Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e1/6934b5-96c0-476d-bf54-237f65b64327/1/pU3VdP7HLUOUwlU2uoUyydOPQLo.mft
File: pU3VdP7HLUOUwlU2uoUyydOPQLo.mft (raw, json)
Hash identifier: EPgzF85NNBB0MNe19Al0vxgZXPfgXsqduWCNvrte/OM=
Subject key identifier: 30:CF:3A:F7:8D:62:26:22:33:D1:14:E7:0F:FF:7F:FD:AF:1D:8E:F0
Authority key identifier: A5:4D:D5:74:FE:C7:2D:43:94:C2:55:36:BA:85:32:C9:D3:8F:40:BA
Certificate issuer: /CN=a54dd574fec72d4394c25536ba8532c9d38f40ba
Certificate serial: 0198D66108D713A922CB28014D7CA104F7DF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/pU3VdP7HLUOUwlU2uoUyydOPQLo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e1/6934b5-96c0-476d-bf54-237f65b64327/1/pU3VdP7HLUOUwlU2uoUyydOPQLo.mft
Manifest number: 095F
Signing time: Sat 23 Aug 2025 10:02:20 +0000
Manifest this update: Sat 23 Aug 2025 10:02:20 +0000
Manifest next update: Sun 24 Aug 2025 10:02:20 +0000
Files and hashes: 1: pU3VdP7HLUOUwlU2uoUyydOPQLo.crl (hash: sxCAaassqu1lcZ2ACMPAnpHX+coj7lEIMXUgrZLTVXM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e1/6934b5-96c0-476d-bf54-237f65b64327/1/pU3VdP7HLUOUwlU2uoUyydOPQLo.crl
rsync://rpki.ripe.net/repository/DEFAULT/e1/6934b5-96c0-476d-bf54-237f65b64327/1/pU3VdP7HLUOUwlU2uoUyydOPQLo.mft
rsync://rpki.ripe.net/repository/DEFAULT/pU3VdP7HLUOUwlU2uoUyydOPQLo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 10:02:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d6:61:08:d7:13:a9:22:cb:28:01:4d:7c:a1:04:f7:df
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a54dd574fec72d4394c25536ba8532c9d38f40ba
Validity
Not Before: Aug 23 10:02:20 2025 GMT
Not After : Aug 24 10:02:20 2025 GMT
Subject: CN=30cf3af78d62262233d114e70fff7ffdaf1d8ef0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:3a:d0:69:6e:4d:1b:11:83:06:79:98:5b:49:
c7:0c:a9:6f:41:af:ae:dd:75:e5:5a:b2:6a:bd:5a:
18:25:dd:f3:1c:83:4c:b1:8f:0d:90:d8:ec:a8:7c:
e5:17:6d:b1:77:f4:8f:da:34:5f:00:87:e6:58:12:
aa:0a:a0:5d:0d:56:a3:39:eb:4c:a8:f5:08:15:9d:
cc:8e:57:10:9c:ec:85:81:19:04:13:d9:d5:e0:02:
38:3c:ca:49:1c:38:c2:52:df:c1:c9:ff:5d:3e:e2:
ef:91:d8:75:ad:5d:ec:4f:f2:98:3b:a5:be:4f:79:
35:e1:24:1b:16:26:cd:d3:e6:78:27:39:e1:2e:9d:
4e:e5:0f:21:b6:ac:c6:52:bd:a2:d9:f4:6f:b9:ca:
0c:22:ca:c4:ae:19:51:ac:a9:cb:74:7d:1c:47:ba:
c3:0a:b5:97:28:68:1d:ad:d2:5f:64:36:84:0b:09:
4d:98:f8:e2:26:9a:14:e3:41:e9:c6:35:4a:3e:5a:
dd:b0:ba:75:d4:58:d4:73:5e:4d:09:6e:45:c8:02:
68:5d:77:92:4b:a4:8e:85:ef:6e:37:cc:d6:03:6d:
62:78:6a:15:f5:30:6e:50:f1:05:d9:81:64:53:70:
1a:ca:c9:14:56:1f:62:e0:4b:5a:d6:5d:da:fd:7c:
b2:2d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
30:CF:3A:F7:8D:62:26:22:33:D1:14:E7:0F:FF:7F:FD:AF:1D:8E:F0
X509v3 Authority Key Identifier:
keyid:A5:4D:D5:74:FE:C7:2D:43:94:C2:55:36:BA:85:32:C9:D3:8F:40:BA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/pU3VdP7HLUOUwlU2uoUyydOPQLo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e1/6934b5-96c0-476d-bf54-237f65b64327/1/pU3VdP7HLUOUwlU2uoUyydOPQLo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e1/6934b5-96c0-476d-bf54-237f65b64327/1/pU3VdP7HLUOUwlU2uoUyydOPQLo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
55:62:db:46:31:bb:8e:37:bc:07:ae:a3:06:0b:53:a4:a9:bf:
9b:9d:11:32:f1:e5:c0:08:d8:79:1b:ab:bc:76:54:ed:61:90:
d3:4d:8e:68:f9:69:98:35:fd:21:a9:19:93:66:b4:8f:a5:60:
b0:03:c6:81:7b:78:3d:c2:3d:af:19:fa:df:28:d1:d7:6c:55:
4d:08:37:45:19:62:aa:21:9b:6f:75:f9:fd:3e:80:ff:e4:78:
f4:1e:cf:f0:71:d5:9c:9b:4c:7d:d0:8d:99:f9:27:7a:00:90:
b5:f9:15:e2:29:27:e4:17:5e:3f:a6:7a:99:6b:11:47:55:a8:
4e:f7:de:cf:42:33:ad:64:ea:86:42:95:97:2c:dc:8d:42:e8:
54:22:b6:fa:29:e8:fd:f9:34:68:48:0d:e9:9a:b8:35:49:b7:
e8:76:81:81:7a:6b:95:03:99:6d:3a:81:d0:90:7a:88:e9:da:
62:04:f5:ef:49:e1:67:a5:0b:52:3b:cb:af:fd:2b:5b:4f:55:
aa:22:44:1d:a8:91:23:80:58:2a:e5:30:70:88:45:5b:e3:b4:
e1:79:fe:7e:b8:1f:62:89:d8:c4:25:41:56:3b:fc:90:20:76:
00:f9:44:eb:19:a4:9f:1c:fe:a0:33:08:3e:1a:db:07:ae:05:
17:7e:3a:0e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 20:50:11 2025 by rpki-client