Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/67/583543-e331-4592-8d89-9f302c20ae70/1/U9qZ-TUY4pqUWwf2ChjvhumznmU.mft
File: U9qZ-TUY4pqUWwf2ChjvhumznmU.mft (raw, json)
Hash identifier: fPgDAImWpBQgQ71GeL487tqGqOawbVnuoJrANJOCv5U=
Subject key identifier: B5:83:B0:9D:DF:C4:22:BA:C9:FA:81:3A:2B:10:9F:74:DF:A2:0F:BF
Authority key identifier: 53:DA:99:F9:35:18:E2:9A:94:5B:07:F6:0A:18:EF:86:E9:B3:9E:65
Certificate issuer: /CN=53da99f93518e29a945b07f60a18ef86e9b39e65
Certificate serial: 019756B575B9B658FC4DEAFA52DA6AFEF9B3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/U9qZ-TUY4pqUWwf2ChjvhumznmU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/67/583543-e331-4592-8d89-9f302c20ae70/1/U9qZ-TUY4pqUWwf2ChjvhumznmU.mft
Manifest number: 12C7
Signing time: Mon 09 Jun 2025 22:00:22 +0000
Manifest this update: Mon 09 Jun 2025 22:00:22 +0000
Manifest next update: Tue 10 Jun 2025 22:00:22 +0000
Files and hashes: 1: U9qZ-TUY4pqUWwf2ChjvhumznmU.crl (hash: 1y8GaDz66n/YBlfT9xkAfis678g0aZYhshbuSpuma9E=)
2: p1W2xtpypFZeS4V60u-1DjDqTds.roa (hash: 34oWoq20u1/mqtBm1kWh1Zu5DKZerBQ57c/ZC8RMnIo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/67/583543-e331-4592-8d89-9f302c20ae70/1/U9qZ-TUY4pqUWwf2ChjvhumznmU.crl
rsync://rpki.ripe.net/repository/DEFAULT/67/583543-e331-4592-8d89-9f302c20ae70/1/U9qZ-TUY4pqUWwf2ChjvhumznmU.mft
rsync://rpki.ripe.net/repository/DEFAULT/U9qZ-TUY4pqUWwf2ChjvhumznmU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 10 Jun 2025 15:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:56:b5:75:b9:b6:58:fc:4d:ea:fa:52:da:6a:fe:f9:b3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=53da99f93518e29a945b07f60a18ef86e9b39e65
Validity
Not Before: Jun 9 22:00:22 2025 GMT
Not After : Jun 10 22:00:22 2025 GMT
Subject: CN=b583b09ddfc422bac9fa813a2b109f74dfa20fbf
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:fd:53:0a:e1:0f:e1:bc:16:78:6c:36:0e:3e:
ce:d0:49:85:fe:62:48:53:72:c3:90:e5:d9:b2:ab:
4f:cb:46:b9:8d:85:91:72:89:2b:e1:66:89:e7:da:
78:f6:d1:d0:c5:70:46:2f:31:f6:ce:37:ad:9e:7f:
09:14:39:41:70:80:0e:29:5d:08:03:70:90:3c:f9:
d1:0f:aa:ef:6e:4b:92:12:19:35:12:ee:c0:bc:b1:
fa:bb:aa:7e:53:35:c0:17:ea:95:ba:94:33:99:f4:
9b:a8:fd:2c:70:d8:3c:c8:4e:5f:55:6a:77:22:03:
a2:db:86:f2:62:f7:99:0b:81:1b:57:75:b8:33:b9:
d6:04:a2:ec:5a:1c:2d:43:76:88:1c:8b:4c:75:d9:
95:23:86:cb:c0:0a:90:7b:1a:42:81:dc:fc:3f:99:
13:1e:61:ab:42:02:34:e0:b1:2b:60:cf:22:d9:64:
fb:38:ab:7b:34:f1:7e:cf:60:16:0a:cd:0f:34:e2:
39:55:49:ae:b0:29:01:f8:c6:8e:95:2e:1e:ba:c7:
b8:10:69:c2:ba:e7:a3:fe:36:8f:a9:b6:05:61:ac:
2e:ff:00:87:39:b6:63:76:59:e0:fc:b4:96:1d:3d:
0a:a2:38:90:24:47:1c:b4:50:39:da:72:2b:91:f5:
7b:03
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B5:83:B0:9D:DF:C4:22:BA:C9:FA:81:3A:2B:10:9F:74:DF:A2:0F:BF
X509v3 Authority Key Identifier:
keyid:53:DA:99:F9:35:18:E2:9A:94:5B:07:F6:0A:18:EF:86:E9:B3:9E:65
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/U9qZ-TUY4pqUWwf2ChjvhumznmU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/67/583543-e331-4592-8d89-9f302c20ae70/1/U9qZ-TUY4pqUWwf2ChjvhumznmU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/67/583543-e331-4592-8d89-9f302c20ae70/1/U9qZ-TUY4pqUWwf2ChjvhumznmU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
cf:04:3a:2e:f7:4d:f7:3f:d1:3e:59:54:0a:28:07:5f:c9:70:
40:6c:e1:0d:de:9e:c0:5a:9d:42:a3:96:0e:60:4a:7b:45:a2:
f9:48:af:d8:2f:ac:a9:d4:f6:6e:fb:49:8d:90:db:f0:24:64:
49:27:a9:57:d8:2d:8b:5f:03:16:76:f4:7e:db:87:4c:f4:a8:
1d:7c:b4:46:6a:a0:a2:81:22:1c:ca:5f:8d:65:0f:12:c1:c9:
8c:8d:d0:e6:96:73:ea:bf:2b:2f:c1:03:c9:f7:6c:54:ce:5f:
ae:21:03:03:05:fb:b0:59:61:31:7a:00:9a:6e:6e:84:6e:90:
5d:9d:98:23:06:8d:e7:79:fe:d7:7a:3b:81:c0:be:3a:a2:d4:
f8:6f:9a:9c:77:b0:0d:dd:b9:e6:ba:94:ac:9c:d9:a3:a1:35:
d8:40:78:1e:db:26:dc:b2:88:f2:88:55:70:e2:d7:6f:fc:cf:
5f:8b:59:b7:50:83:d9:71:47:44:64:ef:c9:71:f2:4b:de:32:
9b:d1:5f:dd:8b:ec:2a:1d:d7:54:8b:20:c5:65:29:84:01:c0:
61:31:a8:37:17:41:5f:04:a2:f2:29:9b:7a:00:66:99:8d:60:
e5:d2:d7:05:65:24:04:2a:f6:af:f2:7d:3f:2e:5a:7e:5c:22:
0e:33:be:b9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jun 9 23:41:36 2025 by rpki-client