
Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d1/caf5ea-626e-455a-8708-f5ca8fa7270d/1/ufHVsG9XAVVf9YiBVN0UG0iJYRc.mft
File: ufHVsG9XAVVf9YiBVN0UG0iJYRc.mft (raw, json)
Hash identifier: atgPns0oMp9SNbHy3R3KqMxbd9BnkPywbAEohQXxvOc=
Subject key identifier: E7:32:9D:34:74:A7:D8:E2:0B:0B:1E:25:46:63:46:3E:30:C4:1D:49
Authority key identifier: B9:F1:D5:B0:6F:57:01:55:5F:F5:88:81:54:DD:14:1B:48:89:61:17
Certificate issuer: /CN=b9f1d5b06f5701555ff5888154dd141b48896117
Certificate serial: 01987F783CB53D36BBBAAFFEE114F8BED93E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ufHVsG9XAVVf9YiBVN0UG0iJYRc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d1/caf5ea-626e-455a-8708-f5ca8fa7270d/1/ufHVsG9XAVVf9YiBVN0UG0iJYRc.mft
Manifest number: 1634
Signing time: Wed 06 Aug 2025 13:00:42 +0000
Manifest this update: Wed 06 Aug 2025 13:00:42 +0000
Manifest next update: Thu 07 Aug 2025 13:00:42 +0000
Files and hashes: 1: ufHVsG9XAVVf9YiBVN0UG0iJYRc.crl (hash: bcCcAfuxMbG2sqrxxznPu3K6M0R1PXh9dLpfU/uQUHk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d1/caf5ea-626e-455a-8708-f5ca8fa7270d/1/ufHVsG9XAVVf9YiBVN0UG0iJYRc.crl
rsync://rpki.ripe.net/repository/DEFAULT/d1/caf5ea-626e-455a-8708-f5ca8fa7270d/1/ufHVsG9XAVVf9YiBVN0UG0iJYRc.mft
rsync://rpki.ripe.net/repository/DEFAULT/ufHVsG9XAVVf9YiBVN0UG0iJYRc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 07 Aug 2025 13:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:7f:78:3c:b5:3d:36:bb:ba:af:fe:e1:14:f8:be:d9:3e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b9f1d5b06f5701555ff5888154dd141b48896117
Validity
Not Before: Aug 6 13:00:42 2025 GMT
Not After : Aug 7 13:00:42 2025 GMT
Subject: CN=e7329d3474a7d8e20b0b1e254663463e30c41d49
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:33:8f:fa:86:2e:12:f4:47:04:b0:1f:2c:82:
dd:55:a1:ee:0b:8e:69:60:1d:1c:7a:b2:65:ad:53:
b3:d7:ca:a0:ba:de:45:12:94:f2:19:4e:ff:96:66:
6e:f3:a5:be:07:33:fa:d9:4d:ae:51:15:38:a4:dd:
9d:03:67:11:db:5f:55:d2:9c:3b:36:16:8f:79:56:
b1:76:e7:c8:d6:77:97:47:5d:09:b6:26:f9:f7:b8:
f0:bf:06:ee:4f:59:93:04:89:cf:ae:b6:d0:fc:d7:
f5:ab:bc:bd:7f:90:30:b0:6e:78:60:30:cb:aa:e3:
75:a5:f6:fa:23:33:68:b4:43:5d:e5:d9:33:fb:9f:
46:23:ef:f6:5d:93:e3:ab:50:3c:bb:bb:11:8d:83:
f7:16:97:76:aa:bb:1b:bf:ae:13:89:3d:dc:8f:4f:
fc:c2:55:09:4d:dc:1a:d3:0a:38:cf:ea:f0:ea:1e:
d7:ca:1d:d3:cb:16:0a:33:93:9d:7a:32:7a:1b:15:
69:53:a8:eb:c5:e3:95:2f:09:46:21:30:9d:51:d7:
f6:ea:1d:af:c5:23:2c:88:cc:0b:1e:25:ca:3a:64:
f5:af:a9:36:cd:44:0e:95:d4:14:98:13:0f:c2:80:
b3:3b:ad:eb:70:70:e8:15:e1:6b:d1:4f:74:f0:36:
8e:9d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E7:32:9D:34:74:A7:D8:E2:0B:0B:1E:25:46:63:46:3E:30:C4:1D:49
X509v3 Authority Key Identifier:
keyid:B9:F1:D5:B0:6F:57:01:55:5F:F5:88:81:54:DD:14:1B:48:89:61:17
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ufHVsG9XAVVf9YiBVN0UG0iJYRc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d1/caf5ea-626e-455a-8708-f5ca8fa7270d/1/ufHVsG9XAVVf9YiBVN0UG0iJYRc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d1/caf5ea-626e-455a-8708-f5ca8fa7270d/1/ufHVsG9XAVVf9YiBVN0UG0iJYRc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
14:04:a7:a0:a3:a0:29:c6:82:33:d4:44:8b:ca:2e:fa:29:3a:
e4:97:8c:ec:d4:8a:45:74:59:2e:56:ea:3c:f0:db:26:6b:2b:
16:f7:0d:59:c1:4f:b9:c9:0a:4f:bb:29:03:5c:28:c8:c2:13:
12:2a:90:71:47:db:08:bd:7f:65:d5:bc:a4:59:9a:09:b0:fb:
75:be:67:1b:23:c1:d5:dc:f0:58:37:79:63:96:ea:94:f3:fe:
ec:73:4e:e2:f6:81:61:08:13:06:96:ea:d8:05:61:e5:f3:34:
0e:5e:91:b4:d7:3f:a8:aa:ae:d8:0e:95:0a:ec:89:40:1b:95:
db:9a:3d:4b:e5:f9:fc:32:30:60:e1:a7:d8:e1:c7:12:64:00:
9e:e7:78:4e:7f:ee:f0:5b:28:f7:b9:e4:52:f2:9d:8d:96:bf:
d4:38:37:3c:58:14:d4:fb:37:b0:b7:5b:0f:35:b9:85:10:80:
fd:b1:11:7c:e5:6f:7f:69:04:9a:c1:6e:95:5b:01:97:f1:1c:
e4:87:a3:1b:cc:56:3e:44:0d:3c:72:0a:3c:f8:cc:86:7f:41:
4f:ae:31:bc:6f:71:ee:4f:df:f3:a2:bb:14:04:6a:78:24:5a:
c8:80:98:02:13:2b:f4:95:c1:d6:11:ce:e7:a5:72:dd:18:54:
12:21:8e:83
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZh/eDy1PTa7uq/+4RT4vtk+MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGI5ZjFkNWIwNmY1NzAxNTU1ZmY1ODg4MTU0ZGQxNDFiNDg4
OTYxMTcwHhcNMjUwODA2MTMwMDQyWhcNMjUwODA3MTMwMDQyWjAzMTEwLwYDVQQD
EyhlNzMyOWQzNDc0YTdkOGUyMGIwYjFlMjU0NjYzNDYzZTMwYzQxZDQ5MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApzOP+oYuEvRHBLAfLILdVaHuC45p
YB0cerJlrVOz18qgut5FEpTyGU7/lmZu86W+BzP62U2uURU4pN2dA2cR219V0pw7
NhaPeVaxdufI1neXR10Jtib597jwvwbuT1mTBInPrrbQ/Nf1q7y9f5AwsG54YDDL
quN1pfb6IzNotENd5dkz+59GI+/2XZPjq1A8u7sRjYP3Fpd2qrsbv64TiT3cj0/8
wlUJTdwa0wo4z+rw6h7Xyh3TyxYKM5OdejJ6GxVpU6jrxeOVLwlGITCdUdf26h2v
xSMsiMwLHiXKOmT1r6k2zUQOldQUmBMPwoCzO63rcHDoFeFr0U908DaOnQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFOcynTR0p9jiCwseJUZjRj4wxB1JMB8GA1UdIwQY
MBaAFLnx1bBvVwFVX/WIgVTdFBtIiWEXMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvdWZIVnNHOVhBVlZmOVlpQlZOMFVHMGlKWVJjLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kMS9jYWY1ZWEtNjI2ZS00NTVhLTg3MDgt
ZjVjYThmYTcyNzBkLzEvdWZIVnNHOVhBVlZmOVlpQlZOMFVHMGlKWVJjLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9kMS9jYWY1ZWEtNjI2ZS00NTVhLTg3MDgtZjVjYThmYTcyNzBk
LzEvdWZIVnNHOVhBVlZmOVlpQlZOMFVHMGlKWVJjLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAFASnoKOg
KcaCM9REi8ou+ik65JeM7NSKRXRZLlbqPPDbJmsrFvcNWcFPuckKT7spA1woyMIT
EiqQcUfbCL1/ZdW8pFmaCbD7db5nGyPB1dzwWDd5Y5bqlPP+7HNO4vaBYQgTBpbq
2AVh5fM0Dl6RtNc/qKqu2A6VCuyJQBuV25o9S+X5/DIwYOGn2OHHEmQAnud4Tn/u
8Fso97nkUvKdjZa/1Dg3PFgU1Ps3sLdbDzW5hRCA/bERfOVvf2kEmsFulVsBl/Ec
5IejG8xWPkQNPHIKPPjMhn9BT64xvG9x7k/f86K7FARqeCRayICYAhMr9JXB1hHO
56Vy3RhUEiGOgw==
-----END CERTIFICATE-----
Generated at Wed Aug 6 18:25:14 2025 by rpki-client