Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f1/6de2dc-ecd2-4af8-bb0a-3d08aabd5e9b/1/UtlINdtX9r4TjoZPWT7mrai4PtA.mft
File: UtlINdtX9r4TjoZPWT7mrai4PtA.mft (raw, json)
Hash identifier: MMVt2tZ0zUkZ18g3gVzn85ERoTdOxizCr1XV/APJoHQ=
Subject key identifier: 5C:C8:9D:6A:03:53:AA:A1:9B:AD:65:48:EF:96:F5:33:69:E8:4B:2C
Authority key identifier: 52:D9:48:35:DB:57:F6:BE:13:8E:86:4F:59:3E:E6:AD:A8:B8:3E:D0
Certificate issuer: /CN=52d94835db57f6be138e864f593ee6ada8b83ed0
Certificate serial: 01976D0672397382A4E1715430D6715FBDA0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UtlINdtX9r4TjoZPWT7mrai4PtA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f1/6de2dc-ecd2-4af8-bb0a-3d08aabd5e9b/1/UtlINdtX9r4TjoZPWT7mrai4PtA.mft
Manifest number: 43
Signing time: Sat 14 Jun 2025 06:00:28 +0000
Manifest this update: Sat 14 Jun 2025 06:00:28 +0000
Manifest next update: Sun 15 Jun 2025 06:00:28 +0000
Files and hashes: 1: UtlINdtX9r4TjoZPWT7mrai4PtA.crl (hash: lboY9HfrARiiwj8KxG6sAuhH8V3FZ3++h5N9kIvqNJM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f1/6de2dc-ecd2-4af8-bb0a-3d08aabd5e9b/1/UtlINdtX9r4TjoZPWT7mrai4PtA.crl
rsync://rpki.ripe.net/repository/DEFAULT/f1/6de2dc-ecd2-4af8-bb0a-3d08aabd5e9b/1/UtlINdtX9r4TjoZPWT7mrai4PtA.mft
rsync://rpki.ripe.net/repository/DEFAULT/UtlINdtX9r4TjoZPWT7mrai4PtA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 15 Jun 2025 01:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:6d:06:72:39:73:82:a4:e1:71:54:30:d6:71:5f:bd:a0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=52d94835db57f6be138e864f593ee6ada8b83ed0
Validity
Not Before: Jun 14 06:00:28 2025 GMT
Not After : Jun 15 06:00:28 2025 GMT
Subject: CN=5cc89d6a0353aaa19bad6548ef96f53369e84b2c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:58:90:88:30:e3:c4:1c:94:99:44:da:2b:2d:
89:df:0e:c0:bc:39:f3:31:3d:88:6f:14:da:e6:fe:
a7:ab:02:56:88:01:44:66:9c:fc:65:a3:98:8c:c1:
75:5f:9a:3c:ff:26:9e:0d:ae:74:35:7e:66:0d:f8:
b8:01:b2:41:0f:3c:49:18:12:46:75:ae:5a:61:f1:
bf:61:1f:e4:36:11:b9:aa:9e:37:72:b5:85:55:fd:
a2:e2:4b:ac:01:3a:b1:71:94:9b:00:f1:f4:f4:8d:
2f:38:45:c6:1a:53:3b:2d:d2:ee:0c:21:51:e9:a0:
0a:a7:93:b1:84:c7:12:be:27:e4:5e:0b:ea:54:aa:
6d:6a:c5:4e:07:c5:46:16:8c:3d:22:8f:5e:d4:9f:
ee:be:e5:28:64:fb:d2:6d:f1:e1:30:27:c7:20:bc:
18:70:67:d4:d2:57:bc:db:5d:8b:79:53:60:6e:5f:
42:b8:58:62:cd:5a:6d:87:b9:80:d0:28:7c:bc:ce:
e8:17:9e:98:f3:65:f2:1a:93:fb:f4:6a:1d:42:f9:
a2:5e:f1:96:b0:9b:62:54:b3:38:0f:02:56:a6:76:
ac:41:28:cf:b7:63:fe:16:18:eb:87:16:0b:7a:99:
02:1d:6c:f2:18:67:e9:f7:b3:04:85:05:70:c8:37:
5f:8b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5C:C8:9D:6A:03:53:AA:A1:9B:AD:65:48:EF:96:F5:33:69:E8:4B:2C
X509v3 Authority Key Identifier:
keyid:52:D9:48:35:DB:57:F6:BE:13:8E:86:4F:59:3E:E6:AD:A8:B8:3E:D0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UtlINdtX9r4TjoZPWT7mrai4PtA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f1/6de2dc-ecd2-4af8-bb0a-3d08aabd5e9b/1/UtlINdtX9r4TjoZPWT7mrai4PtA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f1/6de2dc-ecd2-4af8-bb0a-3d08aabd5e9b/1/UtlINdtX9r4TjoZPWT7mrai4PtA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
12:97:27:2e:8b:4e:e3:61:32:31:14:9e:d2:d3:c9:dc:0c:e7:
cd:55:e5:6c:0b:e6:58:1e:08:47:70:23:7c:b3:8e:22:f8:5b:
b2:41:05:fc:b3:95:5a:1a:0e:26:0e:f3:26:8e:4e:69:8e:f5:
c8:7c:ba:3b:3e:55:6f:03:03:84:9d:c0:9b:ad:13:9d:97:51:
ad:bd:85:44:e2:f2:a8:85:eb:08:05:35:69:a3:13:e6:c9:e5:
75:5b:01:12:6a:4e:aa:c3:da:cb:d6:de:fb:09:bc:b5:7e:b7:
72:ac:6f:b6:d2:c7:ae:86:35:dd:5d:b8:93:8e:cf:58:e5:ab:
bb:90:d0:65:8f:bf:11:5e:3b:26:16:45:83:65:be:6a:e1:54:
10:a0:76:25:af:89:e6:7e:9f:d9:66:b7:59:5a:a6:0e:0f:c5:
6a:b5:e8:82:8a:9b:73:b2:a0:fc:01:aa:5c:90:46:4d:cf:c5:
da:57:9f:5d:96:10:bc:5d:63:cc:a0:19:97:96:0d:64:2b:5c:
ab:65:f5:68:77:2e:43:90:0e:bb:20:62:99:c6:44:76:69:2e:
d7:75:d9:f3:c7:3d:f3:0e:40:ac:1b:df:9f:61:69:30:41:d2:
b7:03:ba:c6:31:56:73:80:0a:28:da:48:1c:69:7a:00:7d:52:
e6:90:e0:c5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 14 11:09:42 2025 by rpki-client