Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d8/3c16d2-d290-47fb-911d-5996cae9d115/1/uQkHzuT6xQ83U2Iq0hqYmud0HEc.mft
File: uQkHzuT6xQ83U2Iq0hqYmud0HEc.mft (raw, json)
Hash identifier: pzMOoSKq8KEZ+xtEAOQlabi14iSnKRoBHCNUyzi/wUU=
Subject key identifier: 04:F7:21:66:5C:4B:AC:B0:38:D4:34:A1:9F:66:80:EC:5B:3E:88:66
Authority key identifier: B9:09:07:CE:E4:FA:C5:0F:37:53:62:2A:D2:1A:98:9A:E7:74:1C:47
Certificate issuer: /CN=b90907cee4fac50f3753622ad21a989ae7741c47
Certificate serial: 01976F9979E56F09D53CB2E7BAE8688C8928
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/uQkHzuT6xQ83U2Iq0hqYmud0HEc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d8/3c16d2-d290-47fb-911d-5996cae9d115/1/uQkHzuT6xQ83U2Iq0hqYmud0HEc.mft
Manifest number: 1292
Signing time: Sat 14 Jun 2025 18:00:18 +0000
Manifest this update: Sat 14 Jun 2025 18:00:18 +0000
Manifest next update: Sun 15 Jun 2025 18:00:18 +0000
Files and hashes: 1: uQkHzuT6xQ83U2Iq0hqYmud0HEc.crl (hash: 6VB4JnNAyTyE3qwmdXKj9QArkxd5k2jMxiJmHj0E0Tk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d8/3c16d2-d290-47fb-911d-5996cae9d115/1/uQkHzuT6xQ83U2Iq0hqYmud0HEc.crl
rsync://rpki.ripe.net/repository/DEFAULT/d8/3c16d2-d290-47fb-911d-5996cae9d115/1/uQkHzuT6xQ83U2Iq0hqYmud0HEc.mft
rsync://rpki.ripe.net/repository/DEFAULT/uQkHzuT6xQ83U2Iq0hqYmud0HEc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 15 Jun 2025 18:00:18 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:6f:99:79:e5:6f:09:d5:3c:b2:e7:ba:e8:68:8c:89:28
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b90907cee4fac50f3753622ad21a989ae7741c47
Validity
Not Before: Jun 14 18:00:18 2025 GMT
Not After : Jun 15 18:00:18 2025 GMT
Subject: CN=04f721665c4bacb038d434a19f6680ec5b3e8866
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:97:a8:c8:90:fe:35:19:d0:30:9b:b3:b7:92:c7:
92:8d:22:3e:6a:5f:7e:1d:c7:32:97:24:62:74:78:
cc:8c:c9:32:d4:f9:95:65:d5:99:86:4f:4f:d0:44:
4f:df:be:e1:55:95:3b:02:2f:73:72:d8:53:3a:42:
5c:4d:97:72:ed:3f:b9:57:e6:9c:28:0b:48:83:b9:
88:2c:d4:4c:48:22:89:f8:60:ba:0e:da:56:d7:ac:
10:b7:dc:cf:5a:fa:73:87:10:cb:4b:3d:a1:5c:d9:
e4:1d:60:c6:5a:73:7d:5f:fe:54:88:0f:70:23:4c:
82:aa:ce:7d:80:a3:32:d8:f9:6f:44:77:ac:fd:f9:
5f:84:c6:66:c9:92:b7:21:35:3d:16:5c:d1:15:bd:
2a:6c:be:f6:19:f4:4b:42:5b:34:63:cc:41:c2:fc:
de:5c:40:71:2e:73:23:97:c0:d6:92:7b:99:b0:d6:
87:20:5b:d9:a5:af:3c:4e:1a:af:88:4d:62:e0:e8:
91:39:5f:4e:79:72:06:71:5a:3a:1c:d8:34:19:83:
7d:63:ed:19:e2:5f:25:1a:76:d3:68:3a:c9:20:19:
ea:2d:a2:ed:d1:23:31:e4:8b:d4:b0:f3:47:c6:9b:
36:88:74:b6:12:4d:af:3a:e6:1c:4e:1d:db:da:7b:
8b:d7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
04:F7:21:66:5C:4B:AC:B0:38:D4:34:A1:9F:66:80:EC:5B:3E:88:66
X509v3 Authority Key Identifier:
keyid:B9:09:07:CE:E4:FA:C5:0F:37:53:62:2A:D2:1A:98:9A:E7:74:1C:47
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/uQkHzuT6xQ83U2Iq0hqYmud0HEc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d8/3c16d2-d290-47fb-911d-5996cae9d115/1/uQkHzuT6xQ83U2Iq0hqYmud0HEc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d8/3c16d2-d290-47fb-911d-5996cae9d115/1/uQkHzuT6xQ83U2Iq0hqYmud0HEc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
27:3d:74:f8:7b:3e:c2:9e:8f:ac:9c:88:fc:81:a7:4c:12:42:
52:c0:30:55:e5:19:93:7a:8f:35:52:30:dc:f0:a9:17:43:46:
a9:ec:9a:d4:55:a9:23:30:b3:69:d9:46:87:a8:58:a2:de:ab:
de:af:b6:c7:e7:17:10:3b:37:31:3f:e2:f6:ab:f1:1a:fa:ee:
e7:67:04:d4:e6:06:41:d6:e3:56:37:26:9b:f1:3e:9c:4a:41:
8d:a0:8c:1e:16:17:5b:db:16:15:dc:9c:3e:f5:04:c2:6c:47:
5c:94:23:5a:53:74:a0:1d:bd:bf:22:9a:f4:d9:b8:c8:4a:25:
58:23:08:64:4a:5b:a6:55:42:7c:b8:2e:b2:85:43:cf:e8:ce:
1e:7e:76:b7:64:7a:2c:91:24:64:71:0b:60:2b:2a:03:bf:91:
13:a5:19:3c:a0:de:15:8f:c7:5b:59:2e:4b:c9:8c:7f:e5:91:
f0:11:a9:37:0e:06:5d:ed:c8:a4:b7:2a:49:8f:ad:09:b9:52:
e2:5a:b5:6a:b9:e9:a5:f1:d2:a3:94:24:44:64:f5:88:7d:ba:
79:cb:2a:a3:ef:7e:b5:73:13:d0:5e:c7:82:44:83:a6:25:57:
35:c8:a0:84:93:79:b9:c5:29:14:56:00:33:53:3f:05:23:bd:
14:38:90:36
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZdvmXnlbwnVPLLnuuhojIkoMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGI5MDkwN2NlZTRmYWM1MGYzNzUzNjIyYWQyMWE5ODlhZTc3
NDFjNDcwHhcNMjUwNjE0MTgwMDE4WhcNMjUwNjE1MTgwMDE4WjAzMTEwLwYDVQQD
EygwNGY3MjE2NjVjNGJhY2IwMzhkNDM0YTE5ZjY2ODBlYzViM2U4ODY2MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAl6jIkP41GdAwm7O3kseSjSI+al9+
HccylyRidHjMjMky1PmVZdWZhk9P0ERP377hVZU7Ai9zcthTOkJcTZdy7T+5V+ac
KAtIg7mILNRMSCKJ+GC6DtpW16wQt9zPWvpzhxDLSz2hXNnkHWDGWnN9X/5UiA9w
I0yCqs59gKMy2PlvRHes/flfhMZmyZK3ITU9FlzRFb0qbL72GfRLQls0Y8xBwvze
XEBxLnMjl8DWknuZsNaHIFvZpa88ThqviE1i4OiROV9OeXIGcVo6HNg0GYN9Y+0Z
4l8lGnbTaDrJIBnqLaLt0SMx5IvUsPNHxps2iHS2Ek2vOuYcTh3b2nuL1wIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFAT3IWZcS6ywONQ0oZ9mgOxbPohmMB8GA1UdIwQY
MBaAFLkJB87k+sUPN1NiKtIamJrndBxHMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvdVFrSHp1VDZ4UTgzVTJJcTBocVltdWQwSEVjLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kOC8zYzE2ZDItZDI5MC00N2ZiLTkxMWQt
NTk5NmNhZTlkMTE1LzEvdVFrSHp1VDZ4UTgzVTJJcTBocVltdWQwSEVjLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9kOC8zYzE2ZDItZDI5MC00N2ZiLTkxMWQtNTk5NmNhZTlkMTE1
LzEvdVFrSHp1VDZ4UTgzVTJJcTBocVltdWQwSEVjLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAJz10+Hs+
wp6PrJyI/IGnTBJCUsAwVeUZk3qPNVIw3PCpF0NGqeya1FWpIzCzadlGh6hYot6r
3q+2x+cXEDs3MT/i9qvxGvru52cE1OYGQdbjVjcmm/E+nEpBjaCMHhYXW9sWFdyc
PvUEwmxHXJQjWlN0oB29vyKa9Nm4yEolWCMIZEpbplVCfLgusoVDz+jOHn52t2R6
LJEkZHELYCsqA7+RE6UZPKDeFY/HW1kuS8mMf+WR8BGpNw4GXe3IpLcqSY+tCblS
4lq1arnppfHSo5QkRGT1iH26ecsqo+9+tXMT0F7HgkSDpiVXNcighJN5ucUpFFYA
M1M/BSO9FDiQNg==
-----END CERTIFICATE-----
Generated at Sat Jun 14 23:51:22 2025 by rpki-client