Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/db/3b59d5-602d-4351-96bc-a108649d51e2/1/UGF1T3aJFp9qFQZQlUcmcrorRYk.mft
File: UGF1T3aJFp9qFQZQlUcmcrorRYk.mft (raw, json)
Hash identifier: LdSCQPyJ77aEAMJq4Daqw8XdbG7yZQ9BShI7Z1Y/8fI=
Subject key identifier: DE:98:8B:F1:68:BB:05:2D:06:D4:58:81:D0:D8:D1:47:1B:07:85:10
Authority key identifier: 50:61:75:4F:76:89:16:9F:6A:15:06:50:95:47:26:72:BA:2B:45:89
Certificate issuer: /CN=5061754f7689169f6a15065095472672ba2b4589
Certificate serial: 01976F9A0FE07BC86202A0223E79CD1C1034
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UGF1T3aJFp9qFQZQlUcmcrorRYk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/db/3b59d5-602d-4351-96bc-a108649d51e2/1/UGF1T3aJFp9qFQZQlUcmcrorRYk.mft
Manifest number: 0D04
Signing time: Sat 14 Jun 2025 18:00:56 +0000
Manifest this update: Sat 14 Jun 2025 18:00:56 +0000
Manifest next update: Sun 15 Jun 2025 18:00:56 +0000
Files and hashes: 1: UGF1T3aJFp9qFQZQlUcmcrorRYk.crl (hash: HHbt15vYjXz7uUJgtZuJR++qPCWYaNUIfzr4ck3ZAjE=)
2: yiSfs72_nEyzYSAodCILSS2FNUg.roa (hash: S9gHpNvUCJD2H4bcxuT5WWB4Uck7rHXNRIxCLUlb2hE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/db/3b59d5-602d-4351-96bc-a108649d51e2/1/UGF1T3aJFp9qFQZQlUcmcrorRYk.crl
rsync://rpki.ripe.net/repository/DEFAULT/db/3b59d5-602d-4351-96bc-a108649d51e2/1/UGF1T3aJFp9qFQZQlUcmcrorRYk.mft
rsync://rpki.ripe.net/repository/DEFAULT/UGF1T3aJFp9qFQZQlUcmcrorRYk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 15 Jun 2025 18:00:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:6f:9a:0f:e0:7b:c8:62:02:a0:22:3e:79:cd:1c:10:34
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5061754f7689169f6a15065095472672ba2b4589
Validity
Not Before: Jun 14 18:00:56 2025 GMT
Not After : Jun 15 18:00:56 2025 GMT
Subject: CN=de988bf168bb052d06d45881d0d8d1471b078510
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:bb:55:8c:12:b4:e5:55:f8:db:b7:4b:b5:82:
68:79:5d:02:c9:bf:d0:cd:2e:07:f4:6d:78:34:e3:
34:93:31:e0:22:f3:e2:08:3e:89:ca:b2:c3:dc:a3:
15:12:4c:d7:e9:e9:8c:24:06:7b:7c:50:7d:43:6c:
7c:93:e3:28:e0:d7:cb:67:4c:30:b4:a3:7f:b3:d3:
37:8a:43:a9:94:cf:67:38:81:d2:1d:34:5f:f0:7f:
8d:9b:70:4a:ff:7a:e5:f3:6b:08:6b:77:75:ae:86:
77:0a:80:31:63:96:bf:c4:6c:cd:1a:41:d7:38:bf:
fd:6e:d3:5c:43:11:79:79:3c:e2:3a:78:85:56:39:
b9:a7:77:2d:d3:45:75:98:ae:fc:d5:00:ed:ca:40:
ff:41:a3:7c:7e:3a:68:7e:36:6c:7d:78:a9:3a:c5:
bc:9d:6d:0a:94:18:d7:24:2a:79:73:77:ca:be:e3:
0b:6c:29:07:8c:ae:20:e8:ac:2f:59:7d:84:7b:10:
fe:cd:a4:d8:bb:3f:cf:e7:b1:0d:cc:65:ec:46:76:
77:bc:52:87:dd:b6:ca:a7:e5:a3:05:11:b8:0b:ce:
3c:fe:2e:9a:7a:ac:b1:19:10:5e:b6:bc:a0:1b:9f:
8b:bc:70:5c:c7:04:06:08:6d:fc:20:6d:bc:a6:9e:
4d:b7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DE:98:8B:F1:68:BB:05:2D:06:D4:58:81:D0:D8:D1:47:1B:07:85:10
X509v3 Authority Key Identifier:
keyid:50:61:75:4F:76:89:16:9F:6A:15:06:50:95:47:26:72:BA:2B:45:89
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UGF1T3aJFp9qFQZQlUcmcrorRYk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/db/3b59d5-602d-4351-96bc-a108649d51e2/1/UGF1T3aJFp9qFQZQlUcmcrorRYk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/db/3b59d5-602d-4351-96bc-a108649d51e2/1/UGF1T3aJFp9qFQZQlUcmcrorRYk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
77:3b:6f:84:f8:b4:9a:65:05:67:5e:46:97:50:5b:e0:48:f4:
6e:27:f1:25:93:32:bf:58:1d:e6:b7:8a:1d:c7:a5:f1:e7:aa:
02:e4:cc:07:11:57:f3:0d:45:bc:96:e3:0f:a8:d7:d8:e3:d4:
53:ea:0e:c4:b5:92:bc:99:f4:ff:bd:2b:f2:ed:77:d5:6b:50:
10:9a:e0:f8:f4:c0:b5:e8:17:08:8c:bc:a4:bf:e1:f2:dc:b4:
f9:63:d5:0f:7d:8d:ab:b3:38:da:dc:8f:d0:fe:1c:00:07:0a:
e8:1b:42:5d:07:80:ee:83:95:13:ee:e4:36:46:d0:04:d6:10:
a6:e2:42:6c:ac:bb:c3:29:30:13:5b:26:79:b2:c5:96:93:ba:
0f:0d:96:51:60:50:16:18:4b:1a:80:56:dc:e3:8d:a4:fd:99:
29:eb:73:1b:98:42:cc:64:17:55:e7:51:46:a1:b4:93:70:07:
67:ba:e5:d6:ac:b1:8b:3d:cd:a2:aa:e2:df:e8:e8:fb:e9:03:
aa:38:97:ce:c9:27:a9:23:40:d5:96:41:62:1d:f8:78:05:5c:
e0:8e:fb:d3:bf:96:16:5d:44:91:88:88:f6:c5:12:92:45:21:
05:eb:46:43:f9:ae:7a:3c:11:5d:65:2a:b7:c9:d3:61:56:36:
fd:ad:d4:1f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 15 03:20:36 2025 by rpki-client