Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5a/23c0a9-68b1-40fd-a1e7-eb0885b9003e/1/uIF3qaNGnbOs8QqY9sA5MeNVFfo.mft
File: uIF3qaNGnbOs8QqY9sA5MeNVFfo.mft (raw, json)
Hash identifier: Nqlrrb6yfupyY37dTz960GmyknPzMSUYiwOP0UnQvTU=
Subject key identifier: 92:EA:5F:0E:F1:8F:56:D8:DF:D7:AF:A1:5E:CF:72:64:33:8C:09:87
Authority key identifier: B8:81:77:A9:A3:46:9D:B3:AC:F1:0A:98:F6:C0:39:31:E3:55:15:FA
Certificate issuer: /CN=b88177a9a3469db3acf10a98f6c03931e35515fa
Certificate serial: 019895250863764E5F9CFFD1D8C44664F02C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/uIF3qaNGnbOs8QqY9sA5MeNVFfo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5a/23c0a9-68b1-40fd-a1e7-eb0885b9003e/1/uIF3qaNGnbOs8QqY9sA5MeNVFfo.mft
Manifest number: 05C1
Signing time: Sun 10 Aug 2025 18:01:28 +0000
Manifest this update: Sun 10 Aug 2025 18:01:28 +0000
Manifest next update: Mon 11 Aug 2025 18:01:28 +0000
Files and hashes: 1: uIF3qaNGnbOs8QqY9sA5MeNVFfo.crl (hash: p5Zi9BKSnX3hS6T/ozTeqykUGjjMGREtMeNCR/5ll9s=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5a/23c0a9-68b1-40fd-a1e7-eb0885b9003e/1/uIF3qaNGnbOs8QqY9sA5MeNVFfo.crl
rsync://rpki.ripe.net/repository/DEFAULT/5a/23c0a9-68b1-40fd-a1e7-eb0885b9003e/1/uIF3qaNGnbOs8QqY9sA5MeNVFfo.mft
rsync://rpki.ripe.net/repository/DEFAULT/uIF3qaNGnbOs8QqY9sA5MeNVFfo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 11 Aug 2025 17:00:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:95:25:08:63:76:4e:5f:9c:ff:d1:d8:c4:46:64:f0:2c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b88177a9a3469db3acf10a98f6c03931e35515fa
Validity
Not Before: Aug 10 18:01:28 2025 GMT
Not After : Aug 11 18:01:28 2025 GMT
Subject: CN=92ea5f0ef18f56d8dfd7afa15ecf7264338c0987
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:bf:b7:6d:0e:96:bf:89:b2:eb:52:cf:4b:41:
ba:3d:ff:4f:23:c3:8f:85:20:4c:f5:30:48:74:84:
8b:b4:2a:ec:cc:6a:d4:ee:f6:73:08:36:46:a0:04:
18:a4:52:7b:07:09:b1:b6:94:6e:ec:f9:d7:97:11:
37:a8:50:df:df:4e:ed:77:f7:4f:5a:09:a0:4b:ad:
c4:36:d6:f4:c7:f1:3d:40:07:5c:30:38:8c:17:1c:
8b:63:0d:6c:52:da:3e:64:44:ec:cc:c2:65:b2:b1:
e6:d2:d7:5a:bb:34:60:32:db:52:07:fe:c3:a0:ca:
e7:6d:a0:82:c0:54:33:c2:a4:aa:64:1d:c9:f8:f4:
9a:26:33:7e:13:08:36:a2:0d:5d:76:68:d3:18:31:
95:9f:e3:8e:56:02:b4:a5:63:78:a0:c9:9f:03:e3:
cc:2c:2e:13:d7:ca:31:a1:1d:c7:1d:18:f6:fa:65:
fa:29:73:35:2a:88:67:96:2c:2c:28:b9:6d:09:e3:
31:3b:79:ce:a9:ea:c3:13:ed:86:e3:30:56:8a:3b:
6f:d0:e9:78:98:86:d8:3d:ac:e0:a0:e9:e3:72:51:
ad:bc:f3:26:2d:4e:95:b9:d3:06:98:ac:31:db:8c:
39:43:47:91:0a:0a:4e:05:34:af:85:9c:49:fd:dd:
ce:eb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
92:EA:5F:0E:F1:8F:56:D8:DF:D7:AF:A1:5E:CF:72:64:33:8C:09:87
X509v3 Authority Key Identifier:
keyid:B8:81:77:A9:A3:46:9D:B3:AC:F1:0A:98:F6:C0:39:31:E3:55:15:FA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/uIF3qaNGnbOs8QqY9sA5MeNVFfo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/23c0a9-68b1-40fd-a1e7-eb0885b9003e/1/uIF3qaNGnbOs8QqY9sA5MeNVFfo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/23c0a9-68b1-40fd-a1e7-eb0885b9003e/1/uIF3qaNGnbOs8QqY9sA5MeNVFfo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
3f:ea:f5:a3:cb:f5:1f:30:50:0b:78:fc:4f:e3:21:e5:2d:61:
c0:c4:3e:4b:52:c4:62:b5:50:8b:28:46:5e:5c:05:ed:0b:b7:
16:9a:84:57:97:49:1c:e4:1a:49:4a:65:b2:d5:9c:0a:e5:c7:
c7:c0:85:33:d8:fb:98:48:5e:fa:66:fe:e6:a6:e6:95:a5:fc:
46:1b:d0:8a:4f:ad:c3:3e:f5:6e:2c:81:66:78:c1:f5:b1:f7:
11:16:bf:50:b6:42:57:e9:f3:54:19:39:a1:3c:23:00:6e:54:
8b:07:1b:ee:38:fe:cc:1c:9f:81:d2:47:e9:19:57:ef:5e:cf:
73:ee:7a:f8:e1:58:ce:dc:94:aa:5c:c8:38:1b:bc:33:d4:dd:
d7:ba:c8:07:74:1c:c4:35:a6:5f:14:ef:6d:3a:94:b8:67:fe:
cf:12:0e:8b:0c:97:d9:c9:c6:7b:c9:8e:a4:81:9d:41:f3:10:
34:9f:01:0b:c8:9a:dd:69:5b:01:a3:ed:6d:47:b9:cf:e0:a1:
c1:d8:6f:27:5c:f5:28:1a:f3:6f:ef:8c:63:a5:e9:43:0c:15:
df:cd:38:de:71:e2:27:ba:ba:6a:b4:c0:2c:d1:14:b6:7b:9b:
dc:c8:f8:9f:94:2a:97:09:6a:71:d1:fd:21:2c:4b:92:76:b2:
ad:c0:47:e9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Aug 10 21:00:04 2025 by rpki-client