Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fc/fd3429-4524-4fcf-9592-2996d8fb697e/1/a1a9UK-T9GN-LAfi7EAya8ZABSc.mft
File: a1a9UK-T9GN-LAfi7EAya8ZABSc.mft (raw, json)
Hash identifier: bNDeq0ild7yYVd9O0lRYr7hw5gnzqR/QuVXLpi3pDSA=
Subject key identifier: 35:DD:3E:05:F1:DA:28:90:A6:89:E0:F9:33:17:5B:8B:C3:46:7E:8F
Authority key identifier: 6B:56:BD:50:AF:93:F4:63:7E:2C:07:E2:EC:40:32:6B:C6:40:05:27
Certificate issuer: /CN=6b56bd50af93f4637e2c07e2ec40326bc6400527
Certificate serial: 019787A2364FB047E9F9131A43184EEF79CA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/a1a9UK-T9GN-LAfi7EAya8ZABSc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fc/fd3429-4524-4fcf-9592-2996d8fb697e/1/a1a9UK-T9GN-LAfi7EAya8ZABSc.mft
Manifest number: 01F9
Signing time: Thu 19 Jun 2025 10:00:44 +0000
Manifest this update: Thu 19 Jun 2025 10:00:44 +0000
Manifest next update: Fri 20 Jun 2025 10:00:44 +0000
Files and hashes: 1: a1a9UK-T9GN-LAfi7EAya8ZABSc.crl (hash: Ps1kqVQKXlK/GJCPsYYUsmoyK69CkRCHEq7C1LsNaks=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/fc/fd3429-4524-4fcf-9592-2996d8fb697e/1/a1a9UK-T9GN-LAfi7EAya8ZABSc.crl
rsync://rpki.ripe.net/repository/DEFAULT/fc/fd3429-4524-4fcf-9592-2996d8fb697e/1/a1a9UK-T9GN-LAfi7EAya8ZABSc.mft
rsync://rpki.ripe.net/repository/DEFAULT/a1a9UK-T9GN-LAfi7EAya8ZABSc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 20 Jun 2025 10:00:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:87:a2:36:4f:b0:47:e9:f9:13:1a:43:18:4e:ef:79:ca
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6b56bd50af93f4637e2c07e2ec40326bc6400527
Validity
Not Before: Jun 19 10:00:44 2025 GMT
Not After : Jun 20 10:00:44 2025 GMT
Subject: CN=35dd3e05f1da2890a689e0f933175b8bc3467e8f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:a0:8e:37:3d:fe:9f:a0:39:2a:3b:5c:d2:75:
96:63:3c:f5:1d:d1:09:34:13:03:66:09:83:7c:a1:
8a:0b:a2:03:8d:61:52:18:ef:77:f9:94:77:ad:e1:
7b:5d:b1:b1:1e:d9:74:21:77:69:a1:41:3b:ab:2a:
fc:79:19:62:52:bb:ef:50:56:bc:ce:cb:53:7a:cf:
e4:c9:4c:13:81:b2:3d:98:95:37:24:ab:a9:84:f5:
df:c4:1d:ae:9c:26:97:f9:6e:f7:93:bf:47:92:44:
bf:4b:50:0b:5f:21:5a:f4:73:10:aa:23:9b:5b:5c:
c6:cc:d5:bd:df:c5:06:f0:9a:03:e4:d8:49:3f:92:
4c:60:bc:cb:61:f2:f2:e8:9f:e7:88:63:01:da:66:
74:4a:6e:7c:ee:4b:01:74:9c:87:90:11:52:7d:13:
ca:13:23:9b:7a:c4:aa:d7:4f:99:c8:ca:86:ae:85:
2a:c7:9e:50:25:68:0b:81:01:8a:24:24:af:c5:d9:
f8:6b:97:e4:9a:54:22:fe:1f:82:16:d3:be:fa:51:
2a:df:b8:c4:52:e9:27:10:dd:80:ff:35:e9:f2:43:
be:28:0c:05:52:d9:c9:ea:ab:13:f6:11:ec:5c:be:
9d:bd:93:24:64:19:24:28:ef:a0:11:86:20:a4:fe:
f8:c1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
35:DD:3E:05:F1:DA:28:90:A6:89:E0:F9:33:17:5B:8B:C3:46:7E:8F
X509v3 Authority Key Identifier:
keyid:6B:56:BD:50:AF:93:F4:63:7E:2C:07:E2:EC:40:32:6B:C6:40:05:27
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/a1a9UK-T9GN-LAfi7EAya8ZABSc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fc/fd3429-4524-4fcf-9592-2996d8fb697e/1/a1a9UK-T9GN-LAfi7EAya8ZABSc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fc/fd3429-4524-4fcf-9592-2996d8fb697e/1/a1a9UK-T9GN-LAfi7EAya8ZABSc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
3b:07:65:ac:b8:09:5d:30:37:23:54:4c:49:7f:97:c3:a5:2d:
27:aa:c5:ce:c0:40:bf:c5:7d:00:7a:d0:64:f2:b3:6d:e2:a2:
21:cb:9d:a6:82:80:97:f5:73:f2:b9:fe:fd:d7:c0:87:48:10:
f3:01:67:7a:9f:70:bb:36:72:cf:28:b1:f4:8b:3d:48:92:27:
f1:92:2c:c7:99:73:75:53:39:ae:01:25:29:bc:35:67:3f:21:
40:b5:9d:ce:20:65:aa:f9:4a:c9:e2:b8:f1:e6:fa:09:09:fe:
b0:00:02:29:82:9b:f7:37:68:a5:6e:ce:89:69:ad:a0:de:f5:
77:b4:df:57:34:56:a7:24:df:eb:15:06:4b:3a:a4:bb:22:10:
bf:62:31:63:b8:89:e6:d5:7f:bc:3d:c3:f5:42:26:43:be:27:
cc:41:76:74:48:00:99:d1:74:9c:36:63:0e:75:3b:01:6b:28:
8b:3a:20:0e:cd:1b:94:af:a4:12:57:f8:a0:e2:02:5b:e9:fd:
75:bf:bf:43:ba:18:07:76:16:fa:0c:40:8e:4e:25:2c:ed:c8:
6e:46:37:ed:bf:cf:85:00:45:a3:bd:da:72:47:41:59:01:30:
d5:8f:5b:fe:c7:0b:ae:4e:f0:6c:a3:ba:97:23:09:a6:49:78:
5a:d1:2e:43
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 19 16:09:28 2025 by rpki-client