Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/61/b81895-c605-41e2-b283-c0565fa840d4/1/UW2UBk9zhVXozjZaGVfWnnaICcQ.mft
File: UW2UBk9zhVXozjZaGVfWnnaICcQ.mft (raw, json)
Hash identifier: qMRlt3HuW/O1xB741dV+a3sxhVEsL2j1BTcks7KEAZ0=
Subject key identifier: AA:33:BF:60:A0:A5:E0:85:17:B0:60:2D:7B:CD:16:29:00:15:76:7B
Authority key identifier: 51:6D:94:06:4F:73:85:55:E8:CE:36:5A:19:57:D6:9E:76:88:09:C4
Certificate issuer: /CN=516d94064f738555e8ce365a1957d69e768809c4
Certificate serial: 0198A04CD8647048CC310446E16CE6A36E8D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UW2UBk9zhVXozjZaGVfWnnaICcQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/61/b81895-c605-41e2-b283-c0565fa840d4/1/UW2UBk9zhVXozjZaGVfWnnaICcQ.mft
Manifest number: 060F
Signing time: Tue 12 Aug 2025 22:00:47 +0000
Manifest this update: Tue 12 Aug 2025 22:00:47 +0000
Manifest next update: Wed 13 Aug 2025 22:00:47 +0000
Files and hashes: 1: UW2UBk9zhVXozjZaGVfWnnaICcQ.crl (hash: YhdomO7WPIdKnteTDGpYirhNAkS0D1COE3IgnPYXBYQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/61/b81895-c605-41e2-b283-c0565fa840d4/1/UW2UBk9zhVXozjZaGVfWnnaICcQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/61/b81895-c605-41e2-b283-c0565fa840d4/1/UW2UBk9zhVXozjZaGVfWnnaICcQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/UW2UBk9zhVXozjZaGVfWnnaICcQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 13 Aug 2025 22:00:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:a0:4c:d8:64:70:48:cc:31:04:46:e1:6c:e6:a3:6e:8d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=516d94064f738555e8ce365a1957d69e768809c4
Validity
Not Before: Aug 12 22:00:47 2025 GMT
Not After : Aug 13 22:00:47 2025 GMT
Subject: CN=aa33bf60a0a5e08517b0602d7bcd16290015767b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:14:ca:8c:2c:ba:60:62:15:ab:40:55:bf:e0:
72:31:e2:4e:f1:e6:d3:dc:d6:f1:bf:7b:14:df:14:
08:c7:0b:3e:44:5f:f4:fc:8d:13:d1:13:ea:2b:fb:
0f:83:41:90:75:f7:ae:46:1b:aa:5c:b4:eb:ce:8e:
fe:fa:0a:06:c0:2b:6e:8e:44:3d:90:00:47:63:53:
e4:85:d8:8c:64:23:5c:3e:46:c8:6c:bf:64:9a:f8:
b0:10:81:86:9d:50:80:2d:f4:32:ea:ed:e8:18:63:
29:d0:b2:4f:08:e1:ca:af:35:79:cf:7f:f1:5a:77:
51:6c:e8:fb:3a:31:95:26:01:4c:48:47:52:ac:ba:
cc:93:7c:2b:9f:73:d1:9a:f1:d2:8e:65:e1:41:15:
34:bf:22:98:30:19:f9:06:31:53:4a:2b:20:06:e3:
6e:be:84:cd:44:18:3a:73:c8:e7:8b:ba:65:50:e4:
d5:ff:50:1a:06:ce:a0:1c:b2:64:74:4c:72:da:57:
24:32:b2:5f:17:6e:a8:5c:32:4b:60:a5:a1:e4:ee:
2d:5f:2d:ce:79:59:28:e7:3e:15:5e:c6:62:5a:c1:
97:5b:77:98:13:df:0e:7c:3d:42:70:f3:30:e7:54:
d1:a6:59:a7:13:6c:07:eb:f3:6a:83:8b:ae:42:df:
a9:55
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AA:33:BF:60:A0:A5:E0:85:17:B0:60:2D:7B:CD:16:29:00:15:76:7B
X509v3 Authority Key Identifier:
keyid:51:6D:94:06:4F:73:85:55:E8:CE:36:5A:19:57:D6:9E:76:88:09:C4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UW2UBk9zhVXozjZaGVfWnnaICcQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/61/b81895-c605-41e2-b283-c0565fa840d4/1/UW2UBk9zhVXozjZaGVfWnnaICcQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/61/b81895-c605-41e2-b283-c0565fa840d4/1/UW2UBk9zhVXozjZaGVfWnnaICcQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
87:16:1a:8c:c7:fb:90:bb:49:24:75:bb:c9:35:17:8e:d5:d6:
29:1f:8a:da:d2:3d:23:91:69:ae:cc:ba:ea:d3:eb:c8:85:28:
1b:dd:4a:9f:c1:bc:17:7f:bd:b5:36:b3:3c:60:50:e2:33:af:
bd:e8:18:1a:91:be:be:4a:e6:1d:7b:40:64:59:98:ec:2f:22:
85:10:60:ab:57:a1:54:3f:9d:0b:55:f1:80:e3:c8:5f:8b:ca:
2b:1f:21:5c:cf:f7:3c:b0:c9:c8:ab:84:95:13:2c:ae:b3:cf:
2f:71:e2:bb:4e:57:ae:a6:05:f1:1d:3c:64:24:16:14:62:10:
f4:9f:cc:42:b8:f1:c0:dc:c3:df:13:65:f8:d0:35:ba:ad:03:
47:19:b0:8e:5c:f2:f2:89:fb:c1:da:2b:93:95:0a:5a:22:d2:
1f:8d:15:50:4b:e2:90:86:2b:3e:07:82:5f:4f:27:9a:58:41:
85:73:d6:4d:62:d8:1d:4b:73:93:3c:5b:4a:fa:1e:29:83:d5:
a0:71:39:0a:fb:36:eb:c0:58:9a:28:8d:66:9d:3b:37:ec:02:
d8:82:c1:61:bf:2c:43:0b:a9:41:92:7c:ed:52:b0:51:8f:9c:
ac:44:df:00:3b:de:75:1a:ca:26:7b:9b:59:96:11:34:af:b9:
46:39:9a:7e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Aug 13 05:29:10 2025 by rpki-client