Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f4/05db80-1baf-437a-a48f-d4d44bd91afe/1/U3YJ5EhhINufF7bT10v4VfJxV18.mft
File: U3YJ5EhhINufF7bT10v4VfJxV18.mft (raw, json)
Hash identifier: 7YQpVODnEobtg6Z2iYCQOaBEFp9NyCbNTvx6oORT7KY=
Subject key identifier: 88:55:9D:1F:69:19:F6:76:8A:59:53:BC:0F:1B:1B:06:C7:E4:22:7B
Authority key identifier: 53:76:09:E4:48:61:20:DB:9F:17:B6:D3:D7:4B:F8:55:F2:71:57:5F
Certificate issuer: /CN=537609e4486120db9f17b6d3d74bf855f271575f
Certificate serial: 0197B6A0951D4F6B0E28A56C75570C85A32F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/U3YJ5EhhINufF7bT10v4VfJxV18.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f4/05db80-1baf-437a-a48f-d4d44bd91afe/1/U3YJ5EhhINufF7bT10v4VfJxV18.mft
Manifest number: 0C33
Signing time: Sat 28 Jun 2025 13:01:06 +0000
Manifest this update: Sat 28 Jun 2025 13:01:06 +0000
Manifest next update: Sun 29 Jun 2025 13:01:06 +0000
Files and hashes: 1: U3YJ5EhhINufF7bT10v4VfJxV18.crl (hash: egYpXqwJdZBPBxH05ozxJHtgjfYQeAugJLgb8bBPE74=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f4/05db80-1baf-437a-a48f-d4d44bd91afe/1/U3YJ5EhhINufF7bT10v4VfJxV18.crl
rsync://rpki.ripe.net/repository/DEFAULT/f4/05db80-1baf-437a-a48f-d4d44bd91afe/1/U3YJ5EhhINufF7bT10v4VfJxV18.mft
rsync://rpki.ripe.net/repository/DEFAULT/U3YJ5EhhINufF7bT10v4VfJxV18.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 10:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b6:a0:95:1d:4f:6b:0e:28:a5:6c:75:57:0c:85:a3:2f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=537609e4486120db9f17b6d3d74bf855f271575f
Validity
Not Before: Jun 28 13:01:06 2025 GMT
Not After : Jun 29 13:01:06 2025 GMT
Subject: CN=88559d1f6919f6768a5953bc0f1b1b06c7e4227b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e8:1c:8e:6c:3f:af:97:50:bc:b1:25:05:ce:40:
82:5a:c5:ec:e9:58:97:7c:91:9c:52:69:e0:df:66:
e5:53:72:0c:fb:27:c3:e5:af:36:82:30:b5:f2:3a:
89:55:3e:81:31:8c:30:9d:5d:54:07:85:3c:21:8f:
04:74:d2:11:cd:70:e2:fe:00:8b:1e:5a:d6:ea:56:
79:88:7f:41:4d:1a:53:e5:78:a9:9a:b4:4b:87:11:
b6:97:3c:f6:7e:29:cc:cf:30:f7:d5:00:7f:8d:1d:
d5:25:25:09:50:36:61:82:43:57:2f:15:1a:d5:b6:
0f:15:e8:b1:9a:0f:72:77:56:c0:a6:d1:ef:8a:48:
06:bc:f6:f7:c0:fa:03:23:16:81:62:af:41:15:ac:
95:55:e0:9c:9a:59:6a:30:9d:f6:ed:49:d8:1c:94:
eb:36:50:39:4f:f3:7b:0b:91:ba:56:a0:a5:cf:b8:
bf:93:d8:5e:4f:0f:52:59:d4:e6:8a:a2:3a:25:35:
ac:62:f9:e7:06:b0:e1:ec:58:d3:72:2d:44:7a:ad:
21:57:87:f0:cf:cb:02:1c:ae:f5:af:06:2d:6a:41:
5f:8c:0c:59:57:7b:1e:2c:77:a1:51:74:8c:d7:47:
82:84:ef:db:db:5b:78:57:b8:11:48:6c:62:41:34:
d2:8f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
88:55:9D:1F:69:19:F6:76:8A:59:53:BC:0F:1B:1B:06:C7:E4:22:7B
X509v3 Authority Key Identifier:
keyid:53:76:09:E4:48:61:20:DB:9F:17:B6:D3:D7:4B:F8:55:F2:71:57:5F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/U3YJ5EhhINufF7bT10v4VfJxV18.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f4/05db80-1baf-437a-a48f-d4d44bd91afe/1/U3YJ5EhhINufF7bT10v4VfJxV18.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f4/05db80-1baf-437a-a48f-d4d44bd91afe/1/U3YJ5EhhINufF7bT10v4VfJxV18.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
c1:80:f4:ca:e4:af:89:f0:64:4f:d8:ba:fb:6e:6e:32:62:8d:
b9:24:8c:e7:dc:d7:08:39:40:49:fb:65:ae:3a:ca:89:31:a0:
7e:87:93:54:8b:b1:b7:32:c8:e2:0d:68:84:71:4a:5d:86:00:
80:4f:bb:e9:9a:7c:84:b2:68:f4:36:a1:e4:8b:48:bf:9d:a2:
3b:1f:65:77:01:ed:44:ce:c9:02:df:09:1b:e3:da:7e:47:67:
c7:23:ae:06:bd:f6:be:62:f6:ad:a1:03:21:03:45:aa:8c:de:
af:70:03:6c:15:41:07:36:08:6e:dc:da:a5:6f:81:65:f3:6e:
47:46:db:f4:e0:8e:1d:9d:06:5b:a2:fa:4f:90:80:7a:05:de:
29:64:77:cd:04:f9:76:43:75:e8:c0:46:37:2f:78:68:c0:d7:
65:4d:2d:50:96:0f:81:e2:eb:91:9d:4b:a3:99:e0:17:61:3a:
f9:fd:f1:bc:7c:fb:7c:f0:b8:da:cb:2d:b2:98:56:eb:b6:77:
21:8a:e4:32:fc:dc:d8:89:03:99:1d:4e:fa:e4:4e:48:ec:e8:
93:8b:09:d4:ec:d6:69:42:c2:cd:f9:7a:be:5d:63:ea:e9:18:
02:db:e0:f2:b3:45:ae:11:6f:41:11:54:1f:eb:44:e0:ae:bb:
72:03:f0:25
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 28 19:19:35 2025 by rpki-client