Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e3/fa4e30-fd64-486a-bb62-044c32531ad3/1/U6PE7mcNzqaLTXnqbDGF_gKdl7Y.mft
File: U6PE7mcNzqaLTXnqbDGF_gKdl7Y.mft (raw, json)
Hash identifier: 5uKdFiuIvv0ZJ/fOqYGoyLn1zQ1kpp4LRYgLgqhEhD8=
Subject key identifier: EE:D4:E3:49:FF:58:BF:AC:70:95:B2:BA:21:A2:9D:3B:4D:4C:22:08
Authority key identifier: 53:A3:C4:EE:67:0D:CE:A6:8B:4D:79:EA:6C:31:85:FE:02:9D:97:B6
Certificate issuer: /CN=53a3c4ee670dcea68b4d79ea6c3185fe029d97b6
Certificate serial: 0198D705CFC8EEAD62F7DB3B209FC6AD0C22
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/U6PE7mcNzqaLTXnqbDGF_gKdl7Y.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e3/fa4e30-fd64-486a-bb62-044c32531ad3/1/U6PE7mcNzqaLTXnqbDGF_gKdl7Y.mft
Manifest number: 136D
Signing time: Sat 23 Aug 2025 13:02:18 +0000
Manifest this update: Sat 23 Aug 2025 13:02:18 +0000
Manifest next update: Sun 24 Aug 2025 13:02:18 +0000
Files and hashes: 1: U6PE7mcNzqaLTXnqbDGF_gKdl7Y.crl (hash: 8AVxBZ/xYFfB1lH6J3NBDBYRR8yaZIzvCMuhbSV483w=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e3/fa4e30-fd64-486a-bb62-044c32531ad3/1/U6PE7mcNzqaLTXnqbDGF_gKdl7Y.crl
rsync://rpki.ripe.net/repository/DEFAULT/e3/fa4e30-fd64-486a-bb62-044c32531ad3/1/U6PE7mcNzqaLTXnqbDGF_gKdl7Y.mft
rsync://rpki.ripe.net/repository/DEFAULT/U6PE7mcNzqaLTXnqbDGF_gKdl7Y.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 12:50:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d7:05:cf:c8:ee:ad:62:f7:db:3b:20:9f:c6:ad:0c:22
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=53a3c4ee670dcea68b4d79ea6c3185fe029d97b6
Validity
Not Before: Aug 23 13:02:18 2025 GMT
Not After : Aug 24 13:02:18 2025 GMT
Subject: CN=eed4e349ff58bfac7095b2ba21a29d3b4d4c2208
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e5:21:c2:ae:f4:1e:83:ed:b9:47:7b:8b:be:4a:
80:43:f2:d9:ce:72:18:0a:3c:56:4d:6d:f2:35:12:
0a:55:32:ec:fd:3d:e4:d3:92:ef:51:c9:91:aa:a0:
dc:24:13:b5:2f:6f:f8:8b:07:61:7b:a7:14:2e:27:
3b:b9:c0:65:d7:9d:72:95:22:73:76:2d:ef:bf:8f:
71:39:a1:2b:58:0a:a7:d4:f1:a4:d1:7b:1b:49:70:
54:e3:f2:77:20:bf:4b:bd:27:b4:73:d0:51:ef:3d:
af:0b:80:37:4d:2c:aa:29:4f:8f:5c:71:a8:d7:3d:
7e:5d:fb:8f:56:3c:09:58:49:b9:76:64:5a:69:aa:
db:ba:7e:9a:6d:23:21:db:15:4f:88:21:ea:b8:3a:
ec:b0:42:17:8b:6a:a5:87:6c:6f:42:23:9f:11:b2:
78:79:c0:0e:d9:c9:c0:16:93:7d:59:15:57:7b:2e:
dc:1b:be:f9:02:7f:e7:14:99:fc:62:20:37:63:ef:
c7:ac:8a:86:d6:a4:19:6d:d2:0f:ef:7a:38:73:3a:
9c:29:cb:4b:30:a2:5f:8e:7f:76:6c:08:c8:46:d8:
a5:de:e0:cf:c2:dd:3f:4d:8e:d6:83:9f:81:35:02:
e1:61:34:60:26:3b:a4:2e:10:61:79:e1:14:fd:d0:
c2:c3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EE:D4:E3:49:FF:58:BF:AC:70:95:B2:BA:21:A2:9D:3B:4D:4C:22:08
X509v3 Authority Key Identifier:
keyid:53:A3:C4:EE:67:0D:CE:A6:8B:4D:79:EA:6C:31:85:FE:02:9D:97:B6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/U6PE7mcNzqaLTXnqbDGF_gKdl7Y.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e3/fa4e30-fd64-486a-bb62-044c32531ad3/1/U6PE7mcNzqaLTXnqbDGF_gKdl7Y.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e3/fa4e30-fd64-486a-bb62-044c32531ad3/1/U6PE7mcNzqaLTXnqbDGF_gKdl7Y.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
70:ca:f3:2a:88:34:20:be:18:93:f2:54:e3:ef:0e:8d:23:55:
68:e4:6a:91:d3:51:f2:20:05:b4:c7:76:c0:19:ad:df:93:56:
a3:3b:f4:17:16:18:11:17:17:25:fa:06:46:3f:44:c9:82:ac:
10:14:c1:ac:75:ee:8e:a9:51:da:dc:e1:da:f4:0d:1f:e0:b8:
69:e5:09:6d:39:dd:61:05:ca:04:cd:d1:52:a5:de:cd:0c:87:
e6:13:f2:4c:11:49:0a:19:bf:fb:b2:59:41:ee:6b:16:de:8a:
92:00:dd:d2:64:ea:86:87:8e:3b:a4:44:db:d3:35:59:ca:c9:
a4:45:b4:da:0e:20:4e:6d:da:ea:ca:87:52:6c:c1:ed:13:f1:
19:0d:e3:ec:91:35:fe:63:5c:72:0a:84:15:8b:8e:f3:8e:a3:
23:e3:c6:ab:43:45:ec:b6:cd:b3:d1:9e:7f:60:b1:40:5d:48:
29:f3:10:c6:7d:d5:56:13:03:88:bb:4b:41:53:12:db:e2:f7:
ec:86:9b:54:15:9a:11:fd:01:bc:9e:59:ba:20:fa:9e:bb:67:
bf:16:7f:66:78:3d:25:e3:19:4a:e4:51:24:b3:9d:17:38:f6:
e3:3b:70:eb:4e:d2:34:02:4c:e3:b7:42:da:1c:07:74:91:7c:
41:ac:44:94
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 16:05:36 2025 by rpki-client