Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f1/6de2dc-ecd2-4af8-bb0a-3d08aabd5e9b/1/UtlINdtX9r4TjoZPWT7mrai4PtA.mft
File: UtlINdtX9r4TjoZPWT7mrai4PtA.mft (raw, json)
Hash identifier: 7fbXeTmvKDc1vJ6TAjX2303Y8tGYMHZcuCWv8Cr2kZE=
Subject key identifier: C0:83:43:7D:1C:B6:22:71:B8:4A:DE:C0:A1:99:36:BD:1E:86:EA:DD
Authority key identifier: 52:D9:48:35:DB:57:F6:BE:13:8E:86:4F:59:3E:E6:AD:A8:B8:3E:D0
Certificate issuer: /CN=52d94835db57f6be138e864f593ee6ada8b83ed0
Certificate serial: 019881670389E637E453A5F4190A4D4A27CA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UtlINdtX9r4TjoZPWT7mrai4PtA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f1/6de2dc-ecd2-4af8-bb0a-3d08aabd5e9b/1/UtlINdtX9r4TjoZPWT7mrai4PtA.mft
Manifest number: D2
Signing time: Wed 06 Aug 2025 22:01:08 +0000
Manifest this update: Wed 06 Aug 2025 22:01:08 +0000
Manifest next update: Thu 07 Aug 2025 22:01:08 +0000
Files and hashes: 1: UtlINdtX9r4TjoZPWT7mrai4PtA.crl (hash: 0QlqDRjW0CztH3LpjTrr/UU0/tVhww2dcO63L0uDDvk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f1/6de2dc-ecd2-4af8-bb0a-3d08aabd5e9b/1/UtlINdtX9r4TjoZPWT7mrai4PtA.crl
rsync://rpki.ripe.net/repository/DEFAULT/f1/6de2dc-ecd2-4af8-bb0a-3d08aabd5e9b/1/UtlINdtX9r4TjoZPWT7mrai4PtA.mft
rsync://rpki.ripe.net/repository/DEFAULT/UtlINdtX9r4TjoZPWT7mrai4PtA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 07 Aug 2025 20:46:39 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:81:67:03:89:e6:37:e4:53:a5:f4:19:0a:4d:4a:27:ca
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=52d94835db57f6be138e864f593ee6ada8b83ed0
Validity
Not Before: Aug 6 22:01:08 2025 GMT
Not After : Aug 7 22:01:08 2025 GMT
Subject: CN=c083437d1cb62271b84adec0a19936bd1e86eadd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:98:8e:6a:82:cd:47:64:50:1e:b9:f5:d8:71:93:
6b:c6:7c:98:c3:05:62:af:60:bf:be:59:80:ba:de:
4e:c2:f5:d8:0e:b9:de:03:2c:60:09:8b:14:fb:01:
78:80:5b:d3:42:35:e8:bc:99:29:38:39:08:7a:82:
6d:68:c2:9e:fc:d0:64:40:4f:f4:d2:0f:66:d9:1e:
7c:4e:a9:49:77:86:4e:8a:0d:60:9c:2c:97:3d:20:
50:dc:80:38:91:19:24:4d:5c:c4:18:f0:76:48:63:
ec:ab:2a:27:a1:3e:8a:22:d0:a6:8e:1e:b1:6a:c9:
6b:e1:bc:d4:48:22:82:53:5e:c9:8e:2f:4c:5d:fa:
87:86:22:f1:1e:43:ab:1b:37:5f:47:27:cc:80:ae:
22:f5:05:fa:ac:79:3d:46:2f:19:c0:e6:24:a0:5b:
c3:16:29:8b:76:11:4e:af:01:73:1c:d1:b4:ac:67:
ab:cb:20:b5:33:2c:21:13:11:12:4d:93:97:a6:28:
44:0a:22:a6:14:97:9b:14:55:c0:a2:8b:cb:f4:d7:
15:f4:08:cc:e2:a4:81:57:ef:2f:c0:31:41:87:ba:
15:5f:00:ce:31:c7:9f:3e:48:14:44:6b:9b:ec:da:
98:ae:b2:8a:58:ad:d0:08:3c:a9:93:90:9c:28:cf:
60:c9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C0:83:43:7D:1C:B6:22:71:B8:4A:DE:C0:A1:99:36:BD:1E:86:EA:DD
X509v3 Authority Key Identifier:
keyid:52:D9:48:35:DB:57:F6:BE:13:8E:86:4F:59:3E:E6:AD:A8:B8:3E:D0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UtlINdtX9r4TjoZPWT7mrai4PtA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f1/6de2dc-ecd2-4af8-bb0a-3d08aabd5e9b/1/UtlINdtX9r4TjoZPWT7mrai4PtA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f1/6de2dc-ecd2-4af8-bb0a-3d08aabd5e9b/1/UtlINdtX9r4TjoZPWT7mrai4PtA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
0c:a1:fd:a6:72:27:c4:7a:a5:5d:b9:e8:64:e8:47:9a:ff:3d:
22:da:9f:82:69:41:59:06:aa:60:92:cc:73:df:db:4c:ab:81:
ba:e3:45:f4:54:7d:ec:98:b2:31:a8:57:b5:9b:85:72:63:27:
e0:33:de:c7:b9:79:4d:bb:0e:89:5e:4d:59:f4:3e:db:ef:84:
b4:5b:05:dd:12:f1:1d:b8:e0:33:90:4d:0c:67:04:b8:47:58:
ad:cf:2e:d7:8a:19:cd:35:f9:0d:08:e7:d5:ba:92:ad:6b:de:
e8:e1:5a:7e:69:6c:63:78:1d:40:e2:14:c8:2b:c0:c7:af:b3:
1d:7a:fd:02:c4:29:90:90:d5:69:e6:9d:62:ac:68:de:e0:e5:
24:a4:a8:a6:9f:f9:04:b3:1a:6c:21:ce:0c:6c:53:d9:d9:e5:
e3:2e:a8:e6:5c:10:ea:80:54:60:94:e1:1a:11:36:03:1c:18:
2f:86:1d:7c:2d:7b:96:a6:ae:0d:67:a7:34:a6:ba:5f:98:4f:
d6:b9:42:c3:60:76:53:3c:bc:8d:bd:95:00:78:20:80:93:ee:
fa:a9:fa:48:16:1e:e5:57:b9:96:1f:ce:bd:14:86:1e:5e:bd:
11:7f:cc:be:a2:bc:5c:9c:be:18:da:61:b3:8b:d0:45:9a:83:
ae:fa:29:09
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Aug 7 00:26:36 2025 by rpki-client