
Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5a/a24095-0908-4884-9244-95d59465e9a8/1/2UKEuUMl9QYPig6Hwb4oJ3iPGPk.mft
File: 2UKEuUMl9QYPig6Hwb4oJ3iPGPk.mft (raw, json)
Hash identifier: bJb2NrUXrukRakqJ5l6G4j5YSw3bMDXyicTgw6gHQeI=
Subject key identifier: 3D:F7:77:6E:9C:21:27:17:65:C7:22:45:AF:51:D7:D1:81:F3:E9:AC
Authority key identifier: D9:42:84:B9:43:25:F5:06:0F:8A:0E:87:C1:BE:28:27:78:8F:18:F9
Certificate issuer: /CN=d94284b94325f5060f8a0e87c1be2827788f18f9
Certificate serial: 019754C7AC77D82EDEED3413EB19C5A72388
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2UKEuUMl9QYPig6Hwb4oJ3iPGPk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5a/a24095-0908-4884-9244-95d59465e9a8/1/2UKEuUMl9QYPig6Hwb4oJ3iPGPk.mft
Manifest number: 12C5
Signing time: Mon 09 Jun 2025 13:01:01 +0000
Manifest this update: Mon 09 Jun 2025 13:01:01 +0000
Manifest next update: Tue 10 Jun 2025 13:01:01 +0000
Files and hashes: 1: 2UKEuUMl9QYPig6Hwb4oJ3iPGPk.crl (hash: IMOa/wOpZNIICVsZ8oxPAlmCYgdmu1bPX8SDWbmfs3c=)
2: ysJps6pTqYBp8hRsJvvn2nSnB6Y.roa (hash: xFEzrUJlVVBWEtFecNObcV0TMloS/XizxOFPtUYtswE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5a/a24095-0908-4884-9244-95d59465e9a8/1/2UKEuUMl9QYPig6Hwb4oJ3iPGPk.crl
rsync://rpki.ripe.net/repository/DEFAULT/5a/a24095-0908-4884-9244-95d59465e9a8/1/2UKEuUMl9QYPig6Hwb4oJ3iPGPk.mft
rsync://rpki.ripe.net/repository/DEFAULT/2UKEuUMl9QYPig6Hwb4oJ3iPGPk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 10 Jun 2025 11:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:54:c7:ac:77:d8:2e:de:ed:34:13:eb:19:c5:a7:23:88
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d94284b94325f5060f8a0e87c1be2827788f18f9
Validity
Not Before: Jun 9 13:01:01 2025 GMT
Not After : Jun 10 13:01:01 2025 GMT
Subject: CN=3df7776e9c21271765c72245af51d7d181f3e9ac
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:1f:6c:af:f8:af:7b:4e:3e:0e:a8:e9:65:3a:
fe:58:f6:bd:3f:5b:63:e7:f0:7b:24:2f:d0:70:83:
0d:26:b2:be:d0:68:e6:9f:b2:9d:45:f4:ed:76:3a:
14:da:2e:ae:90:6d:47:dd:72:88:4b:65:d1:1b:12:
88:93:9e:f5:d5:e0:04:67:4d:5e:02:9e:46:34:11:
73:37:8b:ce:40:6b:15:a9:b6:8a:1f:f2:5c:6a:d2:
95:a6:69:11:f1:df:7e:eb:c9:c5:48:76:5f:af:a2:
d2:05:24:e2:87:8b:01:91:31:69:27:9f:22:a5:f9:
12:7b:1c:8e:50:54:cb:68:86:6d:cc:29:45:91:ae:
10:f7:27:a4:38:6e:0b:22:37:4d:9b:57:9b:11:97:
ce:81:40:1c:8b:c2:09:a5:d4:3b:db:df:22:29:6b:
73:e6:8c:63:a8:ce:7c:04:c7:2a:48:bf:a1:e1:1e:
27:51:23:57:e8:c5:b0:ed:5b:58:89:fe:8c:ac:3f:
11:6a:5a:fe:a5:fc:7c:fb:8a:38:32:d6:3e:6f:02:
01:86:a9:c3:01:b5:08:cb:50:17:9f:79:01:7d:00:
48:5f:b1:9b:bd:77:c0:cc:9f:cf:b4:cb:a6:a3:c5:
08:e9:ac:09:44:0c:4a:cb:c7:c2:cd:fa:6a:be:20:
02:c1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3D:F7:77:6E:9C:21:27:17:65:C7:22:45:AF:51:D7:D1:81:F3:E9:AC
X509v3 Authority Key Identifier:
keyid:D9:42:84:B9:43:25:F5:06:0F:8A:0E:87:C1:BE:28:27:78:8F:18:F9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2UKEuUMl9QYPig6Hwb4oJ3iPGPk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/a24095-0908-4884-9244-95d59465e9a8/1/2UKEuUMl9QYPig6Hwb4oJ3iPGPk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/a24095-0908-4884-9244-95d59465e9a8/1/2UKEuUMl9QYPig6Hwb4oJ3iPGPk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
8d:68:0d:79:78:c9:37:1a:64:03:87:af:a6:da:d7:41:e4:e4:
11:32:a1:3e:95:d8:d9:6b:3b:8c:a1:ae:ea:32:88:ec:85:8a:
42:1f:66:a3:35:b1:e5:f6:25:ed:6a:0e:60:68:24:3c:1f:26:
b8:c0:fb:e9:d4:54:a1:3e:74:d9:26:30:7c:49:41:e4:4a:06:
8c:0e:62:e3:54:a5:a9:f0:ca:a6:f8:da:0c:62:0b:26:5d:95:
00:f9:2a:b6:0b:7a:12:a0:ff:34:79:d6:5e:37:16:e9:5c:24:
51:b2:9b:2a:74:ca:08:09:1d:87:c3:f4:98:8d:8f:e0:c7:dc:
15:a6:74:c6:89:e6:44:c3:f7:f9:87:79:85:39:85:f4:7a:10:
4f:5c:28:7d:34:d2:0f:67:78:7d:79:89:6f:d2:3c:2f:d3:94:
4d:db:00:85:57:57:00:27:a4:57:bf:15:a5:ef:9c:e5:20:8e:
c0:96:24:b5:a2:d1:d3:cd:1d:f0:ee:04:30:73:44:8d:9d:16:
9f:aa:b7:f0:98:3b:5b:99:6d:81:7f:a6:44:c1:96:72:06:e9:
43:c5:fe:7e:1e:1a:18:73:d4:58:13:3e:99:a2:39:23:6c:e3:
53:c7:c0:2f:98:d3:64:b6:b2:f5:e7:52:cd:0f:2f:cd:5a:32:
fb:b2:04:d5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jun 9 20:43:04 2025 by rpki-client