Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/11/9ff86c-1f7b-4bc7-976a-dfb79bba1b68/1/uv5tfV8eRHjRoCUXHaawObJjAR8.mft
File: uv5tfV8eRHjRoCUXHaawObJjAR8.mft (raw, json)
Hash identifier: fLOx4Un+mz+d+/GJiAMLzEjyQI2PNlnntaYUJMNIORA=
Subject key identifier: 6A:41:40:31:61:9E:D7:3C:01:73:A2:E9:88:43:12:8D:51:CE:CB:7D
Authority key identifier: BA:FE:6D:7D:5F:1E:44:78:D1:A0:25:17:1D:A6:B0:39:B2:63:01:1F
Certificate issuer: /CN=bafe6d7d5f1e4478d1a025171da6b039b263011f
Certificate serial: 019921B1577C1E6CBA16CEC5042F19A2FED7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/uv5tfV8eRHjRoCUXHaawObJjAR8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/11/9ff86c-1f7b-4bc7-976a-dfb79bba1b68/1/uv5tfV8eRHjRoCUXHaawObJjAR8.mft
Manifest number: 0A14
Signing time: Sun 07 Sep 2025 01:01:34 +0000
Manifest this update: Sun 07 Sep 2025 01:01:34 +0000
Manifest next update: Mon 08 Sep 2025 01:01:34 +0000
Files and hashes: 1: uv5tfV8eRHjRoCUXHaawObJjAR8.crl (hash: DID6XlcjyyROPVFkGkltZ52ISAnOXtsO1vCxcW1dwSY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/11/9ff86c-1f7b-4bc7-976a-dfb79bba1b68/1/uv5tfV8eRHjRoCUXHaawObJjAR8.crl
rsync://rpki.ripe.net/repository/DEFAULT/11/9ff86c-1f7b-4bc7-976a-dfb79bba1b68/1/uv5tfV8eRHjRoCUXHaawObJjAR8.mft
rsync://rpki.ripe.net/repository/DEFAULT/uv5tfV8eRHjRoCUXHaawObJjAR8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 08 Sep 2025 01:01:34 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:21:b1:57:7c:1e:6c:ba:16:ce:c5:04:2f:19:a2:fe:d7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=bafe6d7d5f1e4478d1a025171da6b039b263011f
Validity
Not Before: Sep 7 01:01:34 2025 GMT
Not After : Sep 8 01:01:34 2025 GMT
Subject: CN=6a414031619ed73c0173a2e98843128d51cecb7d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:16:a3:04:82:ac:0e:6e:dc:6b:83:17:39:66:
95:be:e3:79:0e:9c:91:b4:50:93:cf:d4:9f:cf:8d:
12:05:62:23:75:20:ec:21:e3:21:bd:40:19:a1:18:
1c:1a:c5:2f:d3:a3:22:b3:42:c5:c6:82:26:77:cf:
9a:a1:2d:c2:1c:44:50:64:8d:6e:04:f2:ac:b5:4e:
de:67:24:1d:4c:b5:8a:3b:bd:1d:7a:25:8b:a1:68:
45:5c:75:0b:bb:cb:4d:fe:2b:e7:55:4a:2a:11:d3:
ad:93:63:a4:1f:ea:68:e9:40:8d:1c:d0:a7:aa:13:
cd:37:2b:82:df:74:f5:1b:be:73:53:0e:ca:3d:9d:
a3:a0:2b:16:21:ea:f6:6a:f2:30:a5:2b:49:ca:68:
6b:54:8d:de:a8:db:39:a3:9b:89:73:3b:86:3c:38:
0a:14:d2:eb:22:62:44:99:ad:fa:49:0c:d4:4e:0d:
e8:70:ef:aa:2a:28:0b:ad:d7:67:87:7b:ea:5f:d1:
9c:7f:bf:cf:15:02:71:0a:d4:d4:b4:75:a5:5a:e2:
8c:9d:d8:37:fc:74:fb:df:14:32:03:61:37:fb:f1:
28:79:e6:0f:fd:7c:e2:df:14:20:5d:59:1a:50:2c:
0c:d1:b8:ff:a2:e9:04:ea:ed:d6:03:6a:0d:9b:6e:
d9:ab
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6A:41:40:31:61:9E:D7:3C:01:73:A2:E9:88:43:12:8D:51:CE:CB:7D
X509v3 Authority Key Identifier:
keyid:BA:FE:6D:7D:5F:1E:44:78:D1:A0:25:17:1D:A6:B0:39:B2:63:01:1F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/uv5tfV8eRHjRoCUXHaawObJjAR8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/11/9ff86c-1f7b-4bc7-976a-dfb79bba1b68/1/uv5tfV8eRHjRoCUXHaawObJjAR8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/11/9ff86c-1f7b-4bc7-976a-dfb79bba1b68/1/uv5tfV8eRHjRoCUXHaawObJjAR8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
9a:24:28:9e:68:cc:69:3b:1a:9e:31:02:37:d1:dd:0f:2e:74:
82:54:b1:88:a1:86:e0:4b:9d:a3:46:8a:a2:01:2a:9f:79:ca:
63:a6:28:c9:85:88:37:92:b4:d8:6d:5f:31:bc:a8:64:aa:89:
92:87:a1:60:0a:12:4e:13:dc:4f:6a:84:1b:30:bc:6a:b0:df:
96:39:3c:6e:c3:6f:17:00:ba:a1:6d:77:19:e4:5c:11:52:77:
b5:d2:05:f0:2b:cd:6d:6e:58:e8:43:50:be:b8:c5:b1:ea:06:
8c:9d:bb:a6:00:d4:5d:f1:42:2a:1e:eb:90:dc:09:85:b2:0a:
cd:2e:cc:98:96:72:c0:80:84:8f:3e:5a:00:14:25:f5:0b:d5:
fb:b8:7f:92:c3:91:4b:2a:20:84:3e:dd:f8:7d:3e:67:89:4f:
4d:e9:0e:e9:4c:1f:b4:3e:91:ff:86:41:30:ab:dc:09:88:f8:
db:95:f0:60:95:18:ff:34:fc:df:ca:46:23:87:ac:ab:9b:15:
c7:61:7d:a6:a0:85:a4:96:79:78:2c:7b:1c:68:08:dd:d1:6e:
3c:82:7d:76:59:e1:91:45:bc:ec:d0:18:6b:2e:08:c2:10:78:
60:64:a9:1a:60:81:fb:13:5c:34:60:38:af:b6:c7:98:74:25:
c9:a9:19:ef
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Sep 7 10:11:35 2025 by rpki-client