Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e5/06f9a3-8fca-414e-b5ad-ca36d98b3c4d/1/U_8iLUoiYwLL8QBoyqb0xB97scs.mft
File: U_8iLUoiYwLL8QBoyqb0xB97scs.mft (raw, json)
Hash identifier: uL0ZafOsRSmyNZtjoeYiko+Jn1qTakZxTYUOlLHEwaQ=
Subject key identifier: 3E:B3:B4:49:E5:8E:11:00:F1:61:34:09:C7:1A:4A:C5:8C:DE:F8:48
Authority key identifier: 53:FF:22:2D:4A:22:63:02:CB:F1:00:68:CA:A6:F4:C4:1F:7B:B1:CB
Certificate issuer: /CN=53ff222d4a226302cbf10068caa6f4c41f7bb1cb
Certificate serial: 0198D84F1740124F1ED17DA346DEA624B650
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/U_8iLUoiYwLL8QBoyqb0xB97scs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e5/06f9a3-8fca-414e-b5ad-ca36d98b3c4d/1/U_8iLUoiYwLL8QBoyqb0xB97scs.mft
Manifest number: 01F1
Signing time: Sat 23 Aug 2025 19:01:58 +0000
Manifest this update: Sat 23 Aug 2025 19:01:58 +0000
Manifest next update: Sun 24 Aug 2025 19:01:58 +0000
Files and hashes: 1: U_8iLUoiYwLL8QBoyqb0xB97scs.crl (hash: GOfjgwGPraTthhqV+QB0aJqerTsA8PA6dbwZv4gaQqc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e5/06f9a3-8fca-414e-b5ad-ca36d98b3c4d/1/U_8iLUoiYwLL8QBoyqb0xB97scs.crl
rsync://rpki.ripe.net/repository/DEFAULT/e5/06f9a3-8fca-414e-b5ad-ca36d98b3c4d/1/U_8iLUoiYwLL8QBoyqb0xB97scs.mft
rsync://rpki.ripe.net/repository/DEFAULT/U_8iLUoiYwLL8QBoyqb0xB97scs.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 14:00:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d8:4f:17:40:12:4f:1e:d1:7d:a3:46:de:a6:24:b6:50
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=53ff222d4a226302cbf10068caa6f4c41f7bb1cb
Validity
Not Before: Aug 23 19:01:58 2025 GMT
Not After : Aug 24 19:01:58 2025 GMT
Subject: CN=3eb3b449e58e1100f1613409c71a4ac58cdef848
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:1b:78:46:14:74:3b:ad:49:d7:96:e8:49:44:
dd:4f:a2:21:47:4f:1c:ab:90:8a:ae:65:b1:0c:72:
00:36:f1:ec:79:9f:67:de:55:2e:66:98:6a:39:9f:
1b:cf:fc:a8:73:0e:b4:38:02:9f:0f:72:e1:33:94:
cd:c3:de:a1:9e:57:89:0f:a2:3b:ae:b1:52:f9:a5:
78:5a:66:d8:06:1d:4b:7a:bd:5f:99:b3:3a:c9:0b:
7e:0f:d6:93:dc:71:1e:7d:1a:7c:32:9c:75:1b:c9:
b6:4b:9e:bb:58:ec:85:ad:b4:2e:85:73:fd:84:49:
45:be:15:48:a0:ee:9a:79:ee:20:3f:e6:5c:0b:77:
c5:10:84:e8:ae:68:c7:f7:6e:9a:cc:0f:0c:00:ce:
4a:52:06:0b:b9:09:b8:f5:d9:e8:5a:2e:e2:65:0c:
08:9d:d0:7d:16:7f:6c:62:81:40:76:e9:75:f8:ec:
23:a4:29:02:42:00:f6:e4:27:6b:f9:2b:4c:71:8f:
b5:a0:6a:82:2a:1e:4c:9c:08:bf:d8:2e:31:74:09:
13:4c:18:7e:28:47:89:68:54:7a:67:4e:9f:02:bd:
5e:63:c2:cb:66:20:b9:2a:69:74:3c:9e:9e:05:9c:
5c:c8:2d:67:ac:91:af:ff:37:2e:bb:95:28:5d:9d:
d6:f9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3E:B3:B4:49:E5:8E:11:00:F1:61:34:09:C7:1A:4A:C5:8C:DE:F8:48
X509v3 Authority Key Identifier:
keyid:53:FF:22:2D:4A:22:63:02:CB:F1:00:68:CA:A6:F4:C4:1F:7B:B1:CB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/U_8iLUoiYwLL8QBoyqb0xB97scs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e5/06f9a3-8fca-414e-b5ad-ca36d98b3c4d/1/U_8iLUoiYwLL8QBoyqb0xB97scs.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e5/06f9a3-8fca-414e-b5ad-ca36d98b3c4d/1/U_8iLUoiYwLL8QBoyqb0xB97scs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
8e:d6:f2:eb:5d:5b:9b:2d:28:c3:09:a0:a1:89:9d:ac:b7:59:
b6:0f:12:4f:ab:29:5e:fd:62:6b:f3:4e:97:b4:62:bb:e1:28:
99:9e:8d:45:1a:7b:76:f2:90:95:c9:4e:95:ee:3a:6e:f9:82:
f4:88:95:e2:ec:a4:aa:fe:09:b6:a1:fe:ad:c6:02:e7:d2:74:
9d:22:87:9d:fc:06:d1:57:51:c6:b2:2e:4d:f8:72:5b:4e:d1:
54:84:26:80:b0:a8:db:37:76:3a:61:21:32:79:33:26:ab:62:
0e:9d:95:d1:45:5d:99:37:3a:16:35:6c:74:54:24:72:4e:9c:
84:fb:48:53:e1:7f:51:98:d4:3b:64:ba:0c:e7:2e:d9:e9:05:
cb:8b:16:30:58:8a:f2:9b:f6:12:db:48:7e:65:21:4f:0a:b6:
7c:97:8d:e2:9f:1d:68:a3:68:c9:83:03:ea:4d:86:77:8a:ca:
9d:16:1c:7e:a4:24:5c:59:26:25:7d:f2:61:25:04:fd:12:79:
05:71:1b:2b:22:55:3d:92:73:21:da:23:fa:25:3d:c0:a5:65:
12:60:7b:f3:ef:b3:b5:13:37:05:25:12:0d:3e:fa:33:5f:bb:
7c:93:f4:ef:24:19:e2:b2:08:bf:ac:a2:02:af:62:bb:2f:44:
3c:03:3c:2b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 22:06:43 2025 by rpki-client