Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fd/8a2085-a6c3-4fde-8dba-6639bca7a1b0/1/UMrU5Xdbox7K4ibRBG89waEEgU0.mft
File: UMrU5Xdbox7K4ibRBG89waEEgU0.mft (raw, json)
Hash identifier: tGG64cQMEIPdcokTGrvXvzFtvazqbmN4GaY8w3kbRGM=
Subject key identifier: 20:F9:52:F9:26:B6:63:F2:CB:2C:91:E1:25:08:79:04:6B:67:C5:69
Authority key identifier: 50:CA:D4:E5:77:5B:A3:1E:CA:E2:26:D1:04:6F:3D:C1:A1:04:81:4D
Certificate issuer: /CN=50cad4e5775ba31ecae226d1046f3dc1a104814d
Certificate serial: 0197B632A29DD6ED4F7F7164B9E4A5FB8E94
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UMrU5Xdbox7K4ibRBG89waEEgU0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fd/8a2085-a6c3-4fde-8dba-6639bca7a1b0/1/UMrU5Xdbox7K4ibRBG89waEEgU0.mft
Manifest number: 054A
Signing time: Sat 28 Jun 2025 11:01:01 +0000
Manifest this update: Sat 28 Jun 2025 11:01:01 +0000
Manifest next update: Sun 29 Jun 2025 11:01:01 +0000
Files and hashes: 1: UMrU5Xdbox7K4ibRBG89waEEgU0.crl (hash: jEJWrjdA/imfuZQCzgzmatkT5bGFra2kLvdC4rst7a4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/fd/8a2085-a6c3-4fde-8dba-6639bca7a1b0/1/UMrU5Xdbox7K4ibRBG89waEEgU0.crl
rsync://rpki.ripe.net/repository/DEFAULT/fd/8a2085-a6c3-4fde-8dba-6639bca7a1b0/1/UMrU5Xdbox7K4ibRBG89waEEgU0.mft
rsync://rpki.ripe.net/repository/DEFAULT/UMrU5Xdbox7K4ibRBG89waEEgU0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 10:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b6:32:a2:9d:d6:ed:4f:7f:71:64:b9:e4:a5:fb:8e:94
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=50cad4e5775ba31ecae226d1046f3dc1a104814d
Validity
Not Before: Jun 28 11:01:01 2025 GMT
Not After : Jun 29 11:01:01 2025 GMT
Subject: CN=20f952f926b663f2cb2c91e1250879046b67c569
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:de:f2:fe:e1:80:b3:63:fe:34:a2:bf:4b:a5:e6:
92:73:0c:89:14:ac:c7:22:86:7a:fe:df:7c:8a:3e:
1e:f1:12:a3:84:9a:d9:68:92:e5:2b:9f:56:29:55:
89:50:69:f6:49:b2:fb:e8:6c:0a:da:1d:5c:2f:fc:
65:c9:a1:e6:4e:4e:ba:13:02:25:fe:a0:de:36:90:
98:32:58:56:86:dd:80:23:7a:28:ee:98:23:bf:b1:
6e:de:75:02:19:3d:5b:bb:bd:db:c5:3b:cd:ae:9f:
63:5a:17:9c:ce:f4:06:02:2f:64:44:6d:7f:37:a4:
ae:cb:67:ff:4a:92:b3:85:ad:47:7f:a2:18:29:58:
de:3f:8a:f2:aa:37:d1:76:34:44:86:2b:b1:15:b9:
e1:aa:c2:23:82:bb:f3:ca:78:1a:e1:42:41:79:ac:
a1:25:9d:0e:f1:70:27:e2:0a:dd:a4:92:b5:ae:78:
0d:01:23:9f:b9:b5:84:80:1c:fa:fc:a6:70:6d:fb:
2a:33:62:5c:a5:4d:a0:4c:ca:65:44:52:15:d7:dd:
b8:ba:00:42:22:32:45:b9:48:11:e4:b3:9b:58:0a:
12:26:9e:7a:bd:4c:ef:19:33:ec:2e:8c:f9:99:49:
53:cd:05:b6:24:76:fe:ee:22:4b:4c:64:f2:b5:74:
97:f9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
20:F9:52:F9:26:B6:63:F2:CB:2C:91:E1:25:08:79:04:6B:67:C5:69
X509v3 Authority Key Identifier:
keyid:50:CA:D4:E5:77:5B:A3:1E:CA:E2:26:D1:04:6F:3D:C1:A1:04:81:4D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UMrU5Xdbox7K4ibRBG89waEEgU0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fd/8a2085-a6c3-4fde-8dba-6639bca7a1b0/1/UMrU5Xdbox7K4ibRBG89waEEgU0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fd/8a2085-a6c3-4fde-8dba-6639bca7a1b0/1/UMrU5Xdbox7K4ibRBG89waEEgU0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
28:a0:16:d5:b2:1b:86:ff:f0:d9:01:e2:1a:4d:7c:cf:cc:86:
dc:62:3c:4e:7d:56:13:38:31:6f:2a:e4:5f:00:94:7f:b5:6d:
aa:a8:bd:75:23:21:f4:c8:be:a3:3f:b6:13:88:47:2e:60:48:
ef:04:74:b8:c7:84:c2:3b:6b:0b:25:68:81:8a:05:d1:e0:ef:
28:38:70:e0:90:a8:df:04:8e:93:1c:80:9f:f7:90:6c:b8:94:
4b:9b:34:97:f1:f3:a0:11:5c:e0:b2:8a:46:17:3b:1b:c2:3c:
e2:78:a8:29:bf:52:ee:38:9b:3d:f6:25:fc:96:31:a4:b3:03:
b9:10:ed:13:fc:03:bb:b4:dc:7e:3c:37:d8:d0:8a:c8:73:e0:
7e:12:63:83:fd:c4:a8:b0:da:fd:e5:9b:a2:15:bf:2d:a3:4f:
4f:ae:06:82:4d:70:a5:9d:7a:e1:ee:79:a4:df:9b:55:ff:6f:
d4:7b:d6:36:7c:71:98:75:68:20:2f:40:94:3d:3b:67:6f:a6:
54:24:1d:16:95:58:4d:94:84:5e:2c:c3:67:22:a9:d2:16:4f:
d2:5e:c2:02:61:22:ad:c7:81:14:d8:f0:0a:22:5d:17:1a:71:
e4:88:2b:bb:9c:4a:0d:45:28:57:64:04:a7:3c:1c:46:18:c0:
bf:ad:44:fc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 28 19:24:57 2025 by rpki-client