eca2e4/1/UgX1htgmO7BtZAUPj0hMFOgDxLI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
14:8c:31:8f:48:f2:ae:28:82:12:c8:64:0f:a0:99:a1:6d:b9:
56:91:ff:2a:63:21:70:1e:36:32:01:ee:b3:a5:2d:27:61:c2:
90:52:c1:8a:e8:44:d9:43:02:cf:4d:6c:fb:d2:b9:38:55:c3:
da:c3:bd:d7:9f:61:41:96:99:2c:a7:0a:ca:23:44:e0:40:65:
00:28:9e:3e:8f:d6:23:3c:05:5c:a6:ff:1c:00:ba:31:e9:e2:
48:91:6c:8d:3e:d0:3f:04:9c:03:e4:9a:40:e8:fc:e4:f5:1d:
20:d3:fd:00:ce:7f:71:aa:2c:22:85:59:2b:ac:e2:34:8e:d7:
03:ed:00:9e:5c:a2:43:bb:bd:ce:41:d5:19:16:8a:43:f1:ce:
68:48:9d:a4:4a:1a:0c:aa:2b:7b:2a:fa:00:64:f9:ac:0f:d4:
f0:88:02:8f:25:c9:9b:16:ed:70:91:a5:c8:64:13:f2:7e:d5:
09:8e:d3:09:56:7d:f1:f6:2e:d2:a6:a3:55:d1:19:fd:95:13:
d1:23:42:a4:50:ad:38:d4:87:aa:5f:00:12:f1:40:46:e0:40:
a0:c1:03:90:d2:6f:b0:80:c0:ca:8b:d4:68:c3:c6:65:1d:1a:
e7:23:0c:7c:fb:2f:01:44:fe:0a:54:2f:77:62:29:62:81:9b:
19:69:50:83
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 28 23:32:53 2025 by rpki-client