Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2a/4f887e-3f6c-48a3-bb03-dfb946d17d0c/1/uRRTFbRMtl0qeRoK5YI2ZNDERF4.mft
File: uRRTFbRMtl0qeRoK5YI2ZNDERF4.mft (raw, json)
Hash identifier: IYJE9789Y0kaHhvcXVwT/JDkM+LsrLlxF0ZVSC2+9Vk=
Subject key identifier: D0:99:81:1F:0A:B9:FF:8D:6A:F1:E5:5D:59:45:A6:78:B4:9D:F3:A0
Authority key identifier: B9:14:53:15:B4:4C:B6:5D:2A:79:1A:0A:E5:82:36:64:D0:C4:44:5E
Certificate issuer: /CN=b9145315b44cb65d2a791a0ae5823664d0c4445e
Certificate serial: 019921B27B28B8D3E0DB322CEFE16FFF20CA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/uRRTFbRMtl0qeRoK5YI2ZNDERF4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2a/4f887e-3f6c-48a3-bb03-dfb946d17d0c/1/uRRTFbRMtl0qeRoK5YI2ZNDERF4.mft
Manifest number: 166B
Signing time: Sun 07 Sep 2025 01:02:48 +0000
Manifest this update: Sun 07 Sep 2025 01:02:48 +0000
Manifest next update: Mon 08 Sep 2025 01:02:48 +0000
Files and hashes: 1: uRRTFbRMtl0qeRoK5YI2ZNDERF4.crl (hash: NpRgB2zwZ5nbqNRrSaFxWc7khefQku2MT2pPyk0ejaA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2a/4f887e-3f6c-48a3-bb03-dfb946d17d0c/1/uRRTFbRMtl0qeRoK5YI2ZNDERF4.crl
rsync://rpki.ripe.net/repository/DEFAULT/2a/4f887e-3f6c-48a3-bb03-dfb946d17d0c/1/uRRTFbRMtl0qeRoK5YI2ZNDERF4.mft
rsync://rpki.ripe.net/repository/DEFAULT/uRRTFbRMtl0qeRoK5YI2ZNDERF4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 08 Sep 2025 01:02:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:21:b2:7b:28:b8:d3:e0:db:32:2c:ef:e1:6f:ff:20:ca
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b9145315b44cb65d2a791a0ae5823664d0c4445e
Validity
Not Before: Sep 7 01:02:48 2025 GMT
Not After : Sep 8 01:02:48 2025 GMT
Subject: CN=d099811f0ab9ff8d6af1e55d5945a678b49df3a0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:0e:c6:37:70:11:4b:86:91:12:37:9f:4b:14:
1d:fb:c5:2e:ec:d4:7d:d1:70:09:dc:d9:c4:c4:7c:
ce:d4:e2:56:83:9a:ac:4e:1a:dc:0c:cd:90:b5:d8:
59:27:66:6a:57:54:22:55:c2:8f:c5:d4:61:20:12:
74:65:ca:a0:04:fd:27:40:cb:11:1c:33:82:9e:d6:
56:8d:d4:78:9d:1d:b8:a8:b1:10:12:c8:77:c0:68:
f7:aa:20:9c:7e:42:57:4e:3d:d3:7f:13:f3:a4:81:
ba:db:37:36:ef:8c:2f:96:7c:6e:c2:64:52:ba:71:
7a:a7:a8:5f:b5:0e:d3:18:f0:1c:c6:b0:d6:42:95:
4c:eb:f5:86:6b:91:13:a6:48:d3:dd:9b:df:06:98:
68:d2:af:2b:31:b4:4b:2b:a3:2b:57:6b:b8:5a:4d:
03:c3:1b:63:ff:ad:00:83:63:72:0b:88:e2:a9:cc:
be:20:15:19:4a:a8:41:55:16:22:34:4d:07:57:0a:
dc:93:68:ae:51:c0:62:5e:8d:bc:86:24:fa:95:12:
42:6b:73:cd:fd:06:15:84:43:c1:43:98:29:e8:d5:
59:53:04:93:40:19:16:1b:1d:fd:7e:09:b0:1c:6a:
fd:da:99:a6:1d:e5:57:13:c2:16:ae:40:c7:34:29:
97:23
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D0:99:81:1F:0A:B9:FF:8D:6A:F1:E5:5D:59:45:A6:78:B4:9D:F3:A0
X509v3 Authority Key Identifier:
keyid:B9:14:53:15:B4:4C:B6:5D:2A:79:1A:0A:E5:82:36:64:D0:C4:44:5E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/uRRTFbRMtl0qeRoK5YI2ZNDERF4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2a/4f887e-3f6c-48a3-bb03-dfb946d17d0c/1/uRRTFbRMtl0qeRoK5YI2ZNDERF4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2a/4f887e-3f6c-48a3-bb03-dfb946d17d0c/1/uRRTFbRMtl0qeRoK5YI2ZNDERF4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
81:3f:c7:a2:96:0d:ca:97:79:b9:ec:68:87:4b:90:f9:19:87:
d3:21:df:18:e2:31:38:67:70:a8:e3:6a:e8:9d:3c:06:b0:a7:
e7:8f:1c:2f:63:ed:3f:82:25:d6:60:a7:05:aa:93:95:53:ab:
57:d2:72:3c:6b:2f:bb:e9:3b:dc:58:72:db:11:16:e6:8f:79:
0e:a6:f3:fb:de:49:48:4d:37:4c:46:8e:8a:83:a2:de:77:5d:
4d:f2:b5:b7:47:9c:18:6a:8f:e4:4c:46:a2:82:09:46:45:8f:
44:1c:0a:3f:b2:55:2d:eb:fa:4b:cb:5c:0d:f3:38:2d:4e:9f:
51:fd:4a:d1:8c:80:83:07:04:ca:4d:8d:08:fa:b1:15:58:46:
50:17:a6:b9:55:71:21:77:7c:10:8b:f7:80:b7:ba:d6:14:f0:
b8:f0:a7:3c:16:ed:37:06:c4:c5:a8:87:8c:1f:59:d5:26:a9:
52:b0:98:6c:a8:b4:01:3c:9a:0e:f1:d5:18:20:2d:4f:17:46:
2b:69:f6:08:dd:11:05:69:1b:70:41:78:f6:7a:98:1d:69:9f:
f3:5b:c2:d9:5b:3b:70:41:00:a8:15:41:64:d4:99:43:d2:87:
68:d0:00:79:b1:f5:9b:a4:42:1e:22:ab:5d:23:62:bb:a2:a5:
75:3e:ea:d2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Sep 7 11:39:03 2025 by rpki-client