Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e3/fa4e30-fd64-486a-bb62-044c32531ad3/1/U6PE7mcNzqaLTXnqbDGF_gKdl7Y.mft
File: U6PE7mcNzqaLTXnqbDGF_gKdl7Y.mft (raw, json)
Hash identifier: kHu0yESh1gnoBHWIRudiacJTXuqp11tP3YrcG3DOFts=
Subject key identifier: B4:D9:AD:DD:02:BE:56:D8:52:28:4E:8F:CC:CC:12:5F:48:E1:80:AC
Authority key identifier: 53:A3:C4:EE:67:0D:CE:A6:8B:4D:79:EA:6C:31:85:FE:02:9D:97:B6
Certificate issuer: /CN=53a3c4ee670dcea68b4d79ea6c3185fe029d97b6
Certificate serial: 0198729842716530285BE49F2FFB346171BA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/U6PE7mcNzqaLTXnqbDGF_gKdl7Y.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e3/fa4e30-fd64-486a-bb62-044c32531ad3/1/U6PE7mcNzqaLTXnqbDGF_gKdl7Y.mft
Manifest number: 1339
Signing time: Mon 04 Aug 2025 01:00:37 +0000
Manifest this update: Mon 04 Aug 2025 01:00:37 +0000
Manifest next update: Tue 05 Aug 2025 01:00:37 +0000
Files and hashes: 1: U6PE7mcNzqaLTXnqbDGF_gKdl7Y.crl (hash: 5uisNoMNPWkgcBwGtJlRzgIJ4RS3Dcktp6Jh7WQyEPo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e3/fa4e30-fd64-486a-bb62-044c32531ad3/1/U6PE7mcNzqaLTXnqbDGF_gKdl7Y.crl
rsync://rpki.ripe.net/repository/DEFAULT/e3/fa4e30-fd64-486a-bb62-044c32531ad3/1/U6PE7mcNzqaLTXnqbDGF_gKdl7Y.mft
rsync://rpki.ripe.net/repository/DEFAULT/U6PE7mcNzqaLTXnqbDGF_gKdl7Y.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 05 Aug 2025 01:00:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:72:98:42:71:65:30:28:5b:e4:9f:2f:fb:34:61:71:ba
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=53a3c4ee670dcea68b4d79ea6c3185fe029d97b6
Validity
Not Before: Aug 4 01:00:37 2025 GMT
Not After : Aug 5 01:00:37 2025 GMT
Subject: CN=b4d9addd02be56d852284e8fcccc125f48e180ac
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d4:12:62:29:ef:4f:ec:ef:a8:00:63:c8:1e:ed:
8b:98:5b:d2:17:6a:e4:5c:66:73:e1:ff:e1:94:c6:
ec:1c:43:7d:96:66:86:7d:99:c5:dd:5e:0d:e1:c6:
8d:90:3a:7d:f3:95:7f:a1:33:86:db:6a:8a:da:63:
a0:09:20:20:30:b3:31:08:81:a7:75:dd:46:72:44:
77:e8:c7:fd:83:82:d6:e0:9f:a1:87:22:85:18:de:
6d:a2:bd:16:4d:29:d6:73:a4:a4:a1:43:2e:f0:e6:
bb:60:dc:25:be:38:74:7d:6d:47:a7:09:81:36:3c:
60:80:9a:b3:02:10:1c:ea:6d:34:52:34:05:b2:db:
1b:f7:54:c4:96:6f:b2:02:3c:af:cd:49:f8:74:51:
57:04:da:74:b0:75:40:37:55:68:d9:de:4d:2d:1a:
26:24:b0:dc:08:4f:a0:5b:ac:35:94:66:1b:5e:96:
ee:4d:ee:16:03:20:7d:81:6e:ea:ba:c4:32:bd:4f:
3e:aa:9d:c2:42:4e:7c:ed:7d:b6:24:65:b5:ac:87:
4d:bf:3b:27:80:ac:ee:09:3e:a9:3f:39:5c:91:25:
e6:6d:08:a4:45:16:f2:1f:e1:93:53:78:8d:86:fc:
48:a4:91:cf:5e:c1:3e:49:85:38:12:aa:6d:9c:4e:
a8:65
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B4:D9:AD:DD:02:BE:56:D8:52:28:4E:8F:CC:CC:12:5F:48:E1:80:AC
X509v3 Authority Key Identifier:
keyid:53:A3:C4:EE:67:0D:CE:A6:8B:4D:79:EA:6C:31:85:FE:02:9D:97:B6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/U6PE7mcNzqaLTXnqbDGF_gKdl7Y.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e3/fa4e30-fd64-486a-bb62-044c32531ad3/1/U6PE7mcNzqaLTXnqbDGF_gKdl7Y.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e3/fa4e30-fd64-486a-bb62-044c32531ad3/1/U6PE7mcNzqaLTXnqbDGF_gKdl7Y.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
5a:7a:e4:1a:3a:81:3c:5d:e8:22:50:0a:7a:fc:a0:14:99:2f:
1f:d7:cc:ee:ad:d8:b2:18:23:8e:f2:e5:7c:8d:35:30:12:0b:
61:38:69:68:5e:d8:b2:85:bd:09:f9:e9:f3:96:f5:b3:23:42:
f6:03:66:83:08:ee:6c:11:f8:05:fb:ff:17:29:19:48:f3:6e:
06:05:1a:10:52:c7:fa:d1:93:c6:25:26:01:69:90:a8:1f:4b:
f3:04:3a:80:d3:21:9b:06:84:f5:bc:4d:10:a3:2c:e9:ea:20:
98:16:82:21:d9:58:d6:08:87:2f:31:f4:31:19:3b:4d:68:f7:
fc:78:b1:38:da:ec:55:41:c9:70:24:d5:67:2b:4f:9c:56:c8:
0c:ca:a2:fb:85:b4:f1:10:26:1e:3e:92:53:d5:d7:97:ed:32:
1f:f7:fd:51:94:59:a3:77:56:28:d1:64:08:6e:95:8c:2a:aa:
de:3b:b1:ef:38:75:b7:d3:b3:d7:f7:6d:83:d7:41:d0:85:f4:
48:26:2a:6e:51:b2:84:9e:c6:33:79:7a:44:9c:6d:c3:9f:31:
84:8b:ea:bc:85:1e:ae:50:43:15:d7:03:4a:0b:0b:fd:5f:31:
2d:73:41:1e:e9:fd:24:3b:60:eb:2a:55:24:3c:05:d1:29:fd:
7c:02:2f:18
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Aug 4 11:11:24 2025 by rpki-client