Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3d/6b168f-2d51-4882-a866-29b4f92ac8fd/1/dUI-b2St_Fh6CPgawqySYOsu1hU.mft
File: dUI-b2St_Fh6CPgawqySYOsu1hU.mft (raw, json)
Hash identifier: qwBRItsEd0l2O8/hMeZfUgsgX5u75Hw1Urcc6yyRzQw=
Subject key identifier: D7:EC:46:AF:FB:52:00:3B:89:CC:B0:E0:40:F7:2B:43:7B:BF:9E:8F
Authority key identifier: 75:42:3E:6F:64:AD:FC:58:7A:08:F8:1A:C2:AC:92:60:EB:2E:D6:15
Certificate issuer: /CN=75423e6f64adfc587a08f81ac2ac9260eb2ed615
Certificate serial: 01987D8BF5987626FAA87320937F74470D4D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dUI-b2St_Fh6CPgawqySYOsu1hU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3d/6b168f-2d51-4882-a866-29b4f92ac8fd/1/dUI-b2St_Fh6CPgawqySYOsu1hU.mft
Manifest number: 0C8D
Signing time: Wed 06 Aug 2025 04:03:01 +0000
Manifest this update: Wed 06 Aug 2025 04:03:01 +0000
Manifest next update: Thu 07 Aug 2025 04:03:01 +0000
Files and hashes: 1: dUI-b2St_Fh6CPgawqySYOsu1hU.crl (hash: oXXSzU6Zn4zTxhT8ZlRSJdYDA7vOCgSpko6a+ZrFE2I=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3d/6b168f-2d51-4882-a866-29b4f92ac8fd/1/dUI-b2St_Fh6CPgawqySYOsu1hU.crl
rsync://rpki.ripe.net/repository/DEFAULT/3d/6b168f-2d51-4882-a866-29b4f92ac8fd/1/dUI-b2St_Fh6CPgawqySYOsu1hU.mft
rsync://rpki.ripe.net/repository/DEFAULT/dUI-b2St_Fh6CPgawqySYOsu1hU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 07 Aug 2025 04:03:01 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:7d:8b:f5:98:76:26:fa:a8:73:20:93:7f:74:47:0d:4d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=75423e6f64adfc587a08f81ac2ac9260eb2ed615
Validity
Not Before: Aug 6 04:03:01 2025 GMT
Not After : Aug 7 04:03:01 2025 GMT
Subject: CN=d7ec46affb52003b89ccb0e040f72b437bbf9e8f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d7:e3:12:17:3b:74:10:81:64:a2:60:90:30:be:
30:ec:cc:89:b7:c4:d7:1b:46:f3:fb:40:c7:75:08:
46:75:ef:84:38:76:6b:31:be:cb:f8:c6:98:43:1f:
27:93:4f:76:5b:c1:71:62:a6:92:3e:af:8c:85:f2:
37:05:b9:78:56:89:21:b1:50:37:e6:b9:f8:08:3d:
25:f8:52:cc:08:b9:40:30:34:f9:27:d4:a1:54:f0:
2b:1a:10:60:27:48:07:08:84:e7:0a:77:5f:f5:7b:
a3:8e:29:0e:c8:a6:d5:76:82:94:22:a8:97:b7:28:
62:7a:51:bc:d9:0a:cd:c1:e4:00:d4:80:a6:64:c2:
5d:18:8c:08:bd:ac:d4:16:94:b7:72:c6:f9:1d:ba:
01:0c:1e:a7:d1:a5:cf:63:6d:72:c0:72:4f:68:31:
5c:8b:fe:e6:f7:74:82:d1:e3:04:76:cf:cc:ae:63:
4c:3f:60:41:96:fd:18:e3:e0:65:c6:61:33:c9:ed:
19:52:ca:af:7b:01:77:41:64:82:7b:04:fe:b3:2f:
7e:d0:24:c4:e8:ad:0f:cd:8e:af:bd:c1:a6:f0:1e:
3f:8d:ad:7a:f8:28:84:04:6f:da:29:45:a7:c3:dc:
a6:37:91:9b:24:6d:ab:02:28:32:79:f6:f0:25:33:
dc:73
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D7:EC:46:AF:FB:52:00:3B:89:CC:B0:E0:40:F7:2B:43:7B:BF:9E:8F
X509v3 Authority Key Identifier:
keyid:75:42:3E:6F:64:AD:FC:58:7A:08:F8:1A:C2:AC:92:60:EB:2E:D6:15
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dUI-b2St_Fh6CPgawqySYOsu1hU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3d/6b168f-2d51-4882-a866-29b4f92ac8fd/1/dUI-b2St_Fh6CPgawqySYOsu1hU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3d/6b168f-2d51-4882-a866-29b4f92ac8fd/1/dUI-b2St_Fh6CPgawqySYOsu1hU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
0b:b1:11:af:cb:ca:93:6e:0e:a7:f0:a3:e3:af:48:30:77:68:
e6:0e:69:32:f0:56:18:df:77:8e:72:03:10:5d:2d:c8:d9:2b:
b4:a8:21:07:e8:b2:30:1e:f6:46:e4:72:1a:6d:fd:ce:7b:c3:
38:dd:0c:1f:ea:06:60:e8:f7:26:cf:2f:ea:2d:ca:c5:40:89:
08:10:7b:62:cc:a6:bf:d1:d3:13:a9:6b:7d:46:92:a1:ec:31:
71:6e:0d:f9:0f:f7:f3:b1:dd:84:74:b5:f9:67:3f:c3:75:c2:
c9:05:2a:d9:35:24:5e:08:e4:cd:57:c4:32:b8:37:2b:d5:6c:
c6:e6:4c:62:a0:ba:b3:44:1e:d9:ab:69:b9:48:09:14:a2:af:
3e:0e:68:0a:5a:6c:af:3f:a2:bb:82:43:79:d9:eb:4f:f9:98:
f0:32:a9:a6:1f:21:98:be:68:4e:da:5b:53:8f:bc:15:5f:26:
be:fc:d1:30:1c:27:c3:ea:86:bb:a2:08:34:fa:92:2d:0c:b8:
de:c0:6d:da:64:46:83:e4:25:78:39:13:3f:b5:74:7a:d6:cc:
12:fc:82:76:a2:d1:ca:30:65:b3:f9:ee:d2:d3:4e:3e:3a:01:
27:ee:6f:89:0e:0d:a1:26:a0:a3:1b:70:c4:b4:73:a7:c3:ce:
fb:d0:5b:0a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Aug 6 11:23:10 2025 by rpki-client