Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/de/aca6e7-20d8-4f2d-adad-754413b98db2/1/UJFp9pOVg8wdvmUtulwMglBAoBI.mft
File: UJFp9pOVg8wdvmUtulwMglBAoBI.mft (raw, json)
Hash identifier: 4IQLWT580qSIi+Pc3OJVt/FKTpfWgFh1cyDY5eGV6aI=
Subject key identifier: A6:FC:EE:95:BF:CC:14:CE:9B:9A:EA:61:68:C5:BB:94:EF:81:3D:B9
Authority key identifier: 50:91:69:F6:93:95:83:CC:1D:BE:65:2D:BA:5C:0C:82:50:40:A0:12
Certificate issuer: /CN=509169f6939583cc1dbe652dba5c0c825040a012
Certificate serial: 019770E337B24E7081EBCE7F70A07E61E648
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UJFp9pOVg8wdvmUtulwMglBAoBI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/de/aca6e7-20d8-4f2d-adad-754413b98db2/1/UJFp9pOVg8wdvmUtulwMglBAoBI.mft
Manifest number: 0235
Signing time: Sun 15 Jun 2025 00:00:28 +0000
Manifest this update: Sun 15 Jun 2025 00:00:28 +0000
Manifest next update: Mon 16 Jun 2025 00:00:28 +0000
Files and hashes: 1: UJFp9pOVg8wdvmUtulwMglBAoBI.crl (hash: vWHalE9MIM4bdxku6negvTVKY9rziWQLDjZf6mHbmrs=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/de/aca6e7-20d8-4f2d-adad-754413b98db2/1/UJFp9pOVg8wdvmUtulwMglBAoBI.crl
rsync://rpki.ripe.net/repository/DEFAULT/de/aca6e7-20d8-4f2d-adad-754413b98db2/1/UJFp9pOVg8wdvmUtulwMglBAoBI.mft
rsync://rpki.ripe.net/repository/DEFAULT/UJFp9pOVg8wdvmUtulwMglBAoBI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 15 Jun 2025 19:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:70:e3:37:b2:4e:70:81:eb:ce:7f:70:a0:7e:61:e6:48
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=509169f6939583cc1dbe652dba5c0c825040a012
Validity
Not Before: Jun 15 00:00:28 2025 GMT
Not After : Jun 16 00:00:28 2025 GMT
Subject: CN=a6fcee95bfcc14ce9b9aea6168c5bb94ef813db9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:88:cd:84:17:b2:19:a2:d0:d3:00:eb:25:a2:
3f:40:cc:b1:94:67:07:62:1c:0c:45:01:7c:73:9a:
dd:12:30:1f:07:49:5e:fc:07:cf:cf:94:aa:ce:54:
2b:8e:67:e2:2f:50:72:3b:d7:a1:5f:01:9c:14:79:
b5:65:7d:13:a4:f6:c6:f9:75:80:89:08:41:ef:2f:
08:42:fb:39:f4:83:99:0c:ab:17:9b:0d:81:a5:db:
ef:2b:24:74:4d:7c:62:ca:c6:03:a1:47:71:14:c9:
61:68:03:b5:c3:5c:84:3c:41:28:32:11:49:c2:29:
f6:5b:f0:e6:77:c4:83:ad:2c:10:b6:d8:41:ef:99:
bc:05:50:2c:7f:72:11:31:19:27:15:16:b3:77:dc:
9e:16:a2:26:73:56:bf:8a:8c:75:bc:bb:f5:6f:33:
5d:0f:12:4a:aa:6c:ed:86:d8:12:70:91:14:12:36:
d5:15:95:0e:76:b7:4e:ac:d4:7e:9d:48:bd:73:51:
0f:1a:f8:62:ed:bc:b7:98:88:b6:4c:b5:ff:9d:ba:
45:e8:29:07:9f:85:37:22:af:22:7a:0f:a5:a0:d5:
27:af:fb:8a:3b:b7:d7:d6:9d:a7:5f:94:5e:3f:64:
50:58:cc:0e:d0:8a:ab:94:01:5b:10:24:97:b8:75:
28:0f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A6:FC:EE:95:BF:CC:14:CE:9B:9A:EA:61:68:C5:BB:94:EF:81:3D:B9
X509v3 Authority Key Identifier:
keyid:50:91:69:F6:93:95:83:CC:1D:BE:65:2D:BA:5C:0C:82:50:40:A0:12
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UJFp9pOVg8wdvmUtulwMglBAoBI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/de/aca6e7-20d8-4f2d-adad-754413b98db2/1/UJFp9pOVg8wdvmUtulwMglBAoBI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/de/aca6e7-20d8-4f2d-adad-754413b98db2/1/UJFp9pOVg8wdvmUtulwMglBAoBI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
60:25:e2:55:bb:5a:eb:0e:51:61:9f:f2:48:ea:f6:b6:d2:01:
44:38:30:56:89:30:34:73:17:73:4e:7a:ed:df:bf:05:b6:0d:
ad:c8:d9:80:e6:ff:18:54:1d:9e:06:15:68:0c:b8:d6:ed:ae:
0d:da:24:a5:2c:e2:f1:4f:bc:51:5e:1f:1f:e0:ec:67:76:43:
04:36:92:c7:68:60:fd:c0:69:ae:a5:80:15:0f:e9:1e:dc:9a:
fa:ef:86:7d:80:ed:8d:02:95:69:a7:16:4a:a0:e9:7d:1d:2d:
7c:b0:e7:06:e7:4e:62:d8:72:57:df:c9:56:0d:ae:24:76:2b:
05:8a:58:e0:4e:1a:28:c4:4d:a0:6b:29:31:53:a3:89:8d:6b:
bf:06:da:65:7a:0c:ce:98:26:9c:d2:70:7e:94:af:9b:47:3d:
5e:35:71:bf:31:8b:07:27:49:6f:52:49:cf:b6:b7:26:ed:a4:
b1:a8:30:12:4c:50:69:26:5e:76:93:17:2b:9e:b0:c9:e0:49:
ab:20:98:0f:ac:91:c4:c7:64:bb:f3:1c:35:b9:4a:13:bf:be:
06:1b:50:15:9d:de:98:df:a4:b3:f7:30:2f:fe:f7:17:02:ca:
a8:bc:99:ed:6c:4e:0e:53:67:f4:6f:de:c9:ef:16:b1:e6:6a:
cd:86:a3:68
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 15 03:24:27 2025 by rpki-client