Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f7/6f263a-4193-4309-9c7a-82a6990df38d/1/U2WD3oNvzCjnC_ZurbjTjz9k9OE.mft
File: U2WD3oNvzCjnC_ZurbjTjz9k9OE.mft (raw, json)
Hash identifier: p/lYO/UFYcmARVKfZGxcafEA0Tq6oe6EEvCYuCfQftI=
Subject key identifier: 16:04:E4:76:72:D2:8D:C7:A2:DC:4D:91:29:45:FD:81:07:E5:04:02
Authority key identifier: 53:65:83:DE:83:6F:CC:28:E7:0B:F6:6E:AD:B8:D3:8F:3F:64:F4:E1
Certificate issuer: /CN=536583de836fcc28e70bf66eadb8d38f3f64f4e1
Certificate serial: 0197B7EA7CA7455DFF2C8CFB4FF8A52DEDD2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/U2WD3oNvzCjnC_ZurbjTjz9k9OE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f7/6f263a-4193-4309-9c7a-82a6990df38d/1/U2WD3oNvzCjnC_ZurbjTjz9k9OE.mft
Manifest number: 15B3
Signing time: Sat 28 Jun 2025 19:01:27 +0000
Manifest this update: Sat 28 Jun 2025 19:01:27 +0000
Manifest next update: Sun 29 Jun 2025 19:01:27 +0000
Files and hashes: 1: U2WD3oNvzCjnC_ZurbjTjz9k9OE.crl (hash: tZw9JK0rDluABXcUnmQ/iHgJgmXvMNzaNPepr1vg6ik=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f7/6f263a-4193-4309-9c7a-82a6990df38d/1/U2WD3oNvzCjnC_ZurbjTjz9k9OE.crl
rsync://rpki.ripe.net/repository/DEFAULT/f7/6f263a-4193-4309-9c7a-82a6990df38d/1/U2WD3oNvzCjnC_ZurbjTjz9k9OE.mft
rsync://rpki.ripe.net/repository/DEFAULT/U2WD3oNvzCjnC_ZurbjTjz9k9OE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 15:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b7:ea:7c:a7:45:5d:ff:2c:8c:fb:4f:f8:a5:2d:ed:d2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=536583de836fcc28e70bf66eadb8d38f3f64f4e1
Validity
Not Before: Jun 28 19:01:27 2025 GMT
Not After : Jun 29 19:01:27 2025 GMT
Subject: CN=1604e47672d28dc7a2dc4d912945fd8107e50402
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:ba:97:39:e6:81:c0:2c:ef:21:41:6c:c7:03:
b1:00:d4:08:88:e9:da:c1:b3:f8:d6:c4:63:83:63:
7f:7a:7f:8b:31:e2:6c:e5:57:81:b0:77:8e:c6:24:
a8:92:23:74:bd:45:aa:7a:df:68:65:d2:87:09:17:
9f:05:cc:a2:62:5d:08:3a:90:9b:a6:3e:e3:e2:2b:
a9:ca:6b:35:c6:2d:0f:d0:4a:7a:95:93:32:fd:77:
8c:54:60:f5:b1:1a:ea:16:17:84:26:7e:3c:cd:19:
d0:b8:ce:b0:8c:c2:9c:9b:0f:e9:f4:97:43:6c:fd:
35:6e:31:0b:0a:79:1e:8d:fa:08:26:14:18:05:f4:
a8:d6:4f:0e:f4:ab:d5:2f:5f:09:4d:b0:30:12:d5:
3c:18:c3:00:98:55:62:ea:16:33:89:1a:68:89:1d:
82:b2:70:19:6f:6e:91:7e:be:ff:d7:ce:36:7f:8a:
45:3c:07:05:91:30:fe:2b:7a:04:b6:9c:e2:3e:ae:
d6:c3:fa:24:33:94:f2:d8:8e:c1:5b:e1:be:10:70:
84:39:b8:52:09:13:a1:e7:1c:76:8c:04:51:9a:8c:
0f:8b:82:fa:b5:4b:f8:8f:8e:8a:95:2f:84:85:76:
2f:16:4d:1b:f8:27:8a:63:fd:3b:c3:36:e6:5f:26:
aa:f5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
16:04:E4:76:72:D2:8D:C7:A2:DC:4D:91:29:45:FD:81:07:E5:04:02
X509v3 Authority Key Identifier:
keyid:53:65:83:DE:83:6F:CC:28:E7:0B:F6:6E:AD:B8:D3:8F:3F:64:F4:E1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/U2WD3oNvzCjnC_ZurbjTjz9k9OE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f7/6f263a-4193-4309-9c7a-82a6990df38d/1/U2WD3oNvzCjnC_ZurbjTjz9k9OE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f7/6f263a-4193-4309-9c7a-82a6990df38d/1/U2WD3oNvzCjnC_ZurbjTjz9k9OE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
3b:de:1b:70:70:1a:26:8a:ce:b1:8e:0f:18:5c:45:06:da:35:
23:3f:26:6d:0d:be:7b:e0:45:bd:c6:74:a2:af:cb:32:56:54:
fb:aa:1c:5d:37:65:7f:e5:1f:3d:18:ae:16:c3:d1:42:fd:0a:
56:85:ac:78:88:24:04:48:ac:dd:d2:db:4e:42:5b:e8:d2:67:
a9:38:b3:48:75:13:8e:7a:9b:34:90:8f:70:57:7f:d2:40:51:
7b:08:88:42:30:03:b2:75:bf:70:50:f1:31:65:14:e9:8e:83:
34:f0:d2:ff:08:02:15:9b:3c:fb:5e:37:36:f5:1e:0a:8f:e8:
c3:d1:b5:47:f0:26:8c:6a:e0:7c:1b:a4:c3:82:fc:e4:e5:5c:
fc:9a:83:81:9a:69:3b:80:96:03:1a:e2:f6:b4:be:e8:03:ae:
a4:71:62:73:a9:2e:a7:b6:fb:54:4b:25:91:74:d9:ae:3a:fd:
89:2f:f4:d8:fc:af:db:95:cc:7b:fe:f8:17:2a:ac:d9:29:17:
53:02:f2:85:cc:03:65:ba:f1:50:93:95:02:18:43:ed:f3:1d:
a1:ac:88:1d:a0:dc:1f:9d:5f:65:aa:bf:bc:6f:af:5e:13:fa:
86:59:0c:f0:33:d5:93:b8:82:8a:ea:c3:1f:40:63:d8:54:a9:
b4:b7:fe:3d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 28 23:25:29 2025 by rpki-client