Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/61/648a08-3513-426e-8eee-98efc80a1593/1/Um-cDZfWNn4Mpy0WJMWFCmENZa4.mft
File: Um-cDZfWNn4Mpy0WJMWFCmENZa4.mft (raw, json)
Hash identifier: mlOhxB/jq8ifkYBAFlI/gp6hKzSoXikhXCYajmO6K3g=
Subject key identifier: F8:D8:F9:AB:FF:55:99:33:91:3D:77:6B:79:8B:8C:9B:F4:29:A2:52
Authority key identifier: 52:6F:9C:0D:97:D6:36:7E:0C:A7:2D:16:24:C5:85:0A:61:0D:65:AE
Certificate issuer: /CN=526f9c0d97d6367e0ca72d1624c5850a610d65ae
Certificate serial: 019749310B69D5A37BA151AF71BA96533B16
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Um-cDZfWNn4Mpy0WJMWFCmENZa4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/61/648a08-3513-426e-8eee-98efc80a1593/1/Um-cDZfWNn4Mpy0WJMWFCmENZa4.mft
Manifest number: 0F47
Signing time: Sat 07 Jun 2025 07:00:40 +0000
Manifest this update: Sat 07 Jun 2025 07:00:40 +0000
Manifest next update: Sun 08 Jun 2025 07:00:40 +0000
Files and hashes: 1: Um-cDZfWNn4Mpy0WJMWFCmENZa4.crl (hash: aOQcBdtUYmJ3x5tLE90vweWvIWF8WkYPyjrdhI4gtZo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/61/648a08-3513-426e-8eee-98efc80a1593/1/Um-cDZfWNn4Mpy0WJMWFCmENZa4.crl
rsync://rpki.ripe.net/repository/DEFAULT/61/648a08-3513-426e-8eee-98efc80a1593/1/Um-cDZfWNn4Mpy0WJMWFCmENZa4.mft
rsync://rpki.ripe.net/repository/DEFAULT/Um-cDZfWNn4Mpy0WJMWFCmENZa4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 08 Jun 2025 00:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:49:31:0b:69:d5:a3:7b:a1:51:af:71:ba:96:53:3b:16
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=526f9c0d97d6367e0ca72d1624c5850a610d65ae
Validity
Not Before: Jun 7 07:00:40 2025 GMT
Not After : Jun 8 07:00:40 2025 GMT
Subject: CN=f8d8f9abff559933913d776b798b8c9bf429a252
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:ff:96:52:00:1f:0a:e6:41:05:21:2c:56:e9:
61:cd:fd:c1:c6:9b:ef:43:56:cc:48:94:79:3a:8b:
17:6f:a4:49:a7:c3:27:c1:05:96:bb:6f:26:34:f5:
c4:d3:8c:8e:c1:cc:82:7d:1a:95:8a:3c:09:80:88:
cf:33:9c:34:09:18:7a:ae:8e:f0:98:87:17:42:96:
ea:88:64:5e:86:4c:77:45:df:d8:e1:f4:ef:ad:88:
77:55:44:2d:be:1d:ba:4f:14:d7:11:7b:93:8e:7f:
d6:a3:46:95:7a:5a:e8:83:43:09:59:fc:64:2a:2f:
b8:52:29:08:c2:15:8e:59:ed:45:fe:e1:55:4c:bb:
38:21:e9:79:3c:be:af:db:00:30:3c:2e:15:b6:90:
38:f9:ca:a0:a6:38:dc:d0:83:b8:af:b7:d4:5a:8d:
c2:d7:7a:98:24:ee:3e:4c:3a:c9:60:09:e4:54:b4:
af:60:ff:1a:e1:60:6a:89:c5:48:27:90:99:cc:4c:
21:a8:09:d3:6c:ac:86:32:d3:6e:01:db:a9:e7:65:
3c:e9:1f:ef:c8:bb:87:aa:68:55:53:bf:22:2d:9e:
4d:5b:0d:a9:19:c3:c6:6d:72:54:d7:6c:0e:d0:0f:
bf:15:e1:6e:0a:4c:15:eb:03:4f:40:ef:e0:e5:ed:
6b:39
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F8:D8:F9:AB:FF:55:99:33:91:3D:77:6B:79:8B:8C:9B:F4:29:A2:52
X509v3 Authority Key Identifier:
keyid:52:6F:9C:0D:97:D6:36:7E:0C:A7:2D:16:24:C5:85:0A:61:0D:65:AE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Um-cDZfWNn4Mpy0WJMWFCmENZa4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/61/648a08-3513-426e-8eee-98efc80a1593/1/Um-cDZfWNn4Mpy0WJMWFCmENZa4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/61/648a08-3513-426e-8eee-98efc80a1593/1/Um-cDZfWNn4Mpy0WJMWFCmENZa4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
44:0d:67:64:07:48:8d:68:6c:17:75:f9:3c:cc:ae:a6:f1:1a:
72:d2:b9:c8:04:33:5a:4f:a3:af:c4:b5:7c:c7:b4:10:72:9e:
d0:68:12:77:d1:a0:21:e7:93:cc:a1:4e:dc:65:70:23:1d:bb:
3f:fd:e7:3e:a2:22:ca:7f:c1:8d:b7:0f:0f:65:96:7b:36:7b:
da:8f:dc:fd:ee:6c:52:a1:ff:d3:93:f6:99:36:16:e9:ac:b7:
22:18:39:79:68:40:b8:64:a4:5e:8c:69:81:93:d8:86:8c:02:
a0:83:39:7e:b3:d4:8a:7f:4b:1b:4e:94:8d:e7:02:ce:fc:10:
7d:18:b2:23:e7:10:c1:94:d3:66:eb:39:c8:d7:fa:0b:65:a6:
62:1a:16:aa:fe:96:63:29:80:80:b8:87:97:2c:4b:3d:89:06:
b9:e9:95:57:e7:42:e7:1e:c2:17:de:b3:13:72:f9:f3:35:e1:
f9:06:1c:19:7f:7c:a1:f0:3c:13:7e:fb:3a:be:df:8e:07:ec:
15:2f:90:c3:05:95:06:e3:e2:f6:e3:d2:41:58:39:8c:0b:59:
9f:d2:2a:02:7b:c9:92:44:58:86:b9:88:7e:9b:b7:29:84:0e:
18:a9:d9:ad:a8:14:7f:93:62:e1:4e:3e:d3:e0:c9:f8:25:7e:
25:4f:87:48
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 7 09:05:49 2025 by rpki-client