Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e7/c5bb6b-6425-453a-b942-89c53d630765/1/U1ULI4LgD6ffGU5khf4UJYNiE_8.mft
File: U1ULI4LgD6ffGU5khf4UJYNiE_8.mft (raw, json)
Hash identifier: Afk1jcHkjQC8X+saBN1D7wSGGWDfhx0epQiPjoKBWcs=
Subject key identifier: 88:46:62:3C:1B:1D:B7:5C:79:F7:13:B3:83:06:81:83:D2:6E:01:75
Authority key identifier: 53:55:0B:23:82:E0:0F:A7:DF:19:4E:64:85:FE:14:25:83:62:13:FF
Certificate issuer: /CN=53550b2382e00fa7df194e6485fe1425836213ff
Certificate serial: 01976F9A20187AA27E42848D373D56FB6D0D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/U1ULI4LgD6ffGU5khf4UJYNiE_8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e7/c5bb6b-6425-453a-b942-89c53d630765/1/U1ULI4LgD6ffGU5khf4UJYNiE_8.mft
Manifest number: 0D2C
Signing time: Sat 14 Jun 2025 18:01:01 +0000
Manifest this update: Sat 14 Jun 2025 18:01:01 +0000
Manifest next update: Sun 15 Jun 2025 18:01:01 +0000
Files and hashes: 1: U1ULI4LgD6ffGU5khf4UJYNiE_8.crl (hash: K0uNV3qFPLuVD7XZoIHk7f/G3CraiA7lHwkxATIdc8Y=)
2: tcKM3LiJKMuWLZy1f452bVGFzLo.roa (hash: Hc3Ss3dEDIlpXBd/8jjQQ9tabdB4wxFhy4soszLApwQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e7/c5bb6b-6425-453a-b942-89c53d630765/1/U1ULI4LgD6ffGU5khf4UJYNiE_8.crl
rsync://rpki.ripe.net/repository/DEFAULT/e7/c5bb6b-6425-453a-b942-89c53d630765/1/U1ULI4LgD6ffGU5khf4UJYNiE_8.mft
rsync://rpki.ripe.net/repository/DEFAULT/U1ULI4LgD6ffGU5khf4UJYNiE_8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 15 Jun 2025 18:01:01 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:6f:9a:20:18:7a:a2:7e:42:84:8d:37:3d:56:fb:6d:0d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=53550b2382e00fa7df194e6485fe1425836213ff
Validity
Not Before: Jun 14 18:01:01 2025 GMT
Not After : Jun 15 18:01:01 2025 GMT
Subject: CN=8846623c1b1db75c79f713b383068183d26e0175
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:02:9e:d2:ac:bb:3b:cb:67:2b:05:eb:2b:81:
f7:a3:1e:44:5a:24:f1:47:74:2d:2a:31:e8:9f:74:
a4:ef:26:a6:2a:d9:90:7d:8e:c0:4f:4e:4a:7b:b1:
0d:68:a5:2d:f6:ce:45:ef:fb:06:76:d6:ed:55:d0:
39:7e:68:e9:29:81:4b:29:56:9a:8f:a0:60:42:f4:
b3:f5:b5:ae:49:f7:07:29:bd:29:0d:e3:62:c8:89:
35:52:6a:61:43:d5:ea:57:9e:8c:53:ea:64:ea:b4:
95:ee:1b:fb:e2:a0:0e:6e:eb:2b:6c:4d:07:9f:88:
50:ae:f4:ac:34:b8:a1:ab:6c:1e:1b:80:a3:50:a3:
75:15:18:1c:42:26:51:44:13:37:63:da:48:38:0e:
a5:08:49:a8:18:70:c5:9e:58:db:9f:03:e4:46:b1:
eb:54:1b:f7:38:e9:19:fa:0b:ad:6a:dc:76:95:a8:
0b:85:31:2f:24:34:35:37:f0:c8:5a:c5:1f:9a:ad:
df:63:db:02:be:15:4f:1a:2d:01:6e:51:d3:47:c2:
3c:d1:46:f6:8a:44:69:fd:74:1e:8b:f3:5f:8c:20:
79:a0:cd:fc:20:8c:e8:69:de:fd:9a:cf:40:fe:2f:
8b:f3:34:9c:47:1e:da:57:e1:9d:28:96:49:85:88:
9e:61
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
88:46:62:3C:1B:1D:B7:5C:79:F7:13:B3:83:06:81:83:D2:6E:01:75
X509v3 Authority Key Identifier:
keyid:53:55:0B:23:82:E0:0F:A7:DF:19:4E:64:85:FE:14:25:83:62:13:FF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/U1ULI4LgD6ffGU5khf4UJYNiE_8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e7/c5bb6b-6425-453a-b942-89c53d630765/1/U1ULI4LgD6ffGU5khf4UJYNiE_8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e7/c5bb6b-6425-453a-b942-89c53d630765/1/U1ULI4LgD6ffGU5khf4UJYNiE_8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
5e:11:20:57:e7:37:42:b4:c8:f5:1a:8e:ab:82:f5:a9:76:62:
6a:a8:2c:e6:bf:6d:90:01:c0:47:ff:74:87:51:e9:40:c7:1b:
b3:90:69:98:c9:a6:3f:95:7e:0a:29:1a:a9:a3:d0:1c:36:ce:
37:a4:1f:a6:ea:2b:f7:69:98:2c:11:c1:00:58:10:db:60:a8:
1c:40:41:83:34:97:98:81:3b:2e:09:9e:22:31:12:1f:80:45:
e9:b4:07:1b:aa:7d:59:76:64:9c:14:35:4b:e8:5d:bd:32:93:
4f:c8:9d:4b:d7:2d:ba:a3:5f:23:b4:64:73:9f:66:56:18:29:
25:b0:2d:40:ff:13:e9:c5:a1:ec:e8:8f:b0:ed:cb:b1:86:a6:
5b:19:34:4a:a0:d3:42:9a:a1:07:01:30:22:5b:56:6f:6f:21:
43:4e:32:48:c1:b2:70:4d:6f:5f:14:69:60:7c:4f:60:c8:6a:
64:18:86:cd:96:37:51:23:01:bf:dd:0f:02:e8:9e:9d:a7:b5:
c1:55:0a:3c:5a:ee:f2:60:cf:ea:e9:90:5e:1f:b0:20:d1:8d:
0e:be:f8:32:e9:0c:c5:5c:c4:d4:88:01:1c:69:ea:9a:d0:6b:
41:9a:74:d8:f6:3d:53:48:db:4c:7f:ac:0a:64:c1:06:37:26:
ea:82:68:3c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 15 03:59:50 2025 by rpki-client