Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e5/06f9a3-8fca-414e-b5ad-ca36d98b3c4d/1/U_8iLUoiYwLL8QBoyqb0xB97scs.mft
File: U_8iLUoiYwLL8QBoyqb0xB97scs.mft (raw, json)
Hash identifier: Nsv9p8p05EBqCNdivBkT37TIz+xf56S5G9bnm3paa1Y=
Subject key identifier: 36:93:77:B3:A2:05:2F:A7:6A:E2:F9:F3:E9:DF:41:61:E7:B8:98:73
Authority key identifier: 53:FF:22:2D:4A:22:63:02:CB:F1:00:68:CA:A6:F4:C4:1F:7B:B1:CB
Certificate issuer: /CN=53ff222d4a226302cbf10068caa6f4c41f7bb1cb
Certificate serial: 0196B5C7AC4ADC056A8CD0992519D012ACC7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/U_8iLUoiYwLL8QBoyqb0xB97scs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e5/06f9a3-8fca-414e-b5ad-ca36d98b3c4d/1/U_8iLUoiYwLL8QBoyqb0xB97scs.mft
Manifest number: D6
Signing time: Fri 09 May 2025 16:01:23 +0000
Manifest this update: Fri 09 May 2025 16:01:23 +0000
Manifest next update: Sat 10 May 2025 16:01:23 +0000
Files and hashes: 1: U_8iLUoiYwLL8QBoyqb0xB97scs.crl (hash: xrllOshxVkFUpgSZ4F/I82GjMSMJ/PDxPurZj/HwwpI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e5/06f9a3-8fca-414e-b5ad-ca36d98b3c4d/1/U_8iLUoiYwLL8QBoyqb0xB97scs.crl
rsync://rpki.ripe.net/repository/DEFAULT/e5/06f9a3-8fca-414e-b5ad-ca36d98b3c4d/1/U_8iLUoiYwLL8QBoyqb0xB97scs.mft
rsync://rpki.ripe.net/repository/DEFAULT/U_8iLUoiYwLL8QBoyqb0xB97scs.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 10 May 2025 16:01:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:b5:c7:ac:4a:dc:05:6a:8c:d0:99:25:19:d0:12:ac:c7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=53ff222d4a226302cbf10068caa6f4c41f7bb1cb
Validity
Not Before: May 9 16:01:23 2025 GMT
Not After : May 10 16:01:23 2025 GMT
Subject: CN=369377b3a2052fa76ae2f9f3e9df4161e7b89873
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:f3:eb:e8:d3:a9:90:bc:75:7a:f6:31:81:bf:
de:a4:14:4f:c9:ad:fb:fc:55:e7:91:33:18:12:af:
be:2f:9d:64:5f:1e:e5:20:32:a4:4b:37:6c:59:5b:
ca:47:db:3f:8a:cc:bd:77:c9:53:40:0a:2f:59:b5:
1f:34:7a:0c:07:7b:8d:76:be:d6:af:04:be:92:40:
f3:af:1b:81:30:ef:94:b6:5e:cd:5e:6d:6f:d0:a0:
8e:40:7c:f6:60:c0:85:71:b0:30:58:cd:9d:20:b8:
37:bd:2e:09:10:aa:0d:b5:c5:e0:bf:8b:65:ee:04:
a1:48:f8:6e:6e:db:50:38:4d:69:67:da:f7:b7:61:
43:28:e9:79:d8:cd:f2:5e:29:d6:81:1c:66:73:56:
fd:50:24:3e:e5:86:b9:e6:c9:89:e1:07:e3:83:c5:
06:31:0d:c8:b3:6d:4f:0d:6f:7e:31:28:8f:08:4c:
40:22:6c:e3:05:06:2f:31:a3:4d:bf:17:3a:f9:53:
92:a5:b0:5c:8e:89:d0:ea:ef:fb:d7:e5:9f:c4:81:
31:5d:7d:71:b8:72:78:83:6d:fb:90:8d:c8:ae:4e:
f7:00:f4:0b:00:b1:b2:6d:f6:03:ac:59:4a:51:ce:
d4:5e:eb:c2:47:4f:42:6c:ff:31:80:b0:24:91:76:
db:d5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
36:93:77:B3:A2:05:2F:A7:6A:E2:F9:F3:E9:DF:41:61:E7:B8:98:73
X509v3 Authority Key Identifier:
keyid:53:FF:22:2D:4A:22:63:02:CB:F1:00:68:CA:A6:F4:C4:1F:7B:B1:CB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/U_8iLUoiYwLL8QBoyqb0xB97scs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e5/06f9a3-8fca-414e-b5ad-ca36d98b3c4d/1/U_8iLUoiYwLL8QBoyqb0xB97scs.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e5/06f9a3-8fca-414e-b5ad-ca36d98b3c4d/1/U_8iLUoiYwLL8QBoyqb0xB97scs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
6a:ed:5c:01:46:91:14:33:f5:bf:b5:5a:63:8d:fc:d2:e8:f8:
fb:b5:5f:78:70:6d:01:bf:80:af:17:20:4c:47:5b:aa:75:5c:
f9:b6:6a:5a:03:0d:7a:07:68:65:3b:58:92:42:0d:3c:2e:9d:
1f:3e:18:e3:f2:e5:80:5c:16:53:5d:08:cd:bc:58:92:48:aa:
36:9a:d1:70:24:12:cb:cd:46:c1:1c:65:e7:ac:b1:f5:57:f7:
3c:0d:94:fd:91:52:cf:f2:59:87:de:00:68:fc:a7:d7:49:a0:
51:d1:68:f4:35:42:23:2c:f5:40:8f:87:b6:a9:10:e9:ad:0d:
0e:0d:6a:9a:88:c9:71:5f:4f:de:a4:8b:32:97:81:74:43:38:
7e:6a:f3:99:ec:48:f5:56:f1:d3:f4:62:11:b5:d9:9c:52:56:
6e:7c:df:9a:a4:b9:dd:c1:42:f0:ff:62:04:f8:c3:f8:84:70:
4f:e8:7c:41:1e:44:68:b1:53:63:c6:0e:8f:bc:40:ed:40:1d:
d4:ce:18:b2:b0:17:a7:e9:a7:db:d5:c2:54:08:0e:33:3e:f0:
98:23:b4:b7:6c:e2:35:4d:3f:8a:ba:21:2b:46:63:b6:7f:dc:
07:a9:33:78:17:38:41:13:12:74:d4:bd:aa:6b:92:8f:3a:19:
b3:77:01:e3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 9 21:30:28 2025 by rpki-client