Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2a/4f887e-3f6c-48a3-bb03-dfb946d17d0c/1/uRRTFbRMtl0qeRoK5YI2ZNDERF4.mft
File: uRRTFbRMtl0qeRoK5YI2ZNDERF4.mft (raw, json)
Hash identifier: WwiYd9+J7MwPZ+H5Ecd0b3/o4lAjfnEE3cz2PAFNQcQ=
Subject key identifier: 39:80:23:B2:86:0A:DA:C1:BA:DB:73:C9:49:B3:4E:1D:F1:6A:5B:EE
Authority key identifier: B9:14:53:15:B4:4C:B6:5D:2A:79:1A:0A:E5:82:36:64:D0:C4:44:5E
Certificate issuer: /CN=b9145315b44cb65d2a791a0ae5823664d0c4445e
Certificate serial: 0197488D14BF8F00FE39DBC98886BE5A3585
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/uRRTFbRMtl0qeRoK5YI2ZNDERF4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2a/4f887e-3f6c-48a3-bb03-dfb946d17d0c/1/uRRTFbRMtl0qeRoK5YI2ZNDERF4.mft
Manifest number: 1576
Signing time: Sat 07 Jun 2025 04:01:34 +0000
Manifest this update: Sat 07 Jun 2025 04:01:34 +0000
Manifest next update: Sun 08 Jun 2025 04:01:34 +0000
Files and hashes: 1: uRRTFbRMtl0qeRoK5YI2ZNDERF4.crl (hash: zKynAipoSBG2X9v5a4cje34piw/c2DFMuUczuIm0mqg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2a/4f887e-3f6c-48a3-bb03-dfb946d17d0c/1/uRRTFbRMtl0qeRoK5YI2ZNDERF4.crl
rsync://rpki.ripe.net/repository/DEFAULT/2a/4f887e-3f6c-48a3-bb03-dfb946d17d0c/1/uRRTFbRMtl0qeRoK5YI2ZNDERF4.mft
rsync://rpki.ripe.net/repository/DEFAULT/uRRTFbRMtl0qeRoK5YI2ZNDERF4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 07 Jun 2025 22:50:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:48:8d:14:bf:8f:00:fe:39:db:c9:88:86:be:5a:35:85
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b9145315b44cb65d2a791a0ae5823664d0c4445e
Validity
Not Before: Jun 7 04:01:34 2025 GMT
Not After : Jun 8 04:01:34 2025 GMT
Subject: CN=398023b2860adac1badb73c949b34e1df16a5bee
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:e8:b5:bd:da:80:26:7a:56:0c:fd:c7:19:2e:
7b:ef:61:bb:59:ee:1c:00:03:83:81:51:d2:1f:97:
9e:75:fc:d7:74:79:32:64:a7:be:f0:2a:88:29:e8:
4b:04:a1:59:a1:4f:f8:f0:73:c3:2d:6e:ff:12:12:
7d:16:4e:fd:f8:1e:f5:76:b0:20:82:06:e5:4f:20:
7e:79:8e:f5:ad:14:35:08:da:72:43:0a:8b:98:d3:
12:d5:45:f4:5f:65:20:f8:97:5b:cb:72:c1:fe:62:
35:a2:18:59:91:fd:5c:a2:b3:86:c7:04:b0:d3:9d:
30:33:0d:9f:8e:72:bf:a2:32:98:bf:7e:f9:30:32:
32:1d:5d:59:be:3d:0f:60:cb:dd:58:ae:00:06:60:
e5:b4:14:f1:f0:0d:ce:a9:d3:d4:3d:b0:86:57:a9:
c6:73:6c:72:d3:85:5b:bb:b1:37:84:b2:5a:fd:a9:
0b:fd:13:b0:66:4e:f9:ac:62:3b:26:10:38:c2:2e:
00:79:71:1a:78:4e:db:6e:7a:0b:86:ea:1a:84:8f:
36:89:8c:0e:f3:7d:3b:97:3e:32:ad:30:b9:85:c1:
f2:d0:f8:1e:f0:66:a2:84:53:86:ad:14:a7:c3:08:
60:ef:ad:42:2c:35:58:1a:91:e2:8d:dd:76:9f:b1:
0a:11
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
39:80:23:B2:86:0A:DA:C1:BA:DB:73:C9:49:B3:4E:1D:F1:6A:5B:EE
X509v3 Authority Key Identifier:
keyid:B9:14:53:15:B4:4C:B6:5D:2A:79:1A:0A:E5:82:36:64:D0:C4:44:5E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/uRRTFbRMtl0qeRoK5YI2ZNDERF4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2a/4f887e-3f6c-48a3-bb03-dfb946d17d0c/1/uRRTFbRMtl0qeRoK5YI2ZNDERF4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2a/4f887e-3f6c-48a3-bb03-dfb946d17d0c/1/uRRTFbRMtl0qeRoK5YI2ZNDERF4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
82:49:32:d3:d3:8b:a5:cb:8c:78:24:d9:44:d8:a9:e6:c1:e7:
1b:49:93:12:1b:6c:3c:fc:4e:c3:3c:44:14:7a:f2:11:56:c7:
86:ee:bf:bf:d4:75:1d:7f:36:5b:9e:11:6c:95:d4:55:8d:35:
0c:11:7c:ca:2f:f0:96:73:44:80:5e:77:86:34:f7:b8:fa:0c:
47:5c:9a:58:c4:a6:98:f0:15:52:cf:2b:43:f2:36:e8:d3:c9:
f5:1a:fe:39:25:04:ae:c0:78:59:f4:82:14:b6:29:f9:70:d7:
33:d7:de:bb:36:0c:a8:24:75:d6:0a:58:b9:c5:fb:e0:95:4d:
fb:8e:15:5d:1a:54:8d:71:6a:0f:4d:0f:ac:a7:a0:37:35:56:
a7:27:73:a5:fd:a4:41:0d:61:c5:4c:c8:65:12:ed:7d:50:cb:
4f:a6:2a:9b:0d:89:e7:28:e3:5a:ec:d0:1c:f3:71:50:da:f2:
3c:22:8b:1c:f7:a9:2e:fe:fa:95:b3:2a:f4:81:17:b3:62:7e:
00:91:46:ff:f5:21:9d:ee:8e:20:16:9a:18:c1:b7:85:36:39:
36:3b:60:e2:08:3e:94:d9:0c:05:9a:a6:d1:eb:d1:e2:8a:49:
78:36:d9:b0:26:51:c2:de:1c:79:db:f7:eb:8c:55:d8:af:c0:
2c:da:85:39
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 7 08:55:51 2025 by rpki-client