Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e5/06f9a3-8fca-414e-b5ad-ca36d98b3c4d/1/U_8iLUoiYwLL8QBoyqb0xB97scs.mft
File: U_8iLUoiYwLL8QBoyqb0xB97scs.mft (raw, json)
Hash identifier: phozcsp5lDRKWySRKRE7JSTxeqLh9uok/WJUol251e8=
Subject key identifier: 39:74:26:94:F2:BA:1E:32:5F:BF:77:7A:A8:31:E8:AD:83:B0:92:CB
Authority key identifier: 53:FF:22:2D:4A:22:63:02:CB:F1:00:68:CA:A6:F4:C4:1F:7B:B1:CB
Certificate issuer: /CN=53ff222d4a226302cbf10068caa6f4c41f7bb1cb
Certificate serial: 0197B6A0A3A28A283F791E2A888DB04F072B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/U_8iLUoiYwLL8QBoyqb0xB97scs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e5/06f9a3-8fca-414e-b5ad-ca36d98b3c4d/1/U_8iLUoiYwLL8QBoyqb0xB97scs.mft
Manifest number: 015B
Signing time: Sat 28 Jun 2025 13:01:10 +0000
Manifest this update: Sat 28 Jun 2025 13:01:10 +0000
Manifest next update: Sun 29 Jun 2025 13:01:10 +0000
Files and hashes: 1: U_8iLUoiYwLL8QBoyqb0xB97scs.crl (hash: 0cbXM5DZ8c9/FTxbDkIhj1tXT9avXIemgJo9ax5Fo4g=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e5/06f9a3-8fca-414e-b5ad-ca36d98b3c4d/1/U_8iLUoiYwLL8QBoyqb0xB97scs.crl
rsync://rpki.ripe.net/repository/DEFAULT/e5/06f9a3-8fca-414e-b5ad-ca36d98b3c4d/1/U_8iLUoiYwLL8QBoyqb0xB97scs.mft
rsync://rpki.ripe.net/repository/DEFAULT/U_8iLUoiYwLL8QBoyqb0xB97scs.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 10:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b6:a0:a3:a2:8a:28:3f:79:1e:2a:88:8d:b0:4f:07:2b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=53ff222d4a226302cbf10068caa6f4c41f7bb1cb
Validity
Not Before: Jun 28 13:01:10 2025 GMT
Not After : Jun 29 13:01:10 2025 GMT
Subject: CN=39742694f2ba1e325fbf777aa831e8ad83b092cb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8e:ef:71:6d:3e:5d:05:fd:e8:a4:d9:1e:51:cd:
54:84:3e:d5:36:4c:7b:7c:2e:c0:f7:63:fc:69:8f:
c2:df:46:0a:2d:e8:cd:69:17:c8:1d:b9:21:5a:59:
cf:a0:7e:cd:48:ae:41:cc:dc:00:92:ef:ea:27:2f:
e1:3a:d5:d3:3a:a3:dc:38:51:78:08:c5:00:50:f3:
2c:fc:8f:40:eb:f1:bf:0f:e8:d5:0d:3e:09:71:76:
fb:73:0f:28:5a:c0:67:36:e0:0c:61:0b:3b:c1:98:
2c:51:56:2d:94:46:91:95:75:f1:d0:be:c6:c7:7b:
64:02:d7:50:d0:e8:b1:e3:2b:8a:92:29:33:3f:b0:
27:ff:6c:02:09:83:b6:53:a9:2f:7e:fe:3b:a1:0a:
18:ef:5e:d9:34:a4:6e:f2:7a:11:d7:7f:68:a9:d6:
a9:a0:13:55:42:4b:d4:06:46:b9:fe:ba:e3:91:7e:
3d:58:1f:d6:94:49:b1:52:21:bb:06:79:60:b7:b7:
80:84:3a:74:3b:c4:2d:b2:1d:a0:5d:68:04:7a:89:
08:66:fb:d8:10:c0:80:d1:cb:d2:fb:b5:d6:54:c7:
d3:2d:62:ca:8c:4c:a9:83:23:83:8b:a7:28:da:de:
b6:ec:e8:49:75:26:71:ba:03:6e:cf:4e:16:61:8b:
18:5f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
39:74:26:94:F2:BA:1E:32:5F:BF:77:7A:A8:31:E8:AD:83:B0:92:CB
X509v3 Authority Key Identifier:
keyid:53:FF:22:2D:4A:22:63:02:CB:F1:00:68:CA:A6:F4:C4:1F:7B:B1:CB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/U_8iLUoiYwLL8QBoyqb0xB97scs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e5/06f9a3-8fca-414e-b5ad-ca36d98b3c4d/1/U_8iLUoiYwLL8QBoyqb0xB97scs.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e5/06f9a3-8fca-414e-b5ad-ca36d98b3c4d/1/U_8iLUoiYwLL8QBoyqb0xB97scs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
60:38:a8:58:17:69:59:e3:81:cf:7e:15:25:1c:b2:8e:2b:d9:
c7:5f:d5:38:4f:07:53:65:7c:32:49:df:f5:c5:9a:2e:f6:6e:
80:ab:dc:cb:8d:27:2f:0f:30:33:34:94:4c:90:2b:53:5f:d8:
ee:2b:0e:71:4a:6d:54:c7:18:2b:fd:0b:c9:e6:2d:bb:ac:df:
1e:95:61:52:6d:a6:f5:3d:0e:14:5e:4b:e7:28:75:fc:8c:45:
5b:62:de:41:4f:1f:1d:b1:c2:6f:48:fe:65:24:40:52:5b:fb:
74:db:d8:ac:da:33:39:7a:d8:d0:cf:66:9d:fe:0f:e1:5d:e6:
14:23:6d:35:6c:4b:12:90:49:b0:3f:c0:3b:da:1d:1a:61:52:
c8:3a:57:f0:c2:d4:fe:87:a2:de:2f:1e:10:4c:5d:14:5e:86:
0c:18:2b:ef:35:f9:22:74:e8:4f:3a:a0:49:63:6e:b3:17:9e:
ac:ad:f2:15:f5:34:5e:1e:69:ef:b3:39:64:83:b3:f2:f4:d5:
ac:06:0c:70:3e:8a:93:b2:ee:c9:da:91:ee:7f:18:4b:96:cc:
e2:71:db:1c:e3:a8:d3:33:b3:d0:11:4c:35:6f:00:27:5f:94:
ca:2f:e4:bb:f1:db:40:cc:42:d2:50:3c:06:1d:18:f6:6a:53:
69:bd:e5:2f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 28 19:20:14 2025 by rpki-client