Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f6/876a65-bf54-4652-8970-801cf4fec74e/1/U5UGCcqN1_bG-jzsrHeUIexsAQA.mft
File: U5UGCcqN1_bG-jzsrHeUIexsAQA.mft (raw, json)
Hash identifier: uY9yn6Qi/0K0xQJPn7aH14C4mem+v9u3nw6aYwNQo4s=
Subject key identifier: 43:EF:BC:27:F5:14:14:D4:E3:DE:36:BD:A4:F7:D1:74:C3:B7:5D:88
Authority key identifier: 53:95:06:09:CA:8D:D7:F6:C6:FA:3C:EC:AC:77:94:21:EC:6C:01:00
Certificate issuer: /CN=53950609ca8dd7f6c6fa3cecac779421ec6c0100
Certificate serial: 01976CCF6C94C5CE6A0813EC9C941BD56C6D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/U5UGCcqN1_bG-jzsrHeUIexsAQA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f6/876a65-bf54-4652-8970-801cf4fec74e/1/U5UGCcqN1_bG-jzsrHeUIexsAQA.mft
Manifest number: 0450
Signing time: Sat 14 Jun 2025 05:00:22 +0000
Manifest this update: Sat 14 Jun 2025 05:00:22 +0000
Manifest next update: Sun 15 Jun 2025 05:00:22 +0000
Files and hashes: 1: U5UGCcqN1_bG-jzsrHeUIexsAQA.crl (hash: yTDnWgs8YOKKJN9Abu5mGvFwc4fj2HqSCAViYeaxAd0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f6/876a65-bf54-4652-8970-801cf4fec74e/1/U5UGCcqN1_bG-jzsrHeUIexsAQA.crl
rsync://rpki.ripe.net/repository/DEFAULT/f6/876a65-bf54-4652-8970-801cf4fec74e/1/U5UGCcqN1_bG-jzsrHeUIexsAQA.mft
rsync://rpki.ripe.net/repository/DEFAULT/U5UGCcqN1_bG-jzsrHeUIexsAQA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 15 Jun 2025 01:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:6c:cf:6c:94:c5:ce:6a:08:13:ec:9c:94:1b:d5:6c:6d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=53950609ca8dd7f6c6fa3cecac779421ec6c0100
Validity
Not Before: Jun 14 05:00:22 2025 GMT
Not After : Jun 15 05:00:22 2025 GMT
Subject: CN=43efbc27f51414d4e3de36bda4f7d174c3b75d88
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:8b:a0:1b:d4:74:a7:e9:35:ce:57:54:93:69:
65:e1:34:25:43:30:34:25:80:ad:6e:42:35:01:21:
8c:f1:12:0d:fa:13:4e:14:e8:7e:e4:58:cf:83:de:
2d:8f:e5:15:e7:dc:81:0b:06:ca:8f:9a:0c:11:38:
e8:57:8b:02:b1:74:f2:ac:9d:85:28:06:1d:4e:83:
c1:9c:20:33:60:a2:c8:8a:38:55:b1:e3:7e:2e:2e:
aa:05:50:21:3c:7a:8a:37:a6:76:72:61:8d:7e:37:
01:a0:67:2f:c6:51:59:9c:90:6f:4d:35:ee:5d:3b:
b6:8c:90:8d:fd:0f:b6:04:76:e9:00:1d:78:70:b4:
44:cc:cf:e5:6a:f6:9f:fc:fe:aa:ca:c3:93:60:30:
1d:c7:a8:e1:ae:2d:45:2e:33:ec:6c:4f:db:58:fa:
25:61:ca:25:ea:25:44:e5:a2:b7:5d:b0:4d:5d:49:
0f:06:1c:65:02:98:b1:9d:57:68:5a:c6:cb:a2:32:
77:0e:ce:ce:53:00:7c:7a:7b:8c:68:c8:e0:d9:b0:
42:bd:b7:e5:24:e9:93:97:1b:d9:21:1d:03:ec:f9:
7c:66:cd:24:07:34:ee:fb:d4:df:7b:fd:61:88:e6:
de:48:a9:5a:94:64:19:d7:0c:06:a3:10:7d:c7:6f:
c6:8b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
43:EF:BC:27:F5:14:14:D4:E3:DE:36:BD:A4:F7:D1:74:C3:B7:5D:88
X509v3 Authority Key Identifier:
keyid:53:95:06:09:CA:8D:D7:F6:C6:FA:3C:EC:AC:77:94:21:EC:6C:01:00
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/U5UGCcqN1_bG-jzsrHeUIexsAQA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f6/876a65-bf54-4652-8970-801cf4fec74e/1/U5UGCcqN1_bG-jzsrHeUIexsAQA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f6/876a65-bf54-4652-8970-801cf4fec74e/1/U5UGCcqN1_bG-jzsrHeUIexsAQA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
33:fe:57:c1:47:9d:86:5b:7f:af:cf:4f:91:ad:cf:65:12:a7:
85:1d:44:c0:88:c6:ab:4c:f0:c6:f0:b2:d8:0e:6e:83:6f:12:
b9:df:09:fa:e3:60:35:8f:79:fb:28:9b:76:cd:2a:47:6b:1d:
e4:18:e4:91:a3:66:05:40:60:3e:47:48:1a:33:d1:14:26:06:
68:8e:bc:a9:c4:48:af:5c:03:b6:2b:59:b2:78:9a:ac:c0:72:
99:5f:cd:81:75:ad:d3:c5:cc:ad:5d:11:c3:b4:d3:01:23:23:
09:c6:3d:46:44:fb:ae:81:06:c2:73:11:84:ec:70:b4:01:ef:
7a:8f:57:3d:4b:8f:9a:a2:b7:e7:08:c7:28:5c:28:fa:5e:f6:
ff:e6:91:e7:2d:cf:1e:bd:b8:26:33:57:f5:d4:c9:37:be:82:
5a:19:8d:61:98:a4:42:c9:cb:53:26:6b:b7:53:08:ee:72:b8:
18:d6:dd:84:6a:1f:ea:c6:fd:09:ce:bc:56:f8:be:28:0e:dd:
31:f7:bc:e2:66:e6:09:04:f2:f0:2d:36:16:c9:26:6b:9d:aa:
fe:2a:e6:b4:80:39:df:6b:a2:77:fb:21:7f:d8:41:79:5f:2d:
5e:ec:c8:26:fc:59:aa:bd:35:0d:c5:3c:99:a2:a5:4c:0d:2c:
d1:b8:1b:5f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 14 12:13:28 2025 by rpki-client