
Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/67/583543-e331-4592-8d89-9f302c20ae70/1/U9qZ-TUY4pqUWwf2ChjvhumznmU.mft
File: U9qZ-TUY4pqUWwf2ChjvhumznmU.mft (raw, json)
Hash identifier: G1/X3W2dWRD3O+T0osODuSn3Vv2xTX3Pl5VnigNr4HE=
Subject key identifier: CA:7A:2F:1C:C1:9E:AB:6C:2A:5C:85:09:B3:69:0D:00:3E:88:92:56
Authority key identifier: 53:DA:99:F9:35:18:E2:9A:94:5B:07:F6:0A:18:EF:86:E9:B3:9E:65
Certificate issuer: /CN=53da99f93518e29a945b07f60a18ef86e9b39e65
Certificate serial: 019766291AEB7BBBC8212F3BF62474FF1B2C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/U9qZ-TUY4pqUWwf2ChjvhumznmU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/67/583543-e331-4592-8d89-9f302c20ae70/1/U9qZ-TUY4pqUWwf2ChjvhumznmU.mft
Manifest number: 12CF
Signing time: Thu 12 Jun 2025 22:00:59 +0000
Manifest this update: Thu 12 Jun 2025 22:00:59 +0000
Manifest next update: Fri 13 Jun 2025 22:00:59 +0000
Files and hashes: 1: U9qZ-TUY4pqUWwf2ChjvhumznmU.crl (hash: 8nEASPzN+Ww6l7uOntz/QQWBxIlmRAD5RXfHwIDewsM=)
2: p1W2xtpypFZeS4V60u-1DjDqTds.roa (hash: 34oWoq20u1/mqtBm1kWh1Zu5DKZerBQ57c/ZC8RMnIo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/67/583543-e331-4592-8d89-9f302c20ae70/1/U9qZ-TUY4pqUWwf2ChjvhumznmU.crl
rsync://rpki.ripe.net/repository/DEFAULT/67/583543-e331-4592-8d89-9f302c20ae70/1/U9qZ-TUY4pqUWwf2ChjvhumznmU.mft
rsync://rpki.ripe.net/repository/DEFAULT/U9qZ-TUY4pqUWwf2ChjvhumznmU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 13 Jun 2025 22:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:66:29:1a:eb:7b:bb:c8:21:2f:3b:f6:24:74:ff:1b:2c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=53da99f93518e29a945b07f60a18ef86e9b39e65
Validity
Not Before: Jun 12 22:00:59 2025 GMT
Not After : Jun 13 22:00:59 2025 GMT
Subject: CN=ca7a2f1cc19eab6c2a5c8509b3690d003e889256
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8d:33:44:2c:ef:36:30:0b:4c:40:fc:09:85:c5:
e7:89:46:c4:7d:a7:73:71:72:2f:7c:ec:92:0f:6e:
ac:15:23:1e:b2:37:5e:24:d7:93:75:a5:81:8b:e7:
f3:a5:72:9c:86:2d:0d:e1:69:ce:a5:ec:19:b3:24:
22:d6:2f:f9:1d:af:8f:bb:d4:27:d1:e6:6b:95:a8:
1c:fd:17:81:c9:23:6d:ef:4b:dc:2a:a4:2c:15:06:
2f:60:ad:62:c3:a7:72:90:31:ce:40:2e:96:17:98:
52:f0:e2:4b:07:c0:b3:9e:31:9d:9c:78:3b:62:f5:
7b:a6:49:cb:f3:65:8a:a0:59:7e:62:91:a4:d5:86:
38:94:cc:6d:a0:7e:86:ef:41:60:7c:80:1e:f0:c8:
e4:79:cb:ce:b7:6c:d7:ea:8d:49:bd:d2:71:23:89:
f1:7b:ca:a7:a4:8e:7b:00:37:26:2e:fb:a3:a6:8a:
5d:31:10:78:a2:f5:03:5a:ac:d6:d8:71:b6:11:10:
1b:98:7a:82:8c:cc:6d:43:39:28:d9:c9:f7:ff:a6:
f2:5a:af:39:8c:99:c0:c3:f1:2a:ba:bd:f7:28:fe:
d1:06:0a:c6:d4:ff:b8:be:f5:72:03:87:6d:d3:49:
bc:c3:02:1e:0b:6f:1a:9a:01:1b:68:9d:27:29:e5:
49:87
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CA:7A:2F:1C:C1:9E:AB:6C:2A:5C:85:09:B3:69:0D:00:3E:88:92:56
X509v3 Authority Key Identifier:
keyid:53:DA:99:F9:35:18:E2:9A:94:5B:07:F6:0A:18:EF:86:E9:B3:9E:65
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/U9qZ-TUY4pqUWwf2ChjvhumznmU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/67/583543-e331-4592-8d89-9f302c20ae70/1/U9qZ-TUY4pqUWwf2ChjvhumznmU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/67/583543-e331-4592-8d89-9f302c20ae70/1/U9qZ-TUY4pqUWwf2ChjvhumznmU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
76:70:bb:93:cb:21:6e:d0:bc:0c:ee:a2:d8:05:08:11:82:05:
1d:90:27:f9:e3:8f:ea:1a:6a:cb:b5:e1:5e:f6:84:9d:78:e4:
05:d0:4d:a2:57:13:e3:d4:2c:ab:95:ac:0f:1c:4b:cb:16:02:
23:e0:c1:85:8f:20:46:c8:05:9e:f0:4a:b5:a6:16:fd:37:81:
dd:a0:c8:5b:fb:22:b7:3c:fd:d7:e1:0c:b2:3b:00:50:1b:0f:
45:50:3a:92:b9:13:4c:4e:2b:c7:15:03:39:3b:51:d7:e4:f1:
a0:83:41:53:05:1a:af:ee:0a:60:9c:88:68:27:e0:51:d7:fa:
4b:4b:61:d8:a4:0c:38:ab:7a:d4:f5:ee:b0:e9:5a:a0:96:f2:
b5:b9:ac:3c:cc:ef:2b:82:36:4e:ff:b3:ff:41:c5:d0:76:e5:
4f:0d:fd:9f:e1:6d:ba:4b:08:e8:4e:f1:31:15:d1:2e:e8:7d:
94:0f:51:0f:c9:cc:70:c0:2a:76:f2:87:18:70:23:0d:51:e9:
2d:ab:1e:07:0d:da:c2:eb:bd:39:5a:c0:65:d0:03:ec:79:f8:
b2:c1:a9:93:2e:2f:1c:05:6a:52:b1:6c:02:bb:74:49:0d:f5:
2b:ac:d6:15:85:99:b4:27:4f:3b:47:c8:89:56:db:09:b3:68:
51:be:16:b6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jun 13 01:43:12 2025 by rpki-client