Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e3/fa4e30-fd64-486a-bb62-044c32531ad3/1/U6PE7mcNzqaLTXnqbDGF_gKdl7Y.mft
File: U6PE7mcNzqaLTXnqbDGF_gKdl7Y.mft (raw, json)
Hash identifier: Khsx0Yp341AhgE5kuvYbFgwnzdznh/kXf6ZF9QUNsHg=
Subject key identifier: 79:80:15:74:2C:58:9D:2D:AE:B0:17:19:6C:FE:16:4A:A9:05:F4:B7
Authority key identifier: 53:A3:C4:EE:67:0D:CE:A6:8B:4D:79:EA:6C:31:85:FE:02:9D:97:B6
Certificate issuer: /CN=53a3c4ee670dcea68b4d79ea6c3185fe029d97b6
Certificate serial: 01984A09C2689E64CDC044A5ED5CA0F96907
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/U6PE7mcNzqaLTXnqbDGF_gKdl7Y.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e3/fa4e30-fd64-486a-bb62-044c32531ad3/1/U6PE7mcNzqaLTXnqbDGF_gKdl7Y.mft
Manifest number: 1324
Signing time: Sun 27 Jul 2025 04:00:10 +0000
Manifest this update: Sun 27 Jul 2025 04:00:10 +0000
Manifest next update: Mon 28 Jul 2025 04:00:10 +0000
Files and hashes: 1: U6PE7mcNzqaLTXnqbDGF_gKdl7Y.crl (hash: 2bNqkVvud5mFdbcsi3N0eKBKUFQEX5XDGCMsMRwMuWo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e3/fa4e30-fd64-486a-bb62-044c32531ad3/1/U6PE7mcNzqaLTXnqbDGF_gKdl7Y.crl
rsync://rpki.ripe.net/repository/DEFAULT/e3/fa4e30-fd64-486a-bb62-044c32531ad3/1/U6PE7mcNzqaLTXnqbDGF_gKdl7Y.mft
rsync://rpki.ripe.net/repository/DEFAULT/U6PE7mcNzqaLTXnqbDGF_gKdl7Y.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 28 Jul 2025 00:00:05 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:4a:09:c2:68:9e:64:cd:c0:44:a5:ed:5c:a0:f9:69:07
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=53a3c4ee670dcea68b4d79ea6c3185fe029d97b6
Validity
Not Before: Jul 27 04:00:10 2025 GMT
Not After : Jul 28 04:00:10 2025 GMT
Subject: CN=798015742c589d2daeb017196cfe164aa905f4b7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:7b:f7:4b:8a:b7:29:af:34:9a:7d:9d:1e:f8:
a4:89:71:76:11:ad:a1:39:30:c4:55:cb:97:de:4a:
29:16:b5:66:27:8f:78:92:d3:9e:3c:b3:0a:70:fd:
79:fc:6c:33:f0:a7:47:28:c4:49:06:dd:f4:93:76:
1b:d5:99:e0:14:c2:c0:0d:e8:80:01:9c:fc:7b:06:
2e:82:d1:2c:92:28:e7:5c:ff:0e:ec:18:b6:da:32:
53:52:cf:0e:6c:b8:31:14:69:8f:e0:eb:f5:39:7e:
c7:da:3c:2a:97:a2:0e:e3:d8:e9:52:e2:be:08:88:
b7:ce:cf:ac:2e:e7:a0:ee:eb:7a:45:60:99:b0:3f:
3a:c3:34:27:1c:b0:17:04:3f:89:4d:00:f1:f5:24:
d7:aa:7c:47:d8:4d:b1:e7:41:8f:7b:64:6e:dc:44:
fa:4f:ef:06:1f:f7:6c:1d:08:85:de:18:cd:c2:fc:
d6:34:e6:f4:fb:d3:c9:a7:e6:1a:c3:05:ab:9f:d6:
88:e7:dd:98:c7:f9:4c:b9:da:0f:e2:68:48:a0:db:
a0:9b:d0:a9:8b:19:ef:2d:12:29:3b:91:b1:bd:cf:
36:ce:c0:44:8b:04:d3:e9:87:8d:6b:9a:95:d0:7a:
94:eb:85:80:9c:cc:85:2b:e5:a0:f1:f0:56:ff:40:
74:55
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
79:80:15:74:2C:58:9D:2D:AE:B0:17:19:6C:FE:16:4A:A9:05:F4:B7
X509v3 Authority Key Identifier:
keyid:53:A3:C4:EE:67:0D:CE:A6:8B:4D:79:EA:6C:31:85:FE:02:9D:97:B6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/U6PE7mcNzqaLTXnqbDGF_gKdl7Y.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e3/fa4e30-fd64-486a-bb62-044c32531ad3/1/U6PE7mcNzqaLTXnqbDGF_gKdl7Y.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e3/fa4e30-fd64-486a-bb62-044c32531ad3/1/U6PE7mcNzqaLTXnqbDGF_gKdl7Y.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
2a:31:cc:64:02:63:cd:de:dc:b4:ac:82:2c:4b:fd:a5:77:06:
a8:83:f7:84:7b:7d:e3:4e:00:6d:d0:15:a7:90:6b:f7:3c:56:
ba:2b:0b:75:11:86:95:5d:5c:49:11:82:9f:15:42:78:31:a2:
8c:1c:e7:8f:c0:f5:29:9c:ca:a6:c3:c3:da:8b:cf:e1:2c:0f:
1e:04:b3:87:be:bf:1e:2f:b5:ca:4b:ba:d7:dd:34:39:d6:0a:
00:cf:bb:8b:86:0f:2b:80:15:ab:ba:d4:f8:08:51:03:9c:67:
9f:bb:c3:ff:1c:2d:9e:e5:4a:83:36:5d:1f:ae:32:e4:fa:ea:
71:8c:c6:3e:2a:5e:36:17:d2:b7:d4:a1:0d:15:56:0b:af:f4:
e3:36:79:e9:31:13:e0:ad:f2:5d:39:f8:87:90:b3:2c:a4:8c:
04:42:da:78:55:06:38:9f:81:7f:00:c1:f7:c8:17:17:e8:86:
6d:be:6e:0d:54:95:98:f6:86:78:a7:de:e4:65:12:e2:8e:f5:
4a:7b:8a:e4:5a:f4:9f:26:9e:97:5e:dd:9d:7b:df:68:0b:f8:
3b:79:fa:be:34:91:b9:53:f0:65:2a:5b:88:8c:1d:4b:13:d9:
a4:b5:b1:6b:b5:12:a5:5a:53:d2:d2:94:4e:ba:de:58:02:ca:
06:b0:8d:8d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jul 27 08:27:18 2025 by rpki-client