Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e3/fa4e30-fd64-486a-bb62-044c32531ad3/1/U6PE7mcNzqaLTXnqbDGF_gKdl7Y.mft
File: U6PE7mcNzqaLTXnqbDGF_gKdl7Y.mft (raw, json)
Hash identifier: 7MRtifmrO8KtFeFSaxjvo93V30ku3sJEvh0HyrluUnc=
Subject key identifier: 44:02:9C:2B:35:0F:EE:85:1A:8B:13:B5:9C:44:EB:0B:C4:D8:08:19
Authority key identifier: 53:A3:C4:EE:67:0D:CE:A6:8B:4D:79:EA:6C:31:85:FE:02:9D:97:B6
Certificate issuer: /CN=53a3c4ee670dcea68b4d79ea6c3185fe029d97b6
Certificate serial: 0197B745241DB5DFC6C651CB26D96BBBEF59
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/U6PE7mcNzqaLTXnqbDGF_gKdl7Y.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e3/fa4e30-fd64-486a-bb62-044c32531ad3/1/U6PE7mcNzqaLTXnqbDGF_gKdl7Y.mft
Manifest number: 12D8
Signing time: Sat 28 Jun 2025 16:00:51 +0000
Manifest this update: Sat 28 Jun 2025 16:00:51 +0000
Manifest next update: Sun 29 Jun 2025 16:00:51 +0000
Files and hashes: 1: U6PE7mcNzqaLTXnqbDGF_gKdl7Y.crl (hash: KpZlT+URljfyKHTBAQLjxtzupqaZpiPJIdawOTAHgbw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e3/fa4e30-fd64-486a-bb62-044c32531ad3/1/U6PE7mcNzqaLTXnqbDGF_gKdl7Y.crl
rsync://rpki.ripe.net/repository/DEFAULT/e3/fa4e30-fd64-486a-bb62-044c32531ad3/1/U6PE7mcNzqaLTXnqbDGF_gKdl7Y.mft
rsync://rpki.ripe.net/repository/DEFAULT/U6PE7mcNzqaLTXnqbDGF_gKdl7Y.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 10:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b7:45:24:1d:b5:df:c6:c6:51:cb:26:d9:6b:bb:ef:59
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=53a3c4ee670dcea68b4d79ea6c3185fe029d97b6
Validity
Not Before: Jun 28 16:00:51 2025 GMT
Not After : Jun 29 16:00:51 2025 GMT
Subject: CN=44029c2b350fee851a8b13b59c44eb0bc4d80819
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:f7:a6:44:48:06:60:f9:16:3c:e2:c4:f1:6b:
2b:3e:f4:54:e3:88:3c:0c:b5:4f:a4:e5:d4:c1:c4:
4f:bc:d0:49:ab:23:c2:7d:e9:1c:d4:e0:cd:db:e7:
c9:53:b4:21:7b:56:82:84:87:33:42:f6:f8:bb:e4:
b2:8f:70:6e:c1:a4:f6:8c:2d:7e:a7:e0:3a:df:dd:
a0:4d:10:36:21:42:b7:8b:b7:37:b7:43:77:b9:ea:
50:50:5a:fe:5e:67:14:34:2a:14:4d:c4:2e:93:1c:
af:07:d2:22:2e:e5:fb:6f:1e:be:ba:67:19:ce:2d:
c9:c3:76:36:56:3b:b7:06:9b:5c:99:c3:75:a1:37:
f1:06:d4:db:3d:d6:ce:b8:29:e4:af:9c:46:be:cd:
f4:de:0c:36:09:ed:d9:a1:9c:66:16:09:24:0b:22:
cf:a9:b1:b8:bc:bb:ec:d7:94:a6:81:2b:3b:9c:df:
ad:72:73:1f:f2:63:54:7c:44:8e:60:55:d1:54:85:
79:76:1b:44:42:fc:db:e0:2b:5a:ec:7d:d5:9f:88:
4c:3f:b1:14:e3:85:fb:a1:4b:25:4e:17:58:5d:47:
c6:2e:89:71:57:54:57:5f:54:7d:e8:a9:fb:8f:e1:
6b:ea:2d:3b:a6:81:0b:f5:49:a7:a8:fd:c4:a3:0c:
62:c1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
44:02:9C:2B:35:0F:EE:85:1A:8B:13:B5:9C:44:EB:0B:C4:D8:08:19
X509v3 Authority Key Identifier:
keyid:53:A3:C4:EE:67:0D:CE:A6:8B:4D:79:EA:6C:31:85:FE:02:9D:97:B6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/U6PE7mcNzqaLTXnqbDGF_gKdl7Y.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e3/fa4e30-fd64-486a-bb62-044c32531ad3/1/U6PE7mcNzqaLTXnqbDGF_gKdl7Y.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e3/fa4e30-fd64-486a-bb62-044c32531ad3/1/U6PE7mcNzqaLTXnqbDGF_gKdl7Y.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
2d:7a:a4:cc:4a:4b:e2:c0:51:6b:cf:5b:a0:59:87:1d:46:81:
c1:b2:3b:28:37:0a:ba:90:7b:dd:fa:bf:ed:ac:94:ec:66:c8:
d6:6f:e5:46:0a:ce:0f:80:02:f1:d4:d8:28:6d:46:12:7d:0f:
d4:6a:42:84:06:2a:e7:11:11:68:57:39:b2:97:db:30:59:88:
d0:06:e2:a1:21:e6:7e:84:6d:5d:4c:6c:5e:74:98:32:f3:42:
76:62:7c:d7:a8:ad:07:69:8c:99:20:7f:ca:0a:88:fb:0d:a6:
fd:8b:30:46:fd:b4:96:66:59:f3:09:60:0c:fd:08:25:5f:7e:
02:3f:c1:4a:4d:5e:a8:59:53:cd:42:d1:62:1c:cb:94:8c:d0:
f2:f6:d1:d7:e9:1e:01:c9:dd:ef:12:b3:a1:61:0c:87:7f:1c:
cb:53:f9:76:c0:51:b7:63:51:d6:be:0d:a2:1b:27:c9:c7:49:
9b:b5:8d:76:9a:80:bf:1f:cb:a3:be:29:53:82:10:9b:42:34:
a6:c5:a4:e3:1c:20:e7:97:dc:4d:63:69:b7:dc:65:e6:4c:11:
20:f7:a1:1b:ba:9f:bc:7e:7d:3c:7e:6f:d5:13:2d:76:7b:84:
25:d1:6b:45:7a:04:53:f6:e5:21:28:05:a6:57:02:3e:c1:06:
77:81:21:f8
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZe3RSQdtd/GxlHLJtlru+9ZMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDUzYTNjNGVlNjcwZGNlYTY4YjRkNzllYTZjMzE4NWZlMDI5
ZDk3YjYwHhcNMjUwNjI4MTYwMDUxWhcNMjUwNjI5MTYwMDUxWjAzMTEwLwYDVQQD
Eyg0NDAyOWMyYjM1MGZlZTg1MWE4YjEzYjU5YzQ0ZWIwYmM0ZDgwODE5MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtfemREgGYPkWPOLE8WsrPvRU44g8
DLVPpOXUwcRPvNBJqyPCfekc1ODN2+fJU7Qhe1aChIczQvb4u+Syj3BuwaT2jC1+
p+A6392gTRA2IUK3i7c3t0N3uepQUFr+XmcUNCoUTcQukxyvB9IiLuX7bx6+umcZ
zi3Jw3Y2Vju3BptcmcN1oTfxBtTbPdbOuCnkr5xGvs303gw2Ce3ZoZxmFgkkCyLP
qbG4vLvs15SmgSs7nN+tcnMf8mNUfESOYFXRVIV5dhtEQvzb4Cta7H3Vn4hMP7EU
44X7oUslThdYXUfGLolxV1RXX1R96Kn7j+Fr6i07poEL9UmnqP3EowxiwQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFEQCnCs1D+6FGosTtZxE6wvE2AgZMB8GA1UdIwQY
MBaAFFOjxO5nDc6mi0156mwxhf4CnZe2MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvVTZQRTdtY056cWFMVFhucWJER0ZfZ0tkbDdZLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lMy9mYTRlMzAtZmQ2NC00ODZhLWJiNjIt
MDQ0YzMyNTMxYWQzLzEvVTZQRTdtY056cWFMVFhucWJER0ZfZ0tkbDdZLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9lMy9mYTRlMzAtZmQ2NC00ODZhLWJiNjItMDQ0YzMyNTMxYWQz
LzEvVTZQRTdtY056cWFMVFhucWJER0ZfZ0tkbDdZLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEALXqkzEpL
4sBRa89boFmHHUaBwbI7KDcKupB73fq/7ayU7GbI1m/lRgrOD4AC8dTYKG1GEn0P
1GpChAYq5xERaFc5spfbMFmI0AbioSHmfoRtXUxsXnSYMvNCdmJ816itB2mMmSB/
ygqI+w2m/YswRv20lmZZ8wlgDP0IJV9+Aj/BSk1eqFlTzULRYhzLlIzQ8vbR1+ke
Acnd7xKzoWEMh38cy1P5dsBRt2NR1r4NohsnycdJm7WNdpqAvx/Lo74pU4IQm0I0
psWk4xwg55fcTWNpt9xl5kwRIPehG7qfvH59PH5v1RMtdnuEJdFrRXoEU/blISgF
plcCPsEGd4Eh+A==
-----END CERTIFICATE-----
Generated at Sat Jun 28 19:26:17 2025 by rpki-client