Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5a/23c0a9-68b1-40fd-a1e7-eb0885b9003e/1/uIF3qaNGnbOs8QqY9sA5MeNVFfo.mft
File: uIF3qaNGnbOs8QqY9sA5MeNVFfo.mft (raw, json)
Hash identifier: t6ul8z+ccW+RtRweiWoEi3DXzK5s52IRB1Ojg67yA9Q=
Subject key identifier: 70:3E:E8:0C:A5:39:36:35:E4:D5:D0:01:D4:92:ED:96:26:92:9D:02
Authority key identifier: B8:81:77:A9:A3:46:9D:B3:AC:F1:0A:98:F6:C0:39:31:E3:55:15:FA
Certificate issuer: /CN=b88177a9a3469db3acf10a98f6c03931e35515fa
Certificate serial: 019847E53B5A6B2DD20AF7A0C2B364440778
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/uIF3qaNGnbOs8QqY9sA5MeNVFfo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5a/23c0a9-68b1-40fd-a1e7-eb0885b9003e/1/uIF3qaNGnbOs8QqY9sA5MeNVFfo.mft
Manifest number: 0599
Signing time: Sat 26 Jul 2025 18:01:01 +0000
Manifest this update: Sat 26 Jul 2025 18:01:01 +0000
Manifest next update: Sun 27 Jul 2025 18:01:01 +0000
Files and hashes: 1: uIF3qaNGnbOs8QqY9sA5MeNVFfo.crl (hash: Dv24FHMmC4RKXl+DmG7MbU5KpAVE7xJ6rcnncGJKA50=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5a/23c0a9-68b1-40fd-a1e7-eb0885b9003e/1/uIF3qaNGnbOs8QqY9sA5MeNVFfo.crl
rsync://rpki.ripe.net/repository/DEFAULT/5a/23c0a9-68b1-40fd-a1e7-eb0885b9003e/1/uIF3qaNGnbOs8QqY9sA5MeNVFfo.mft
rsync://rpki.ripe.net/repository/DEFAULT/uIF3qaNGnbOs8QqY9sA5MeNVFfo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 27 Jul 2025 11:00:05 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:47:e5:3b:5a:6b:2d:d2:0a:f7:a0:c2:b3:64:44:07:78
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b88177a9a3469db3acf10a98f6c03931e35515fa
Validity
Not Before: Jul 26 18:01:01 2025 GMT
Not After : Jul 27 18:01:01 2025 GMT
Subject: CN=703ee80ca5393635e4d5d001d492ed9626929d02
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:87:13:d9:20:9d:a1:3c:a3:e4:b5:a0:98:56:
0c:26:4d:56:8a:ae:aa:41:44:01:35:21:46:d0:76:
22:09:dc:2b:8b:28:1b:ba:f4:1d:93:97:ea:4e:e9:
7f:c4:97:dc:92:8e:92:7a:1d:c1:8a:ef:3d:d6:8c:
6a:d4:46:00:3a:95:4c:1f:51:26:6a:2b:23:65:fa:
45:c9:26:bb:bd:98:23:f5:4b:e3:17:21:3f:3a:c8:
02:f4:6b:30:6d:6f:f2:97:27:4d:b7:e8:01:68:95:
dd:a0:be:d6:5c:16:33:ca:66:45:f6:b2:fa:25:bf:
b3:ca:9f:bb:83:a8:be:8c:4c:16:9f:eb:a3:57:9f:
62:46:bf:a3:af:cb:c7:5f:9a:0d:f7:5e:57:60:25:
0c:07:9a:74:7a:6f:1a:82:ee:12:a6:8a:3b:85:f7:
63:02:01:6a:5c:1e:68:8a:cd:72:be:74:ee:2e:81:
81:6a:fa:51:30:d8:b1:26:2f:2a:5b:ba:d7:ea:2f:
03:35:7a:98:c1:0a:83:9e:99:3e:31:05:92:d9:e6:
8b:65:b2:a3:73:d2:cc:db:53:5e:28:0c:46:5b:e7:
7e:57:dd:7d:9e:94:08:ea:27:66:cb:73:35:dc:61:
97:94:85:48:a8:b1:01:e2:89:46:64:8b:c7:0f:66:
6d:cf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
70:3E:E8:0C:A5:39:36:35:E4:D5:D0:01:D4:92:ED:96:26:92:9D:02
X509v3 Authority Key Identifier:
keyid:B8:81:77:A9:A3:46:9D:B3:AC:F1:0A:98:F6:C0:39:31:E3:55:15:FA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/uIF3qaNGnbOs8QqY9sA5MeNVFfo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/23c0a9-68b1-40fd-a1e7-eb0885b9003e/1/uIF3qaNGnbOs8QqY9sA5MeNVFfo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/23c0a9-68b1-40fd-a1e7-eb0885b9003e/1/uIF3qaNGnbOs8QqY9sA5MeNVFfo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
1e:dc:af:97:51:f8:96:21:ad:fc:16:e5:06:9f:5d:81:ce:3d:
95:17:83:f3:37:47:26:68:2c:6b:40:dd:22:08:7f:af:85:b3:
35:bf:b7:d4:47:17:51:f0:ef:15:17:fc:fe:8a:1f:e7:a7:cc:
84:1a:8d:69:e2:6f:ed:74:1c:d4:30:89:e7:cf:6a:58:1c:86:
72:dc:55:20:96:5e:44:9e:72:cc:a0:6b:ff:0d:a7:b8:01:fe:
3c:3e:0b:04:d0:ac:7b:bf:5b:ae:20:74:d9:3c:fd:a0:97:a8:
58:f4:02:4a:71:e5:a9:bd:e8:31:35:e1:0c:65:f6:f6:47:b3:
04:9b:5f:a3:60:5e:ea:1b:77:de:9f:cb:01:f8:1f:cd:b3:58:
87:9e:a3:0a:26:f4:55:29:65:e9:1e:62:50:e7:39:c5:43:e7:
34:6e:13:aa:a6:fe:83:fd:d6:b4:c9:18:cd:ce:e9:85:f5:ac:
d8:38:0b:fe:a4:df:aa:fd:b6:e2:82:98:65:f0:82:3a:12:0f:
f8:66:11:f0:72:73:81:f6:4f:95:e9:b3:55:d5:b9:6a:c3:80:
22:f2:c3:3a:4e:17:98:dc:45:4b:83:1c:cf:ae:33:4e:ba:68:
a6:2a:c6:6d:21:3c:fc:a1:a0:5a:7f:4f:0a:14:cc:35:a7:06:
30:65:72:f0
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZhH5Ttaay3SCvegwrNkRAd4MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGI4ODE3N2E5YTM0NjlkYjNhY2YxMGE5OGY2YzAzOTMxZTM1
NTE1ZmEwHhcNMjUwNzI2MTgwMTAxWhcNMjUwNzI3MTgwMTAxWjAzMTEwLwYDVQQD
Eyg3MDNlZTgwY2E1MzkzNjM1ZTRkNWQwMDFkNDkyZWQ5NjI2OTI5ZDAyMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtocT2SCdoTyj5LWgmFYMJk1Wiq6q
QUQBNSFG0HYiCdwriygbuvQdk5fqTul/xJfcko6Seh3Biu891oxq1EYAOpVMH1Em
aisjZfpFySa7vZgj9UvjFyE/OsgC9GswbW/ylydNt+gBaJXdoL7WXBYzymZF9rL6
Jb+zyp+7g6i+jEwWn+ujV59iRr+jr8vHX5oN915XYCUMB5p0em8agu4Spoo7hfdj
AgFqXB5ois1yvnTuLoGBavpRMNixJi8qW7rX6i8DNXqYwQqDnpk+MQWS2eaLZbKj
c9LM21NeKAxGW+d+V919npQI6idmy3M13GGXlIVIqLEB4olGZIvHD2ZtzwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFHA+6AylOTY15NXQAdSS7ZYmkp0CMB8GA1UdIwQY
MBaAFLiBd6mjRp2zrPEKmPbAOTHjVRX6MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvdUlGM3FhTkduYk9zOFFxWTlzQTVNZU5WRmZvLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81YS8yM2MwYTktNjhiMS00MGZkLWExZTct
ZWIwODg1YjkwMDNlLzEvdUlGM3FhTkduYk9zOFFxWTlzQTVNZU5WRmZvLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC81YS8yM2MwYTktNjhiMS00MGZkLWExZTctZWIwODg1YjkwMDNl
LzEvdUlGM3FhTkduYk9zOFFxWTlzQTVNZU5WRmZvLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAHtyvl1H4
liGt/BblBp9dgc49lReD8zdHJmgsa0DdIgh/r4WzNb+31EcXUfDvFRf8/oof56fM
hBqNaeJv7XQc1DCJ589qWByGctxVIJZeRJ5yzKBr/w2nuAH+PD4LBNCse79briB0
2Tz9oJeoWPQCSnHlqb3oMTXhDGX29kezBJtfo2Be6ht33p/LAfgfzbNYh56jCib0
VSll6R5iUOc5xUPnNG4Tqqb+g/3WtMkYzc7phfWs2DgL/qTfqv224oKYZfCCOhIP
+GYR8HJzgfZPlemzVdW5asOAIvLDOk4XmNxFS4Mcz64zTrpopirGbSE8/KGgWn9P
ChTMNacGMGVy8A==
-----END CERTIFICATE-----
Generated at Sat Jul 26 20:53:47 2025 by rpki-client