Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e8/92dfa6-58f5-4fbf-afe4-d7e42200a49e/1/uglQnQRuXLar5boZqxurpUPTffg.mft
File: uglQnQRuXLar5boZqxurpUPTffg.mft (raw, json)
Hash identifier: FYS7qhIplPx8hAxTY6jrzj8gjicIZ/fr5VM37EwdwNU=
Subject key identifier: 9F:A6:2F:5B:1C:F6:D4:B9:D9:F5:F8:9B:BF:0E:DD:58:34:34:95:E5
Authority key identifier: BA:09:50:9D:04:6E:5C:B6:AB:E5:BA:19:AB:1B:AB:A5:43:D3:7D:F8
Certificate issuer: /CN=ba09509d046e5cb6abe5ba19ab1baba543d37df8
Certificate serial: 0198D660010E98CC9B4D3127F4352D581186
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/uglQnQRuXLar5boZqxurpUPTffg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e8/92dfa6-58f5-4fbf-afe4-d7e42200a49e/1/uglQnQRuXLar5boZqxurpUPTffg.mft
Manifest number: 09CF
Signing time: Sat 23 Aug 2025 10:01:12 +0000
Manifest this update: Sat 23 Aug 2025 10:01:12 +0000
Manifest next update: Sun 24 Aug 2025 10:01:12 +0000
Files and hashes: 1: uglQnQRuXLar5boZqxurpUPTffg.crl (hash: bPuibTy1q7KbF8ltD9964gan5J4UfbK317mavVu/Leo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e8/92dfa6-58f5-4fbf-afe4-d7e42200a49e/1/uglQnQRuXLar5boZqxurpUPTffg.crl
rsync://rpki.ripe.net/repository/DEFAULT/e8/92dfa6-58f5-4fbf-afe4-d7e42200a49e/1/uglQnQRuXLar5boZqxurpUPTffg.mft
rsync://rpki.ripe.net/repository/DEFAULT/uglQnQRuXLar5boZqxurpUPTffg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 05:01:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d6:60:01:0e:98:cc:9b:4d:31:27:f4:35:2d:58:11:86
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ba09509d046e5cb6abe5ba19ab1baba543d37df8
Validity
Not Before: Aug 23 10:01:12 2025 GMT
Not After : Aug 24 10:01:12 2025 GMT
Subject: CN=9fa62f5b1cf6d4b9d9f5f89bbf0edd58343495e5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:02:a7:aa:6d:9d:80:ff:bc:fc:85:ae:ae:de:
0c:f9:36:ec:94:93:f4:b0:7b:01:01:04:dd:27:93:
c2:8f:9f:fa:84:66:41:c0:36:3a:06:d8:34:62:41:
6b:4e:e7:46:1f:bd:57:c4:eb:78:0e:54:ab:b6:1a:
56:9d:70:95:a8:44:80:fa:87:b0:3e:35:02:8f:4d:
03:ce:7a:d9:eb:77:df:c6:0f:3d:aa:f3:47:00:e3:
6d:39:90:43:d1:01:84:7f:06:e1:d6:56:3d:2d:5f:
3c:dd:0c:70:13:3f:77:b7:7a:9a:b3:1c:75:39:65:
0e:ad:66:b7:25:6e:af:5e:1b:ac:14:b4:b1:1b:f9:
69:35:7e:f2:03:12:76:ca:9a:bc:82:ae:96:20:26:
5b:fd:85:a4:8c:b0:a9:ac:ea:52:5b:37:6e:a1:b4:
e1:c5:dd:37:3b:35:18:21:ff:cc:5d:50:89:55:4a:
81:72:93:62:51:b2:3e:b0:13:4f:83:2b:b5:a7:4c:
21:71:7e:39:83:e8:24:c4:bc:65:1d:0e:00:7e:bc:
72:82:51:e1:3a:82:da:a7:5a:15:50:3c:c0:a1:0d:
2e:06:18:3e:fe:77:b9:12:ab:ea:00:5f:66:bd:f6:
d0:1f:d1:0e:d4:8a:43:bb:ca:58:79:d8:59:c2:e0:
ac:f7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9F:A6:2F:5B:1C:F6:D4:B9:D9:F5:F8:9B:BF:0E:DD:58:34:34:95:E5
X509v3 Authority Key Identifier:
keyid:BA:09:50:9D:04:6E:5C:B6:AB:E5:BA:19:AB:1B:AB:A5:43:D3:7D:F8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/uglQnQRuXLar5boZqxurpUPTffg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e8/92dfa6-58f5-4fbf-afe4-d7e42200a49e/1/uglQnQRuXLar5boZqxurpUPTffg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e8/92dfa6-58f5-4fbf-afe4-d7e42200a49e/1/uglQnQRuXLar5boZqxurpUPTffg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
51:52:6b:b7:57:da:e8:5f:88:44:ef:b8:39:53:c5:42:bf:48:
15:2c:cd:14:56:03:f1:5b:b2:21:0c:65:c0:a5:6f:94:a6:86:
94:98:8f:78:a8:47:90:15:be:d3:76:0b:c8:28:b4:a4:90:52:
52:0b:38:eb:d4:72:92:4f:13:9d:1b:5b:1c:a2:f3:29:53:5c:
e4:a2:41:17:12:16:99:4d:63:8a:99:ac:28:23:74:f4:f0:71:
36:fa:82:b5:fe:e0:5a:aa:cf:7a:ed:82:24:f6:3a:dd:dc:75:
77:cd:c6:2e:d3:30:3e:7c:3d:98:2a:bd:d1:51:d7:7e:56:c7:
42:8b:4a:95:af:61:86:d7:c8:c9:c7:61:58:c4:0a:6d:ff:d7:
7e:58:af:a5:c8:aa:02:5f:f6:11:a0:6b:be:82:9e:5b:39:2a:
3f:b0:6a:a3:96:f6:9c:4d:9d:85:20:c4:7a:e0:d0:45:11:f6:
a0:e8:0d:65:b9:04:9e:a2:af:b7:f2:b3:a3:ca:f2:85:44:da:
78:62:6d:da:5b:26:94:70:3d:4d:4b:e1:88:02:1b:cc:2a:74:
a7:e6:05:e6:54:f4:f0:3a:96:4d:a8:0e:03:c8:67:8e:db:32:
6f:c4:37:df:c4:3e:8e:29:87:30:b1:d2:ce:19:75:dc:ca:a3:
f5:09:5c:bd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 15:37:29 2025 by rpki-client